Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
17,099 Commits 32 Branches 333 Tags 109 MiB
Commit Graph

1270 Commits

Author SHA1 Message Date
JANG 1695d03b72
Assert WebSession is not null 
Issue gh-14975
 2024-05-29 14:55:37 -05:00
Josh Cummings dd5edeb255
Preserve ArrayListFromString Type 
Closes gh-15165
 2024-05-28 12:43:57 -06:00
Marcus Hert Da Coregio 08f11f06ab Revert unnecessary commits from main 
Issue gh-15016
 2024-05-08 13:49:18 -03:00
Steve Riesenberg 2598bf8c37
Polish gh-14859 2024-04-29 15:07:45 -05:00
Crain-32 d0adb2aa70
Simplify Disabling Encoding Client ID and Secret 
Closes gh-11440
 2024-04-29 14:46:12 -05:00
Steve Riesenberg 05d3beb6a8
Polish gh-13648 2024-04-18 16:17:49 -05:00
ch4mpy b69939c1e5
Getters for OAuth2AuthorizedClientId properties 
Expose getters for principalName and clientRegistrationId which compose an OAuth2AuthorizedClientId
 2024-04-18 16:10:39 -05:00
MrJovanovic13 24fd19b107 Add Default Timeout to JwtDecoders RestTemplate 
Closes gh-14269
 2024-04-18 14:40:18 -06:00
Josh Cummings 8dd28b797a
Update to BouncyCastle 1.78 
Closes gh-14910
 2024-04-15 15:32:08 -06:00
Josh Cummings b1b84f9b8a
Revert "Support overriding RestOperations in OidcIdTokenDecoderFactory" 
This reverts commit 9c352c4b4b.

Issue gh-14178
 2024-04-11 14:29:59 -06:00
Josh Cummings 5a50bfccac
Revert "Support overriding WebClient in ReactiveOidcIdTokenDecoderFactory" 
This reverts commit 0041c658de.

Issue gh-14178
 2024-04-11 14:29:59 -06:00
Joe Grandja 9a7f1aa4d9 Add ClientAuthenticationMethod constants tls_client_auth and self_signed_tls_client_auth 
Closes gh-14889
 2024-04-11 15:15:11 -04:00
Joe Grandja 644cfa9f87 Add Jwt validator for the X509Certificate thumbprint claim 
Closes gh-10538
 2024-04-11 12:35:52 -04:00
Josh Cummings d269176781
Merge branch '6.2.x' 2024-04-04 17:07:03 -06:00
Josh Cummings 01f299f7ab
Merge branch '6.1.x' into 6.2.x 
Closes gh-14848
 2024-04-04 16:56:11 -06:00
Josh Cummings ef00312991
Merge branch '5.8.x' into 6.1.x 
Closes gh-14847
 2024-04-04 16:55:52 -06:00
Josh Cummings 0af0751cfd
Treat Map Method Parameter as Immutable 
Closes gh-14802
 2024-04-04 16:44:14 -06:00
Josh Cummings ee42ad2c8c
Polish JwtValidators 
Closes gh-14831
 2024-04-02 16:04:43 -06:00
Max Batischev ff19f04fca Add JwtValidators append to default 
Implemented simplified creation of default OAuth2TokenValidator with additional validators.

Closes gh-14831
 2024-04-02 14:41:35 -07:00
Josh Cummings b648a24f5f
Polish Type Conversion API 
Issue gh-6245
 2024-04-01 16:14:21 -06:00
Steve Riesenberg 0078462e41
Make constant public 
Issue gh-5199
 2024-03-15 15:27:42 -05:00
Steve Riesenberg 9728f28380
Add additional constants to OAuth2ParameterNames 
These additional constants are used for optional parameters in the
Access Token Request for the OAuth 2.0 Token Exchange Grant.

Issue gh-5199
 2024-03-15 15:27:42 -05:00
Steve Riesenberg e52dd81d03
Customize mapping the OidcUser 
Closes gh-14672
 2024-03-07 15:45:39 -06:00
Steve Riesenberg 85c3d0ab13 Add reactive support for OAuth 2.0 Token Exchange Grant 
Issue gh-5199
 2024-03-06 16:02:58 -06:00
Steve Riesenberg d2fe9094a9 Add servlet support for OAuth 2.0 Token Exchange Grant 
Issue gh-5199
 2024-03-06 16:02:58 -06:00
greg.lee 07ac0b616b
Introduce Customizable AuthorizationFailureHandler 
Closes gh-13793
 2024-03-01 13:11:46 -06:00
Marcus Hert Da Coregio 21580fd27d Merge branch '6.2.x' 2024-02-16 13:31:20 -03:00
Marcus Hert Da Coregio 15306c1007 Merge branch '6.1.x' into 6.2.x 2024-02-16 13:21:15 -03:00
Rob Winch 750cb30ce4 Add AuthenticationTrustResolver.isAuthenticated 2024-02-16 13:08:29 -03:00
Steve Riesenberg 96e3e4f8b1
Customize when user info is called 
Closes gh-13259
 2024-02-13 12:34:20 -06:00
ubaid4j e77126740d Add ReactiveOidcIdTokenDecoderFactory#setWebClientResolver 
Closes gh-13274
 2024-02-01 10:04:06 -07:00
Josh Cummings d7599ab192 Polish setAttributesConverter 
- Add Tests
- Add Reactive Support

Issue gh-14186
 2024-01-30 14:37:20 -07:00
ahmd-nabil 04f0f2597a Polish DefaultOAuth2UserService 
Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
 2024-01-30 14:37:20 -07:00
ahmd-nabil d9d22c75a2 Add support for nested username attribute in DefaultOAuth2User 
Closes gh-14186

Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
 2024-01-30 14:37:20 -07:00
Josh Cummings 01b7ad42ec
Merge branch '6.2.x' 2024-01-25 17:33:33 -07:00
Josh Cummings 84c45adc70
Merge branch '6.1.x' into 6.2.x 
Closes gh-14496
 2024-01-25 17:33:15 -07:00
Josh Cummings 44f22ee5cf
Merge branch '5.8.x' into 6.1.x 
Closes gh-14495
 2024-01-25 17:32:57 -07:00
Hans Lindner ca10187fd1 Enhance JWT decoding error handling 
Previously, the `decode` method threw a `JwtException` directly when encountering an unsupported algorithm or any exception during parsing. This commit introduces a more robust error handling mechanism. Now, instead of throwing exceptions directly, it returns a `Mono.error()` with a `BadJwtException` containing detailed error information. This approach provides more flexibility and allows the caller to handle errors in a more granular way, by being able to use project reactors onError functionality.

Closes gh-14467
 2024-01-25 17:32:10 -07:00
Josh Cummings 7ee974445b
Update Checkstyle 
Issue gh-14178
 2024-01-22 08:44:54 -07:00
Josh Cummings 04394a63cd
Update Formatting 
Issue gh-14178
 2024-01-22 08:26:25 -07:00
Josh Cummings 1e90bdfc0b
Update Copyright 
Issue gh-14178
 2024-01-19 09:26:04 -07:00
Armin Krezović 9c352c4b4b Support overriding RestOperations in OidcIdTokenDecoderFactory 
Closes gh-14178
 2024-01-19 09:24:56 -07:00
Armin Krezović 0041c658de Support overriding WebClient in ReactiveOidcIdTokenDecoderFactory 
Closes gh-14178
 2024-01-19 09:24:56 -07:00
Marcus Hert Da Coregio 9135cb4fbf Merge branch '6.2.x' 
Closes gh-14406
 2024-01-05 07:53:50 -03:00
Marcus Hert Da Coregio acaf9ce7e9 Merge branch '6.1.x' into 6.2.x 
Closes gh-14405
 2024-01-05 07:53:43 -03:00
Marcus Hert Da Coregio d032b23ab7 Make OAuth2AuthorizationExchange serializable 
Closes gh-14402
 2024-01-05 07:53:28 -03:00
Josh Cummings 1b39c1248a
Merge branch '6.2.x' 2023-12-11 10:21:18 -07:00
Josh Cummings 966c01fa90
Merge branch '6.1.x' into 6.2.x 
Closes gh-14278
 2023-12-11 10:21:00 -07:00
Josh Cummings c4a99fc942
Merge branch '5.8.x' into 6.1.x 
Closes gh-14277
 2023-12-11 10:20:38 -07:00
Candelario e896b14046 Dropped Nimbus Error Message 
Closes gh-13730
 2023-12-11 10:19:02 -07:00
Josh Cummings 10d88cdf28 Polish Introspection Authentication Converter 
- Added Reactive Support
- Separated SCOPE claim and authorities work
- Adjusted for style

Issue gh-14198
 2023-12-07 15:13:51 -07:00
ahmd-nabil 8279b22940 Add Introspection Authentication Converter 
Closes #14198

Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
 2023-12-07 15:13:51 -07:00
Parker Mauney 8e93e4715f Fix typo in getClaimAsMap docstring 2023-11-22 14:02:17 -03:00
Marcus Hert Da Coregio e3ab1c94d7 Use assertj assertions 2023-11-17 09:04:50 -03:00
Marcus Hert Da Coregio a7da9491d9 Use assertj assertions 2023-11-17 09:03:36 -03:00
Steve Riesenberg 447f40949c
Revert unnecessary merges on 6.1.x 
This commit removes unnecessary main-branch merges starting from
9f8db22b77 and adds the following
needed commit(s) that were made afterward:

- 4d6ff49b9d
- ed6ff670d1
- c823b00794
- 44fad21363
 2023-10-31 15:22:15 -05:00
Steve Riesenberg 9db33f33c7
Revert unnecessary merges on 6.0.x 
This commit removes unnecessary main-branch merges starting from
8750608b5b and adds the following
needed commit(s) that were made afterward:

- 5dce82c48b
 2023-10-31 15:11:45 -05:00
Steve Riesenberg 975ac10f19
Merge branch '6.1.x' 
Closes gh-14042
 2023-10-19 16:44:03 -05:00
Steve Riesenberg b4e0873b1e
Merge branch '6.0.x' into 6.1.x 
Closes gh-14041
 2023-10-19 16:43:21 -05:00
Steve Riesenberg bb732e9d35
Merge branch '5.8.x' into 6.0.x 
Closes gh-14040
 2023-10-19 16:40:34 -05:00
Steve Riesenberg 5161712c35
Polish gh-13976 
Closes gh-13757
 2023-10-19 16:40:23 -05:00
Veli Döngelci a6b872dcf3
Fix caching error state in ReactiveRemoteJWKSource 2023-10-19 16:40:13 -05:00
Valeriy Vyrva 0e30b923f8 Check for null value with the appropriate assertion method 2023-10-03 08:16:21 -06:00
Josh Cummings c7ea8c6ac7
Fix Formatting 
Issue gh-13654
 2023-10-02 17:47:37 -06:00
Josh Cummings a3227f041c
Polish OAuth2AuthorizationManagers 
- Add OAuth2ReactiveAuthorizationManagers
- Code to interfaces
- Align error message with the same in
AuthorityAuthorizationManager
- Adjust expectations in tests to confirm an
appropriately constructed authorizaion manager
- Add JavaDoc and reference documentation

Issue gh-13654
 2023-10-02 17:26:06 -06:00
Mario Petrovski 2ee8f27997 Fix imports 2023-10-02 17:23:49 -06:00
Mario Petrovski 97ec5c921e Fix imports in tests 2023-10-02 17:23:49 -06:00
Mario Petrovski e1db108cb9 Improvements and unit tests. 2023-10-02 17:23:49 -06:00
Mario Petrovski 5e0ea6ce8a Fix formatting 2023-10-02 17:23:49 -06:00
Mario Petrovski 35e5533a4b Fix formatting 2023-10-02 17:23:49 -06:00
Mario Petrovski e99b37a6cb Fix build 2023-10-02 17:23:49 -06:00
Mario Petrovski 19ae3a765d Make class final 2023-10-02 17:23:49 -06:00
Mario Petrovski 141605cb24 Fix check build issues 2023-10-02 17:23:49 -06:00
Mario Petrovski 926f4a75ba Set the import order correctly 2023-10-02 17:23:49 -06:00
Mario Petrovski 81a708e25f Closes #13754 Add hasScope and hasAnyScope for authorization rules 2023-10-02 17:23:49 -06:00
Marcus Da Coregio 07b6c451fd Merge branch '6.1.x' 
Closes gh-13884
 2023-09-29 11:47:38 -03:00
Marcus Da Coregio 8adfc9b463 Merge branch '6.0.x' into 6.1.x 
Closes gh-13883
 2023-09-29 11:46:48 -03:00
Marcus Da Coregio 92c82191c9 Merge branch '5.8.x' into 6.0.x 
Closes gh-13882
 2023-09-29 11:46:00 -03:00
Marcus Da Coregio 64e2a2ff8b Apply updated Code Style 
Closes gh-13881
 2023-09-29 11:44:32 -03:00
Josh Cummings cb33fd7850
Add OIDC Back-Channel Logout Support 
Closes gh-12570
 2023-09-16 15:12:21 -06:00
Steve Riesenberg 5535d17172
Merge branch '6.1.x' 
Closes gh-13807
Closes gh-13803
Closes gh-13802
 2023-09-12 18:55:42 -05:00
Tim te Beek 9df9cb5aed refactor: AssertJ best practices 
Use this link to re-run the recipe: https://app.moderne.io/recipes/builder/bGVuS?organizationId=RGVmYXVsdA%3D%3D

Co-authored-by: Moderne <team@moderne.io>
 2023-09-12 16:18:14 -06:00
Steve Riesenberg 74dc3fd7b1
Merge branch '6.0.x' into 6.1.x 
Closes gh-13799 in 6.1.x
Closes gh-13801
 2023-09-12 17:02:48 -05:00
Steve Riesenberg 771d9cd8b6
Merge branch '5.8.x' into 6.0.x 
Closes gh-13799
 2023-09-12 17:00:47 -05:00
Steve Riesenberg 9b7a110704
Fix OAuth2AuthenticationExceptionMixinTests on JDK 17 
Closes gh-11893
 2023-09-12 16:51:47 -05:00
Josh Cummings fed3de8dce Remove Logging of Untrusted Data 2023-08-08 10:02:42 -06:00
Josh Cummings 3307c656f4 Polish 
- Added JavaDoc @since attribute
- Added Predicate based test
- Adjusted test names

Issue gh-13427
 2023-08-08 10:02:42 -06:00
Baljit Singh e1bae73703 add factory methods for Jwt issuer resolvers 
Closes gh-13427
 2023-08-08 10:02:42 -06:00
Baljit Singh 7a713cab6f improve performance of Jwt issuer resolvers 2023-08-08 10:02:42 -06:00
Baljit Singh da35fa0485 make logging consistent for Jwt issuer resolvers 2023-08-08 10:02:42 -06:00
Baljit Singh af00be8a3d fix Javadocs for Jwt issuer resolvers 2023-08-08 10:02:42 -06:00
Josh Cummings 6c3636d780
Update Removed Usages 
Issue gh-13544
 2023-07-14 18:38:58 -06:00
Justin Tay 4c33d53385 Add SupplierClientRegistrationRepository 
Closes gh-12967
 2023-07-12 15:53:22 -06:00
Josh Cummings a77ef9ecf4
Add ClientAuthenticationMethod#toString 
Closes gh-13497
 2023-07-12 14:24:26 -06:00
Josh Cummings 80a0ade3e3
Merge branch '6.1.x' 
Closes gh-13499
 2023-07-12 14:16:08 -06:00
Josh Cummings 8642a170e8
Merge branch '6.0.x' into 6.1.x 
Closes gh-13498
 2023-07-12 14:15:53 -06:00
Josh Cummings dbf0c66301
Fix Client Authentication Method Error Message 
Closes gh-13496
 2023-07-12 14:15:31 -06:00
Claudio Nave 52e12ad64b Replace deprecated methods 2023-06-22 13:19:55 -06:00
Krzysztof Krason 9b603b99ab Using modern Java features 2023-06-22 11:24:25 -06:00
Kevin Yue b09a228eaf Make class `OidcClientInitiatedLogoutSuccessHandler` extensible 2023-06-22 11:19:39 -06:00