Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,473 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

7473 Commits

Author SHA1 Message Date
Rob Winch cc8935e904 Fix Reactive OIDC to add refresh token 
Fixes: gh-5858
 2018-09-17 21:21:36 -05:00
Rob Winch 72301e548a Reactive OAuth2 DSL Customizations 
Fixes: gh-5855
 2018-09-17 21:21:36 -05:00
Rob Winch 385bdfc055 OAuth2AuthorizationCodeGrantWebFilter works with /{action}/ 
This ensures that the same URL can work for both log in and
authorization code which prevents having to create additional registrations
on the client and potentially on the server (GitHub only allows a single
valid redirect URL).

Fixes: gh-5856
 2018-09-17 21:21:36 -05:00
Josh Cummings 26afc18b66
What's New in Spring Security 5.1 
An initial skeleton pointing to the various sections of Spring
Security that received an update in Spring Security 5.1

Issue: gh-5857
 2018-09-17 16:37:47 -06:00
Josh Cummings b3d33708d1
JAXB for Authorization Server Sample 
For Java 9+ compatibility

Issue: gh-5833
 2018-09-14 09:21:37 -06:00
Rob Winch 9c749bf556 Fix SwitchUserFilter matchers 
Fixes: gh-4249
 2018-09-14 09:45:41 -05:00
Rob Winch 8b19f7a71a AntPathRequestMatcher supports UrlPathHelper 
Fixes: gh-5846
 2018-09-14 09:45:41 -05:00
Josh Cummings 17dd95d525
Polish Authorization Server Sample 
Change primary user's username to "subject" to align with
oauth2resourceserver sample.
 2018-09-13 16:21:10 -06:00
Josh Cummings f2140dd5f5
Authorization Server Sample 
A simple Authorization Server sample based off of the Legacy
Authorization Server project, spring-security-oauth2.

This project is mostly useful as a utility for other samples whose
usage would be clearer if an Authorization Server were introduced.

Note that this server is a barebones OAuth 2.0 Authorization Server
configuration, but is still useful for understanding how to set up an
Authorization Server using spring-security-oauth2.

Fixes: gh-5833
 2018-09-13 15:24:32 -06:00
Rob Winch c21b2f31c6 Polish resourceserver samples 
- Use ${mockserver.url} instead of mock://
- Consistency between reactive/imperative samples

Fixes: gh-5844
 2018-09-13 14:31:23 -05:00
Rob Winch f68141d42a Update to Spring Boot 2.1.0.M3 
Fixes: gh-5843
 2018-09-13 10:27:16 -05:00
Rob Winch f5c73a566a Fixes: gh-5841 2018-09-13 09:23:13 -05:00
Rob Winch 68bc649a45 Fix XsdDocumentedTests 
Issue: gh-5836
 2018-09-12 19:56:30 -05:00
Rob Winch 5b8d66e911 Extract Preface 
Issue: gh-5836
 2018-09-12 17:04:41 -05:00
Rob Winch 57359058dd Separate Servlet and WebFlux 
Fixes: gh-5836
 2018-09-12 16:48:41 -05:00
Joe Grandja ed9cd478ba Polish 
Issue gh-5776
 2018-09-12 11:57:53 -04:00
Joe Grandja 8746e71b9a Use OAuth2AuthorizationException in authorization flows 2018-09-11 14:53:42 -05:00
Joe Grandja ef02ab2f8a DefaultOAuth2UserService handles OAuth2AuthorizationException 2018-09-11 14:53:42 -05:00
Joe Grandja 7474d6524e DefaultAuthorizationCodeTokenResponseClient throws OAuth2AuthorizationException 2018-09-11 14:53:42 -05:00
Joe Grandja 56b4576396 DefaultClientCredentialsTokenResponseClient throws OAuth2AuthorizationException 
Fixes gh-5726
 2018-09-11 14:53:42 -05:00
Joe Grandja e56c048db3 Remove OAuth2ClientException 2018-09-11 14:53:42 -05:00
Joe Grandja b3282957a8 Add OAuth2AuthorizationException 2018-09-11 14:53:42 -05:00
Jisoo Youn 3f3a3e8351 Fix convention 2018-09-11 13:57:23 -05:00
Johnny Lim 42327a0aec Polish OAuth2ResourceServerConfigurerTests 2018-09-10 13:24:16 -06:00
Rob Winch e5e91204fc Next development version 
Issue: gh-5823
 2018-09-07 15:57:04 -05:00
Rob Winch 8c4ff64db0 Release Spring Security 5.1.0.RC2 
Fixes: gh-5823
 2018-09-07 15:56:22 -05:00
Rob Winch 26e577b0fa UnauthenticatedServerOAuth2AuthorizedClientRepository->UnAuthenticatedServerOAuth2AuthorizedClientRepository 
Issue: gh-5817
 2018-09-07 15:29:35 -05:00
Rob Winch 11ea92ef1c Add UnauthenticatedServerOAuth2AuthorizedClientRepository 
Fixes: gh-5817
 2018-09-07 15:28:40 -05:00
Rob Winch 96d85ad2b5 Polish HttpsRedirectWebFilter 
Issue: gh-5749
 2018-09-07 14:29:46 -05:00
Josh Cummings 2c982a4168 Reactive Redirect to Https 
This introduces the capability to configure Reactive Spring Security
to upgrade requests to HTTPS

Fixes: gh-5749
 2018-09-07 14:25:58 -05:00
Johnny Lim f164f2f869
Polish FilterComparator 
Extracts STEP incrementing into a separate helper class
 2018-09-07 10:30:57 -06:00
Joe Grandja d4576a2502 Update to Spring 5.1.0.RC3 
Fixes gh-5798
 2018-09-07 12:19:56 -04:00
Joe Grandja c4ded37030 Update to jsp-api:2.3.3 
Fixes gh-5795
 2018-09-07 12:19:56 -04:00
Joe Grandja f6a24afb1b Update to selenium-support:3.14.0 
Fixes gh-5794
 2018-09-07 12:19:56 -04:00
Joe Grandja 5ace871ef1 Update to nimbus-jose-jwt:6.0.2 
Fixes gh-5793
 2018-09-07 12:19:56 -04:00
Joe Grandja 31634e25be Update to oauth2-oidc-sdk:6.0 
Fixes gh-5792
 2018-09-07 12:19:56 -04:00
Joe Grandja bf2484e6fa Update to selenium-java:3.14.0 
Fixes gh-5791
 2018-09-07 12:19:56 -04:00
Joe Grandja 0e5cbd36e6 Update to jaxb-api:2.4.0-b180830.0359 
Fixes gh-5788
 2018-09-07 12:19:56 -04:00
Joe Grandja 5728108149 Update to javax.persistence:2.2.1 
Fixes gh-5786
 2018-09-07 12:19:56 -04:00
Joe Grandja 54484639bb Update to htmlunit-driver:2.32.1 
Fixes gh-5784
 2018-09-07 12:19:56 -04:00
Joe Grandja 451fd50189 Update to hibernate-entitymanager:5.3.6.Final 
Fixes gh-5782
 2018-09-07 12:19:56 -04:00
Joe Grandja 7a24e7d648 Update to mockito-core:2.21.0 
Fixes gh-5781
 2018-09-07 12:19:56 -04:00
Joe Grandja 05b8457b5f Update to assertj-core:3.11.1 
Fixes gh-5780
 2018-09-07 12:19:56 -04:00
Josh Cummings 21e62683ab
Polish Commit on Reactive Http Basic Test 2018-09-07 10:01:11 -06:00
Tim Koopman 6df4dfe47b
Reactive HttpBasic Support For Coloned Passwords 
This makes so that reactive httpBasic supports passwords containing
one or more colons.
 2018-09-07 10:01:11 -06:00
Josh Cummings 9e0f171d47 Jwt Claim Mapping 
This introduces a hook for users to customize standard Jwt Claim
values in cases where the JWT issuer isn't spec compliant or where the
user needs to add or remove claims.

Fixes: gh-5223
 2018-09-07 09:48:26 -05:00
Rob Winch 2495025845 authcodegrant samples->oauth2webclient samples 
The authcodegrant samples were initially meant to be very simple
demonstration of authorization code flow. However, it has become
obvious since then that the real intent of the demo is how to use
the WebClient with OAuth (there is no other reason to do authorization
code flow unless you use the token to make a request).

The samples have been migrated to oauth2webclient and oauth2webclient-webflux
respectively. They have been improved:

* The sample demonstrates usage with annotations, webclient directly, form login
  oauth2Login, and public APIs
* The samples externalize the endpoint that is requested in the sample
  making it easier to try other endpoints
* The UI no longer relies on a data structure for the result of the
  endpoint also making it easier to try other endpoints

Issue: gh-4921
 2018-09-07 08:58:50 -05:00
Rob Winch 438d2911fb OAuth2AuthorizedClientResolver 
Extract out a private API for shared code between the argument resolver
and WebClient support. This makes it easier to make changes in both
locations. Later we will extract this out so it is not a copy/paste
effort.

Issue: gh-4921
 2018-09-07 08:58:00 -05:00
Rob Winch 23726abb1e ServerOAuth2AuthorizedClientExchangeFilterFunction default ServerWebExchange 
Leverage ServerWebExchange established by ServerWebExchangeReactorContextWebFilter

Issue: gh-4921
 2018-09-07 08:57:25 -05:00
Rob Winch ac78258847 ServerOAuth2AuthorizedClientExchangeFilterFunction defaultOAuth2AuthorizedClient 
Defaults to use the OAuth2AuthenticationToken to resolve the authorized client

Issue: gh-4921
 2018-09-07 08:57:00 -05:00