Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-25 00:46:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
spring-security/oauth2
History
Manuel Bleichenbacher 1e4736f9b3 Prevent double-escaping of authorize URL parameters 
If the authorization URL in the OAuth2 provider configuration contained query parameters with escaped characters, these characters were escaped a second time. This commit fixes it.

It is relevant to support the OIDC claims parameter (see https://openid.net/specs/openid-connect-core-1_0.html#ClaimsParameter).

Fixes gh-7871
2020-02-08 16:59:01 -05:00
..
oauth2-client
Don't force downcasting of RequestAttributes to ServletRequestAttributes
2020-02-07 20:18:50 -05:00
oauth2-core
Prevent double-escaping of authorize URL parameters
2020-02-08 16:59:01 -05:00
oauth2-jose
Make jwks_uri optional for RFC 8414 and Required for OpenID Connect
2019-11-11 10:34:06 -07:00
oauth2-resource-server
Polish Error Messages for OpaqueTokenIntrospectors
2020-02-05 07:16:37 -07:00