Commit Graph

6404 Commits

Author SHA1 Message Date
Joe Grandja 8527daa22a Make OAuth2UserService Generic using OAuth2AuthorizedClient and OAuth2User types
Fixes gh-4706
2017-10-27 11:49:29 -04:00
Joe Grandja 3b80b6ded8 Move AuthorizationRequestUriBuilder to oauth2-client
Fixes gh-4703
2017-10-26 21:23:06 -04:00
Rob Winch 747473257f Use ReactorSecurityContextHolder
Issue gh-4713
2017-10-26 20:11:42 -05:00
Rob Winch 9ea4df5b5d ReactiveSecurityContextHolder
Fixes gh-4713
2017-10-26 20:11:42 -05:00
Rob Winch e23134c3ed Add LogoutBuilder ServerLogoutSuccessHandler
Fixes gh-4714
2017-10-26 20:11:42 -05:00
Rob Winch 399da1ecad SecurityContextImpl constructor
Fixes gh-4712
2017-10-26 20:11:42 -05:00
Joe Grandja ef197d8215 Move JwtDecoderRegistry to oauth2.client.jwt package
Fixes gh-4705
2017-10-26 21:06:28 -04:00
Joe Grandja 70543dcb30 Move oidc package in oauth2-core and oauth2-client
Fixes gh-4710
2017-10-26 21:06:28 -04:00
Rob Winch 86875e117b Prevent ServerHttpSecurity from being built twice
Issue: gh-4711
2017-10-26 19:48:38 -05:00
Rob Winch 36501f4530 Remove ServerHttpSecurity duplicate build
WebFluxSecurityConfiguration invoked build twice
which caused each WebFilter to be added twice

Fixes gh-4711
2017-10-26 19:48:32 -05:00
Rob Winch aa734103c4 ignore s101 metadata 2017-10-26 19:22:39 -05:00
Joe Grandja c5da9e08fd Move AuthorizedClient to root package oauth2.client
Fixes gh-4709
2017-10-26 15:51:26 -04:00
Joe Grandja ef83bc8dd7 Move package client.authentication.userinfo -> client.userinfo
Fixes gh-4708
2017-10-26 15:39:04 -04:00
Joe Grandja 35fb96a2f8 Move OAuth2AuthenticationException to oauth2-core
Fixes gh-4707
2017-10-26 15:12:03 -04:00
Joe Grandja 027ea78dab Revert "Move OAuth2LoginAuthenticationProvider into userinfo package"
This reverts commit 54547f35b7.
2017-10-26 14:55:25 -04:00
Joe Grandja 942b647c0d OAuth2LoginAuthenticationFilter processes uri /login/oauth2/code/*
Issue gh-4687
2017-10-26 14:20:19 -04:00
Rob Winch 54547f35b7 Move OAuth2LoginAuthenticationProvider into userinfo package
Fix package tangles. OAuth2LoginAuthenticationProvider requires
OAuth2UserService which is in a child package. We should move
OAuth2LoginAuthenticationProvider to the same package.

Issue: gh-4614
2017-10-26 11:22:21 -05:00
Joe Grandja 18dd49b47c Validate ID Token
Fixes gh-4440
2017-10-26 11:36:44 -04:00
Johnny Lim 875aae012b Polish 2017-10-26 07:50:32 -05:00
Joe Grandja d0a4e49870 Map custom OAuth2User types using String
Fixes gh-4691
2017-10-25 17:13:44 -04:00
Joe Grandja 1a3b9c1f3f Polish UserInfoRetriever
Issue gh-4695
2017-10-25 16:48:50 -04:00
Joe Grandja 43d201fa3e Move OAuth2AuthenticationToken
Fixes gh-4697
2017-10-25 16:17:49 -04:00
Joe Grandja 9fbea5a11e Refactor SecurityTokenRepository
Fixes gh-4650
2017-10-25 16:00:34 -04:00
Joe Grandja 5237c6e01b Remove AuthorizedClient.getAuthorizedScopes()
Fixes gh-4696
2017-10-25 14:06:34 -04:00
Joe Grandja 5a584e5ccb Rename OAuth2/OIDC ClientAuthenticationToken -> AuthorizedClient
Fixes gh-4695
2017-10-25 13:47:00 -04:00
Joe Grandja 9b670882b7 Rename SecurityToken -> AbstractOAuth2Token
Fixes gh-4646
2017-10-25 10:29:34 -04:00
Rob Winch 44b41e78cd Flux member variables in favor of Collections
Fix gh-4694
2017-10-25 07:41:37 -05:00
Rob Winch 3b85512e48 Polish
Issue gh-4694
2017-10-25 07:41:29 -05:00
Rob Winch fcc1152f78 WebFilterChainProxy not matched continues WebFilterChain
Fixes gh-4668
2017-10-24 16:22:07 -05:00
Rob Winch 38a8189a62 DelegatingApplicationListener uses CopyOnWriteArrayList
Fixes gh-4416
2017-10-24 15:35:04 -05:00
Rob Winch 8fd0ba3bc4 Fix README authorization callback URLs
Issue gh-4659
2017-10-24 15:14:58 -05:00
Rob Winch 1bd826897f UserInfoRetriever.retrieve accepts the type to convert
Fixes gh-4688
2017-10-24 15:14:58 -05:00
Joe Grandja 4dbbcabacf Rename AuthorizationCodeAuthenticationProvider -> OAuth2LoginAuthenticationProvider
Fixes gh-4690
2017-10-24 15:24:26 -04:00
Joe Grandja 049080290e Refactor OAuth2 AuthenticationProvider's
Fixes gh-4689
2017-10-24 15:24:26 -04:00
Joe Grandja 0fb32a052e OAuth2LoginAuthenticationFilter processes uri /login/oauth2/*
Fixes gh-4687
2017-10-24 15:24:26 -04:00
Joe Grandja 4ae24f2fbe Rename AuthorizationCodeAuthenticationFilter -> OAuth2LoginAuthenticationFilter
Fixes gh-4686
2017-10-24 15:24:25 -04:00
Joe Grandja 09a94a4ef4 Merge AuthorizationCodeGrantConfigurer -> OAuth2LoginConfigurer
Fixes gh-4684
2017-10-24 15:24:25 -04:00
Kazuki Shimizu a7ba02bdef Polishing the Pbkdf2PasswordEncoder's javadoc 2017-10-24 12:49:01 -05:00
Rob Winch 6532bac295 Update Md4PasswordEncoder Javadoc
Include format and migration information.

Issue: gh-4674
2017-10-24 10:23:38 -05:00
Rob Winch 03ebf19878 Update MessageDigestPasswordEncoder javadoc
Include format and migration information

Issue: gh-4674
2017-10-24 10:23:27 -05:00
Rob Winch 870b8bf9b2 Pbkdf2PasswordEncoder supports Base64 encoding
Fixes gh-4683
2017-10-24 08:47:04 -05:00
Rob Winch fe8f3afbaf Pbkdf2PasswordEncoder allows custom SecretKeyFactory
Fixes gh-2742
2017-10-24 08:34:30 -05:00
Rob Winch b91aa19b35 Doc DelegatingPasswordEncoder is default
Fixes gh-gh-2775
2017-10-24 07:56:28 -05:00
Rob Winch 8291f20796 DaoAuthenticationProvider uses DelegatingPasswordEncoder
This means that passwords will be encoded with BCrypt by default

Fixes: gh-2775
2017-10-24 07:56:28 -05:00
Rob Winch d19b222b55 UserDetailsRepositoryReactiveAuthenticationManager uses DelegatingPasswordEncoder
This means passwords will be encoded with BCrypt by default

Issue: gh-2775
2017-10-24 07:56:28 -05:00
Rob Winch cdc992b132 Remove SaltSource
Fixes gh-4681
2017-10-24 07:56:28 -05:00
Rob Winch d832213c6c Add ldap to PasswordEncoderFactories
Issue: gh-4674
2017-10-24 07:56:28 -05:00
Rob Winch d83f4c4aa5 Add SHA-256 to PasswordEncoderFactories
Issue: gh-4674
2017-10-24 07:56:28 -05:00
Rob Winch 5f2785d39c Add SHA-1 to PasswordEncoderFactories
Issue: gh-4674
2017-10-24 07:56:28 -05:00
Rob Winch 63e061f4d1 Add MD5 to PasswordEncoderFactories
Issue: gh-4674
2017-10-24 07:56:28 -05:00