Steve Riesenberg
525eca63d2
Add "How-to: Implement core services with JPA"
2022-01-07 16:50:29 -06:00
Steve Riesenberg
edd7cf2434
Add docs outline with Antora skeleton
2022-01-07 16:37:24 -06:00
Joe Grandja
f1a01597d9
Polish gh-293
2021-12-16 12:23:35 -05:00
Rafal Lewczuk
16e4f5130b
Client authentication with JWT assertion
...
Closes gh-59
2021-12-16 06:32:25 -05:00
Steve Riesenberg
13d3567eb4
Polish gh-490
2021-12-14 17:15:59 -06:00
arfatbk
a846e936e9
Allow Token Revocation to be customized
...
Signed-off-by: arfatbk <arfatbk@gmail.com >
2021-12-14 12:25:32 +05:30
Joe Grandja
d0e1107f36
HttpSessionSecurityContextRepository does not persist @Transient Authentication
...
Related https://github.com/spring-projects/spring-security/pull/9993
Closes gh-482
2021-12-07 08:02:45 -05:00
Joe Grandja
42095a6da5
Next Development Version
2021-12-01 09:12:04 -05:00
Joe Grandja
28ac43bd50
Release 0.2.1
2021-12-01 08:23:54 -05:00
Joe Grandja
5e684fedbe
Authorization Consent request state parameter is validated
...
Closes gh-503
2021-12-01 07:55:17 -05:00
Joe Grandja
086a3b01a1
Update to jackson-bom 2.12.5
...
Closes gh-517
2021-11-30 15:38:36 -05:00
Joe Grandja
d10fe36ec0
Update to Spring Boot 2.5.7
...
Closes gh-516
2021-11-30 15:38:14 -05:00
Joe Grandja
cd2a990df5
Update Reactor to 2020.0.13
...
Closes gh-515
2021-11-30 15:37:55 -05:00
Joe Grandja
dc77bcdd5a
Update to Spring Security 5.5.3
...
Closes gh-514
2021-11-30 15:37:43 -05:00
Joe Grandja
c0ac18d53a
Update to Spring Framework 5.3.13
...
Closes gh-513
2021-11-30 15:36:40 -05:00
Joe Grandja
14cb58df2b
Increase size for attributes column
...
Issue gh-304
2021-11-30 13:33:48 -05:00
Ovidiu Popa
2e2c9ea286
Fix registration access token cannot be deserialized
...
Change the authorized scopes Set from SingletonSet to UnmodifiableSet as there is no mixin registered for SingletonSet
Closes gh-495
2021-11-30 13:17:06 -05:00
Joe Grandja
82e4f3a345
Introduce OidcUserInfoAuthenticationContext
...
Issue gh-441
2021-11-30 11:56:08 -05:00
Joe Grandja
9b60ed23e1
Polish OAuth2AuthorizationConsentAuthenticationContext
...
Issue gh-470
2021-11-30 06:16:01 -05:00
Joe Grandja
332d1cc318
Polish gh-492
2021-11-30 05:27:32 -05:00
Joe Grandja
8defe2eb3a
ProviderSettings @Bean is required
...
Issue gh-373
2021-11-29 02:22:21 -05:00
Joe Grandja
830f55e538
Revert "Support resolving issuer from current request"
...
This reverts commit 666d569b48 .
2021-11-29 01:49:26 -05:00
Joe Grandja
c418306fd9
Polish Authorization Consent Deny Request
...
Issue gh-470
2021-11-26 06:46:05 -05:00
Joe Grandja
9053e3188d
Fix broken documentation links in README
...
Closes gh-494
2021-11-17 05:31:46 -05:00
Joe Grandja
f0b19f30d1
Deprecate PasswordEncoder in JdbcRegisteredClientRepository
...
Closes gh-496
2021-11-16 08:54:50 -05:00
Joe Grandja
666d569b48
Support resolving issuer from current request
...
Closes gh-479
2021-11-15 15:17:51 -05:00
Joe Grandja
646ea00db2
Add @since
...
Issue gh-427
2021-11-15 11:26:54 -05:00
Joe Grandja
d4357197c9
Polish gh-470
2021-11-12 11:54:59 -05:00
Steve Riesenberg
4ce999c014
Customize OAuth2AuthorizationConsent prior to saving
...
Closes gh-436
2021-11-12 11:54:59 -05:00
Joe Grandja
5fa1e8e3b1
Allow subclassing OAuth2AuthenticationContext
...
Closes gh-492
2021-11-12 11:44:57 -05:00
Joe Grandja
5982d2285c
Restructure samples
...
Closes gh-485
2021-11-09 06:01:51 -05:00
Joe Grandja
b455268fa1
Polish OAuth2ClientAuthenticationProviderTests
2021-11-03 12:31:38 -04:00
Joe Grandja
25c4a7d541
Polish test gh-448
2021-11-03 07:56:18 -04:00
Daniel Garnier-Moiroux
088d9a8e34
Require code_verifier if code_challenge provided
...
Closes gh-453
2021-11-03 06:52:20 -04:00
Steve Riesenberg
defd1f90b8
Polish gh-448
2021-11-02 21:35:03 -05:00
figozhang
c9954af084
Customize authenticationDetailsSource of OAuth2TokenEndpointFilter
...
Closes gh-431
2021-11-02 21:32:52 -05:00
Josh Long
dc0ca22f5e
Update README.adoc
2021-11-02 15:38:14 -04:00
Joe Grandja
c7f01f0795
Polish gh-427
2021-10-27 19:47:38 -04:00
Ovidiu Popa
37e45619ae
Implement Client Configuration Endpoint
...
See: https://openid.net/specs/openid-connect-registration-1_0.html#ClientConfigurationEndpoint
Generate registration_client_uri and registration_access_token when registering a new client (see: https://openid.net/specs/openid-connect-registration-1_0.html#ClientRegistration )
Closes gh-355
2021-10-25 15:00:39 -04:00
Joe Grandja
72c5e24ab8
Polish gh-441
2021-10-25 12:26:53 -04:00
Steve Riesenberg
8e8e6d1b17
Implement User Info Endpoint
...
Closes gh-176
2021-10-25 12:26:28 -04:00
Ido Salomon
9667229429
Initial implementation of User Info Endpoint
...
Issue gh-176
2021-10-25 12:25:31 -04:00
Alexey Makarov
33bac0f7c2
JdbcOAuth2AuthorizationService now uses LobCreator in findBy method
...
Closes gh-455
2021-10-21 19:54:41 -04:00
Joe Grandja
63c248440c
Fix PKCE tests in OAuth2ClientAuthenticationProviderTests
2021-10-21 18:21:15 -04:00
Steve Riesenberg
71be32b245
Add support for deserializing LinkedHashSet
...
This is needed because OAuth2ClientCredentialsAuthenticationProvider stores authorized scopes in a LinkedHashSet.
Closes gh-457
2021-10-21 11:49:54 -05:00
Sarah McAlear
4b19637fbb
Update RegisteredClient.Builder to use getters
...
- Since the class is not final, it is possible to extend it.
Because the Builder was directly accessing the properties
rather than using the getters, it was not possible to use
the .from(id) constructor in the extended class.
Closes gh-451
2021-10-14 15:27:10 -04:00
Daniel Garnier-Moiroux
26f15b99bb
Make OAuth2ClientAuthenticationToken @Transient
2021-10-14 15:17:57 -04:00
Joe Grandja
f3c17b3de0
Specify Jenkins user in Jenkinsfile
2021-09-23 16:00:14 -04:00
Ovidiu Popa
298ebc7c01
Avoid client secret double encoding when updating a registered client
...
This might have to be revisited at a later point, but to check if a value is encoded or not is quite tricky. The decision was to remove client_secret and client_secret_expires_at from the update statement
Closes gh-389
2021-09-23 13:51:56 -04:00
Joe Grandja
0735abdaad
Polish gh-411
2021-09-23 12:01:42 -04:00