Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 15:20:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,886 Commits 33 Branches 337 Tags
Commit Graph

97 Commits

Author SHA1 Message Date
Joe Grandja
1d74d556c2 Revert "Lock Dependency Versions for 5.4.0-RC1" 
This reverts commit f3a1e5d40c11169d4ec6c50eba30cf4ed3ba2851.
 2020-08-05 14:59:11 -04:00
Joe Grandja
f3a1e5d40c Lock Dependency Versions for 5.4.0-RC1 2020-08-05 13:46:11 -04:00
Joe Grandja
3bc0b8c144 Revert "Fix snapshot build failure related to reactor-netty" 
This reverts commit f37714a26fb2cc8a93cb1d5259a00c4c0934dd59.
 2020-08-04 14:24:32 -04:00
Joe Grandja
f37714a26f Fix snapshot build failure related to reactor-netty 
Closes gh-8909
 2020-08-04 14:17:03 -04:00
Josh Cummings
f6e47830fe
Remove unused import 
Issue gh-8589
 2020-07-31 08:37:32 -06:00
Josh Cummings
90e5f45e1f
Polish to Avoid NPE 
Issue gh-5648

Co-authored-by: MattyA <mat.auburn@gmail.com>
 2020-07-30 16:56:41 -06:00
Josh Cummings
b2728059ae
Additional Jwt Validation Debug Messages 
Closes gh-8589

Co-authored-by: MattyA <mat.auburn@gmail.com>
 2020-07-30 16:56:37 -06:00
Josh Cummings
146d0b6358
Revert "Lock Dependency Versions for 5.4.0-M2" 
This reverts commit 68538897c83a7ce8db0ec7275dbd10b1a548498f.
 2020-07-01 13:11:50 -06:00
Josh Cummings
68538897c8
Lock Dependency Versions for 5.4.0-M2 2020-07-01 12:40:29 -06:00
Jan Oopkaup
d31fff11b3
Add Post-Processor for JWTProcessor Configuration 
Extends all existing builders in NimbusJwtDecoder and NimbusReactiveJwtDecoder with a
post-processor hook to apply changes on the JWTProcessor used for token verification.
Test cases added show how this is used to configure the JWTProcessor to allow additional
JWT typ headers.

Closes gh-8730
 2020-06-26 07:52:16 -06:00
Josh Cummings
aa84c79e87
Use Nimbus Multiple Algorithm Support 
Closes gh-8623
 2020-06-02 12:49:21 -06:00
Joe Grandja
86ca6b013c Unlock dependencies 
This reverts commit 206960cf448b38e643045468b2291e66bfbbd4a9.
 2020-05-06 17:27:35 -04:00
Joe Grandja
206960cf44 Lock dependencies for 5.4.0-M1 2020-05-06 17:13:04 -04:00
Josh Cummings
10aa9743ed
Polish NimbusJwtDecoder 
- Follow convention to prefix member variable references with "this."
- Reduce stack trace when IOException is thrown
- Name tests to follow conventions

Issue gh-8332
 2020-04-10 16:45:01 -06:00
Mykyta Bezverkhyi
9133cc24e4
Add Cache to NimbusJwtDecoderJwkSetUriBuilder 
PR gh-8332
 2020-04-10 16:45:01 -06:00
Josh Cummings
6eadf7b140
Unlock dependencies for 5.3.0.RELEASE 
This reverts commit 147d7dadd7e449e1e8347f9a0b3959c7abf095dc.
 2020-03-04 12:02:48 -07:00
Josh Cummings
147d7dadd7
Lock dependencies for 5.3.0.RELEASE 2020-03-04 10:28:39 -07:00
Josh Cummings
283e451cad
Update JwtDecoders tests 
Issue gh-7860
 2020-02-25 13:33:20 -07:00
Zeeshan Adnan
431cd6000b
Add JwtClaimValidator 
Fixes gh-7860
 2020-02-25 13:32:41 -07:00
Joe Grandja
fa73b1397a Add missing @FunctionalInterface in oauth2 modules 
Fixes gh-8020
 2020-02-24 11:53:30 -05:00
Eleftheria Stein
84b8a5abd7 Unlock dependencies for next development version 
This reverts commit 064616f1ef077cf23028d64b61b1452be0ec9eb1.
 2020-02-05 15:53:04 +01:00
Eleftheria Stein
064616f1ef Lock dependencies for 5.3.0.RC1 2020-02-05 10:20:05 +01:00
Josh Cummings
0c3754c811
Add BadJwtException 
Updated NimbusJwtDecoder and NimbusReactiveJwtDecoder to throw.
Updated JwtAuthenticationProvider and JwtReactiveAuthenticationManager
to catch.

Fixes gh-7885
 2020-02-04 17:33:08 -07:00
Eleftheria Stein
fcc6457bef Unlock dependencies for next development version 
This reverts commit 93acf8f0f11e2811b7d4241b26f712674978f3f7.
 2020-01-08 22:15:17 +01:00
Eleftheria Stein
93acf8f0f1 Lock dependencies for 5.3.0.M1 2020-01-08 19:41:10 +01:00
Rafiullah Hamedy
58ca81d500 Make jwks_uri optional for RFC 8414 and Required for OpenID Connect 
OpenID Connect Discovery 1.0 expects the OpenId Provider Metadata 
response is expected to return a valid jwks_uri, however, this field is 
optional in the Authorization Server Metadata response as per RFC 8414
specification.

Fixes gh-7512
 2019-11-11 10:34:06 -07:00
Rob Winch
00f8991fac Merge Remove Redudant Throws 
Fixes gh-7301
 2019-09-19 11:04:53 -05:00
Josh Cummings
05caf3d8fb
Use Jwt.Builder 
Fixes gh-7443
 2019-09-16 14:00:25 -06:00
Josh Cummings
40901fe072
Jwt.Builder#notBefore Value Is Instant 
Fixes gh-7442
 2019-09-16 14:00:25 -06:00
Bouke Nijhuis
dbd1819ea4 add media type jwk-set+json to accept header 
Fixes gh-7290
 2019-09-03 14:12:50 -04:00
kostya05983
f6c650db47
Replace Streams with Loops 
First version of replacing streams

fix wwwAuthenticate and codestyle

fix errors in implementation to pass tests

Fix review notes

Remove uneccessary final to align with cb

Short circuit way to authorize

Simplify error message, make code readably

Return error while duplicate key found

Delete check for duplicate, checkstyle issues

Return duplicate error

Fixes gh-7154
 2019-09-02 15:30:48 -06:00
Thomas Vitale
505882c944 Consolidate shared code between JwtDecoders and ReactiveJwtDecoders 
Extract duplicated code from JwtDecoders and ReactiveJwtDecoders into a
package-private class.

Fixes gh-7263
 2019-08-27 09:27:41 -06:00
Lars Grefer
95511331fa fix checkstyle 2019-08-26 22:42:26 +02:00
Lars Grefer
34dd5fea30 Remove redundant throws clauses 
Removes exceptions that are declared in a method's signature but never thrown by the method itself or its implementations/derivatives.
 2019-08-23 01:03:54 +02:00
Josh Cummings
0209fbad08 Multiple JWS Algorithms 
Fixes: gh-6883
 2019-08-20 14:19:59 -04:00
Josh Cummings
aa026f8526
Nimbus JWK Set Builders Take SignatureAlgorithm 
Fixes gh-7270
 2019-08-17 01:10:12 -06:00
Josh Cummings
efe8205985
Revert "Nimbus JWK Set Configs Take SignatureAlgorithm" 
This reverts commit 9617ff60542d91d63bf6e2713300392a920c0b54.
 2019-08-16 17:33:09 -06:00
Josh Cummings
9617ff6054
Nimbus JWK Set Configs Take SignatureAlgorithm 
Fixes gh-7270
 2019-08-16 14:49:19 -06:00
Lars Grefer
ff1070df36 remove redundant modifiers found by checkstyle 2019-08-10 00:18:56 +02:00
Lars Grefer
05f42a4995 Remove unused imports 2019-08-08 14:22:31 -04:00
Eddú Meléndez
50adb6abcb Fix javadoc 2019-07-31 15:36:30 -04:00
Josh Cummings
ce79ef2634 Single-key Key Selector 
Fixes: gh-7049
Fixes: gh-7056
 2019-06-28 15:12:00 -06:00
Josh Cummings
37d108ccc2
Remove SignedJWT Check 
JWTProcessor already does sufficient checking to confirm that the JWT
is of the appropriate type.

Fixes: gh-7034
 2019-06-25 16:49:29 -06:00
Josh Cummings
1739ef8d3c
Polish ClientRegistrations, (Reactive)JwtDecoders 
Simplifed some of the branching logic in the implementations. Updated
the JavaDocs. Simplified some of the test support.

Issue: gh-6500
 2019-06-10 10:31:30 -06:00
Rafiullah Hamedy
f5b7706942
Support for OAuth 2.0 Authorization Server Metadata 
Added support for OAuth 2.0 Authorization Server Metadata as per the
RFC 8414 specification. Updated the existing implementation of OpenId to
comply with the Compatibility Section of RFC 8414 specification.

Fixes: gh-6500
 2019-06-10 10:31:30 -06:00
Joe Grandja
aa767ec8bf Externalize coercion in ClaimAccessor 
Fixes gh-6245
 2019-06-04 17:16:39 -04:00
Josh Cummings
d0f5b42884
Mock Jwt Test Support and Jwt.Builder Polish 
Simplified the initial support to introduce fewer classes and only the
features described in the ticket.

Changed tests to align with existing patterns in the repository.

Added JavaDoc to remaining public methods introduced for this feature.

Issue: gh-6634
Issue: gh-6851
 2019-05-22 14:23:02 -06:00
Jérôme Wacongne
e59d8a529b
Mock Jwt Test Support and Jwt.Builder 
Fixes: gh-6634
Fixes: gh-6851
 2019-05-22 14:23:02 -06:00
Sharad Alury
2850b273ea Reactive JwkSource Builder Parameter Type 
Changed the parameter type from JWT to SignedJWT

Fixes: gh-6771
 2019-05-01 09:10:17 -06:00
Joe Grandja
bed3371b80 Support symmetric key for JwtDecoder 
Fixes gh-5465
 2019-04-12 13:21:50 -04:00