0dc80aed40
Flatten ServerHttpSecurity.oauth2()
...
Fixes: gh-5712
2018-08-21 15:48:41 -05:00
7c5c274854
Add authcodegrant-webflux sample
...
Issue: gh-5620
2018-08-19 21:28:08 -05:00
afa2d9cbc7
Remove ExchangeFilterFunctions
...
Issue: gh-5612
2018-07-30 15:34:44 -05:00
262c1a77c6
Remove SecurityHeaders
...
We no longer need this since Spring Framework now provides
HttpHeaders.setBearerAuth
Issue: gh-5612
2018-07-30 15:34:40 -05:00
c26d7dc859
Update to Spring Boot 2.1.0.M1
...
Fixes: gh-5613
2018-07-30 15:34:35 -05:00
dd1fa7f709
Add Sample
...
Issue: gh-5605
2018-07-30 11:39:50 -05:00
9ababf4168
Rename to ServerOAuth2AuthorizedClientExchangeFilterFunction
...
Rename OAuth2AuthorizedClientExchangeFilterFunction to
ServerOAuth2AuthorizedClientExchangeFilterFunction->
Issue: gh-5386
2018-07-20 11:48:19 -05:00
9a144d742e
Use OAuth2AuthorizedClientRepository in filters and resolver
...
Fixes gh-5544
2018-07-19 22:57:10 -04:00
40ccdb93f7
Resource Server Jwt Support
...
Introducing initial support for Jwt-Encoded Bearer Token authorization
with remote JWK set signature verification.
High-level features include:
- Accepting bearer tokens as headers and form or query parameters
- Verifying signatures from a remote Jwk set
And:
- A DSL for easy configuration
- A sample to demonstrate usage
Fixes: gh-5128
Fixes: gh-5125
Fixes: gh-5121
Fixes: gh-5130
Fixes: gh-5226
Fixes: gh-5237
2018-07-16 10:40:46 -05:00
779597af2a
Add support for custom authorization request parameters
...
Fixes gh-4911
2018-07-16 09:39:06 -05:00
05ed028f9d
Modernize Default Log In Page
...
Fixes: gh-5515
2018-07-15 19:43:42 -05:00
4fc6d96073
Rename @OAuth2Client to @RegisteredOAuth2AuthorizedClient
...
Fixes gh-5360
2018-06-08 17:33:21 -04:00
81e19ad85e
Move oauth2 samples under boot directory
...
Issue gh-5397
2018-06-06 09:37:36 -04:00
a9e6d7606e
Update WebFlux samples to use Spring Boot
...
Fixes: gh-5411
2018-06-05 11:31:15 -05:00
de95583509
Move oauth2login samples under oauth2 directory
...
Fixes gh-5397
2018-05-30 12:16:05 -04:00
f9f74b1bfc
Simplify oauth2login-webflux sample
...
Fixes gh-5396
2018-05-30 11:53:25 -04:00
6c13e18483
Simplify oauth2login sample
...
Fixes gh-5384
2018-05-30 11:29:28 -04:00
ecf6caa896
Add missing @Configuration for WebClientConfig
...
Issue: gh-5388
2018-05-25 12:48:42 -05:00
68117d7b0b
Samples use OAuth2AuthorizedClientExchangeFilterFunction
...
Issue: gh-5386
2018-05-25 12:25:13 -05:00
bc3467c118
Add oauth2login-webflux sample
...
Issue: gh-4807
2018-05-11 04:19:50 -05:00
526e0fdd4f
Add OAuth2 Client HandlerMethodArgumentResolver
...
Fixes gh-4651
2018-04-02 12:13:52 -04:00
982fc360b2
Add support for authorization_code grant
...
Fixes gh-4928
2018-04-02 12:13:06 -04:00
59cef7d339
HttpSessionOAuth2AuthorizationRequestRepository handle multiple OAuth2AuthorizationRequest per session
...
Fixes gh-5110
2018-03-20 22:14:48 -05:00
0c708976c6
Update oauth2Login sample to use master
...
Fixes gh-4910
2017-12-12 15:31:00 -05:00
86824030f2
Update oauth2Login sample guide
...
Fixes gh-4858
2017-11-22 14:47:31 -05:00
701933c7f7
Fix copyright start years
...
See gh-4655
See gh-4725
2017-11-17 10:14:32 -06:00
4039cd285e
oauth2Login sample depends on security RC1
...
Fixes gh-4828
2017-11-15 14:51:35 -05:00
0d33864b5a
Remove redundant 'provider' property from oauth2Login sample config
...
Fixes gh-4817
2017-11-13 17:32:44 -05:00
3661cb58d6
Polish oauth2Login sample integration test
...
Fixes gh-4811
2017-11-12 12:59:58 -05:00
1dac191b19
Remove custom security config from oauth2Login sample
...
Fixes gh-4808
2017-11-11 21:15:01 -05:00
cd9e712117
Remove GlobalAuthenticationConfigurerAdapter from oauth2Login sample
...
Fixes gh-4665
2017-11-11 21:15:01 -05:00
f1245059ff
Consistent Thymeleaf Version in Boot Samples
...
Issue gh-4802
2017-11-08 09:04:50 -06:00
a261c9a047
Polish OAuth2LoginConfigurer
...
Fixes gh-4747
2017-10-29 21:33:51 -04:00
c3d2effc1d
Polish OAuth2AuthorizedClientService
...
Fixes gh-4746
2017-10-29 20:25:03 -04:00
e4887057bc
Rename AuthorizationGrantTokenExchanger -> OAuth2AccessTokenResponseClient
...
Fixes gh-4741
2017-10-29 17:49:15 -04:00
8e0d88d3e9
Remove GitHubOAuth2User from oauth2Login sample
...
Fixes gh-4732
2017-10-28 18:25:45 -04:00
0c68eb1821
Re-factor OAuth2AuthorizationCodeAuthenticationToken
...
Fixes gh-4730
2017-10-28 17:15:31 -04:00
64d8c8b8a9
Re-factor AuthorizationGrantTokenExchanger
...
Fixes gh-4728
2017-10-28 17:12:14 -04:00
9afefef3b9
Polish class names in oauth2-client
...
Fixes gh-4722
2017-10-27 21:00:52 -04:00
34668e05af
Polish class names in oauth2-core
...
Fixes gh-4720
2017-10-27 20:42:58 -04:00
ef83bc8dd7
Move package client.authentication.userinfo -> client.userinfo
...
Fixes gh-4708
2017-10-26 15:39:04 -04:00
942b647c0d
OAuth2LoginAuthenticationFilter processes uri /login/oauth2/code/*
...
Issue gh-4687
2017-10-26 14:20:19 -04:00
43d201fa3e
Move OAuth2AuthenticationToken
...
Fixes gh-4697
2017-10-25 16:17:49 -04:00
5a584e5ccb
Rename OAuth2/OIDC ClientAuthenticationToken -> AuthorizedClient
...
Fixes gh-4695
2017-10-25 13:47:00 -04:00
8fd0ba3bc4
Fix README authorization callback URLs
...
Issue gh-4659
2017-10-24 15:14:58 -05:00
049080290e
Refactor OAuth2 AuthenticationProvider's
...
Fixes gh-4689
2017-10-24 15:24:26 -04:00
0fb32a052e
OAuth2LoginAuthenticationFilter processes uri /login/oauth2/*
...
Fixes gh-4687
2017-10-24 15:24:26 -04:00
4ae24f2fbe
Rename AuthorizationCodeAuthenticationFilter -> OAuth2LoginAuthenticationFilter
...
Fixes gh-4686
2017-10-24 15:24:25 -04:00
8291f20796
DaoAuthenticationProvider uses DelegatingPasswordEncoder
...
This means that passwords will be encoded with BCrypt by default
Fixes: gh-2775
2017-10-24 07:56:28 -05:00
f0c9f85292
spring-security-jwt-jose -> spring-security-oauth2-jose
...
Fixes gh-4595
2017-10-23 09:04:01 -04:00
a49047dec5
Fix OAuth2LoginApplicationTests
...
Issue gh-4659
2017-10-20 04:41:48 -04:00
ee6c1f2ddd
Add temporary GlobalAuthenticationConfigurerAdapter
...
Fixes gh-4664
2017-10-19 12:15:35 -04:00
e91da5959c
Remove auto-config classes from oauth2Login sample
...
Fixes gh-4638
2017-10-19 11:27:22 -04:00
1e891b38ab
Rename scope -> scopes for Set types
...
Fixes gh-4644
2017-10-18 17:56:39 -04:00
7b8d131386
Fix package tangles -> OAuth2/Oidc AuthenticationProvider's
...
Fixes gh-4614
2017-10-16 20:56:32 -04:00
3c824dc44b
Fix package tangles -> OAuth2UserService
...
Fixes gh-4614
2017-10-13 18:59:41 -04:00
cfa4858b04
Fix package tangles -> AuthorizationGrantTokenExchanger
...
Fixes gh-4614
2017-10-13 16:35:48 -04:00
d840090cb0
Add support for implicit grant type
...
Fixes gh-4500
2017-10-11 13:54:59 -04:00
bd4d814e4b
Fix bug in oauth2Login sample
2017-10-10 14:40:11 -04:00
6b16fa0d8c
Polish OAuth Security Configurers
2017-10-10 14:38:06 -04:00
97c938e7f3
Extract authentication logic from AuthorizationCodeAuthenticationFilter
...
Fixes gh-4590
2017-10-10 14:38:06 -04:00
448ee08f28
Update to Boot 2.0.0.M4
...
Issue: gh-4608
2017-10-09 16:12:22 -05:00
5811624bbe
Polish endpoint package
...
* Remove ErrorResponseAttributes
* Rename AuthorizationRequestAttributes -> AuthorizationRequest
* Remove AuthorizationCodeTokenRequestAttributes
* Rename TokenResponseAttributes -> TokenResponse
Issue gh-4593
2017-10-06 18:51:24 -04:00
eca2b67137
ClientRegistration supports 'baseUrl' uri variable
...
Fixes gh-4589
2017-10-05 20:35:51 -04:00
eb320bfed4
AuthorizationCodeAuthenticationProcessingFilter -> AuthorizationCodeAuthenticationFilter
2017-10-05 16:40:12 -04:00
5c14e48b18
Add OAuth2UserAuthenticationProvider
...
Moved logic from AuthorizationCodeAuthenticationProvider
to OAuth2UserAuthenticationProvider (new) related to
loading user attributes via OAuth2UserService.
This re-factor is part of the work required for Issue gh-4513
2017-10-05 15:15:35 -04:00
0d516ca32c
Rename scopes -> scope
2017-10-02 15:50:16 -04:00
fb57111ecd
redirect-uri property supports 'baseRedirectUrl' uri variable
...
Fixes gh-4589
2017-10-02 15:29:03 -04:00
66647070ab
Default login page supports Iterable<ClientRegistration>
...
Fixes gh-4596
2017-09-29 19:54:17 -04:00
ad91adf9dc
Retrieving the UserInfo is conditional
...
Fixes gh-4451
2017-09-29 10:51:16 -04:00
8448a54678
Remove ClientRegistrationRepository.getRegistrations()
...
Fixes gh-4582
2017-09-28 07:02:59 -04:00
814742fef6
Rename ClientRegistration.clientAlias -> registrationId
...
Fixes gh-4575
2017-09-27 09:14:55 -04:00
38be35677d
Add userNameAttributeName to ClientRegistration
...
Fixes gh-4580
2017-09-26 21:55:19 -04:00
0e9b2807bf
Split up NimbusOAuth2UserService
...
Fixes gh-4447
2017-09-26 11:32:49 -04:00
c54c622124
Re-structure OAuth2AuthenticationToken
...
Fixes gh-4553
2017-09-19 16:35:43 -04:00
65b968f04a
Move servlet-specific classes to 'web' package
...
Fixes gh-4366
2017-09-13 16:13:32 -04:00
e31684bcf5
Update google defaults
2017-09-13 14:04:18 -04:00
306f81b7f7
Minor renames to oauth2 client properties
...
Fixes gh-4296
2017-08-30 11:51:06 -04:00
4951550d7d
Add context path to authorization request URI
...
Fixes gh-4510
2017-08-26 18:55:23 -04:00
91b0bd4ba5
Provide oauth2login.tokenEndpoint config
...
Fixes gh-4506
2017-08-23 17:18:01 -04:00
93c2b2533e
Allow configuring request paths for oauth2 filters
...
Fixes gh-4473
2017-08-23 17:17:01 -04:00
c204cc2c31
Completed implementation in ClaimAccessor's
...
Fixes gh-4449
2017-07-28 09:31:38 -04:00
e8c6a1acc8
Move user-name-attribute-name to clients-defaults.yml
...
Fixes gh-4456
2017-07-28 09:31:37 -04:00
67f80dfadc
Update oauth2Login sample doc -> user authority mapping
...
Fixes gh-4373
2017-07-12 17:35:16 -04:00
c42b9a68b1
Update oauth2Login sample doc
...
Fixes gh-4452
2017-07-12 17:35:16 -04:00
9cfb890207
Use id_token for user authentication
...
Fixes gh-4410
2017-07-07 12:44:26 -04:00
3624ba5b4e
Remove Okta Add Authorization Server section
...
Fixes gh-4391
2017-06-15 11:51:56 -04:00
489ffcfce5
UserInfoTypeConverter is registered if client is registered
...
Fixes gh-4364
2017-06-02 16:03:33 -04:00
6c0ecea494
Use java.util.Function instead of Converter
...
Fixes gh-4323
2017-06-01 17:25:39 -04:00
ae17cc255b
Implement protected resource call flow in oauth2login sample
...
Fixes gh-4362
2017-06-01 14:32:29 -04:00
4476df93e9
Change ResponseType from enum to class
...
Fixes gh-4292
2017-05-30 16:11:57 -04:00
435e389609
Change ClientAuthenticationMethod from enum to class
...
Fixes gh-4313
2017-05-30 14:41:59 -04:00
dd8952f700
Update Okta instructions in oauth2Login sample
...
Fixes gh-4352
2017-05-24 16:15:53 -04:00
521feb9a1b
Update Boot samples to 2.0.0.M1
...
Fixes gh-4339
2017-05-24 11:32:00 -04:00
d81b436e5d
Remove pom.xml from build
...
Gradle is easy enough to import into IDEs, so pom.xml should no
longer be necessary.
This commit removes the pom.xml files from the build.
Fixes gh-4283
2017-05-11 14:32:36 -05:00
514f0053cc
Use dependency-management.gradle
2017-05-09 02:39:49 -05:00
d04bfaca5a
Update oauth2login README with GitHub/Facebook/Okta
...
* Add instructions to the oauth2login sample README for setting up
OAuth 2.0 Login for GitHub, Facebook, and Okta
* Change base package for oauth2login sample
Fixes gh-4287, Fixes gh-4288, Fixes gh-4289
2017-05-04 12:37:35 -04:00
829c386756
Add support for OAuth 2.0 Login
...
Fixes gh-3907
2017-04-28 10:58:59 -04:00
dd6fc48dd8
Standardize Build
...
The build now uses spring build conventions to simplify the build
Fixes gh-4284
2017-04-21 10:55:05 -05:00
2ce174dbf0
Update poms to 5.0.0.BUILD-SNAPSHOT
2017-04-07 16:49:50 -04:00
Rob Winch
Joe Grandja
Josh Cummings
Johnny Lim
Matt Raible
Thai Ha