Commit Graph

8052 Commits

Author SHA1 Message Date
Lars Grefer 55e2fe4522 Update the AspectJ Gradle Plugin to 4.0.2 2019-09-12 13:31:05 +01:00
Lars Grefer 7c30076b37 Update to Gradle 5.6.2 2019-09-12 13:29:25 +01:00
Josh Cummings 33fb93f0ea
Add NimbusJwtDecoder Documentation
Fixes gh-7408
2019-09-11 13:45:45 -06:00
Josh Cummings 101e0a21a8 Bearer WebClient Filter Authentication Propagation
Fixes: gh-7418
2019-09-11 16:27:21 +01:00
Josh Cummings c85358915a
Add Opaque Token Documentation
Fixes gh-7420
2019-09-11 08:06:48 -06:00
Joe Grandja dcdeab596d DefaultReactiveOAuth2AuthorizedClientManager defaults ServerWebExchange
Fixes gh-7390
2019-09-10 11:40:28 -04:00
Rob Winch 96d44cd4b7 Add Default RSocketSecurity
Fixes gh-7361
2019-09-09 16:10:55 -05:00
Rob Winch 5d0815bc76 Allow RSocketMessageHandlerITests to timeout
Fixes gh-7415
2019-09-09 16:10:50 -05:00
Rob Winch 6296e6e896 RSocketSecurity delegates to correct matcher
Fixes gh-7414
2019-09-09 16:09:23 -05:00
Rob Winch 1b699a49fb Polish RSocket packaging
Fixes gh-7413
2019-09-09 16:07:14 -05:00
Eleftheria Stein 9f0986a093 Fix javadoc typo for invalid session strategy 2019-09-09 16:51:14 -04:00
Eddú Meléndez 91bf1c782a Make OAuth2User extends OAuth2AuthenticatedPrincipal
Fixes gh-7378
2019-09-09 14:36:35 +01:00
Eleftheria Stein aa533c2565 Add missing javadoc to session fixation 2019-09-06 16:33:51 -04:00
Rob Winch 316380e622 Allow Custom PayloadInterceptor to be Added
Fixes gh-7362
2019-09-06 14:52:47 -05:00
Filip Hanik ee0d7f6a79
Merge pull request #7393 from fhanik/pr/upgrade_opensaml_3_4_3
Upgrade to OpenSAML 3.4.3
2019-09-06 10:00:41 -07:00
Filip Hanik 438ae215f8 Upgrade to OpenSAML 3.4.3
Fixes gh-7392
2019-09-06 08:04:15 -07:00
Josh Cummings 5a9c7f03be
Next Development Version 2019-09-06 07:47:36 -06:00
Josh Cummings ecf00625ff
Release 5.2.0.RC1 2019-09-06 07:20:03 -06:00
Josh Cummings 572c16c7cb
Update Gretty to 2.3.1
Fixes gh-7389
2019-09-06 07:20:21 -06:00
Josh Cummings c716b400a1
Update to OpenSaml 3.3.1
Fixes gh-7388
2019-09-06 07:20:13 -06:00
Josh Cummings 897c0eb596
Update cglib to 3.3.0
Fixes gh-7387
2019-09-06 07:20:03 -06:00
Josh Cummings 0473730f7f
Update to Spring Data Moore RC3
Fixes gh-7386
2019-09-06 06:25:57 -06:00
Joe Grandja 93cda94969 Add attributes Consumer to OAuth2AuthorizationContext
Fixes gh-7385
2019-09-06 08:01:59 -04:00
Joe Grandja f7d03858f1 OAuth2AuthorizedClientManager implementation works outside of request
Fixes gh-6780
2019-09-06 06:10:36 -04:00
Joe Grandja a60446836b OAuth2AuthorizeRequest supports attributes
Fixes gh-7341
2019-09-05 21:04:25 -04:00
Filip Hanik 4a754c1f45
Merge pull request #7382 from fhanik/fix/update-to-apache-tomcat-9.0.24
Upgrade to embedded Apache Tomcat 9.0.24
2019-09-05 17:04:37 -07:00
Filip Hanik 08d50868c9
Merge pull request #7260 from fhanik/feature/saml2-sp-mvp
Add SAML Service Provider Support
2019-09-05 17:04:14 -07:00
Josh Cummings 08f68c9122
Update JwtAuthenticationConverter Docs
Replaced usage of deprecated API

Fixes gh-7062
2019-09-05 16:15:55 -06:00
Filip Hanik e9a44bc0ce HttpSecurity.saml2login() - MVP Core Code
Implements minimal SAML 2.0 login/authentication functionality with the
following feature set:

  - Supports IDP initiated login at the default url of /login/saml2/sso/{registrationId}
  - Supports SP initiated login at the default url of /saml2/authenticate/{registrationId}
  - Supports basic java-configuration via DSL
  - Provides an integration sample using Spring Boot

Not implemented with this MVP

  - Single Logout
  - Dynamic Service Provider Metadata

Fixes gh-6019
2019-09-05 14:40:08 -07:00
Rob Winch 9639962e27 Fix RSocket Package Tangle
Issue gh-7360
2019-09-05 16:27:57 -05:00
Filip Hanik a919ff0461 Upgrade to embedded Apache Tomcat 9.0.24 2019-09-05 14:26:18 -07:00
Rob Winch 2a1f3f6aa7 Remove Package Tangle in HeaderWriterFilter
Fixes gh-7380
2019-09-05 16:08:45 -05:00
Rob Winch b5cbab01df Update to Spring 5.2.0.RC2
Fixes gh-7371
2019-09-05 13:42:34 -05:00
Eleftheria Stein 6aebf6c27e Update to Spring Boot 2.2.0.M5
Fixes gh-7320
2019-09-05 13:34:07 -05:00
Eleftheria Stein 266cc4a427 Update to org.seleniumhq.selenium:htmlunit-driver 2.36.0
Fixes: gh-7319
2019-09-05 13:34:07 -05:00
Eleftheria Stein 64e95c1e39 Update to hibernate-entitymanager 5.4.4.Final
Fixes: gh-7318
2019-09-05 13:34:07 -05:00
Eleftheria Stein da9221b156 Update to net.sourceforge.htmlunit:htmlunit 2.36.0
Fixes: gh-7317
2019-09-05 13:34:07 -05:00
Eleftheria Stein 2010bf4a65 Update to commons-codec 1.13
Fixes: gh-7316
2019-09-05 13:34:07 -05:00
Eleftheria Stein 97626f7dd2 Update to nimbus-jose-jwt 7.8
Fixes: gh-7315
2019-09-05 13:34:07 -05:00
Eleftheria Stein 19b29a20bd Update to GAE 1.9.76
Fixes: gh-7314
2019-09-05 13:34:07 -05:00
Rob Winch 2a3bf9b6bb DefaultReactiveOAuth2UserService IOException
Improve handling of IOException to report an
AuthenticationServiceExceptionThere are many reasons that a
DefaultReactiveOAuth2UserService might fail due to an IOException
(i.e. SSLHandshakeException). In those cases we should use a
AuthenticationServiceException so that users are aware there is likely
some misconfiguration.

Fixes gh-7370
2019-09-05 13:31:30 -05:00
Rob Winch 7ad641d106 RSocket Tests use Available Port
Issue gh-7360
2019-09-05 09:16:07 -05:00
Andreas Kluth c46b224ec4 Remove OAuth2AuthorizationRequest when a distributed session is used
Dirties the WebSession by putting the amended AUTHORIZATION_REQUEST map into
the WebSession even it was already in the map. This causes common SessionRepository
implementations like Redis to persist the updated attribute.

Fixes gh-7327

Author: Andreas Kluth <mail@andreaskluth.net>
2019-09-05 09:31:32 -04:00
Josh Cummings 26a65249f9
Remove invalid characters 2019-09-05 04:32:34 -06:00
Lars Grefer 93b991d5f7 Update AspectJ Gradle Plugin to 4.0.1 2019-09-04 19:31:28 -05:00
Lars Grefer b75212b325 Update to Gradle 5.6.1 2019-09-04 19:31:28 -05:00
Rob Winch 5a4eded696 Add RSocket Support
Fixes gh-7360
2019-09-04 19:24:01 -05:00
Josh Cummings 099d49aa40 Simplify currentAuthentication() 2019-09-04 15:33:41 -06:00
Josh Cummings 40ff837713 Polish Server|ServletBearerExchangeFilterFunction
Fixes gh-7353
2019-09-04 15:33:41 -06:00
Joe Grandja e6618d4d50 Removed unused OAuth2AuthorizedClientResolver
Fixes gh-7357
2019-09-04 16:56:40 -04:00