d7f7e9d4b7
Add Jwt to BearerTokenAuthentication Converter
...
Fixes gh-7346
2019-09-03 15:58:05 -06:00
068f4f0147
Polish Opaque Token
...
Use OAuth2AuthenticatedPrincipal
Use BearerTokenAuthentication
Update names to reflect more generic approach.
Fixes gh-7344
Fixes gh-7345
2019-09-03 15:58:05 -06:00
c019507770
Add BearerTokenAuthentication
...
Fixes gh-7343
2019-09-03 15:58:05 -06:00
346b8c2cff
Add OAuth2AuthenticatedPrincipal
...
Fixes gh-7342
2019-09-03 15:58:05 -06:00
39e84013f7
ClearSiteDataHeaderWriter Directives
...
Fixes gh-7347
2019-09-03 15:57:10 -06:00
f350988285
Add Servlet and ServerBearerExchangeFilterFunction
...
Fixes gh-5334
Fixes gh-7284
2019-09-03 15:29:06 -06:00
dbd1819ea4
add media type jwk-set+json to accept header
...
Fixes gh-7290
2019-09-03 14:12:50 -04:00
ad0d3e9702
Polish remember me username check
2019-09-03 11:48:46 -04:00
26ae590c68
Check that userdetails for username exists. #7251
2019-09-03 11:48:46 -04:00
8773c7994f
Allow to set default securityContextRepository for each authentication mechanisms
...
Fixes gh-7249
2019-09-03 07:46:59 -06:00
5e98b92273
In-memory ClientRegistration Repo Duplicate Check
...
Fixes gh-7338
2019-09-02 15:30:48 -06:00
f6c650db47
Replace Streams with Loops
...
First version of replacing streams
fix wwwAuthenticate and codestyle
fix errors in implementation to pass tests
Fix review notes
Remove uneccessary final to align with cb
Short circuit way to authorize
Simplify error message, make code readably
Return error while duplicate key found
Delete check for duplicate, checkstyle issues
Return duplicate error
Fixes gh-7154
2019-09-02 15:30:48 -06:00
d6d0d89ff8
NamespaceRememberMeTests groovy->java
...
Issue gh-4939
2019-09-02 13:08:21 -06:00
bf5b693549
NamespaceHttpOpenIDLoginTests groovy->java
...
Issue gh-4939
2019-08-30 15:54:43 -06:00
ffc43e02c3
Fix NPE in RequestContextSubscriber
...
RequestContextSubscriber could cause NPE if Mono/Flux.subscribe()
was invoked outside of Web Context.
In addition it replaced source Context with its own without respect
to old data.
Now Request Context Data is Propagated within holder class and
it is added to existing reactor Context if Holder is not empty.
Fixes gh-7228
2019-08-30 16:49:38 +03:00
1de885e298
use simple link instead of 'pass' macro
2019-08-29 06:17:06 -05:00
24cd9b990a
fix footnotes markup
...
Fixes #3180
2019-08-29 06:17:06 -05:00
a5cdd8451d
Create the rncToXsd Task lazily
2019-08-29 06:13:52 -05:00
fb9bd57936
Cleanup dependencies
2019-08-29 06:13:52 -05:00
312f4e645b
Use the 'java-gradle-plugin' plugin for the plugin
2019-08-29 06:13:52 -05:00
c9da41bc52
Dependency update script compatible with mac
...
Fixes: gh-7321
2019-08-28 14:59:46 -04:00
505882c944
Consolidate shared code between JwtDecoders and ReactiveJwtDecoders
...
Extract duplicated code from JwtDecoders and ReactiveJwtDecoders into a
package-private class.
Fixes gh-7263
2019-08-27 09:27:41 -06:00
742c971889
Increase Memory for Gradle
2019-08-26 14:59:42 -05:00
d69cd36a97
Update to Gradle 5.6
2019-08-26 14:32:07 -05:00
323cf9fa92
Polish OAuth2AuthorizedClientResolver
2019-08-26 11:04:19 -04:00
2c2e8e5f24
Remove internal Optional usage in favor of null checks
...
Issue gh-7155
2019-08-26 09:27:40 -04:00
2c2d3b5d85
Use ConcurrentHashMap in InMemoryReactiveClientRegistrationRepository
...
Fixes gh-7299
2019-08-23 20:12:29 -04:00
bc38a4a3cc
Provide configurable Clock in OAuth2AuthorizedClientProvider impls
...
Fixes gh-7114
2019-08-23 16:43:32 -04:00
052256db0a
Add WebSecurityConfigurerAdapter Doc Detail
...
Fixes gh-6809
2019-08-22 17:56:39 -06:00
f0515a021c
Polish #7116
2019-08-22 12:01:10 -04:00
2ddab8b23e
Use UserDetailsService bean in sample app
...
Fixes: gh-7283
2019-08-22 10:06:56 -04:00
46756d2e6b
Introduce Reactive OAuth2AuthorizedClient Manager/Provider
...
Fixes gh-7116
2019-08-21 14:12:38 -04:00
a377581951
Fix WebClient Memory Leaks
...
WebClient exchange requires that the body is consumed. Before this commit
there were places where an Exception was thrown without consuming the body
if the status was not successful. There was also the potential for the
statusCode invocation to throw an Exception of the status code was not
defined which would cause a leak.
This commit ensures that before the Exception is thrown the body is
consumed. It also uses the http status in a way that will ensure an
Exception is not thrown.
Fixes gh-7293
2019-08-21 12:46:11 -05:00
11f423511d
Add Catalan localization messages
2019-08-21 10:14:29 -05:00
0209fbad08
Multiple JWS Algorithms
...
Fixes: gh-6883
2019-08-20 14:19:59 -04:00
1a233a58c7
Add OnCommittedResponseWrapper.setContentLengthLong
...
Add setContentLengthLong tracking to OnCommittedResponseWrapper in
order to detect commits on servlets that use setContentLengthLong to
announce the entity size they are about to write (as used in the
Apache Tomcat's DefaultServlet).
Fixes gh-7261
2019-08-19 21:14:41 -04:00
766c4434d4
Improve test coverage of JwtGrantedAuthoritiesConverter
...
Some negative test cases were missing. Added these to have
full test coverage for JwtGrantedAuthoritiesConverter.
2019-08-19 21:14:07 -04:00
0a058c973a
Add setter for authorities claim name in JwtGrantedAuthoritiesConverter
...
Prior to this change authorities are always mapped using well known
claim names ('scope' or 'scp'). To change this default behaviour the
converter had to be replaced completely with a custom one.
This commit adds an additional setter to configure a custom
claim name like e.g. 'roles'. Without specifying a custom claim name
the default claims to be used still remains to the well known ones.
This way the authorities can be mapped according to customized
token claims.
Fixes gh-7100
2019-08-19 21:14:07 -04:00
95caa4715f
Add Reactive Mock Jwt Sample Tests
...
Fixes gh-7278
2019-08-19 13:14:58 -06:00
712dfbdabd
Fix typo in docs
2019-08-19 12:53:54 -05:00
9876b66f99
Polish GlobalMethodSecurityConfiguration
...
Initialize ExpressionBasedPreInvocationAdvice for
PreInvocationAuthorizationAdviceVoter only when needed.
2019-08-17 16:35:30 -06:00
aa026f8526
Nimbus JWK Set Builders Take SignatureAlgorithm
...
Fixes gh-7270
2019-08-17 01:10:12 -06:00
10a9207cd5
Pivot Resource Server Sample
...
Changed sample to manage its own JwtDecoder, allowing the Nimbus
Jwt Decoder Builder API to evolve during milestone development.
2019-08-17 00:26:39 -06:00
0ecffb0840
Multi-tenancy Sample AuthenticationManagers
...
Fixes gh-7272
2019-08-17 00:26:39 -06:00
efe8205985
Revert "Nimbus JWK Set Configs Take SignatureAlgorithm"
...
This reverts commit 9617ff6054
2019-08-16 17:33:09 -06:00
9617ff6054
Nimbus JWK Set Configs Take SignatureAlgorithm
...
Fixes gh-7270
2019-08-16 14:49:19 -06:00
9d63c36f93
Fix JDK 10+
...
Issue gh-7265
2019-08-16 11:13:11 -05:00
0c6bff4afb
SecurityMockMvcConfigurer Honors Filter Order
...
Fixes gh-7265
2019-08-16 09:24:33 -05:00
4166c6e493
Fix UserDetailsPasswordService Checkstyle
...
Issue gh-7266
2019-08-16 06:46:09 -05:00
5903f2dd9b
Fix UserDetailsPasswordService JavaDoc
...
* Fix typo
* Clarify that `newPassword` is already an encoded password
2019-08-16 06:45:28 -05:00
Josh Cummings
Bouke Nijhuis
Eleftheria Stein
Scott Murphy
Eddú Meléndez
kostya05983
Roman Matiushchenko
Angel Aguilera
Lars Grefer
Thomas Vitale
Rob Winch
watsta
Ebert Toribio
Joe Grandja
Daniel Wegener
Andreas Falk
Hideaki Matsunami
John Lin
Michael J. Simons