214 Commits

Author SHA1 Message Date
Rob Winch
0dc80aed40 Flatten ServerHttpSecurity.oauth2()
Fixes: gh-5712
2018-08-21 15:48:41 -05:00
Rob Winch
7c5c274854 Add authcodegrant-webflux sample
Issue: gh-5620
2018-08-19 21:28:08 -05:00
Rob Winch
afa2d9cbc7 Remove ExchangeFilterFunctions
Issue: gh-5612
2018-07-30 15:34:44 -05:00
Rob Winch
262c1a77c6 Remove SecurityHeaders
We no longer need this since Spring Framework now provides
HttpHeaders.setBearerAuth

Issue: gh-5612
2018-07-30 15:34:40 -05:00
Rob Winch
c26d7dc859 Update to Spring Boot 2.1.0.M1
Fixes: gh-5613
2018-07-30 15:34:35 -05:00
Rob Winch
dd1fa7f709 Add Sample
Issue: gh-5605
2018-07-30 11:39:50 -05:00
Rob Winch
9ababf4168 Rename to ServerOAuth2AuthorizedClientExchangeFilterFunction
Rename OAuth2AuthorizedClientExchangeFilterFunction to
ServerOAuth2AuthorizedClientExchangeFilterFunction->

Issue: gh-5386
2018-07-20 11:48:19 -05:00
Joe Grandja
9a144d742e Use OAuth2AuthorizedClientRepository in filters and resolver
Fixes gh-5544
2018-07-19 22:57:10 -04:00
Josh Cummings
40ccdb93f7 Resource Server Jwt Support
Introducing initial support for Jwt-Encoded Bearer Token authorization
with remote JWK set signature verification.

High-level features include:

- Accepting bearer tokens as headers and form or query parameters
- Verifying signatures from a remote Jwk set

And:

- A DSL for easy configuration
- A sample to demonstrate usage

Fixes: gh-5128
Fixes: gh-5125
Fixes: gh-5121
Fixes: gh-5130
Fixes: gh-5226
Fixes: gh-5237
2018-07-16 10:40:46 -05:00
Joe Grandja
779597af2a Add support for custom authorization request parameters
Fixes gh-4911
2018-07-16 09:39:06 -05:00
Rob Winch
05ed028f9d Modernize Default Log In Page
Fixes: gh-5515
2018-07-15 19:43:42 -05:00
Joe Grandja
4fc6d96073 Rename @OAuth2Client to @RegisteredOAuth2AuthorizedClient
Fixes gh-5360
2018-06-08 17:33:21 -04:00
Joe Grandja
81e19ad85e Move oauth2 samples under boot directory
Issue gh-5397
2018-06-06 09:37:36 -04:00
Rob Winch
a9e6d7606e Update WebFlux samples to use Spring Boot
Fixes: gh-5411
2018-06-05 11:31:15 -05:00
Joe Grandja
de95583509 Move oauth2login samples under oauth2 directory
Fixes gh-5397
2018-05-30 12:16:05 -04:00
Joe Grandja
f9f74b1bfc Simplify oauth2login-webflux sample
Fixes gh-5396
2018-05-30 11:53:25 -04:00
Joe Grandja
6c13e18483 Simplify oauth2login sample
Fixes gh-5384
2018-05-30 11:29:28 -04:00
Rob Winch
ecf6caa896 Add missing @Configuration for WebClientConfig
Issue: gh-5388
2018-05-25 12:48:42 -05:00
Rob Winch
68117d7b0b Samples use OAuth2AuthorizedClientExchangeFilterFunction
Issue: gh-5386
2018-05-25 12:25:13 -05:00
Rob Winch
bc3467c118 Add oauth2login-webflux sample
Issue: gh-4807
2018-05-11 04:19:50 -05:00
Joe Grandja
526e0fdd4f Add OAuth2 Client HandlerMethodArgumentResolver
Fixes gh-4651
2018-04-02 12:13:52 -04:00
Joe Grandja
982fc360b2 Add support for authorization_code grant
Fixes gh-4928
2018-04-02 12:13:06 -04:00
Joe Grandja
59cef7d339 HttpSessionOAuth2AuthorizationRequestRepository handle multiple OAuth2AuthorizationRequest per session
Fixes gh-5110
2018-03-20 22:14:48 -05:00
Joe Grandja
0c708976c6 Update oauth2Login sample to use master
Fixes gh-4910
2017-12-12 15:31:00 -05:00
Joe Grandja
86824030f2 Update oauth2Login sample guide
Fixes gh-4858
2017-11-22 14:47:31 -05:00
Johnny Lim
701933c7f7 Fix copyright start years
See gh-4655
See gh-4725
2017-11-17 10:14:32 -06:00
Joe Grandja
4039cd285e oauth2Login sample depends on security RC1
Fixes gh-4828
2017-11-15 14:51:35 -05:00
Joe Grandja
0d33864b5a Remove redundant 'provider' property from oauth2Login sample config
Fixes gh-4817
2017-11-13 17:32:44 -05:00
Joe Grandja
3661cb58d6 Polish oauth2Login sample integration test
Fixes gh-4811
2017-11-12 12:59:58 -05:00
Joe Grandja
1dac191b19 Remove custom security config from oauth2Login sample
Fixes gh-4808
2017-11-11 21:15:01 -05:00
Joe Grandja
cd9e712117 Remove GlobalAuthenticationConfigurerAdapter from oauth2Login sample
Fixes gh-4665
2017-11-11 21:15:01 -05:00
Rob Winch
f1245059ff Consistent Thymeleaf Version in Boot Samples
Issue gh-4802
2017-11-08 09:04:50 -06:00
Joe Grandja
a261c9a047 Polish OAuth2LoginConfigurer
Fixes gh-4747
2017-10-29 21:33:51 -04:00
Joe Grandja
c3d2effc1d Polish OAuth2AuthorizedClientService
Fixes gh-4746
2017-10-29 20:25:03 -04:00
Joe Grandja
e4887057bc Rename AuthorizationGrantTokenExchanger -> OAuth2AccessTokenResponseClient
Fixes gh-4741
2017-10-29 17:49:15 -04:00
Joe Grandja
8e0d88d3e9 Remove GitHubOAuth2User from oauth2Login sample
Fixes gh-4732
2017-10-28 18:25:45 -04:00
Joe Grandja
0c68eb1821 Re-factor OAuth2AuthorizationCodeAuthenticationToken
Fixes gh-4730
2017-10-28 17:15:31 -04:00
Joe Grandja
64d8c8b8a9 Re-factor AuthorizationGrantTokenExchanger
Fixes gh-4728
2017-10-28 17:12:14 -04:00
Joe Grandja
9afefef3b9 Polish class names in oauth2-client
Fixes gh-4722
2017-10-27 21:00:52 -04:00
Joe Grandja
34668e05af Polish class names in oauth2-core
Fixes gh-4720
2017-10-27 20:42:58 -04:00
Joe Grandja
ef83bc8dd7 Move package client.authentication.userinfo -> client.userinfo
Fixes gh-4708
2017-10-26 15:39:04 -04:00
Joe Grandja
942b647c0d OAuth2LoginAuthenticationFilter processes uri /login/oauth2/code/*
Issue gh-4687
2017-10-26 14:20:19 -04:00
Joe Grandja
43d201fa3e Move OAuth2AuthenticationToken
Fixes gh-4697
2017-10-25 16:17:49 -04:00
Joe Grandja
5a584e5ccb Rename OAuth2/OIDC ClientAuthenticationToken -> AuthorizedClient
Fixes gh-4695
2017-10-25 13:47:00 -04:00
Rob Winch
8fd0ba3bc4 Fix README authorization callback URLs
Issue gh-4659
2017-10-24 15:14:58 -05:00
Joe Grandja
049080290e Refactor OAuth2 AuthenticationProvider's
Fixes gh-4689
2017-10-24 15:24:26 -04:00
Joe Grandja
0fb32a052e OAuth2LoginAuthenticationFilter processes uri /login/oauth2/*
Fixes gh-4687
2017-10-24 15:24:26 -04:00
Joe Grandja
4ae24f2fbe Rename AuthorizationCodeAuthenticationFilter -> OAuth2LoginAuthenticationFilter
Fixes gh-4686
2017-10-24 15:24:25 -04:00
Rob Winch
8291f20796 DaoAuthenticationProvider uses DelegatingPasswordEncoder
This means that passwords will be encoded with BCrypt by default

Fixes: gh-2775
2017-10-24 07:56:28 -05:00
Joe Grandja
f0c9f85292 spring-security-jwt-jose -> spring-security-oauth2-jose
Fixes gh-4595
2017-10-23 09:04:01 -04:00