98 Commits

Author SHA1 Message Date
Josh Cummings
a3227f041c
Polish OAuth2AuthorizationManagers
- Add OAuth2ReactiveAuthorizationManagers
- Code to interfaces
- Align error message with the same in
AuthorityAuthorizationManager
- Adjust expectations in tests to confirm an
appropriately constructed authorizaion manager
- Add JavaDoc and reference documentation

Issue gh-13654
2023-10-02 17:26:06 -06:00
Josh Cummings
6b0d82236d
Fix Documentation Errors
Issue gh-12570
2023-09-18 16:21:37 -06:00
Josh Cummings
cb33fd7850
Add OIDC Back-Channel Logout Support
Closes gh-12570
2023-09-16 15:12:21 -06:00
Steve Riesenberg
1f8c94aee8
Add overview documentation for OAuth2
This commit adds an overview to the landing page for OAuth2 with:
* OAuth2 Resource Server
* OAuth2 Client

At this level, OAuth2 Login is combined into the overview for Client
to make it clear that it is part of the oauth2-client module.

Content is broken down into use cases similar to other docs pages
that have been updated recently. This content will be revisited
as additional updates are made to OAuth2 docs, and some use cases
may be moved or even added as needed. This commit only adds a few
initial use cases to get the OAuth2 docs update process started.

Closes gh-13784
2023-09-07 12:26:07 -05:00
Josh Cummings
3b7e7f63d8
Update Jwt Multi-tenancy Documentation
Issue gh-13427
2023-08-08 10:03:11 -06:00
Josh Cummings
b7efa15591
Merge branch '6.0.x' into 6.1.x 2023-08-07 14:48:37 -06:00
Josh Cummings
1f27b18398
Merge branch '5.8.x' into 6.0.x 2023-08-07 14:48:12 -06:00
Daniel Shuy
e8b9a35494
Fix Bearer Token RestTemplate Support example 2023-08-07 14:47:37 -06:00
yahya jabary
c03bd3f717
Remove deprecated usage
Closes gh-13446
2023-07-12 15:02:26 -06:00
Rob Winch
8407c9ebee Merge branch '6.0.x'
Closes gh-13407
2023-06-18 21:41:16 -05:00
Rob Winch
f66a5bab99 Merge branch '5.8.x' into 6.0.x
Closes gh-13406
2023-06-18 21:33:58 -05:00
Rob Winch
7da99acca7 Merge branch '5.7.x' into 5.8.x
Closes gh-13405
2023-06-18 21:32:35 -05:00
Rob Winch
0cf95dbf61 Merge branch '5.6.x' into 5.7.x
Closes gh-13404
2023-06-18 21:31:35 -05:00
Rob Winch
39c43159f4 Convert to Asciidoctor Tabs
Closes gh-13403
2023-06-18 21:30:41 -05:00
Rob Winch
04692d9ee8 Fix Antora Warnings
Closes gh-13210
2023-06-08 17:02:19 -05:00
Josh Cummings
528ec318ab
Merge branch '6.0.x' 2023-06-05 12:56:56 -06:00
Vladimir Kidyaev
d47e3e8cd8
Delete duplicate line from oauth2/client/core.adoc 2023-06-05 12:56:24 -06:00
Josh Cummings
58a08050c1
Merge branch '6.0.x'
Closes gh-13239
2023-05-26 14:25:33 -06:00
Josh Cummings
0ac554ee3e
Merge branch '5.8.x' into 6.0.x
Closes gh-13238
2023-05-26 14:25:20 -06:00
Josh Cummings
8ccc03fdb6
Update Resource Server Docs
Closes gh-13147
2023-05-26 14:24:31 -06:00
Josh Cummings
0e3ee89902
Merge branch '6.0.x' 2023-05-18 11:08:11 -06:00
Josh Cummings
cdac708051
Merge branch '5.8.x' into 6.0.x 2023-05-18 11:08:00 -06:00
Josh Cummings
219faf29d4
Merge branch '5.7.x' into 5.8.x 2023-05-18 11:07:42 -06:00
moli
b6f3cb71e6
Add Missing AuthorizationRequestRepository in Snippet
Closes PR-13099
2023-05-18 10:54:19 -06:00
Josh Cummings
b969179b5c
Merge branch '5.7.x' into 5.8.x 2023-05-10 15:53:22 -06:00
Josh Cummings
3469bcb822
Address Antora Warnings 2023-05-10 15:51:49 -06:00
Josh Cummings
e5fcf1ebcf
Revisit Request and Method Security Docs
Issue gh-13088
2023-05-01 14:09:22 -06:00
Josh Cummings
76eba9bd0c
Add withIssuerLocation
Closes gh-10309
2023-04-12 16:36:15 -06:00
Logan Kulinski
8ad91287d9 Fix Broken Link
Closes gh-12824
2023-03-20 15:13:10 -06:00
Olivier Délèze
9535566f84 Update multitenancy.adoc
The Java example at line 421 should use the injected `jwtValidator` and not from the current class referenced by `this. jwtValidator`.
2023-01-05 10:32:57 -07:00
Marcus Da Coregio
2fdf762726 Merge branch '5.8.x' into 6.0.x 2022-12-05 14:41:59 -08:00
Marcus Da Coregio
7aaa25b88e Merge branch '5.7.x' into 5.8.x 2022-12-05 14:40:54 -08:00
Marcus Da Coregio
fc25b87967 Merge branch '5.6.x' into 5.7.x 2022-12-05 14:40:38 -08:00
Sellami
626e53d121 Fix: Replace tenantRepository with tenants 2022-12-05 14:31:24 -08:00
Marcus Da Coregio
c7b9b33cd1 Merge branch '5.8.x' 2022-11-03 08:23:50 -03:00
Marcus Da Coregio
4d646a2978 Merge branch '5.7.x' into 5.8.x 2022-11-03 08:23:26 -03:00
Marcus Da Coregio
067fc1678c Merge branch '5.6.x' into 5.7.x 2022-11-03 08:22:09 -03:00
Rivaldi
01a37dd678 Fix typo
(cherry picked from commit 20e89e3eca0823bfa329b5de80448bac1f5e0f30)
2022-11-03 08:21:48 -03:00
Josh Cummings
cca999c57d
Merge remote-tracking branch 'origin/5.8.x' 2022-11-01 13:46:08 -06:00
Josh Cummings
d29ab8bcae
Merge branch '5.7.x' into 5.8.x 2022-11-01 13:43:40 -06:00
Josh Cummings
c94e33b6c8
Merge branch '5.6.x' into 5.7.x 2022-11-01 13:42:35 -06:00
Ger Roza
8315545144 Update RP-Initiated Logout target URLs.
The URLs we're using are not actually pointing to the OIDC RP-Initiated Logout Specs.

Fixes: gh-12081
2022-11-01 12:35:39 -06:00
Marcus Da Coregio
38a7bbd2eb Merge branch '5.8.x' 2022-10-05 13:20:12 -03:00
Marcus Da Coregio
ace8caa182 Remove mvcMatchers usage from docs
Issue gh-11347
2022-10-05 13:19:37 -03:00
Steve Riesenberg
181ee7410b
Change default authority for oauth2Login()
Previously, the default authority was ROLE_USER when using
oauth2Login() for both OAuth2 and OIDC providers.

* Default authority for OAuth2UserAuthority is now OAUTH2_USER
* Default authority for OidcUserAuthority is now OIDC_USER

Documentation has been updated to include this implementation detail.

Closes gh-7856
2022-09-26 10:06:31 -05:00
Steve Riesenberg
2431dd1103
Merge branch '5.8.x' 2022-09-13 17:38:10 -05:00
Steve Riesenberg
355ef21117
Polish gh-11665 2022-09-13 16:45:39 -05:00
ch4mpy
1efb63387f
Add authentication converter for introspected tokens
Adds configurable authentication converter for resource-servers with
token introspection (something very similar to what
JwtAuthenticationConverter does for resource-servers with JWT decoder).

The new (Reactive)OpaqueTokenAuthenticationConverter is given
responsibility for converting successful token introspection result
into an Authentication instance (which is currently done by a private
methods of OpaqueTokenAuthenticationProvider and
OpaqueTokenReactiveAuthenticationManager).

The default (Reactive)OpaqueTokenAuthenticationConverter, behave the
same as current private convert(OAuth2AuthenticatedPrincipal principal,
String token) methods: map authorities from scope attribute and build a
BearerTokenAuthentication.

Closes gh-11661
2022-09-13 16:45:36 -05:00
Rob Winch
a5069d7e35 Fix Add @Configuration to @Enable*Security Usage
Issue gh-6613
2022-08-09 17:00:16 -05:00
Joshua Sattler
040111ae9e Remove Configuration meta-annotation from Enable* annotations
Before, Spring Security's @Enable* annotations were meta-annotated with @Configuration.
While convenient, this is not consistent with the rest of the Spring projects and most notably
Spring Framework's @Enable annotations. Additionally, the introduction of support for
@Configuration(proxyBeanMethods=false) in Spring Framework provides a compelling reason to
remove @Configuration meta-annotation from Spring Security's @Enable annotations and allow
users to opt into their preferred configuration mode.

Closes gh-6613

Signed-off-by: Joshua Sattler <joshua.sattler@mailbox.org>
2022-07-30 03:48:42 +02:00