Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-24 16:05:15 +00:00
Code Issues Packages Projects Releases Wiki Activity
16,878 Commits 34 Branches 337 Tags
Commit Graph

1251 Commits

Author SHA1 Message Date
Steve Riesenberg
dab6950231
Move parametersCustomizer 
The parametersCustomizer was introduced in 6.4.0-M4 with
DefaultOAuth2TokenRequestParametersConverter. However, it cannot be
applied to all parameters and so does not fully solve gh-11298.

This commit moves the customizer to the abstract class so it can be
applied to all parameters.

Closes gh-15939
 2024-10-18 12:22:09 -05:00
Tran Ngoc Nhan
31f8caec5f Polish diamond operator usage 2024-10-14 11:51:35 -07:00
Giovanni Lovato
a3fd551fb5 Add ClientRegistrations.fromOidcConfiguration method 
ClientRegistrations now provides the fromOidcConfiguration
method to create a ClientRegistration.Builder from a map
representation of an OpenID Provider Configuration Response.

This is useful when the OpenID Provider Configuration is not
available at a well-known location, or if custom validation
is needed for the issuer location (e.g. if the issuer is only
reachable via a back-channel URI that is different from the
issuer value in the configuration).

Fixes: gh-14633
 2024-10-02 15:11:01 -05:00
Steve Riesenberg
f5991ae176 Allow access token request parameters to override defaults 
Closes gh-11298
 2024-10-02 12:05:42 -05:00
Steve Riesenberg
9ba2435cb2
Support refresh token for Token Exchange 
Closes gh-15534
 2024-09-27 15:57:57 -05:00
Steve Riesenberg
e11c188122
Customize the strategy for resolving the principal 
Closes gh-15826
 2024-09-27 15:39:56 -05:00
Thomas Darimont
b06c40d9ef Add ExpressionJwtGrantedAuthoritiesConverter to extract authorities with an expression 
This helps to reduce custom code necessary to extract roles from deeply
nested claims.

Closes #15201

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
 2024-09-23 16:59:59 -07:00
Steve Riesenberg
42d9f146d2 Polish gh-15533 2024-09-19 16:05:39 -05:00
陈圳佳
24dbc5de53 Fix array values of additionalParameters 
Closes gh-15468
 2024-09-19 16:05:39 -05:00
Steve Riesenberg
c1a303bc92
Add tests for overriding parameters 
Issue gh-15298
Issue gh-11298
 2024-09-19 13:01:09 -05:00
Steve Riesenberg
5d8cf6a8bc
Polish gh-13588 2024-09-19 12:08:48 -05:00
Tran Ngoc Nhan
2c9c309d7f Provide Casting for ReactiveJwtDecoder 
Closes gh-15773
 2024-09-17 13:54:35 -07:00
Steve Riesenberg
63f018eb18
Update tests using deprecated classes 
Issue gh-15737
 2024-09-10 15:10:42 -05:00
Steve Riesenberg
7490a8162b
Deprecate default OAuth2AccessTokenResponseClients 
Closes gh-15737
 2024-09-10 15:10:41 -05:00
Steve Riesenberg
2cead9b73f
Add RestClient implementations 
Issue gh-15298
 2024-09-10 15:10:41 -05:00
Daniel Garnier-Moiroux
2caf1fb6b4 Bump io-spring-javaformat from 0.0.42 to 0.0.43 
Bumps `io-spring-javaformat` from 0.0.42 to 0.0.43.

Updates `io.spring.javaformat:spring-javaformat-checkstyle` from 0.0.42 to 0.0.43
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](spring-io/spring-javaformat@v0.0.42...v0.0.43)

Updates `io.spring.javaformat:spring-javaformat-gradle-plugin` from 0.0.42 to 0.0.43
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](spring-io/spring-javaformat@v0.0.42...v0.0.43)

---
updated-dependencies:
- dependency-name: io.spring.javaformat:spring-javaformat-checkstyle
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: io.spring.javaformat:spring-javaformat-gradle-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

---
Manual updates:
- Adhere to rule where `@Deprecated` annotations and `@deprecated` javadoc comments MUST
  be used together

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-19 09:08:24 -03:00
Steve Riesenberg
e3c19ba86c Add RestClient interceptor 
Closes gh-13588
 2024-08-16 17:15:18 -05:00
Josh Cummings
b6ce40980d
Merge branch '6.3.x' 2024-07-22 15:34:34 -06:00
Josh Cummings
d887c7882d
Merge branch '6.2.x' into 6.3.x 
Closes gh-15460
 2024-07-22 15:34:18 -06:00
Josh Cummings
4406462346
Merge branch '5.8.x' into 6.2.x 
Closes gh-15459
 2024-07-22 15:34:08 -06:00
Josh Cummings
5c1a108b8b
Remove Stray JavaDoc Statement 
As of the 5.2 release, a separate registrar bean was no longer necessary

Closes gh-15425
 2024-07-22 15:33:57 -06:00
Josh Cummings
df76537470 Update Formatting 
Issue gh-15338
 2024-07-18 16:39:30 -07:00
rio
e69e0eb245 Check for null Name Attribute Value 
Closes gh-15338
 2024-07-18 16:39:30 -07:00
Marcus Hert Da Coregio
aa9c1bab67 Upgrade to Spring Framework 6.2.0-M4 
Closes gh-15266
 2024-06-18 14:07:05 -03:00
MateuszLenczewski
077439c73e Fix typo in JwtDecoder 2024-06-05 17:38:12 -06:00
Steve Riesenberg
3acd2c65d9
Add since 6.4 
Issue gh-15012
 2024-06-04 13:44:33 -05:00
Steve Riesenberg
7c45ebd81c
Polish gh-15012 2024-06-03 17:02:38 -05:00
Filip Hrisafov
99aee99b34
Expose user name attribute name in OAuth2UserAuthority 2024-06-03 12:30:34 -05:00
Steve Riesenberg
db9f5935ae
Merge branch '6.2.x' into 6.3.x 2024-05-29 16:24:05 -05:00
Steve Riesenberg
5a1d261ce0
Merge branch '5.8.x' into 6.2.x 2024-05-29 16:23:37 -05:00
Steve Riesenberg
e34621ec2c
Polish gh-14977 2024-05-29 16:23:00 -05:00
JANG
1695d03b72
Assert WebSession is not null 
Issue gh-14975
 2024-05-29 14:55:37 -05:00
Josh Cummings
dd5edeb255
Preserve ArrayListFromString Type 
Closes gh-15165
 2024-05-28 12:43:57 -06:00
Marcus Hert Da Coregio
08f11f06ab Revert unnecessary commits from main 
Issue gh-15016
 2024-05-08 13:49:18 -03:00
Steve Riesenberg
2598bf8c37
Polish gh-14859 2024-04-29 15:07:45 -05:00
Crain-32
d0adb2aa70
Simplify Disabling Encoding Client ID and Secret 
Closes gh-11440
 2024-04-29 14:46:12 -05:00
Steve Riesenberg
05d3beb6a8
Polish gh-13648 2024-04-18 16:17:49 -05:00
ch4mpy
b69939c1e5
Getters for OAuth2AuthorizedClientId properties 
Expose getters for principalName and clientRegistrationId which compose an OAuth2AuthorizedClientId
 2024-04-18 16:10:39 -05:00
MrJovanovic13
24fd19b107 Add Default Timeout to JwtDecoders RestTemplate 
Closes gh-14269
 2024-04-18 14:40:18 -06:00
Josh Cummings
8dd28b797a
Update to BouncyCastle 1.78 
Closes gh-14910
 2024-04-15 15:32:08 -06:00
Josh Cummings
b1b84f9b8a
Revert "Support overriding RestOperations in OidcIdTokenDecoderFactory" 
This reverts commit 9c352c4b4b4b853798b6ffd3c7b27f6cb51b84ce.

Issue gh-14178
 2024-04-11 14:29:59 -06:00
Josh Cummings
5a50bfccac
Revert "Support overriding WebClient in ReactiveOidcIdTokenDecoderFactory" 
This reverts commit 0041c658de854f1e2bfa414620c9c25f1334ce3f.

Issue gh-14178
 2024-04-11 14:29:59 -06:00
Joe Grandja
9a7f1aa4d9 Add ClientAuthenticationMethod constants tls_client_auth and self_signed_tls_client_auth 
Closes gh-14889
 2024-04-11 15:15:11 -04:00
Joe Grandja
644cfa9f87 Add Jwt validator for the X509Certificate thumbprint claim 
Closes gh-10538
 2024-04-11 12:35:52 -04:00
Josh Cummings
d269176781
Merge branch '6.2.x' 2024-04-04 17:07:03 -06:00
Josh Cummings
01f299f7ab
Merge branch '6.1.x' into 6.2.x 
Closes gh-14848
 2024-04-04 16:56:11 -06:00
Josh Cummings
ef00312991
Merge branch '5.8.x' into 6.1.x 
Closes gh-14847
 2024-04-04 16:55:52 -06:00
Josh Cummings
0af0751cfd
Treat Map Method Parameter as Immutable 
Closes gh-14802
 2024-04-04 16:44:14 -06:00
Josh Cummings
ee42ad2c8c
Polish JwtValidators 
Closes gh-14831
 2024-04-02 16:04:43 -06:00
Max Batischev
ff19f04fca Add JwtValidators append to default 
Implemented simplified creation of default OAuth2TokenValidator with additional validators.

Closes gh-14831
 2024-04-02 14:41:35 -07:00