Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,306 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

995 Commits

Author SHA1 Message Date
Joe Grandja 91f6888e9f Remove OAuth2AuthorizedClientRepository @Bean from OAuth2LoginApplication 
Fixes gh-5546
 2018-09-19 11:22:52 -04:00
Josh Cummings b3d33708d1
JAXB for Authorization Server Sample 
For Java 9+ compatibility

Issue: gh-5833
 2018-09-14 09:21:37 -06:00
Josh Cummings 17dd95d525
Polish Authorization Server Sample 
Change primary user's username to "subject" to align with
oauth2resourceserver sample.
 2018-09-13 16:21:10 -06:00
Josh Cummings f2140dd5f5
Authorization Server Sample 
A simple Authorization Server sample based off of the Legacy
Authorization Server project, spring-security-oauth2.

This project is mostly useful as a utility for other samples whose
usage would be clearer if an Authorization Server were introduced.

Note that this server is a barebones OAuth 2.0 Authorization Server
configuration, but is still useful for understanding how to set up an
Authorization Server using spring-security-oauth2.

Fixes: gh-5833
 2018-09-13 15:24:32 -06:00
Rob Winch c21b2f31c6 Polish resourceserver samples 
- Use ${mockserver.url} instead of mock://
- Consistency between reactive/imperative samples

Fixes: gh-5844
 2018-09-13 14:31:23 -05:00
Rob Winch f68141d42a Update to Spring Boot 2.1.0.M3 
Fixes: gh-5843
 2018-09-13 10:27:16 -05:00
Rob Winch 2495025845 authcodegrant samples->oauth2webclient samples 
The authcodegrant samples were initially meant to be very simple
demonstration of authorization code flow. However, it has become
obvious since then that the real intent of the demo is how to use
the WebClient with OAuth (there is no other reason to do authorization
code flow unless you use the token to make a request).

The samples have been migrated to oauth2webclient and oauth2webclient-webflux
respectively. They have been improved:

* The sample demonstrates usage with annotations, webclient directly, form login
  oauth2Login, and public APIs
* The samples externalize the endpoint that is requested in the sample
  making it easier to try other endpoints
* The UI no longer relies on a data structure for the result of the
  endpoint also making it easier to try other endpoints

Issue: gh-4921
 2018-09-07 08:58:50 -05:00
Rob Winch 158b8aa6d5 ServerOAuth2AuthorizedClientExchangeFilterFunction clientRegistrationId 
Issue: gh-4921
 2018-09-07 08:56:49 -05:00
Joe Grandja d7bd5c0acc Remove spring.factories from oauth2login-webflux sample 
Fixes gh-5723
 2018-08-22 10:21:36 -04:00
Joe Grandja ff6e1232c8 Flatten HttpSecurity.oauth2() 
Fixes gh-5715
 2018-08-22 05:58:04 -04:00
Joe Grandja 0f89e59707 Simplified oauth2().client() DSL 
Fixes gh-5662
 2018-08-22 04:45:35 -04:00
Rob Winch 0dc80aed40 Flatten ServerHttpSecurity.oauth2() 
Fixes: gh-5712
 2018-08-21 15:48:41 -05:00
Rob Winch 7c5c274854 Add authcodegrant-webflux sample 
Issue: gh-5620
 2018-08-19 21:28:08 -05:00
Rob Winch afa2d9cbc7 Remove ExchangeFilterFunctions 
Issue: gh-5612
 2018-07-30 15:34:44 -05:00
Rob Winch 262c1a77c6 Remove SecurityHeaders 
We no longer need this since Spring Framework now provides
HttpHeaders.setBearerAuth

Issue: gh-5612
 2018-07-30 15:34:40 -05:00
Rob Winch c26d7dc859 Update to Spring Boot 2.1.0.M1 
Fixes: gh-5613
 2018-07-30 15:34:35 -05:00
Rob Winch dd1fa7f709 Add Sample 
Issue: gh-5605
 2018-07-30 11:39:50 -05:00
Rob Winch 9ababf4168 Rename to ServerOAuth2AuthorizedClientExchangeFilterFunction 
Rename OAuth2AuthorizedClientExchangeFilterFunction to
ServerOAuth2AuthorizedClientExchangeFilterFunction->

Issue: gh-5386
 2018-07-20 11:48:19 -05:00
Joe Grandja 9a144d742e Use OAuth2AuthorizedClientRepository in filters and resolver 
Fixes gh-5544
 2018-07-19 22:57:10 -04:00
Josh Cummings 40ccdb93f7 Resource Server Jwt Support 
Introducing initial support for Jwt-Encoded Bearer Token authorization
with remote JWK set signature verification.

High-level features include:

- Accepting bearer tokens as headers and form or query parameters
- Verifying signatures from a remote Jwk set

And:

- A DSL for easy configuration
- A sample to demonstrate usage

Fixes: gh-5128
Fixes: gh-5125
Fixes: gh-5121
Fixes: gh-5130
Fixes: gh-5226
Fixes: gh-5237
 2018-07-16 10:40:46 -05:00
Joe Grandja 779597af2a Add support for custom authorization request parameters 
Fixes gh-4911
 2018-07-16 09:39:06 -05:00
Rob Winch 05ed028f9d Modernize Default Log In Page 
Fixes: gh-5515
 2018-07-15 19:43:42 -05:00
Joe Grandja 4fc6d96073 Rename @OAuth2Client to @RegisteredOAuth2AuthorizedClient 
Fixes gh-5360
 2018-06-08 17:33:21 -04:00
Joe Grandja 81e19ad85e Move oauth2 samples under boot directory 
Issue gh-5397
 2018-06-06 09:37:36 -04:00
Rob Winch a9e6d7606e Update WebFlux samples to use Spring Boot 
Fixes: gh-5411
 2018-06-05 11:31:15 -05:00
Joe Grandja de95583509 Move oauth2login samples under oauth2 directory 
Fixes gh-5397
 2018-05-30 12:16:05 -04:00
Joe Grandja f9f74b1bfc Simplify oauth2login-webflux sample 
Fixes gh-5396
 2018-05-30 11:53:25 -04:00
Joe Grandja 6c13e18483 Simplify oauth2login sample 
Fixes gh-5384
 2018-05-30 11:29:28 -04:00
Rob Winch ecf6caa896 Add missing @Configuration for WebClientConfig 
Issue: gh-5388
 2018-05-25 12:48:42 -05:00
Rob Winch 68117d7b0b Samples use OAuth2AuthorizedClientExchangeFilterFunction 
Issue: gh-5386
 2018-05-25 12:25:13 -05:00
Rob Winch bc3467c118 Add oauth2login-webflux sample 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Joe Grandja 526e0fdd4f Add OAuth2 Client HandlerMethodArgumentResolver 
Fixes gh-4651
 2018-04-02 12:13:52 -04:00
Joe Grandja 982fc360b2 Add support for authorization_code grant 
Fixes gh-4928
 2018-04-02 12:13:06 -04:00
Rob Winch 7a204a5f58 Fixes for SPR-16624 
Fixes: gh-5164
 2018-03-27 22:35:08 -05:00
Rob Winch b1d013e8f0 Fix JDK 9 
Issue: gh-5160
 2018-03-27 09:30:56 -05:00
Joe Grandja 59cef7d339 HttpSessionOAuth2AuthorizationRequestRepository handle multiple OAuth2AuthorizationRequest per session 
Fixes gh-5110
 2018-03-20 22:14:48 -05:00
Rob Winch c9ef2549b2 Update to appengine-gradle-plugin:1.3.5 
Fixes: gh-5054
 2018-02-27 20:45:27 -06:00
Rob Winch c5e6ee4563 Update Dependencies 
Fixes: gh-4973
 2018-01-24 13:48:14 -06:00
Michael J. Simons 1517e9b222 Migrate xml-contacts groovy->java 
See #4939.
 2018-01-24 11:06:08 -06:00
Michael J. Simons 4a3baad4f9 Migrate xml-ldap groovy->java 
See #4939.
 2018-01-24 11:06:08 -06:00
Michael J. Simons 8c6f965973 Migrate javaconfig-ldap groovy->java 
See #4939.
 2018-01-24 11:06:08 -06:00
Michael J. Simons 26f7b2f99f Migrate javaconfig-helloworld groovy->java 
See #4939.
 2018-01-24 11:06:08 -06:00
Michael J. Simons 2e2b22f87e Migrate xml-insecure groovy->java 
See #4939.
 2018-01-24 11:06:08 -06:00
Rob Winch fe40952908 Revert "webflux-form sample uses Tomcat" 
This reverts commit 67bb91bb76.

We can use Netty again now that reactor/reactor-netty#248 has
been resolved.

Fixes: gh-4923
 2018-01-23 08:31:41 -06:00
Michael J. Simons 6c0b510c98 Remove hardcoded Spring versions from namespaces 
This fixes #4945.
 2018-01-10 16:47:20 -06:00
Michael J. Simons b634b49f9f Migrate xml-jaas groovy->java 2018-01-10 16:44:59 -06:00
Michael J. Simons cd3449b312 Migrate javaconfig-form groovy->java 
See #4939
 2018-01-10 16:41:36 -06:00
Johnny Lim f3830eec7d Rename userDetailsRepository to userDetailsService 2018-01-10 16:04:48 -06:00
Michael J. Simons a4701bcd52 Migrate javaconfig-jdbc groovy->java 
See #4939.
 2018-01-10 16:03:39 -06:00
Michael J. Simons 718052932a Migrate xml-helloworld groovy->java 
This is a suggestion how to migrate the GebSpec based tests to Java / Selenium based tests.

Issue: gh-4939
 2018-01-03 09:35:28 -06:00