Joe Grandja
f0b19f30d1
Deprecate PasswordEncoder in JdbcRegisteredClientRepository
...
Closes gh-496
2021-11-16 08:54:50 -05:00
Joe Grandja
666d569b48
Support resolving issuer from current request
...
Closes gh-479
2021-11-15 15:17:51 -05:00
Joe Grandja
d4357197c9
Polish gh-470
2021-11-12 11:54:59 -05:00
Steve Riesenberg
4ce999c014
Customize OAuth2AuthorizationConsent prior to saving
...
Closes gh-436
2021-11-12 11:54:59 -05:00
Joe Grandja
b455268fa1
Polish OAuth2ClientAuthenticationProviderTests
2021-11-03 12:31:38 -04:00
Joe Grandja
25c4a7d541
Polish test gh-448
2021-11-03 07:56:18 -04:00
Daniel Garnier-Moiroux
088d9a8e34
Require code_verifier if code_challenge provided
...
Closes gh-453
2021-11-03 06:52:20 -04:00
figozhang
c9954af084
Customize authenticationDetailsSource of OAuth2TokenEndpointFilter
...
Closes gh-431
2021-11-02 21:32:52 -05:00
Joe Grandja
c7f01f0795
Polish gh-427
2021-10-27 19:47:38 -04:00
Ovidiu Popa
37e45619ae
Implement Client Configuration Endpoint
...
See: https://openid.net/specs/openid-connect-registration-1_0.html#ClientConfigurationEndpoint
Generate registration_client_uri and registration_access_token when registering a new client (see: https://openid.net/specs/openid-connect-registration-1_0.html#ClientRegistration )
Closes gh-355
2021-10-25 15:00:39 -04:00
Joe Grandja
72c5e24ab8
Polish gh-441
2021-10-25 12:26:53 -04:00
Steve Riesenberg
8e8e6d1b17
Implement User Info Endpoint
...
Closes gh-176
2021-10-25 12:26:28 -04:00
Joe Grandja
63c248440c
Fix PKCE tests in OAuth2ClientAuthenticationProviderTests
2021-10-21 18:21:15 -04:00
Steve Riesenberg
71be32b245
Add support for deserializing LinkedHashSet
...
This is needed because OAuth2ClientCredentialsAuthenticationProvider stores authorized scopes in a LinkedHashSet.
Closes gh-457
2021-10-21 11:49:54 -05:00
Ovidiu Popa
298ebc7c01
Avoid client secret double encoding when updating a registered client
...
This might have to be revisited at a later point, but to check if a value is encoded or not is quite tricky. The decision was to remove client_secret and client_secret_expires_at from the update statement
Closes gh-389
2021-09-23 13:51:56 -04:00
Joe Grandja
0735abdaad
Polish gh-411
2021-09-23 12:01:42 -04:00
Dmitriy Dubson
0dfe5cb44a
Fix cancel consent functionality on default consent page
...
- Fix also applies to custom consent sample
Closes gh-393
2021-09-23 08:17:54 -04:00
Joe Grandja
e4ce97b887
Access token is active after revoke then refresh
...
Closes gh-432
2021-09-22 10:34:55 -04:00
Joe Grandja
f3f69b300f
Authorization failure does not clear current Authentication
...
Closes gh-409
2021-08-18 20:00:02 -04:00
Joe Grandja
f3c29bd545
Use OAuth2AuthenticationException(String errorCode)
...
Closes gh-402
2021-08-18 15:23:45 -04:00
Joe Grandja
ea1f95b4ed
Replace stream usage with for loops
...
Closes gh-401
2021-08-18 13:42:08 -04:00
Joe Grandja
3ee47efff7
Disable Oidc client registration by default
...
Closes gh-398
2021-08-17 10:04:19 -04:00
Joe Grandja
7680505eed
Move OAuth2AuthorizationCode
...
Closes gh-395
2021-08-13 04:56:24 -04:00
Joe Grandja
c7815939d2
Validate redirect_uri on dynamic client registration
...
Closes gh-392
2021-08-10 09:28:26 -04:00
Joe Grandja
6b5d9f0fe5
Polish JwtEncoder APIs
...
Closes gh-391
2021-08-10 04:49:27 -04:00
Steve Riesenberg
115a78d5f5
Add post processor to register ProviderSettings Bean
...
Closes gh-373
2021-07-30 11:58:42 -04:00
Ovidiu Popa
1929e3a80a
JdbcRegisteredClientRepository hashes client secret on save
...
Closes gh-378
2021-07-30 11:11:32 -04:00
Joe Grandja
7546d18a40
Polish gh-379
2021-07-30 09:55:29 -04:00
Steve Riesenberg
83915e8421
Do not issue refresh token to public client
...
Closes gh-296
2021-07-30 09:55:29 -04:00
Joe Grandja
0493bbf1d1
OAuth2ClientAuthenticationToken supports any type of credentials
...
Closes gh-382
2021-07-30 09:54:56 -04:00
Ovidiu Popa
41f8c9cd00
Add update support in JdbcRegisteredClientRepository
...
Closes gh-356
2021-07-29 11:10:36 -04:00
Joe Grandja
3d4df8807d
Provide configuration for client authentication
...
Closes gh-380
2021-07-29 10:24:00 -04:00
Joe Grandja
3ea7d8c9b6
Provide configuration for refresh token generator
...
Closes gh-377
2021-07-28 06:02:56 -04:00
Joe Grandja
06ad211fce
Provide configuration for authorization code generator
...
Closes gh-376
2021-07-28 04:56:05 -04:00
Joe Grandja
f6c4d49b9f
Introduce OAuth2AuthenticationValidator
...
Closes gh-374
2021-07-27 04:28:23 -04:00
Joe Grandja
0723936b8a
Remove OAuth2RefreshToken2
...
Closes gh-367
2021-07-23 06:18:30 -04:00
Joe Grandja
0d7727a7d4
Make Settings implementations immutable
...
Closes gh-366
2021-07-23 05:50:17 -04:00
Joe Grandja
70142f3705
Rename ClientSettings.requireUserConsent() to requireAuthorizationConsent()
...
Closes gh-363
2021-07-21 14:37:34 -04:00
Joe Grandja
a7feab605b
Remove OAuth2ParameterNames2
...
Closes gh-361
2021-07-21 13:35:59 -04:00
Joe Grandja
d85ce0a6dd
Reduce visibility of default endpoint URI constants
...
Closes gh-358
2021-07-21 10:42:59 -04:00
Joe Grandja
5593208e61
Move AuthenticationConverter's to web.authentication package
...
Closes gh-357
2021-07-21 09:32:24 -04:00
Joe Grandja
beb1233358
Rename OAuth2TokenIntrospectionClaimAccessor.getScope() to getScopes()
...
Closes gh-354
2021-07-21 06:34:03 -04:00
Joe Grandja
75d649578a
Polish gh-350
2021-07-20 06:31:52 -04:00
Bibibiu
bd98031036
Remove use of deprecated ClientAuthenticationMethod's
...
Closes gh-346
2021-07-20 05:38:01 -04:00
Steve Riesenberg
687f03f047
Fix windows test failures
2021-07-14 11:11:56 -05:00
Joe Grandja
7ffcbe57a7
Fix package tangle
2021-07-09 08:00:45 -04:00
Joe Grandja
c93c1a8097
Polish gh-338
2021-07-09 06:51:13 -04:00
Joe Grandja
1ae4f7aa13
Polish JdbcRegisteredClientRepository
...
Issue gh-291
2021-07-09 06:06:53 -04:00
Joe Grandja
a11284f0f5
Polish gh-331
2021-07-09 04:37:52 -04:00
Joe Grandja
ad108f519a
Polish JdbcOAuth2AuthorizationConsentService
...
Issue gh-314
2021-07-08 09:58:07 -04:00