spring-security

History

Cedric Montfort d9d77bed82 Allow logout+jwt JWT type for reactive The OIDC back-channel spec recommends using a logout token typ `logout+jwt` (see [here](https://openid.net/specs/openid-connect-backchannel-1_0-final.html#LogoutToken). Support of this type was recently added [on the servlet side]([on the Servlet side](`9101bf1f7d`)), so back porting the same on the reactive side to close the gap. Closes gh-15702	2024-10-28 14:21:48 -07:00
..
src	Allow logout+jwt JWT type for reactive	2024-10-28 14:21:48 -07:00
spring-security-config.gradle	Verify Serializable Objects Are Deserializable Between Minor Versions	2024-01-05 12:00:02 -03:00

Cedric Montfort d9d77bed82 Allow logout+jwt JWT type for reactive

The OIDC back-channel spec recommends using a logout token typ `logout+jwt`
(see [here](https://openid.net/specs/openid-connect-backchannel-1_0-final.html#LogoutToken).

Support of this type was recently added [on the servlet side]([on the Servlet side](9101bf1f7d)), so back
porting the same on the reactive side to close the gap.

Closes gh-15702

2024-10-28 14:21:48 -07:00

src Allow logout+jwt JWT type for reactive 2024-10-28 14:21:48 -07:00

spring-security-config.gradle Verify Serializable Objects Are Deserializable Between Minor Versions 2024-01-05 12:00:02 -03:00