Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-24 07:37:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,381 Commits 34 Branches 337 Tags
Commit Graph

97 Commits

Author SHA1 Message Date
Joe Grandja
5237c6e01b Remove AuthorizedClient.getAuthorizedScopes() 
Fixes gh-4696
 2017-10-25 14:06:34 -04:00
Joe Grandja
5a584e5ccb Rename OAuth2/OIDC ClientAuthenticationToken -> AuthorizedClient 
Fixes gh-4695
 2017-10-25 13:47:00 -04:00
Joe Grandja
9b670882b7 Rename SecurityToken -> AbstractOAuth2Token 
Fixes gh-4646
 2017-10-25 10:29:34 -04:00
Rob Winch
1bd826897f UserInfoRetriever.retrieve accepts the type to convert 
Fixes gh-4688
 2017-10-24 15:14:58 -05:00
Joe Grandja
4dbbcabacf Rename AuthorizationCodeAuthenticationProvider -> OAuth2LoginAuthenticationProvider 
Fixes gh-4690
 2017-10-24 15:24:26 -04:00
Joe Grandja
049080290e Refactor OAuth2 AuthenticationProvider's 
Fixes gh-4689
 2017-10-24 15:24:26 -04:00
Joe Grandja
0fb32a052e OAuth2LoginAuthenticationFilter processes uri /login/oauth2/* 
Fixes gh-4687
 2017-10-24 15:24:26 -04:00
Joe Grandja
4ae24f2fbe Rename AuthorizationCodeAuthenticationFilter -> OAuth2LoginAuthenticationFilter 
Fixes gh-4686
 2017-10-24 15:24:25 -04:00
Joe Grandja
8e7838fa64 Verify UserInfo Response sub claim 
Fixes gh-4441
 2017-10-23 11:44:29 -04:00
Joe Grandja
8a416793aa Return AuthorizationRequest from AuthorizationRequestRepository.removeAuthorizationRequest 
Fixes gh-4652
 2017-10-23 11:02:17 -04:00
Joe Grandja
6d7d34c549 Move AuthorizationRequestUriBuilder and DefaultAuthorizationRequestUriBuilder 
Fixes gh-4658
 2017-10-23 10:19:31 -04:00
Joe Grandja
f0c9f85292 spring-security-jwt-jose -> spring-security-oauth2-jose 
Fixes gh-4595
 2017-10-23 09:04:01 -04:00
Joe Grandja
c94b3f4d23 Add AuthorizationExchange 
Fixes gh-4660
 2017-10-20 20:59:32 -04:00
Joe Grandja
eb2b573426 Validate Authorization Response 
Fixes gh-4657, Issue gh-4654
 2017-10-20 20:59:32 -04:00
Joe Grandja
8e3a2a7123 Remove AuthorizationCodeAuthenticationFilter.AuthorizationResponseMatcher 
Fixes gh-4654
 2017-10-20 06:09:31 -04:00
Joe Grandja
84a1c417a3 Extract Converter from AuthorizationResponseMatcher 
Fixes gh-4653
 2017-10-20 04:56:07 -04:00
Joe Grandja
d4dac21ca5 Make ClientRegistration.Builder constructor private 
Fixes gh-4656
 2017-10-19 14:15:59 -04:00
Joe Grandja
a980e3b0d7 Remove ClientRegistrationIdentifierStrategy 
Fixes gh-4648
 2017-10-19 13:40:06 -04:00
Joe Grandja
f3756cdd07 Remove ClientRegistrationProperties 
Fixes gh-4649
 2017-10-19 13:27:54 -04:00
Joe Grandja
1f5edc98d5 ClientRegistration.Builder.scopes -> scope 
Fixes gh-4663
 2017-10-19 11:24:01 -04:00
Joe Grandja
1e891b38ab Rename scope -> scopes for Set types 
Fixes gh-4644
 2017-10-18 17:56:39 -04:00
Rob Winch
d7d6400971 DefaultStateGenerator->Base64StringKeyGenerator 
Rename and move DefaultStateGenerator since it is more generic than just
OAuth.

Fixes gh-4645
 2017-10-18 11:29:04 -05:00
Rob Winch
d554b06a43 OAuth use ConcurrentHashMap 
Fixes gh-4647
 2017-10-17 22:17:09 -05:00
Rob Winch
b764c666c6 Fix jwt package tangles 
JWT is part of OAuth2, so it should be a subpackage of oauth2.

Fixes gh-4614
 2017-10-17 21:06:27 -05:00
Rob Winch
c5abcd1fcd DefaultAuthorizationRequestUriBuilder uses StringUtils 
Fixes gh-4642
 2017-10-17 20:24:43 -05:00
Joe Grandja
7b8d131386 Fix package tangles -> OAuth2/Oidc AuthenticationProvider's 
Fixes gh-4614
 2017-10-16 20:56:32 -04:00
Johnny Lim
25052214ae Polish 2017-10-16 18:33:27 -05:00
Joe Grandja
a7d054c9f3 Remove AuthorizationGrantAuthenticator 2017-10-16 13:43:11 -04:00
Joe Grandja
3c824dc44b Fix package tangles -> OAuth2UserService 
Fixes gh-4614
 2017-10-13 18:59:41 -04:00
Joe Grandja
cfa4858b04 Fix package tangles -> AuthorizationGrantTokenExchanger 
Fixes gh-4614
 2017-10-13 16:35:48 -04:00
Joe Grandja
c441f99567 Polish oauth2-client 2017-10-13 07:09:00 -04:00
Joe Grandja
d4d7199a6d Polish oauth2-core 2017-10-13 07:09:00 -04:00
Joe Grandja
df474e04d8 Move logic from AuthorizationCodeAuthenticationFilter to OAuth2UserAuthenticationProvider 2017-10-11 17:39:21 -04:00
Joe Grandja
ca5b62abb5 Move AuthorizationResponseConverter logic to AuthorizationCodeAuthenticationFilter 2017-10-11 17:39:21 -04:00
Joe Grandja
d840090cb0 Add support for implicit grant type 
Fixes gh-4500
 2017-10-11 13:54:59 -04:00
Joe Grandja
401c84b3f2 Externalize error codes from OAuth2Error 
Fixes gh-4606
 2017-10-10 20:24:33 -04:00
Joe Grandja
da0a7afa38 Polish AuthorizationCodeAuthenticationFilter 
Fixes gh-4599
 2017-10-10 14:39:47 -04:00
Joe Grandja
efa4bf409c Remove AuthorizationCodeRequestRedirectFilter. setAuthorizationRequestMatcher 2017-10-10 14:38:06 -04:00
Joe Grandja
6b16fa0d8c Polish OAuth Security Configurers 2017-10-10 14:38:06 -04:00
Joe Grandja
97c938e7f3 Extract authentication logic from AuthorizationCodeAuthenticationFilter 
Fixes gh-4590
 2017-10-10 14:38:06 -04:00
Joe Grandja
5811624bbe Polish endpoint package 
* Remove ErrorResponseAttributes
* Rename AuthorizationRequestAttributes -> AuthorizationRequest
* Remove AuthorizationCodeTokenRequestAttributes
* Rename TokenResponseAttributes -> TokenResponse

Issue gh-4593
 2017-10-06 18:51:24 -04:00
Joe Grandja
ce142e50b6 Rename AuthorizationCodeAuthorizationResponseAttributes -> AuthorizationResponse 
Fixes gh-4593
 2017-10-06 18:51:24 -04:00
Joe Grandja
eca2b67137 ClientRegistration supports 'baseUrl' uri variable 
Fixes gh-4589
 2017-10-05 20:35:51 -04:00
Joe Grandja
dec0bce100 Remove authorities -> AuthorizationGrantAuthenticationToken constructor 
Fixes gh-4602
 2017-10-05 20:22:50 -04:00
Joe Grandja
1b7e761be4 Remove SecurityTokenRepository from AuthorizationCodeAuthenticationProvider constructor 
Fixes gh-4591
 2017-10-05 17:05:56 -04:00
Joe Grandja
eb320bfed4 AuthorizationCodeAuthenticationProcessingFilter -> AuthorizationCodeAuthenticationFilter 2017-10-05 16:40:12 -04:00
Joe Grandja
5c14e48b18 Add OAuth2UserAuthenticationProvider 
Moved logic from AuthorizationCodeAuthenticationProvider
to OAuth2UserAuthenticationProvider (new) related to
loading user attributes via OAuth2UserService.

This re-factor is part of the work required for Issue gh-4513
 2017-10-05 15:15:35 -04:00
Joe Grandja
f8a9077d5a Generalize AuthorizationCodeAuthenticationProvider 
The AuthorizationCodeAuthenticationProvider implements part of the
Authorization Code Grant flow as defined in
OAuth 2.0 Authorization Framework and OpenID Connect Core 1.0.
The implementation needs to be de-coupled to allow for better re-use and readability.
This commit introduces the AuthorizationGrantAuthenticator and extracts logic from
AuthorizationCodeAuthenticationProvider and provides different implementations
for OAuth 2.0 and OpenID Connect 1.0.

This re-factor is part of the work required for Issue gh-4513
 2017-10-05 05:02:22 -04:00
Joe Grandja
0d516ca32c Rename scopes -> scope 2017-10-02 15:50:16 -04:00
Joe Grandja
fb57111ecd redirect-uri property supports 'baseRedirectUrl' uri variable 
Fixes gh-4589
 2017-10-02 15:29:03 -04:00