Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
10,200 Commits 29 Branches 320 Tags 104 MiB
Commit Graph

1210 Commits

Author SHA1 Message Date
Dmitriy Bogdanov fe274e7553 Fix some list punctuation and capitalization in docs 2021-09-15 10:49:02 -06:00
Dmitriy Bogdanov 31a8f8c4df Fix the use of "s" with code blocks in docs 2021-09-15 10:49:02 -06:00
Dmitriy Bogdanov af4cc03dec Fix some typos and mistakes in docs 2021-09-15 10:49:02 -06:00
Anthony Lofton 8cba9fbf9d Updated test.adoc SecurityMockServerConfigurers method references 
Updated all references to SecurityMockServerConfigurers to refer to
correct methods.
Added documentation for mockJwt to include the
SecurityMockServerConfigurers class.
 2021-09-14 15:04:08 -03:00
Josh Cummings 4f06fc6ed1 Add Saml2LogoutConfigurer 
Closes gh-9497
 2021-09-13 16:39:48 -06:00
Josh Cummings c63d618b26 Add Single Logout Support 
Closes gh-8731
 2021-09-13 16:39:48 -06:00
Josh Cummings 6488295cad Add RelyingPartyRegistrationResolver 
Closes gh-9486
 2021-09-13 16:39:48 -06:00
Josh Cummings f5a525e740 Add Registration to Saml2Authentication 
Closes gh-9487
 2021-09-13 16:39:48 -06:00
heqiang 3443eac829 Fix typo in index.adoc 2021-09-13 16:32:32 +02:00
Marcus Da Coregio 6fae98a6f4 Update docs to point to ACL samples 
Closes gh-10110
 2021-09-06 11:14:57 -03:00
Josh Cummings 989c1419d5 Clarify OAuth 2.0 Resource Server Multitenancy Snippet 
Closes gh-10233
 2021-09-03 16:54:41 -06:00
Ayush Kohli 1cfe84922c Add Java examples to session management docs 
Closes gh-8979
 2021-08-26 10:14:48 +02:00
YevheniiLutsyshyn ac8e912ea1 Update a broken link to Spring Boot documentation 2021-08-17 11:33:49 +02:00
Josh Cummings aed203f367
Docs for WebSessionServerLogoutHandler 
Issue gh-4838
 2021-08-16 13:09:42 -06:00
Josh Cummings d5c953b106
Polish Saml2AuthenticationRequestRepository 
- Moved docs into AuthnRequest section, changed links to be more
semantically valuable to search engines
- Moved tests to be nearer to similar tests

Issue gh-9185
 2021-07-27 14:56:23 -06:00
Marcus Da Coregio 16e17d242e Add Saml2AuthenticationRequestRepository 
Closes gh-9185
 2021-07-27 14:55:53 -06:00
Steve Riesenberg bfe94f9a80 Update deprecated usage in reference docs 
Closes gh-10063
 2021-07-21 10:21:02 -05:00
dmitrilc a4431264e6 Update oauth2-resourceserver.adoc 
fix the name of the parameter, from failure to badCredentials

Replaces AuthenticationFailureEvent

Remove AuthenticationFailureEvent Reference

Closes gh-10062
 2021-07-16 11:56:57 -06:00
Rob Winch f73f213f50 Remove DependencySetPlugin 
Closes gh-10070
 2021-07-12 15:31:38 -05:00
Marcus Da Coregio ff47086d56 Update SAML docs to point to correct api url 
Closes gh-9953
 2021-07-09 11:09:55 -03:00
Luke Quinane e30b45c6fb Fix typos 2021-07-08 09:17:47 -03:00
Josh Cummings bd88f37a50
Document PasswordManagementConfigurer 
Issue gh-8657
 2021-07-01 16:58:43 -06:00
Evgeniy Cheban d121ab9565 Support A Well-Known URL for Changing Passwords 
Closes gh-8657
 2021-07-01 16:57:53 -06:00
Marcus Da Coregio 85e95719a0 Update docs links to point to minor version branches 
Closes gh-9986
 2021-07-01 09:01:25 -03:00
Marcus Hert da Coregio 03ded987af Allow Defining Custom SAML Response Validator 
Add a setter method into OpenSaml4AuthenticationProvider that allows defining a custom ResponseValidator

Closes gh-9721
 2021-06-30 08:26:42 -03:00
Marcus Hert da Coregio 6474a9e76e Allow Creating RelyingPartyRegistration from Metadata InputStream 
Update SAML2 Login reference documentation to reflect the changes

Closes gh-9558
 2021-06-30 08:02:24 -03:00
Marcus Da Coregio 58ebacc06f Use springFrameworkVersion property in docs links 
Closes gh-9987
 2021-06-29 13:20:47 -03:00
Josh Cummings 0080aeee94
Add OpenSAML 3 and 4 Explanation 
Closes gh-10014
 2021-06-28 13:25:07 -06:00
Josh Cummings 5940b8dee7
Update to use OpenSaml4AuthenticationProvider 
Closes gh-10013
 2021-06-28 13:25:02 -06:00
Josh Cummings 8d3e58f074
Polish Whitespace 
Issue gh-10013
 2021-06-28 13:24:57 -06:00
Eleftheria Stein da9d7414bd Add remaining Kotlin samples to reference docs 
Closes gh-8172
 2021-06-24 11:49:13 +02:00
Marcus Hert da Coregio bbf5614a9c Fix Broken Links in Docs 
Closes gh-9869
 2021-06-21 10:42:55 -03:00
Marcus Da Coregio 0aa93b18d6 Update links to point to migrated samples 
Closes gh-9816
 2021-06-21 10:42:55 -03:00
Marcus Hert da Coregio d60981fd59 Add messaging to documentation about sample migration 
Closes gh-9815
 2021-06-21 10:42:55 -03:00
Eleftheria Stein b51c18b37b Add missing WebFlux CORS Reference 
Closes gh-9951
 2021-06-18 16:31:02 +02:00
Eleftheria Stein 7f81b3fead Fix typos in RSocket reference docs 2021-06-18 14:39:15 +02:00
Eleftheria Stein ebef8c1425 Remove non-existent class from RSocket reference docs 
Closes gh-9949
 2021-06-18 14:15:45 +02:00
Eleftheria Stein 8bf970c805 Fix typos in WebFlux test docs 2021-06-18 13:12:10 +02:00
Eleftheria Stein ba8a5b1d20 Fix typo in WebFlux reference docs 2021-06-17 16:38:23 +02:00
Eleftheria Stein 56fd50fa2f Add remaining servlet Kotlin examples 
Issue gh-8172
 2021-06-16 10:34:21 +02:00
Eleftheria Stein 1b72e9d4e0 Fix typos in FAQ docs 2021-06-16 10:34:21 +02:00
Eleftheria Stein e89db9fd69 Fix typos in Mock MVC docs 2021-06-16 10:34:21 +02:00
Eleftheria Stein cf9071b0b2 Fix typos in SAML 2 docs 2021-06-15 09:53:53 +02:00
Josh Cummings c294050738
Anonymous Authentication Argument Resolution Docs 
Closes gh-3338
 2021-06-08 16:11:18 -06:00
Eleftheria Stein e3416640a7 Fix Resource Server clock skew default value in docs 
Closes gh-6611
 2021-06-02 12:19:36 +03:00
Josh Cummings 67e5c05a47 Polish AuthorizationManager Method Security 
- Removed consolidated pointcut advisor in favor of each interceptor
being an advisor. This allows Spring AOP to do more of the heavy
lifting of selecting the set of interceptors that applies
- Created new method context for after interceptors instead of
modifying existing one
- Added documentation
- Added XML support
- Added AuthorizationInterceptorsOrder to simplify interceptor
ordering
- Adjusted annotation lookup to comply with JSR-250 spec
- Adjusted annotation lookup to exhaustively search for duplicate
annotations
- Separated into three @Configuration classes, one for each set of
authorization annotations

Issue gh-9289
 2021-05-18 17:34:04 -06:00
Rob Winch 55f85bd3a1 Add Eleftheria Stein to Reference Authors 
Closes gh-9762
 2021-05-17 09:25:59 -05:00
Eleftheria Stein 30a203ed7a Add Kotlin samples for Jwt Client Authentication 
Issue gh-9578
 2021-05-17 10:33:42 +02:00
Joe Grandja e51ca79954 Document Jwt Client Authentication support 
Closes gh-9578
 2021-05-14 22:58:44 -04:00
Joe Grandja f874a12ddb Document jwt-bearer authorization grant 
Closes gh-9580
 2021-05-14 14:48:37 -04:00
Josh Cummings 498be8f431
Clarify requireInitialize Example 
Closes gh-9484
 2021-05-14 10:36:00 -06:00
Josh Cummings fc6fa79c86
Update permission-policy Docs 
Issue gh-9262
 2021-04-29 16:52:29 -06:00
Rob Winch 006b9b9607 master->main 
Closes gh-9683
 2021-04-26 16:55:43 -05:00
Josh Cummings 501d5ff497
Removed Method Security AuthorizationManager from What's New 
Issue gh-9596
 2021-04-12 15:53:44 -06:00
Josh Cummings 163b5943ca
Revert AuthorizationManager Method Security 2021-04-12 15:53:22 -06:00
Josh Cummings b352c8f1da
Removed SAML SLO from What's New 
Issue gh-9596
 2021-04-12 14:49:33 -06:00
Josh Cummings 8c92eddbe5
Revert "Add Registration to Saml2Authentication" 
This reverts commit efe42b93ce.
 2021-04-12 14:44:36 -06:00
Josh Cummings 55047fd996
Revert "Add RelyingPartyRegistrationResolver" 
This reverts commit 2f734a0975.
 2021-04-12 14:44:19 -06:00
Josh Cummings 37b40476e7
Revert "Add Single Logout Support" 
This reverts commit e807fae869.
 2021-04-12 14:44:04 -06:00
Josh Cummings 4e81bbe386
Revert "Add Saml2LogoutConfigurer" 
This reverts commit 6f52baba29.
 2021-04-12 14:43:19 -06:00
Josh Cummings 9b07b6a991
Added Sections to What's New 
Closes gh-9596
 2021-04-10 01:03:56 -06:00
Josh Cummings 6f52baba29
Add Saml2LogoutConfigurer 
Closes gh-9497
 2021-04-10 00:25:34 -06:00
Josh Cummings e807fae869
Add Single Logout Support 
Closes gh-8731
 2021-04-10 00:25:34 -06:00
Josh Cummings 2f734a0975
Add RelyingPartyRegistrationResolver 
Closes gh-9486
 2021-04-10 00:12:38 -06:00
Josh Cummings efe42b93ce
Add Registration to Saml2Authentication 
Closes gh-9487
 2021-04-10 00:12:38 -06:00
Josh Cummings df8abcfae7
Use Interceptors instead of Advice 
- Interceptor is a more descriptive term for what
method security is doing
- This also allows the code to follow a delegate
pattern that unifies both before-method and after-
method authorization

Issue gh-9289
 2021-04-09 18:45:31 -06:00
Josh Cummings 122346bd27
Document AuthorizationManager for Method Security 
Issue gh-9289
 2021-04-09 18:45:10 -06:00
Eleftheria Stein 21f9876d87 Add WebFlux section to What's New 
Closes gh-9590
 2021-04-09 19:36:43 +02:00
Eleftheria Stein e03fe7f089 Add coroutine support to pre/post authorize 
Closes gh-8143
 2021-04-09 19:33:06 +02:00
Eleftheria Stein 65b3f6769c Add Kotlin DSL section to What's New 
Closes gh-9589
 2021-04-09 16:36:47 +02:00
Eleftheria Stein c3739ff799 Add Configuration section to What's New 
Closes gh-9588
 2021-04-09 16:35:41 +02:00
Joe Grandja b225ab3bbe Add OAuth 2.0 Client section to What's New 
Closes gh-9587
 2021-04-09 10:15:14 -04:00
Rob Winch 60d3db5798 add management platform(project(":spring-security-dependencies")) 
Closes gh-9540
 2021-04-05 10:36:36 -05:00
Rob Winch de1b3e9d30 Remove DepencencyManagementPlugin 
Issue gh-9540
 2021-04-05 10:36:36 -05:00
Rob Winch 1a76ee7442 Update Gradle configuration names 
Closes gh-9540
 2021-04-05 10:36:36 -05:00
Eleftheria Stein 4a492846f1 Revert "Lock dependencies for 2.5.0-M3" 
This reverts commit f05cc6269c.
 2021-03-15 23:18:45 +01:00
Eleftheria Stein f05cc6269c Lock dependencies for 2.5.0-M3 2021-03-15 11:00:19 +01:00
Ivan 8f07ca4957
Fix missing return in example 
Closes gh-9481
 2021-03-03 13:37:26 +01:00
Josh Cummings c4be1c6a56
Revert "Lock Dependencies" 
This reverts commit a85caa4098.
 2021-02-11 15:49:59 -07:00
Josh Cummings a85caa4098
Lock Dependencies 2021-02-11 15:00:38 -07:00
Eleftheria Stein c836c716fe Fix typo in reactive CSRF docs 2021-02-08 15:02:16 +01:00
kavi87 10dce79c07 Update saml2-login.adoc 
Fix example on registering custom marshaller for saml request
 2021-02-04 10:06:39 -07:00
Josh Cummings 041e4aa22f
Change Example Name 
Closes gh-9379
 2021-01-28 11:22:02 -07:00
Rob Winch ad4497fb72 Add https://repo.spring.io/release to reference 2021-01-19 22:50:43 -06:00
Christophe Gilles 54d3839f63 Add permissionsPolicy http header 2020-12-11 12:32:18 +01:00
Eleftheria Stein 90b48554e4 Fix Custom DSL sample in docs 2020-12-09 10:48:15 +01:00
Eleftheria Stein d3ef340b26 Fix typos 2020-12-03 11:05:22 +01:00
Josh Cummings fe93326087
Update SAML 2.0 Metadata URL Docs 
Closes gh-9133
 2020-12-02 14:13:02 -07:00
Joe Grandja 58e3235093 Deprecate ClientAuthenticationMethod BASIC and POST 
Closes gh-9220
 2020-11-25 15:13:28 -05:00
Joe Grandja b95e1aa209 Revert "Lock dependencies for 5.5.0-M1" 
This reverts commit 25a7482c8c.
 2020-11-03 19:53:28 -05:00
Rob Winch 4e1f97a525 Document WithSecurityContextTestExecutionListener Nested Support 
Issue gh-9179
 2020-11-03 17:53:59 -06:00
Josh Cummings 8b7751f5f4
Polish Multiple Filter Chains Docs 
Issue gh-9178
 2020-11-02 13:49:24 -07:00
Guillaume Berche 69336fb3ec
Add Multiple Filter Chains Docs 
Closes gh-9178
 2020-11-02 13:45:04 -07:00
Guillaume Berche ab9a310485
Add Link to WebFlux Unit Tests 2020-11-02 13:45:04 -07:00
Josh Cummings b8f8fab54f
Document SigningMethod Support 
Issue gh-8952
Issue gh-9177
 2020-11-02 11:27:23 -07:00
Rob Winch 25a7482c8c Lock dependencies for 5.5.0-M1 2020-10-30 17:52:03 -05:00
Hideaki Matsunami 6d9ee5a354 add white space before strong notation. 2020-10-30 15:44:49 -06:00
Ayush Kohli ea68989421 Closes gh-8196 
Add leveloffset
 2020-10-28 14:55:30 -06:00
Josh Cummings 6714112961
Add SAML Response Decryption Documentation 
Issue gh-9044
Issue gh-9131
 2020-10-14 16:49:42 -06:00
Josh Cummings b06b17ca9b
Add Number 10 Diagram Image 2020-10-14 16:49:42 -06:00
Matthias Luppi 45a86a4b4d Rework community.adoc 
Fix link to CONTRIBUTING.adoc and use proper name of Stack Overflow according to their trademark guidelines (two words, capital letters)
 2020-10-12 13:18:02 -06:00
Josh Cummings 366146ff80
Polish JWT Signature Algorithm Discovery 
- Moved support to JwtDecoders and ReactiveJwtDecoders since there is
already the expectation that those classes make an outbound connection
to complete configuration. Since there's no outbound connection when
configuring a NimbusJwtDecoder or NimbusReactiveJwtDecoder, it would be
more intrusive to change that.

Closes gh-7160
 2020-10-09 14:17:30 -06:00
Josh Cummings a2aeb95b59
Update What's New Link 
Issue gh-9038
 2020-10-06 09:05:18 -06:00
Eleftheria Stein 320567128a Add expression based Kotlin samples 
Issue gh-8172
 2020-10-01 17:58:25 +02:00
Eleftheria Stein 0286d368c3 Add authentication event Kotlin samples 
Issue gh-8172
 2020-10-01 17:58:25 +02:00
Eleftheria Stein 669587409f Add Controller Kotlin sample for form login 
Issue gh-8172
 2020-10-01 17:58:25 +02:00
Josh Cummings a6d19474c4
Add Header and Parameter Value Documentation 
Closes gh-9038
 2020-09-30 20:50:29 -06:00
ilee c2d8939cf7 Update ssl setup guide link in tomcat server 2020-09-24 13:51:27 -06:00
Eleftheria Stein 019c27b0a0 Add servlet HTTP exploit samples 
Issue gh-8172
 2020-09-18 14:44:33 +02:00
Eleftheria Stein f26387a4b7 Add reactive HTTP exploit samples 
Issue gh-8172
 2020-09-18 14:44:10 +02:00
Eleftheria Stein 72acc2959e Add servlet CSRF Kotlin samples 
Issue gh-8172
 2020-09-18 14:14:32 +02:00
Joe Grandja 7b1f574769 Revert "Lock Dependency Versions for 5.4.0" 
This reverts commit 3d0e459182.
 2020-09-09 18:14:12 -04:00
Joe Grandja 3d0e459182 Lock Dependency Versions for 5.4.0 2020-09-09 13:45:03 -04:00
Josh Cummings 6222c5fe34 Add What's New in 5.4 
Closes gh-9001
 2020-09-09 13:27:22 -04:00
Eleftheria Stein 593a556991 Remove broken link from docs 
Closes gh-8986
 2020-09-07 14:07:42 +02:00
知一 58c7c21a6c Update abstract-authentication-processing-filter.adoc 2020-09-07 07:57:40 -04:00
Josh Cummings 0a4766f21e
Restructure SAML 2.0 Documentation 
- Add images
- Standardize terminology
- Add detail about working with OpenSAML
- Reorganize sections

Closes gh-8763
 2020-08-28 12:42:44 -06:00
Eleftheria Stein a9fe2cb377 Add servlet OAuth2 login Kotlin samples 
Issue gh-8172
 2020-08-28 18:15:59 +02:00
Eleftheria Stein 44399a5256 Add servlet OAuth2 resource server Kotlin samples 
Issue gh-8172
 2020-08-28 12:21:24 +02:00
Eleftheria Stein 7a5d9ce287 Fix typos in reference docs 2020-08-25 10:57:41 +02:00
Rob Winch 2abf59b695 Merge Formatting Changes 
Issue gh-8945
 2020-08-24 17:33:23 -05:00
Phillip Webb 8d80166aaf Update exception variable names 
Consistently use `ex` for caught exception and `cause` for Exception
constructor arguments.

Issue gh-8945
 2020-08-24 17:33:08 -05:00
Eleftheria Stein cf48f986f6 Fix typo in resource server documentation 2020-08-24 09:10:33 +02:00
Josh Cummings e6d1e2cf81
Restructure SAML 2.0 Documentation 
Issue gh-8763
 2020-08-19 14:59:26 -06:00
Eleftheria Stein 69e0552c30 Add servlet OAuth2 client Kotlin samples 
Issue gh-8172
 2020-08-11 14:25:27 +02:00
Eleftheria Stein 380a11566e Add registered OAuth2 authorized client Kotlin samples 
Issue gh-8172
 2020-08-11 10:24:21 +02:00
Eleftheria Stein 324d6795c9 Add WebClient samples to docs 
Issue gh-8172
 2020-08-11 08:33:46 +02:00
Eleftheria Stein 496fcbb102 Add OAuth2 resource server WebFlux samples 
Issue gh-8172
 2020-08-11 08:33:46 +02:00
Eleftheria Stein d839e4dd71 Fix typos in resource server docs 
- Use withJwkSetUri instead of fromJwkSetUri
- Use ES512 instead of EC512
- Use NimbusReactiveOpaqueTokenIntrospector instead of NimbusOpaqueTokenIntrospector in reactive
- User authorizeExchange instead of authorizeRequests
 2020-08-11 08:33:46 +02:00
Eleftheria Stein 12a8795c3d Fix typo in resource server docs 2020-08-06 14:11:13 +02:00
Joe Grandja 1d74d556c2 Revert "Lock Dependency Versions for 5.4.0-RC1" 
This reverts commit f3a1e5d40c.
 2020-08-05 14:59:11 -04:00
Joe Grandja f3a1e5d40c Lock Dependency Versions for 5.4.0-RC1 2020-08-05 13:46:11 -04:00
Jakub Kubrynski 8a355240bc
SAML 2.0 SP Metadata Endpoint Support 
Issue gh-8693
 2020-08-05 10:08:47 -06:00
Joe Grandja 8146b1fdda Deprecate CustomUserTypesOAuth2UserService 
Closes gh-8908
 2020-08-04 13:23:44 -04:00
Joe Grandja 0ed919f072 Deprecate ClientRegistration.redirectUriTemplate 
Closes gh-8906
 2020-08-04 11:03:29 -04:00
Eleftheria Stein-Kousathana 31d5b5068c Kotlin OAuth2 client WebFlux samples 
Issue gh-8172
 2020-07-27 09:34:37 +02:00
Jay Bryant 48aa5cceda
Wording changes 
Replacing some terms
 2020-07-15 10:22:49 -04:00
Eleftheria Stein 683cb49c9d Add Kotlin WebFlux header configuration to docs 
Issue gh-8172
 2020-07-14 16:34:30 +02:00
Eleftheria Stein 793926b977 Add Kotlin header configuration samples to docs 
Issue gh-8172
 2020-07-10 16:08:02 +02:00
Eleftheria Stein f479f0ea49 Add Kotlin expression-based authorization 
Issue gh-8172
 2020-07-06 13:13:57 +02:00
Eleftheria Stein 0bdf6859be Add Kotlin logout samples to docs 
Issue gh-8172
 2020-07-06 12:45:41 +02:00
Josh Cummings 146d0b6358
Revert "Lock Dependency Versions for 5.4.0-M2" 
This reverts commit 68538897c8.
 2020-07-01 13:11:50 -06:00
Josh Cummings 68538897c8
Lock Dependency Versions for 5.4.0-M2 2020-07-01 12:40:29 -06:00
Eleftheria Stein f5e0fe5907 Polish documentation formatting 
Issue gh-8199
 2020-06-29 18:16:59 +02:00
Heinz Wittig 08b69e77d2
Merge Project Modules and Dependencies Section of the docs 
Closes gh-8199
 2020-06-29 12:11:04 -04:00
Rob Winch ca1252be94 Replace whitelist with allowlist 
Issue gh-8676
 2020-06-10 11:49:21 -05:00
Rob Winch a907026eae Deprecate X-FRAME-OPTIONS ALLOW-FROM Directive 
Closes gh-8677
 2020-06-10 11:48:56 -05:00
Robin Dupret bb0fac66d6 Fix a few typos in the documentation 2020-06-09 14:40:39 -05:00
Dayan d8aa208a9f Fix broken link in spring security reference document 
Fixes:#8593
 2020-06-02 05:36:19 -06:00
Eleftheria Stein a63a0e3765 Add reactive CSRF samples to docs 
Issue gh-8172
 2020-05-28 13:16:35 -04:00
Josh Cummings da05543ef6
Update OAuth 2.0 Client Testing Docs 
Issue gh-8603
 2020-05-28 10:33:02 -06:00
Markus Engelbrecht 7463583c1b Fix typos in BCryptPasswordEncoder documentation 
Resolves gh-8585
 2020-05-27 10:35:49 -05:00
Mazharul Islam bf9e8295d6 mentioning the default strength of BCryptPasswordEncoder 2020-05-21 11:15:45 -05:00
Thomas Turrell-Croft 014df98ebb Polish 
* Correct documented default schema to match default schema exposed as classpath resource
* Fix Java example of adding users to JdbcUserDetailsManager
 2020-05-21 11:09:31 -05:00
Andreas Volkmann 16b0a268d9 Update index.adoc 2020-05-20 08:01:56 -05:00
Joe Grandja c1abc9b134 Polish gh-8501 2020-05-15 13:26:09 -04:00
Thomas Vitale 78fa859798 Add issuerUri to ClientRegistration.providerDetails 
- Add "issuerUri" attribute to ClientRegistration.providerDetails for OpenID Connect Discovery 1.0 or OAuth 2.0 Authorization Server Metadata.
- Validate OidcIdToken "iss" claim against the OpenID Provider "issuerUri" value.
- Update documentation for client registration: it includes issuer-uri property now.

Fixes gh-8326
 2020-05-14 17:13:07 -04:00
Rob Winch e5d2aaf6fe
Deprecate OpenID 2.0 support 
Deprecate OpenID 2.0 support
 2020-05-12 09:37:56 -05:00
Jean-Pierre Bergamin fbd3cfa40e
Fix code snippets to configure timeouts 
Issue: gh-8487
 2020-05-11 15:59:11 -04:00
Dávid Kovács f2a2b469c4 Deprecate openID 2.0 support 
This commit adds deprecation notice to xml schema, parser of the schema and removes fixme comments.

Fixes gh-7153
 2020-05-09 12:04:13 +02:00
Jean-Pierre Bergamin 6d5d883518 Use Opaquetoken properties to configure timeouts 
Improve the documentation to show how to re-use the Opaquetoken properties of `OAuth2ResourceServerProperties` to set up basic auth in the configured `RestTemplate`.
 2020-05-07 15:20:50 -04:00
Joe Grandja 86ca6b013c Unlock dependencies 
This reverts commit 206960cf44.
 2020-05-06 17:27:35 -04:00
Joe Grandja 206960cf44 Lock dependencies for 5.4.0-M1 2020-05-06 17:13:04 -04:00
Andrii Hrytsiuk 7748fb00ba Fix typos in documentation 2020-05-05 10:45:42 -05:00
Dávid Kovács 339d44b5a1 Deprecate openID 2.0 support 
This commit puts deprecation notice on docs, sample applications and configurations (java and xml)

Fixes gh-7153
 2020-05-02 10:18:31 +02:00
Eleftheria Stein 1ca47f5cd0 Fix typo in Java configuration docs 2020-05-01 14:24:40 -04:00
Dávid Kovács 70792a9072 Document description error 
Fixes gh-8119
 2020-04-21 09:17:01 -04:00
corneliouz Bett ebc6012ec7 Rename Preface to Introduction 
Closes gh-8188
 2020-04-20 11:44:13 -05:00
Philipp Gerhard b9b89035f6 Documented dependencies opaque Resource Server 
Extended the documentation for the opaque Resource Server in order to clearly state which dependencies are required in order for the minimal deployment to work. Replaced dead link for Contribute guidelines in README.adoc

Closes gh-8391
 2020-04-17 16:25:14 -05:00
Antonin Arquey 5cd1ec7bb3 Add AuthoritiesMapper setter for reactive OAuth2Login 
Allow the configuration of a custom GrantedAuthorityMapper for reactive OAuth2Login

- Add setter in OidcAuthorizationCodeReactiveAuthenticationManager
  and OAuth2LoginReactiveAuthenticationManager

- Use an available GrantedAuthorityMapper bean to configure the default ReactiveAuthenticationManager

Fixes gh-8324
 2020-04-17 16:55:05 -04:00
Souphorn 64a5bb053e Fix typo with correct capitalization 2020-04-17 10:22:37 -04:00
Josh Cummings 13b2b00093
Add JwtAuthenticationConverter docs 
Issue gh-8185
 2020-04-13 22:47:20 -06:00
Josh Cummings ad8c49acae
Add Docs 
Issue gh-8332
 2020-04-10 16:52:10 -06:00
Josh Cummings 419d7264f9
Add Docs for Custom Bearer Token Header 
Issue gh-8337
 2020-04-09 10:36:03 -06:00
Eleftheria Stein 5f1eb392ff Add WebFlux Kotlin samples to docs 
Issue: gh-8172
 2020-04-08 14:57:25 -04:00
Eleftheria Stein 681d2d68e7 Fix typos in FAQ reference docs 
Add missing space; use https in links
 2020-04-08 11:44:42 -04:00
Maksim Mednik b57c2f2821 Updating authorization docs to mention handling of Maps in @PreFilter and @PostFilter annotations 2020-04-06 18:36:32 -04:00
Joe Grandja 946de2a51e Revert "Fix links in oauth2 doc" 
This reverts commit ad5bfc868c.
 2020-03-30 13:31:08 -04:00
Eleftheria Stein 63c8072ebc Add crypto Kotlin samples to docs 
Issue gh-8172
 2020-03-30 11:32:43 -04:00
Eleftheria Stein 018cbfa93f Add preauth Kotlin samples to docs 
Issue gh-8172
 2020-03-30 11:31:59 -04:00
wassan128 ad5bfc868c Fix links in oauth2 doc 2020-03-27 16:56:13 -05:00
Josh Cummings 81ad2958bd
Clarify ServerBearerExchangeFilterFunction Docs 
Fixes gh-8220
 2020-03-27 13:23:57 -06:00
Eleftheria Stein 7c0023ecc9 Update Encryptors documentation 
Fixes gh-8208
 2020-03-27 09:50:46 -04:00
Eleftheria Stein 6d61b87213 Add security context holder Kotlin samples to docs 
Issue gh-8172
 2020-03-26 15:36:44 -04:00
Eleftheria Stein 8e5e0c4a9e Add delegating filter proxy Kotlin samples to docs 
Issue gh-8172
 2020-03-26 15:35:51 -04:00
Eleftheria Stein 5b4cb5b13d Add filter Kotlin samples to docs 
Issue gh-8172
 2020-03-26 15:10:42 -04:00
Josh Cummings e62b8a7585
Add Figures to Resource Server Docs 
Fixes gh-8182
 2020-03-25 16:30:48 -06:00
Josh Cummings dcacd06360
Polish Resource Server JWT Docs 
Issue gh-5935
 2020-03-24 15:35:57 -06:00
Josh Cummings 8872d8b7d0
Polish Resource Server Multi-tenancy Docs 
Issue gh-7532
 2020-03-24 15:24:43 -06:00
Josh Cummings 933104d2d6
Document JwtGrantedAuthoritiesConverter Features 
Fixes gh-8176
 2020-03-24 14:39:08 -06:00
Eleftheria Stein 2c103f34e3 Add password storage Kotlin samples to docs 
Issue gh-8172
 2020-03-24 10:29:11 -04:00
komuro.hiraku 10c66d282a Fix userNameAttribute property case style 
Fixes gh-8169
 2020-03-23 10:08:14 -04:00
Josh Cummings 0e9497de3c
Document SAML 2.0 Improvements 
Fixes gh-8079
Fixes gh-8078
 2020-03-20 17:08:01 -06:00
Joe Grandja d1dbd92903 Document OAuth2Authorization success and failure handlers 
Fixes gh-8073
 2020-03-20 16:30:05 -04:00
Joe Grandja 5bff741c31 Document AuthorizedClientServiceOAuth2AuthorizedClientManager 
Fixes gh-8152
 2020-03-19 20:15:34 -04:00
Joe Grandja 06fdb83fb8 Document Jackson serialization support for OAuth 2.0 Client 
Fixes gh-8075
 2020-03-18 17:05:56 -04:00
Joe Grandja 4da7235d9b Document OAuth2AuthorizationRequest customization improvements 
Fixes gh-8071
 2020-03-18 11:20:08 -04:00
Joe Grandja e00a030621 Document OAuth 2.0 Client XML Support 
Fixes gh-8074
 2020-03-17 13:27:29 -04:00
Joe Grandja 3d5a1522d6 Document OAuth 2.0 Login XML Support 
Fixes gh-8110
 2020-03-16 12:33:37 -04:00
Josh Cummings bfd36d9a54
Remove Redundant ConcurrentSessionFilter Refs 
Fixes gh-8105
 2020-03-13 16:27:30 -06:00