Ovidiu Popa
2e2c9ea286
Fix registration access token cannot be deserialized
...
Change the authorized scopes Set from SingletonSet to UnmodifiableSet as there is no mixin registered for SingletonSet
Closes gh-495
2021-11-30 13:17:06 -05:00
Joe Grandja
82e4f3a345
Introduce OidcUserInfoAuthenticationContext
...
Issue gh-441
2021-11-30 11:56:08 -05:00
Joe Grandja
9b60ed23e1
Polish OAuth2AuthorizationConsentAuthenticationContext
...
Issue gh-470
2021-11-30 06:16:01 -05:00
Joe Grandja
332d1cc318
Polish gh-492
2021-11-30 05:27:32 -05:00
Joe Grandja
8defe2eb3a
ProviderSettings @Bean is required
...
Issue gh-373
2021-11-29 02:22:21 -05:00
Joe Grandja
830f55e538
Revert "Support resolving issuer from current request"
...
This reverts commit 666d569b48 .
2021-11-29 01:49:26 -05:00
Joe Grandja
c418306fd9
Polish Authorization Consent Deny Request
...
Issue gh-470
2021-11-26 06:46:05 -05:00
Joe Grandja
9053e3188d
Fix broken documentation links in README
...
Closes gh-494
2021-11-17 05:31:46 -05:00
Joe Grandja
f0b19f30d1
Deprecate PasswordEncoder in JdbcRegisteredClientRepository
...
Closes gh-496
2021-11-16 08:54:50 -05:00
Joe Grandja
666d569b48
Support resolving issuer from current request
...
Closes gh-479
2021-11-15 15:17:51 -05:00
Joe Grandja
646ea00db2
Add @since
...
Issue gh-427
2021-11-15 11:26:54 -05:00
Joe Grandja
d4357197c9
Polish gh-470
2021-11-12 11:54:59 -05:00
Steve Riesenberg
4ce999c014
Customize OAuth2AuthorizationConsent prior to saving
...
Closes gh-436
2021-11-12 11:54:59 -05:00
Joe Grandja
5fa1e8e3b1
Allow subclassing OAuth2AuthenticationContext
...
Closes gh-492
2021-11-12 11:44:57 -05:00
Joe Grandja
5982d2285c
Restructure samples
...
Closes gh-485
2021-11-09 06:01:51 -05:00
Joe Grandja
b455268fa1
Polish OAuth2ClientAuthenticationProviderTests
2021-11-03 12:31:38 -04:00
Joe Grandja
25c4a7d541
Polish test gh-448
2021-11-03 07:56:18 -04:00
Daniel Garnier-Moiroux
088d9a8e34
Require code_verifier if code_challenge provided
...
Closes gh-453
2021-11-03 06:52:20 -04:00
Steve Riesenberg
defd1f90b8
Polish gh-448
2021-11-02 21:35:03 -05:00
figozhang
c9954af084
Customize authenticationDetailsSource of OAuth2TokenEndpointFilter
...
Closes gh-431
2021-11-02 21:32:52 -05:00
Josh Long
dc0ca22f5e
Update README.adoc
2021-11-02 15:38:14 -04:00
Joe Grandja
c7f01f0795
Polish gh-427
2021-10-27 19:47:38 -04:00
Ovidiu Popa
37e45619ae
Implement Client Configuration Endpoint
...
See: https://openid.net/specs/openid-connect-registration-1_0.html#ClientConfigurationEndpoint
Generate registration_client_uri and registration_access_token when registering a new client (see: https://openid.net/specs/openid-connect-registration-1_0.html#ClientRegistration )
Closes gh-355
2021-10-25 15:00:39 -04:00
Joe Grandja
72c5e24ab8
Polish gh-441
2021-10-25 12:26:53 -04:00
Steve Riesenberg
8e8e6d1b17
Implement User Info Endpoint
...
Closes gh-176
2021-10-25 12:26:28 -04:00
Ido Salomon
9667229429
Initial implementation of User Info Endpoint
...
Issue gh-176
2021-10-25 12:25:31 -04:00
Alexey Makarov
33bac0f7c2
JdbcOAuth2AuthorizationService now uses LobCreator in findBy method
...
Closes gh-455
2021-10-21 19:54:41 -04:00
Joe Grandja
63c248440c
Fix PKCE tests in OAuth2ClientAuthenticationProviderTests
2021-10-21 18:21:15 -04:00
Steve Riesenberg
71be32b245
Add support for deserializing LinkedHashSet
...
This is needed because OAuth2ClientCredentialsAuthenticationProvider stores authorized scopes in a LinkedHashSet.
Closes gh-457
2021-10-21 11:49:54 -05:00
Sarah McAlear
4b19637fbb
Update RegisteredClient.Builder to use getters
...
- Since the class is not final, it is possible to extend it.
Because the Builder was directly accessing the properties
rather than using the getters, it was not possible to use
the .from(id) constructor in the extended class.
Closes gh-451
2021-10-14 15:27:10 -04:00
Daniel Garnier-Moiroux
26f15b99bb
Make OAuth2ClientAuthenticationToken @Transient
2021-10-14 15:17:57 -04:00
Joe Grandja
f3c17b3de0
Specify Jenkins user in Jenkinsfile
2021-09-23 16:00:14 -04:00
Ovidiu Popa
298ebc7c01
Avoid client secret double encoding when updating a registered client
...
This might have to be revisited at a later point, but to check if a value is encoded or not is quite tricky. The decision was to remove client_secret and client_secret_expires_at from the update statement
Closes gh-389
2021-09-23 13:51:56 -04:00
Joe Grandja
0735abdaad
Polish gh-411
2021-09-23 12:01:42 -04:00
Dmitriy Dubson
0dfe5cb44a
Fix cancel consent functionality on default consent page
...
- Fix also applies to custom consent sample
Closes gh-393
2021-09-23 08:17:54 -04:00
Joe Grandja
4ccdd2baf4
OAuth2TokenIntrospectionAuthenticationProvider checks for null issuer
...
Closes gh-438
2021-09-23 06:25:07 -04:00
Joe Grandja
e4ce97b887
Access token is active after revoke then refresh
...
Closes gh-432
2021-09-22 10:34:55 -04:00
Kirat Kumar
aaeca70b4c
Removed an empty statement
2021-09-21 15:45:04 -04:00
Joe Grandja
8e8979af60
Next Development Version
2021-08-18 21:01:07 -04:00
Joe Grandja
725c300db2
Release 0.2.0
2021-08-18 20:14:55 -04:00
Joe Grandja
f3f69b300f
Authorization failure does not clear current Authentication
...
Closes gh-409
2021-08-18 20:00:02 -04:00
Joe Grandja
c926884049
Update to nimbus-jose-jwt 9.10.1
...
Closes gh-408
2021-08-18 16:13:00 -04:00
Joe Grandja
0e99adc72e
Update to jackson-bom 2.12.4
...
Closes gh-407
2021-08-18 16:12:47 -04:00
Joe Grandja
c444544a27
Update to Spring Boot 2.5.3
...
Closes gh-406
2021-08-18 16:12:20 -04:00
Joe Grandja
84c24b344f
Update Reactor to 2020.0.10
...
Closes gh-405
2021-08-18 16:12:03 -04:00
Joe Grandja
34d4131968
Update to Spring Security 5.5.2
...
Closes gh-404
2021-08-18 16:11:23 -04:00
Joe Grandja
d3f25dd6ea
Update to Spring Framework 5.3.9
...
Closes gh-403
2021-08-18 16:10:54 -04:00
Joe Grandja
f3c29bd545
Use OAuth2AuthenticationException(String errorCode)
...
Closes gh-402
2021-08-18 15:23:45 -04:00
Joe Grandja
ea1f95b4ed
Replace stream usage with for loops
...
Closes gh-401
2021-08-18 13:42:08 -04:00
Joe Grandja
42d611828a
Polish OAuth2TokenCustomizer
2021-08-18 11:26:12 -04:00