Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-03-03 11:59:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
16,179 Commits 36 Branches 337 Tags
e73e65677e
Commit Graph

1228 Commits

Author SHA1 Message Date
Dávid Kováč
3ff825576b Move and rename OAuth2IntrospectionClaimAccessor/Names 
Introduced OAuth2TokenIntrospectionClaimAccessor and OAuth2TokenIntrospectionClaimNames
with copied implementation from OAuth2IntrospectionClaimAccessor/Names.
OAuth2IntrospectionClaimAccessor and OAuth2IntrospectionClaimNames are
now deprecated.

Also method getScopes() returning list of scopes was introduced
and getScope() is now deprecated.

Closes gh-9647
 2021-08-12 16:51:33 -06:00
Josh Cummings
b83a4c2985
Polish Preserve Null Claim Values 
Preserves the original behavior of ClaimTypeConverter so that its
converters can maintain their default behavior of null meaning that
conversion failed.

Issue gh-10135
 2021-08-12 10:22:44 -06:00
Fabio Guenci
30a1c1af7c
Preserve Null Claim Values 
Prior to this commit ClaimTypeConverter returned the claims with the
original value for all the claims with a null converted value.
The changes allows ClaimTypeConverter to overwrite and return claims
with converted value of null.

Closes gh-10135
 2021-08-12 10:09:34 -06:00
Steve Riesenberg
6d6dc113d8 Add converter for authentication result in OAuth2LoginAuthenticationFilter 
Closes gh-10033
 2021-08-10 16:50:19 -05:00
Steve Riesenberg
fc553bf19a Add gh-10130 to tests 2021-08-09 15:33:54 -05:00
Steve Riesenberg
acca3dba69 Polish gh-10131 2021-08-09 11:07:12 -05:00
Vincent Boulaye
044157061f Enable customizing headers in token requests 
Adds the possibility to customize the headers of the access token request in AbstractWebClientReactiveOAuth2AccessTokenResponseClient, similarly to what is done in the AbstractOAuth2AuthorizationGrantRequestEntityConverter.

Closes gh-10130
 2021-08-09 10:50:37 -05:00
Josh Cummings
6370906ead
Add SpringOpaqueTokenIntrospector 
Closes gh-9354
 2021-07-26 10:50:50 -06:00
Steve Riesenberg
e1b6a7ba29 Revert "URL encode client credentials" 
This reverts commit c0200512a7bd05faf5de5bc504a400b5eb2f998f.

Issue gh-9610 gh-9863
Closes gh-10018
 2021-07-20 14:06:46 -05:00
Steve Riesenberg
f55247e28a Revert "URL encode client credentials" 
This reverts commit 6cafa4836987c8ee6ccd59e5d988ab7753f1c3e8.

Issue gh-9610 gh-9862
Closes gh-10018
 2021-07-20 14:05:55 -05:00
Steve Riesenberg
dc81e1c86b Revert "URL encode client credentials" 
This reverts commit 5243b1b8a82398c443c5fe563e39f4eacb540798.

Issue gh-9610 gh-9861
Closes gh-10018
 2021-07-20 13:29:29 -05:00
Steve Riesenberg
dfebd6d9d4 Revert "URL encode client credentials" 
This reverts commit e6c268add00bef40cc6f47d8963176f43b8a1de1.

Issue gh-9610 gh-9858
Closes gh-10018
Closes gh-10121
 2021-07-20 12:59:44 -05:00
Steve Riesenberg
f5266c7511 Remove wildcard from generics in converter 
Polish gh-9779
 2021-07-12 23:42:47 -05:00
Rob Winch
f73f213f50 Remove DependencySetPlugin 
Closes gh-10070
 2021-07-12 15:31:38 -05:00
Rob Winch
98bd772b67 format 2021-07-09 14:49:47 -05:00
Rob Winch
b6ff4d3674 Fix mockito UnnecessaryStubbingException 2021-07-09 14:35:10 -05:00
Rob Winch
3e93b024d6 openrewrite Junit Migration 2021-07-09 14:32:52 -05:00
Rob Winch
14240b2559 Remove Powermock 
Powermock does not support JUnit5 yet, so we need to remove it
to support JUnit 5. Additionally, maintaining additional libraries
adds extra work for the team.

Mockito now supports final classes and static method mocking. This
commit replaces Powermock with mockito-inline.

Closes gh-6025
 2021-07-08 12:35:32 -05:00
Marcus Da Coregio
b0d22d1a03 Revert "Lock Dependencies" 
This reverts commit eb300c78bdbbce27f21bdf8d67913670edf043e7.
 2021-06-22 10:20:07 -03:00
Steve Riesenberg
c17767883f Revert "Lock Dependencies for Release" 
This reverts commit d71be4ca28afa6e9ed9c0d30ee5dae74a5eb1987.
 2021-06-21 12:57:05 -05:00
Josh Cummings
d71be4ca28
Lock Dependencies for Release 2021-06-21 10:33:10 -06:00
Marcus Da Coregio
eb300c78bd Lock Dependencies 2021-06-21 09:23:19 -03:00
Arnaud Mergey
1cd4ffeeb7
fix typo preventing full exception to be displayed in log 
closes gh-9901
 2021-06-17 08:40:55 -06:00
Arnaud Mergey
5fd81eeaf1
fix typo preventing full exception to be displayed in log 
closes gh-9901
 2021-06-17 08:38:24 -06:00
Josh Cummings
d4c3cea0e6
Update Copyright 
Issue gh-9901
 2021-06-17 08:34:31 -06:00
Arnaud Mergey
1d606ccedb fix typo preventing full exception to be displayed in log 
closes gh-9901
 2021-06-17 08:33:32 -06:00
Steve Riesenberg
a332e2a728
Support additional client authentication methods 
Closes gh-9780
 2021-06-16 16:03:13 -05:00
Steve Riesenberg
9daf058a6e
Handle missing authorization endpoint uri 
Closes gh-9795
 2021-06-16 16:00:53 -05:00
Steve Riesenberg
839cc5e851
Remove validation for unsupported grant types 
Closes gh-9828
 2021-06-16 15:55:45 -05:00
Steve Riesenberg
807ce30948 Support additional client authentication methods 
Closes gh-9780
 2021-06-16 15:48:03 -05:00
Steve Riesenberg
0cba0874f3 Handle missing authorization endpoint uri 
Closes gh-9795
 2021-06-16 15:38:53 -05:00
Steve Riesenberg
9b05afdee8 Remove validation for unsupported grant types 
Closes gh-9828
 2021-06-16 14:54:33 -05:00
Joe Grandja
6fbd038111 Jwt client authentication converter detects new key 
Closes gh-9814
 2021-06-16 12:58:01 -04:00
Joe Grandja
eb6ed283e0 Jwt client authentication converter detects new key 
Closes gh-9814
 2021-06-16 12:55:12 -04:00
Steve Riesenberg
67a18f564a Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
 2021-06-15 12:14:37 -05:00
Steve Riesenberg
b6ae11295f Commit missing compile fix from cherry-pick conflict 2021-06-15 12:10:06 -05:00
Steve Riesenberg
ee9c8e2fd0 Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
 2021-06-15 12:06:22 -05:00
Steve Riesenberg
a108868529 Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
Closes gh-9912
 2021-06-15 11:44:34 -05:00
Steve Riesenberg
700bda68b7 Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
 2021-06-15 11:32:35 -05:00
Steve Riesenberg
aed993f3e5
Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
 2021-06-15 11:03:30 -05:00
Steve Riesenberg
c0200512a7 URL encode client credentials 
Closes gh-9610
 2021-06-08 08:27:20 -05:00
Eleftheria Stein
36805c7192 Revert "Use strict equality for timestamp comparison in JDBC tests" 
This reverts commit 09a0670cb68032beacb399e0abe6d671967f3702.

This appears to still be an issue in Windows

Issue gh-8782
 2021-06-08 10:13:53 +03:00
Eleftheria Stein
09a0670cb6 Use strict equality for timestamp comparison in JDBC tests 
This is possible because of the update to HSQLDB 2.6.0
This reverts commit eb7b27695d3f9fce869eb3fb1c0ec56c32a9cb2b.

Closes gh-8782
 2021-06-08 09:31:55 +03:00
Eleftheria Stein
204a32aba8 Replace < and > with &lt and &gt in Javadoc 
Closes gh-9847
 2021-06-04 12:26:07 +03:00
Steve Riesenberg
6cafa48369 URL encode client credentials 
Closes gh-9610
 2021-06-03 09:39:00 -05:00
Steve Riesenberg
5243b1b8a8 URL encode client credentials 
Closes gh-9610
 2021-06-03 09:29:25 -05:00
Steve Riesenberg
e6c268add0 URL encode client credentials 
Closes gh-9610
 2021-06-03 09:12:18 -05:00
Steve Riesenberg
10de63ce89 Access Token Response supports any data type 
Changed the converter used to convert a map into an OAuth2AccessTokenResponse to
support any object as the value, including json numbers and nested objects. Also
deprecated old classes/setters and added new classes/setters.

Closes gh-9685
 2021-06-01 14:38:14 -05:00
Steve Riesenberg
ac9b137cad URL encode client credentials 
Closes gh-9610
 2021-06-01 12:57:06 -05:00
Josh Cummings
6d816fbf85
Polish postLogoutRedirectUri encoding 
Issue gh-9511
 2021-05-26 14:38:20 -06:00