Commit Graph

215 Commits

Author SHA1 Message Date
Joe Grandja
435a17e4b9 Relocate classes out from config.annotation.web.configuration package
Closes gh-810
2022-07-26 08:38:21 -04:00
Gyeongwon, Do
303043ea78 Add configuration for authorization code time-to-live
Closes gh-642
2022-07-19 11:40:02 -04:00
Daniel Garnier-Moiroux
ec7ab5c956 Add authenticationDetailsSource to AuthorizationEndpointFilter
Closes gh-768
2022-06-16 16:27:39 -04:00
Joe Grandja
fdf0a2f94c Access token is available when customizing ID Token
Closes gh-744
2022-06-16 10:38:09 -04:00
Joe Grandja
b37d4dd31e Describe error message when redirect_uri contains localhost
Closes gh-680
2022-06-15 17:38:54 -04:00
Joe Grandja
4199ab0172 Unsupported code_challenge_method parameter should return invalid_grant
Issue gh-770
2022-06-15 09:24:42 -04:00
Joe Grandja
7dfdcf3a27 Validate code_challenge_method parameter
Issue gh-756

Closes gh-770
2022-06-15 09:09:05 -04:00
Joe Grandja
0cae3c693e OpenID Provider Configuration response returns introspection_endpoint
Closes gh-779
2022-06-10 12:04:31 -04:00
Gyeongwon, Do
d6ff0f3fc7 Add token revocation endpoint to OIDC Provider Configuration endpoint
Closes gh-687
2022-06-10 11:47:22 -04:00
Joe Grandja
ca2ffb0756 Remove support for "plain" code_challenge_method parameter
Closes gh-756
2022-05-24 20:25:13 -04:00
Joe Grandja
c4406cda67 Remove temporary HttpSessionSecurityContextRepository
Issue gh-482
2022-05-24 15:56:00 -04:00
Joe Grandja
08d37771e3 Polish gh-649 2022-05-06 08:46:14 -04:00
Fang Xia
d0bb94b887 Enhance validation for configured issuer
Closes gh-649
2022-05-06 08:17:32 -04:00
Joe Grandja
b991e1adc1 Use OAuth2Token instead of AbstractOAuth2Token
Closes gh-733
2022-05-05 13:26:29 -04:00
Joe Grandja
627ae61785 Remove deprecations
Closes gh-732
2022-05-05 10:25:32 -04:00
Joe Grandja
fff62db117 Move OAuth2TokenCustomizer to token package
Closes gh-730
2022-05-04 15:16:41 -04:00
Joe Grandja
30c17a5e49 Use OAuth2ErrorCodes.INVALID_REDIRECT_URI
Closes gh-727
2022-05-04 10:34:46 -04:00
Joe Grandja
6470c71e77 Remove temporary OAuth2AccessTokenResponseHttpMessageConverter
Issue gh-321

Closes gh-726
2022-05-04 10:34:19 -04:00
Joe Grandja
a1fefd937b Remove JwtEncoder and associated classes
Issue gh-596

Closes gh-724
2022-05-04 10:33:37 -04:00
Joe Grandja
8354aaa3cc Dynamic client registration does not generate client_secret for private_key_jwt
Closes gh-657
2022-03-24 06:41:11 -04:00
Joe Grandja
586c7daf2a Apply default settings for public client type
Closes gh-656
2022-03-24 06:03:14 -04:00
Joe Grandja
12ae92b366 Polish gh-630 2022-03-24 04:50:18 -04:00
Gaurav Tiwari
7160290aaf Allow Token Introspection to be customized
Closes gh-493
2022-03-24 04:48:51 -04:00
Joe Grandja
a13df8a1af Move OAuth2TokenGenerator to token package
Issue gh-414
Issue gh-638
Issue gh-639
Issue gh-500
2022-03-23 05:21:32 -04:00
Joe Grandja
ccf4a2de6e Fix expected @Transient Authentication at provider configuration endpoint
Closes gh-632
2022-03-22 15:01:06 -04:00
Joe Grandja
c2db8926df Decompose OAuth2ClientAuthenticationProvider
Closes gh-655
2022-03-22 11:30:23 -04:00
Joe Grandja
5b7d900424 Optimize InMemoryOAuth2AuthorizationService
Closes gh-654
2022-03-22 11:15:07 -04:00
Joe Grandja
32414451f5 Add support for opaque access tokens
Closes gh-500
2022-03-03 13:30:11 -05:00
Joe Grandja
a661e1cdb7 Use OAuth2TokenGenerator for OAuth2AuthorizationCode
Closes gh-639
2022-02-25 11:28:32 -05:00
Joe Grandja
cdb48f510e Add OAuth2RefreshTokenGenerator
Closes gh-638
2022-02-25 06:03:02 -05:00
Joe Grandja
c799261a72 Introduce OAuth2TokenGenerator
Closes gh-414
2022-02-22 12:37:53 -05:00
Joe Grandja
4fbe06d121 Fix inconsistent state when authorization consent is denied
Closes gh-595
2022-01-26 10:23:06 -05:00
Joe Grandja
f8fdcd7ae9 Polish gh-491 2022-01-25 12:55:56 -05:00
Ovidiu Popa
66bc5a0e65 Support clob and text datatype for token columns
Closes gh-480
2022-01-25 12:50:03 -05:00
Daniel Garnier-Moiroux
a1e513b35d Throw invalid_grant when invalid token request with PKCE
Closes gh-581
2022-01-24 03:35:51 -05:00
Joe Grandja
4d5b288116 Polish token revocation
Issue gh-490
2022-01-21 14:36:16 -05:00
Joe Grandja
362c947df1 OidcProviderConfigurationHttpMessageConverter converts userinfo_endpoint
Issue gh-489
2022-01-21 09:37:15 -05:00
Steve Riesenberg
5412f10ff8 Polish gh-489 2022-01-20 15:40:52 -06:00
Joe Grandja
d302444650 Introduce ProviderContext
Closes gh-479
2022-01-17 15:07:57 -05:00
Joe Grandja
f1a01597d9 Polish gh-293 2021-12-16 12:23:35 -05:00
Rafal Lewczuk
16e4f5130b Client authentication with JWT assertion
Closes gh-59
2021-12-16 06:32:25 -05:00
arfatbk
a846e936e9 Allow Token Revocation to be customized
Signed-off-by: arfatbk <arfatbk@gmail.com>
2021-12-14 12:25:32 +05:30
Joe Grandja
d0e1107f36 HttpSessionSecurityContextRepository does not persist @Transient Authentication
Related https://github.com/spring-projects/spring-security/pull/9993

Closes gh-482
2021-12-07 08:02:45 -05:00
Joe Grandja
5e684fedbe Authorization Consent request state parameter is validated
Closes gh-503
2021-12-01 07:55:17 -05:00
Ovidiu Popa
2e2c9ea286 Fix registration access token cannot be deserialized
Change the authorized scopes Set from SingletonSet to UnmodifiableSet as there is no mixin registered for SingletonSet

Closes gh-495
2021-11-30 13:17:06 -05:00
Joe Grandja
82e4f3a345 Introduce OidcUserInfoAuthenticationContext
Issue gh-441
2021-11-30 11:56:08 -05:00
Joe Grandja
9b60ed23e1 Polish OAuth2AuthorizationConsentAuthenticationContext
Issue gh-470
2021-11-30 06:16:01 -05:00
Joe Grandja
8defe2eb3a ProviderSettings @Bean is required
Issue gh-373
2021-11-29 02:22:21 -05:00
Joe Grandja
830f55e538 Revert "Support resolving issuer from current request"
This reverts commit 666d569b48.
2021-11-29 01:49:26 -05:00
Joe Grandja
c418306fd9 Polish Authorization Consent Deny Request
Issue gh-470
2021-11-26 06:46:05 -05:00