b5b3ddd6b4
Deprecate Resource Owner Password Credentials grant
...
Closes gh-11590
2022-07-15 16:45:00 -04:00
95155ddb0c
Deprecate Resource Owner Password Credentials grant
...
Closes gh-11590
2022-07-15 16:28:47 -04:00
6ee1643bae
Remove deprecations in ServerOAuth2AuthorizedClientExchangeFilterFunction
...
Closes gh-11589
2022-07-15 15:13:40 -04:00
054791c26c
Remove deprecations in ServletOAuth2AuthorizedClientExchangeFilterFunction
...
Closes gh-11588
2022-07-15 15:12:39 -04:00
65db5fa028
Remove deprecations in JwtAuthenticationConverter
...
Closes gh-11587
2022-07-15 14:43:08 -04:00
1ac6054e6f
Remove deprecations in OidcUserInfo
...
Closes gh-11586
2022-07-15 14:42:54 -04:00
6b41faaf55
Remove deprecations in ClaimAccessor
...
Closes gh-11585
2022-07-15 14:42:33 -04:00
0859da5590
Remove deprecations in OAuth2AuthorizedClientArgumentResolver
...
Closes gh-11584
2022-07-15 14:42:03 -04:00
743b6a5bfe
Remove deprecations in OidcClientInitiatedLogoutSuccessHandler
...
Closes gh-11565
2022-07-15 14:04:09 -04:00
cae22867b2
Remove deprecated allowMultipleAuthorizationRequests
...
Closes gh-11564
2022-07-15 13:50:30 -04:00
0e291a3295
Remove deprecations in AuthorizationRequestRepository
...
Closes gh-11519
2022-07-15 08:15:52 -04:00
e12823095f
Remove deprecations in ClientRegistration
...
Closes gh-11518
2022-07-15 08:15:30 -04:00
61b034bf69
Remove deprecations in AbstractOAuth2AuthorizationGrantRequest
...
Closes gh-11517
2022-07-15 08:14:56 -04:00
be58e2ac49
Remove deprecations in ClientAuthenticationMethod
...
Closes gh-11516
2022-07-15 07:45:33 -04:00
8c12c3dad0
Remove deprecated converters in OAuth2AccessTokenResponseHttpMessageConverter
...
Closes gh-11513
2022-07-14 16:55:53 -04:00
746d27eab1
Remove deprecated NimbusAuthorizationCodeTokenResponseClient
...
Closes gh-11512
2022-07-14 16:32:21 -04:00
42683693c0
Remove deprecated CustomUserTypesOAuth2UserService
...
Closes gh-11511
2022-07-14 14:28:41 -04:00
67b27a41c3
Remove deprecated UnAuthenticatedServerOAuth2AuthorizedClientRepository
...
Closes gh-11508
2022-07-14 12:10:58 -04:00
f5a436df80
Remove deprecated NimbusJwtDecoderJwkSupport
...
Closes gh-11507
2022-07-14 12:09:59 -04:00
a3326fc0ee
Remove deprecated implicit authorization grant type
...
Closes gh-11506
2022-07-14 10:05:15 -04:00
7df9c6eba5
Use OAuth2Token instead of AbstractOAuth2Token
...
Closes gh-10959
2022-07-13 16:48:28 -04:00
f87df42500
Remove deprecated OAuth2IntrospectionClaimAccessor
...
Closes gh-11499
2022-07-13 15:51:58 -04:00
7b18336c6a
Change interface with constants to final class
...
Closes gh-10960
2022-07-13 15:51:58 -04:00
ecbfa84b39
Revert "Disable failing tests until r2dbc-h2 is upgraded"
...
This reverts commit 614065bb3b
2022-07-13 10:55:12 -03:00
8776f66fb9
Update io.r2dbc:r2dbc-h2 to 1.0.0.RC1
...
Closes gh-11479
2022-07-13 10:55:12 -03:00
614065bb3b
Disable failing tests until r2dbc-h2 is upgraded
...
Issue gh-11479
2022-07-11 10:32:38 -05:00
757fb38147
Fix typo
...
(cherry picked from commit 80c5ec459befd9292e08a43e30f4aae22f39eeed)
2022-06-27 16:05:50 -06:00
1d72a05c32
Add SecurityContextHolderStrategy to OAuth2
...
Issue gh-11060
2022-06-27 13:05:12 -06:00
539a11d0a4
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:13:42 -06:00
f035c30edb
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:12:13 -06:00
01513ab17e
Add placeholders to reactive post_logout_redirect_uri
...
Now also supports baseScheme, baseHost, basePort, and basePath
Issue gh-11229
2022-06-16 16:10:26 -06:00
6f69d85fcb
Reactive OAuth 2.0 logout handler resolves registrationId
...
Closes gh-11378
2022-06-16 16:09:57 -06:00
3f30de388a
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:09:56 -06:00
e4505ed6c8
Add placeholders to post_logout_redirect_uri
...
Now supports baseScheme, baseHost, basePort, and basePath in addition
to extant baseUrl.
Closes gh-11229
2022-06-16 16:09:56 -06:00
a8ab432aea
Add placeholders to reactive post_logout_redirect_uri
...
Now also supports baseScheme, baseHost, basePort, and basePath
Issue gh-11229
2022-06-16 15:58:44 -06:00
ebb5746f6e
Reactive OAuth 2.0 logout handler resolves registrationId
...
Closes gh-11378
2022-06-16 15:58:44 -06:00
18f7cf5406
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 15:58:43 -06:00
cb0ab49adc
Add placeholders to post_logout_redirect_uri
...
Now supports baseScheme, baseHost, basePort, and basePath in addition
to extant baseUrl.
Closes gh-11229
2022-06-16 15:58:35 -06:00
d18291676f
Update copyright year
...
Issue gh-11372
2022-06-15 13:14:07 -05:00
c7df39a3e6
Fix tests using root cause for exception messages
...
Closes gh-11372
2022-06-14 17:12:15 -05:00
ca0a6d9777
Treat URLs as String before equals/hashcode
...
java.net.URL performs DNS lookups whenever its equals/hashCode is
used. Thus attribute values of type java.net.URL need to be converted
to something else before they are used for equals/hashCode.
Closes gh-10673
2022-06-03 11:36:00 -04:00
e28fcbfbbe
Change phoneNumberVerified with type Boolean
...
Closes: gh-11315
2022-06-03 10:23:53 -05:00
759d799ddd
Change phoneNumberVerified with type Boolean
...
Closes: gh-11315
2022-06-03 09:46:00 -05:00
b8b0661d73
Lock Dependencies for Release
2022-05-16 14:01:51 -06:00
000b87f9aa
Revert "Use Spring Framework version 6.0.0-M3"
...
This reverts commit b803e845e7
2022-05-11 08:36:14 -03:00
806e05855c
Replace removed context-related operators
...
Closes gh-11194
2022-05-10 14:58:02 -03:00
b803e845e7
Use Spring Framework version 6.0.0-M3
...
Closes gh-11193
2022-05-10 14:49:02 -03:00
50f8df6f07
Use HttpStatusCode
...
Closes gh-11091
2022-04-11 09:19:56 -03:00
e1f649690b
Adapt to changes in R2DBC
2022-04-11 09:19:47 -03:00
8aa7029d07
Fix checkstyle errors
...
Issue gh-10989
2022-03-18 22:53:29 -05:00
e81990c44e
Update io.r2dbc to 0.9.1.RELEASE
...
Closes gh-10988
2022-03-18 18:11:49 -05:00
f0168c6c27
Add support for customizing claims in JWT Client Assertion
...
Closes gh-9855
2022-03-17 09:53:16 -05:00
428216b322
Add support for customizing claims in JWT Client Assertion
...
Closes gh-9855
2022-03-17 09:50:25 -05:00
50a3bcf728
Remove unused code
2022-03-17 05:08:39 -04:00
a88b8bf980
ClientAuthenticationMethod equals and hashCode is consistent
...
Closes gh-10559
2022-03-17 05:05:47 -04:00
50d315d833
Remove unused code
2022-03-17 04:23:44 -04:00
54b033078b
Allow configuring PKCE for confidential clients
...
Closes gh-6548
2022-03-16 13:36:10 -04:00
a2ffc88294
Allow configuring PKCE for confidential clients
...
Closes gh-6548
2022-03-16 13:33:12 -04:00
92a385ed05
OAuth 2.0 logout handler resolves uri placeholders
...
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri
Closes gh-7900
2022-03-15 14:05:26 -06:00
73003d59d6
OAuth 2.0 logout handler resolves uri placeholders
...
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri
Issue gh-7900
2022-03-15 12:54:39 -06:00
9b380582dc
BearerTokenAuthenticationFilter.securityContextRepository
...
Issue gh-10953
2022-03-09 15:47:34 -06:00
9db79aa5d7
BearerTokenAuthenticationFilter.securityContextRepository
...
Issue gh-10953
2022-03-09 15:33:42 -06:00
68e2586f06
Move UnmodifiableMapDeserializer
...
Issue gh-10905
2022-03-01 14:17:17 -07:00
931fb6a328
Move UnmodifiableMapDeserializer
...
Issue gh-10905
2022-03-01 14:03:41 -07:00
bebd615507
Update io.r2dbc to 0.9.1.RELEASE
...
Closes gh-10883
2022-02-21 10:35:20 -03:00
883c480af0
Update r2dbc-h2 to 0.8.5.RELEASE
...
Closes gh-10869
2022-02-21 09:20:37 -03:00
d655deb718
Update r2dbc-h2 to 0.8.5.RELEASE
...
Closes gh-10856
2022-02-21 12:24:24 +01:00
c67ee6f2a8
javax.servlet:javax.servlet-api -> jakarta.servlet:jakarta.servlet-api
...
Issue gh-10501
2022-01-19 15:32:12 -06:00
8f64bb6c8c
javax.servlet:javax.servlet-api -> jakarta.servlet:jakarta.servlet-api
...
Issue gh-10501
2022-01-19 14:33:53 -06:00
d99c08edce
Fix failing test in NimbusReactiveJwtDecoderTests
2022-01-17 11:22:05 -03:00
e2d1bb6998
Update io.r2dbc to 0.9.0.RELEASE
...
Closes gh-10745
2022-01-17 10:50:47 -03:00
7c54f98944
Update io.r2dbc to 0.9.0.RELEASE
...
Closes gh-10717
2022-01-14 11:58:45 -06:00
525f40490c
Allow Jwt assertion to be resolved
...
Closes gh-9812
2022-01-10 10:59:14 -05:00
214cfe807e
Allow Jwt assertion to be resolved
...
Closes gh-9812
2022-01-10 10:42:10 -05:00
3389cf3ffc
Revert "Lock dependencies"
...
This reverts commit 83bb4603f8
2021-12-20 21:55:35 +02:00
cfbf28b8ba
Revert "Lock Dependencies for Release"
...
This reverts commit 3d4e90ba2a
2021-12-20 16:47:36 -03:00
83bb4603f8
Lock dependencies
2021-12-20 21:17:17 +02:00
3d4e90ba2a
Lock Dependencies for Release
2021-12-20 16:03:13 -03:00
606bf6b38d
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request
error on claim validation failure.
But validators have to return invalid_token errors on failure
according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Closes gh-10337
2021-11-29 13:30:38 -07:00
5c732b9b7f
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
2021-11-29 12:34:53 -07:00
aefd2d497c
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
2021-11-29 12:22:30 -07:00
8c063f8ccb
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
2021-11-29 12:13:24 -07:00
dec858a5b7
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
2021-11-29 12:04:30 -07:00
82426e20e1
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
2021-11-29 12:02:02 -07:00
25feedb870
Fix removal of framework deprecated code
...
Issue https://github.com/spring-projects/spring-framework/issues/27686
2021-11-19 13:06:13 -03:00
17e28fa7aa
Update clockSkew javadoc according to implementation
...
Closes gh-10174
2021-11-19 13:48:32 +01:00
aa1ef46d84
Update clockSkew javadoc according to implementation
...
Closes gh-10174
2021-11-19 13:33:05 +01:00
862122a267
Update clockSkew javadoc according to implementation
...
Closes gh-10174
2021-11-19 08:13:12 +01:00
00fafd878c
Allow custom OAuth2ErrorHttpMessageConverter with OAuth2ErrorResponseErrorHandler
...
Closes gh-10425
2021-11-16 15:27:48 -06:00
498636e26b
Allow custom OAuth2ErrorHttpMessageConverter with OAuth2ErrorResponseErrorHandler
...
Closes gh-10425
2021-11-16 14:52:08 -06:00
7b03fb5321
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
2021-11-10 18:17:33 -07:00
f89a34c30b
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
2021-11-10 18:07:14 -07:00
72db6a20c9
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
2021-11-10 17:44:15 -07:00
538541bf40
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
2021-11-10 17:35:53 -07:00
2a6e00ceb0
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
2021-11-10 17:33:03 -07:00
076c01daef
Add missing @since 5.6
2021-11-09 14:07:05 -06:00
ea352e1c59
Add missing @since 5.6
2021-11-09 14:02:35 -06:00
db60df2f9c
Update to Spring Framework 6.0
...
Issue gh-10360
2021-11-01 09:02:42 -03:00
010f719344
Upgrade to JDK 17
...
Closes gh-10343
2021-11-01 09:02:42 -03:00
560962649e
Remove BlockHound dependency
...
The dependency is not needed anymore and there is a issue when using OpenJDK 13 or higher https://github.com/reactor/BlockHound/issues/33
Issue gh-10343
2021-11-01 09:02:42 -03:00
e4a76b0ec9
Checkstyle Fixes
...
- Javadoc tag ordering
- Private constructors before inner classes
Issue gh-10394
2021-10-22 10:19:34 -05:00
f836897190
Checkstyle Fixes
...
- Javadoc tag ordering
- Private constructors before inner classes
Issue gh-10394
2021-10-18 21:03:35 -05:00
0c088e278a
Update r2dbc-spi-test to 0.8.6.RELEASE
...
Closes gh-10393
2021-10-18 21:03:12 -05:00
0704c709dc
Revert "Lock Dependencies for Release"
...
This reverts commit 03c2c49d66
2021-10-18 17:38:07 -05:00
03c2c49d66
Lock Dependencies for Release
2021-10-18 17:34:42 -05:00
c83bd075a2
Revert "Lock Dependencies for Release"
...
This reverts commit bedb569f0d
2021-10-18 16:49:15 -05:00
bedb569f0d
Lock Dependencies for Release
2021-10-18 15:38:17 -05:00
b2db2bdb2a
Update r2dbc-spi-test to 0.8.6.RELEASE
...
Closes gh-10410
2021-10-18 14:20:00 -05:00
5c8cd23a2d
Revert "Lock dependencies"
...
This reverts commit fc53f81d2e
2021-10-18 10:48:23 -04:00
64e9ac995a
getClaimAsBoolean() should not be falsy
...
Closes gh-10148
2021-10-14 11:28:09 -05:00
fc53f81d2e
Lock dependencies
2021-10-14 15:44:09 +02:00
6db58cbf8a
Conditionally resolve bearer token from request parameters
...
Before this commit, the DefaultBearerTokenResolver unconditionally
resolved the request parameters to check whether multiple tokens
are present in the request and reject those requests as invalid.
This commit changes this behaviour to resolve the request parameters
only if parameter token is supported for the specific request
according to spec (RFC 6750).
Closes gh-10326
2021-10-13 17:10:50 -05:00
eb0597154d
Update JavaDoc according to implementation
...
Update ClaimAccessor#getClaimAsMap and ClaimAccessor#getClaimAsStringList
JavaDoc according to the current implementation
Closes gh-10117
2021-10-13 13:13:44 -06:00
0299808b05
Add ClaimAccessor tests
...
Add tests for ClaimAccessor#getClaimAsMap and ClaimAccessor#getClaimAsStringList
Issue gh-10117
2021-10-13 12:53:40 -06:00
125d33e3cf
Update JavaDoc according to implementation
...
Update ClaimAccessor#getClaimAsMap and ClaimAccessor#getClaimAsStringList
JavaDoc according to the current implementation
Closes gh-10117
2021-10-13 12:53:40 -06:00
e3abaf7999
Add OAuth2ErrorCodes.INVALID_REDIRECT_URI
...
Closes gh-10370
2021-10-13 14:12:44 -04:00
3b564b2026
Add parameters converter support to AbstractWebClientReactiveOAuth2AccessTokenResponseClient
...
This adds support for configuring NimbusJwtClientAuthenticationParametersConverter to any AbstractWebClientReactiveOAuth2AccessTokenResponseClient as an additional parameters converter, which in turns adds reactive support for jwt client authentication.
Closes gh-10146
2021-10-06 13:09:33 -05:00
9b24f66f1c
Implement reactive support for JWT as an Authorization Grant
...
Closes gh-10147
2021-10-05 16:09:24 -05:00
02b2fcc6f0
Restore ManagementConfigurationPlugin
...
Issue gh-9615
2021-10-05 11:23:29 -03:00
d2e5f2ae0d
Update Gradle to 7.2
...
Closes gh-9615
2021-10-04 15:19:40 -03:00
dc95d8d705
Fix OAuth2 Error Code
...
Closes gh-10319
2021-09-28 15:23:53 -06:00
4df9b4547f
Fix OAuth2 Error Code
...
Closes gh-10319
2021-09-28 14:56:25 -06:00
1f919bc791
Fix OAuth2 Error Code
...
Closes gh-10319
2021-09-28 14:55:37 -06:00
0f8fa36b93
Fix OAuth2 Error Code
...
Closes gh-10319
2021-09-28 13:24:51 -06:00
5556b821e3
Check for multiple access tokens per rfc 6750
...
Check for multiple access tokens on the ServerHttpRequest rather than get get first. If multiples are found throw a OAuth2AuthenticationException.
Closes gh-5708
2021-09-28 08:07:06 -06:00
97c949d929
oauth2Login() AuthenticationProvider's preserve root cause exception when rethrown
...
Closes gh-10228
2021-09-24 10:41:31 -04:00
5830fda2fa
Introduce JwtEncoder
...
Closes gh-9208
2021-09-24 05:13:40 -04:00
860690491a
Add setBodyExtractor
...
Closes gh-10260
2021-09-22 15:32:19 -06:00
7b599d4770
Share JWKSource Instances
...
Closes gh-10312
2021-09-22 13:28:08 -06:00
4e7c9bee46
Add Supplier JwtDecoders
...
Closes gh-9991
2021-09-22 10:58:55 -06:00
62db842865
Update com.nimbusds to 9.15
...
Closes gh-10287
2021-09-17 16:40:58 -05:00
171522ebf2
Replace usages of deprecated OAuth2IntrospectionClaimNames
...
Replace all usages of OAuth2IntrospectionClaimNames with
the suggested OAuth2TokenIntrospectionClaimNames.
There does not appear to be any further usages of OAuth2IntrospectionClaimNames,
so it should be suitable for removal when appropriate in accordance with the
deprecation policy.
2021-09-15 15:05:08 -06:00
7ccc915b2b
Ensuring consistency in error handling of opaque providers/managers
...
The OpaqueTokenAuthenticationProvider now propagates the cause of
introspection exceptions in the same way that the reactive
OpaqueTokenReactiveAuthenticationManager does.
Fixed a final field warning on both OpaqueTokenAuthenticationProvider
and OpaqueTokenReactiveAuthenticationManager.
2021-09-15 15:05:08 -06:00
e9d5bbba34
Fixed final field warnings in opaque token introspectors
2021-09-15 15:05:08 -06:00
95c2403968
Fixed potential NullPointerException in opaque token introspection
...
It appears Nimbus does not check the presence of the Content-Type
header before parsing it in some versions, and since prior to this
commit, the code is .toString()-ing the result, a malformed response
(such as that from a misbehaving cloud gateway) that does not include
a Content-Type would currently throw a NullPointerException.
In addition to this, I have added a little more information to the
log output for this module on the standard and reactive implementations
to aid in debugging authorization/authentication issues much more
easily.
2021-09-15 15:05:08 -06:00
dd43d9198b
Amended treatment of OAuth2 'iss' claim
...
Prior to this commit, the OAuth2 resource server code is failing any issuer
that is not a valid URL. This does not correspond to
https://datatracker.ietf.org/doc/html/rfc7662#page-7 which redirects to
https://datatracker.ietf.org/doc/html/rfc7519#section-4.1.1 , defining an
issuer as being a "StringOrURI", which is defined at
https://datatracker.ietf.org/doc/html/rfc7519#page-5 as being
an "arbitrary string value" that "MUST be a URI" only for
"any value containing a ':'".
The issue currently is that an issuer that is not a valid URL may be
provided, which will automatically result in the request being aborted
due to being invalid.
I have removed the check entirely, since while the claim could be invalid,
it is still a response that the OAuth2 introspection endpoint has provided.
In the liklihood that interpretations of this behaviour are different for
the OAuth2 server implementation in use, this currently stops Spring
Security from being able to be used at all without implementing a custom
introspector from scratch.
It is also worth noting that the spec does not specify whether it is
valid to normalize issuers or not if they are valid URLs. This may cause
other unintended side effects as a result of this change, so it is
safer to disable it entirely.
2021-09-15 15:05:08 -06:00
f1691370d6
Closes gh-10222
2021-09-03 10:58:01 -06:00
4302a86fad
Default principalClaimName to SUB
...
Closes gh-10214
2021-08-20 15:02:22 -06:00
9b4ddd7e0a
Make AuthorizationGrantTypeConverter support custom grant type
...
Closes gh-10155
2021-08-19 13:13:20 -04:00
8c1201ae49
Preserve Null Claim Values
...
Prior to this commit ClaimTypeConverter returned the claims with the
original value for all the claims with a null converted value.
The changes allows ClaimTypeConverter to overwrite and return claims
with converted value of null.
Closes gh-10135
2021-08-16 15:07:23 -06:00
ec6b2203ca
Revert "Lock Dependencies for Release"
...
This reverts commit 067bdd0dd9
2021-08-16 11:55:39 -04:00
067bdd0dd9
Lock Dependencies for Release
2021-08-16 11:12:40 -04:00
9925c6a4c0
Preserve Null Claim Values
...
Prior to this commit ClaimTypeConverter returned the claims with the
original value for all the claims with a null converted value.
The changes allows ClaimTypeConverter to overwrite and return claims
with converted value of null.
Closes gh-10135
2021-08-16 08:44:27 -06:00
f33598946f
Preserve Null Claim Values
...
Prior to this commit ClaimTypeConverter returned the claims with the
original value for all the claims with a null converted value.
The changes allows ClaimTypeConverter to overwrite and return claims
with converted value of null.
Closes gh-10135
2021-08-16 08:40:39 -06:00
b067aa4653
Preserve Null Claim Values
...
Prior to this commit ClaimTypeConverter returned the claims with the
original value for all the claims with a null converted value.
The changes allows ClaimTypeConverter to overwrite and return claims
with converted value of null.
Closes gh-10135
2021-08-16 08:22:31 -06:00
c706a103f9
Revert "Lock Dependencies"
...
This reverts commit 1533f098d2
2021-08-16 10:35:39 -03:00
1533f098d2
Lock Dependencies
2021-08-16 09:42:34 -03:00
cdc902d04d
Update SpringOpaqueTokenIntrospector
...
Issue gh-9647
2021-08-12 16:52:02 -06:00
3ff825576b
Move and rename OAuth2IntrospectionClaimAccessor/Names
...
Introduced OAuth2TokenIntrospectionClaimAccessor and OAuth2TokenIntrospectionClaimNames
with copied implementation from OAuth2IntrospectionClaimAccessor/Names.
OAuth2IntrospectionClaimAccessor and OAuth2IntrospectionClaimNames are
now deprecated.
Also method getScopes() returning list of scopes was introduced
and getScope() is now deprecated.
Closes gh-9647
2021-08-12 16:51:33 -06:00
b83a4c2985
Polish Preserve Null Claim Values
...
Preserves the original behavior of ClaimTypeConverter so that its
converters can maintain their default behavior of null meaning that
conversion failed.
Issue gh-10135
2021-08-12 10:22:44 -06:00
30a1c1af7c
Preserve Null Claim Values
...
Prior to this commit ClaimTypeConverter returned the claims with the
original value for all the claims with a null converted value.
The changes allows ClaimTypeConverter to overwrite and return claims
with converted value of null.
Closes gh-10135
2021-08-12 10:09:34 -06:00
6d6dc113d8
Add converter for authentication result in OAuth2LoginAuthenticationFilter
...
Closes gh-10033
2021-08-10 16:50:19 -05:00
fc553bf19a
Add gh-10130 to tests
2021-08-09 15:33:54 -05:00
acca3dba69
Polish gh-10131
2021-08-09 11:07:12 -05:00
044157061f
Enable customizing headers in token requests
...
Adds the possibility to customize the headers of the access token request in AbstractWebClientReactiveOAuth2AccessTokenResponseClient, similarly to what is done in the AbstractOAuth2AuthorizationGrantRequestEntityConverter.
Closes gh-10130
2021-08-09 10:50:37 -05:00
6370906ead
Add SpringOpaqueTokenIntrospector
...
Closes gh-9354
2021-07-26 10:50:50 -06:00
e1b6a7ba29
Revert "URL encode client credentials"
...
This reverts commit c0200512a7
2021-07-20 14:06:46 -05:00
f55247e28a
Revert "URL encode client credentials"
...
This reverts commit 6cafa48369
2021-07-20 14:05:55 -05:00
dc81e1c86b
Revert "URL encode client credentials"
...
This reverts commit 5243b1b8a8
2021-07-20 13:29:29 -05:00
dfebd6d9d4
Revert "URL encode client credentials"
...
This reverts commit e6c268add0
2021-07-20 12:59:44 -05:00
f5266c7511
Remove wildcard from generics in converter
...
Polish gh-9779
2021-07-12 23:42:47 -05:00
f73f213f50
Remove DependencySetPlugin
...
Closes gh-10070
2021-07-12 15:31:38 -05:00
98bd772b67
format
2021-07-09 14:49:47 -05:00
b6ff4d3674
Fix mockito UnnecessaryStubbingException
2021-07-09 14:35:10 -05:00
3e93b024d6
openrewrite Junit Migration
2021-07-09 14:32:52 -05:00
14240b2559
Remove Powermock
...
Powermock does not support JUnit5 yet, so we need to remove it
to support JUnit 5. Additionally, maintaining additional libraries
adds extra work for the team.
Mockito now supports final classes and static method mocking. This
commit replaces Powermock with mockito-inline.
Closes gh-6025
2021-07-08 12:35:32 -05:00
b0d22d1a03
Revert "Lock Dependencies"
...
This reverts commit eb300c78bd
2021-06-22 10:20:07 -03:00
c17767883f
Revert "Lock Dependencies for Release"
...
This reverts commit d71be4ca28
2021-06-21 12:57:05 -05:00
d71be4ca28
Lock Dependencies for Release
2021-06-21 10:33:10 -06:00
eb300c78bd
Lock Dependencies
2021-06-21 09:23:19 -03:00
1cd4ffeeb7
fix typo preventing full exception to be displayed in log
...
closes gh-9901
2021-06-17 08:40:55 -06:00
5fd81eeaf1
fix typo preventing full exception to be displayed in log
...
closes gh-9901
2021-06-17 08:38:24 -06:00
d4c3cea0e6
Update Copyright
...
Issue gh-9901
2021-06-17 08:34:31 -06:00
1d606ccedb
fix typo preventing full exception to be displayed in log
...
closes gh-9901
2021-06-17 08:33:32 -06:00
a332e2a728
Support additional client authentication methods
...
Closes gh-9780
2021-06-16 16:03:13 -05:00
9daf058a6e
Handle missing authorization endpoint uri
...
Closes gh-9795
2021-06-16 16:00:53 -05:00
839cc5e851
Remove validation for unsupported grant types
...
Closes gh-9828
2021-06-16 15:55:45 -05:00
807ce30948
Support additional client authentication methods
...
Closes gh-9780
2021-06-16 15:48:03 -05:00
0cba0874f3
Handle missing authorization endpoint uri
...
Closes gh-9795
2021-06-16 15:38:53 -05:00
9b05afdee8
Remove validation for unsupported grant types
...
Closes gh-9828
2021-06-16 14:54:33 -05:00
6fbd038111
Jwt client authentication converter detects new key
...
Closes gh-9814
2021-06-16 12:58:01 -04:00
eb6ed283e0
Jwt client authentication converter detects new key
...
Closes gh-9814
2021-06-16 12:55:12 -04:00
67a18f564a
Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository
...
Related to gh-9649
Closes gh-9857
2021-06-15 12:14:37 -05:00
b6ae11295f
Commit missing compile fix from cherry-pick conflict
2021-06-15 12:10:06 -05:00
ee9c8e2fd0
Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository
...
Related to gh-9649
Closes gh-9857
2021-06-15 12:06:22 -05:00
a108868529
Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository
...
Related to gh-9649
Closes gh-9857
Closes gh-9912
2021-06-15 11:44:34 -05:00
700bda68b7
Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository
...
Related to gh-9649
Closes gh-9857
2021-06-15 11:32:35 -05:00
aed993f3e5
Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository
...
Related to gh-9649
Closes gh-9857
2021-06-15 11:03:30 -05:00
c0200512a7
URL encode client credentials
...
Closes gh-9610
2021-06-08 08:27:20 -05:00
36805c7192
Revert "Use strict equality for timestamp comparison in JDBC tests"
...
This reverts commit 09a0670cb6
2021-06-08 10:13:53 +03:00
09a0670cb6
Use strict equality for timestamp comparison in JDBC tests
...
This is possible because of the update to HSQLDB 2.6.0
This reverts commit eb7b27695d
2021-06-08 09:31:55 +03:00
204a32aba8
Replace < and > with < and > in Javadoc
...
Closes gh-9847
2021-06-04 12:26:07 +03:00
6cafa48369
URL encode client credentials
...
Closes gh-9610
2021-06-03 09:39:00 -05:00
5243b1b8a8
URL encode client credentials
...
Closes gh-9610
2021-06-03 09:29:25 -05:00
e6c268add0
URL encode client credentials
...
Closes gh-9610
2021-06-03 09:12:18 -05:00
10de63ce89
Access Token Response supports any data type
...
Changed the converter used to convert a map into an OAuth2AccessTokenResponse to
support any object as the value, including json numbers and nested objects. Also
deprecated old classes/setters and added new classes/setters.
Closes gh-9685
2021-06-01 14:38:14 -05:00
ac9b137cad
URL encode client credentials
...
Closes gh-9610
2021-06-01 12:57:06 -05:00
6d816fbf85
Polish postLogoutRedirectUri encoding
...
Issue gh-9511
2021-05-26 14:38:20 -06:00
e52b104636
Encode postLogoutRedirectUri query params
...
Now encodes already encoded queryparameters in postLogoutRedirectUrl
correctly
Closes gh-9511
2021-05-26 14:36:05 -06:00
24c3c52254
Polish postLogoutRedirectUri encoding
...
Issue gh-9511
2021-05-26 13:58:28 -06:00
Joe Grandja
Marcus Da Coregio
Steve Riesenberg
Rivaldi
Josh Cummings
Michael
Jyri-Matti Lähteenmäki
Kuby
Jánoky László Viktor
Simone Giannino
Rob Winch
Eleftheria Stein
Jonas Erbe
Dávid Kováč
Khaled Hamlaoui
Philipp Neuschwander
Darren Forsythe
bishoy basily
Ashley Scopes
Ayush Kohli
/usr/local/ΕΨΗΕΛΩΝ
Rujun Chen
Fabio Guenci
Vincent Boulaye
Arnaud Mergey
Steve Riesenberg
Hans Hosea Schaefer