Commit Graph

142 Commits

Author SHA1 Message Date
Steve Riesenberg
623736d640 Add test to override schema for JdbcRegisteredClientRepository 2021-06-29 15:25:07 -05:00
Steve Riesenberg
3318874da1 Polish gh-291 2021-06-29 14:06:36 -05:00
Steve Riesenberg
6f6829bb91 Polish gh-314 2021-06-29 11:03:07 -05:00
Steve Riesenberg
ab2f1749bf Polish gh-304 2021-06-29 10:50:47 -05:00
Steve Riesenberg
232b3b7ac6 Add jackson module for authorization server
Fixes problems with serialization of complex attribute values of various framework types such as OAuth2AuthorizationRequest and OAuth2ClientAuthenticationToken.

Closes gh-324
Closes gh-328
2021-06-28 16:12:18 -05:00
Steve Riesenberg
67e62a2f21 Fix NPE saving public client
Closes gh-326
2021-06-28 12:37:01 -05:00
Steve Riesenberg
473dedb9ad Revert "Polish JdbcRegisteredClientRepository, JdbcOAuth2AuthorizationConsentService, JdbcOAuth2AuthorizationService"
This reverts commit e5e391db
2021-06-25 09:14:55 -05:00
Steve Riesenberg
e5e391db38 Polish JdbcRegisteredClientRepository, JdbcOAuth2AuthorizationConsentService, JdbcOAuth2AuthorizationService 2021-06-23 16:08:23 -05:00
Joe Grandja
4209ed7599 Polish JdbcOAuth2AuthorizationService
Issue gh-304
2021-06-23 07:09:08 -04:00
Steve Riesenberg
763ef2224b Polish gh-291 2021-06-22 12:32:25 -05:00
Rafal Lewczuk
769cf8fac7 JDBC implementation of RegisteredClientRepository
Closes gh-265
2021-06-22 11:17:25 -05:00
Joe Grandja
1f4b369912 Provide configuration for the token endpoint
Closes gh-319
2021-06-22 06:13:44 -04:00
Joe Grandja
7c97d8ede9 Extract utility methods from OAuth2AuthorizationServerConfigurer
Issue gh-319
2021-06-22 06:13:34 -04:00
Joe Grandja
5a79234677 Provide extension for processing access token request
Issue gh-319
2021-06-22 06:13:25 -04:00
Joe Grandja
23732187a9 Provide extension for processing access token response
Issue gh-319
2021-06-22 06:12:44 -04:00
Steve Riesenberg
5e79f21913 Polish gh-314
Polish gh-304
2021-06-18 12:23:03 -05:00
Ovidiu Popa
5dbe973701 Provide JDBC implementation of OAuth2AuthorizationConsentService
Add new JDBC implementation of the OAuth2AuthorizationConsentService
Add equals and hashCode methods in OAuth2AuthorizationConsent

Closes gh-313
2021-06-18 11:46:45 -05:00
Steve Riesenberg
8e9563a440 Polish gh-304 2021-06-16 10:35:56 -05:00
Steve Riesenberg
566064ba9a Revert "Polish gh-313"
This reverts commit 7f095e0a
2021-06-16 10:35:13 -05:00
Steve Riesenberg
7f095e0a6f Polish gh-313 2021-06-16 10:26:56 -05:00
Ovidiu Popa
552751bd93 Provide JDBC implementation of OAuth2AuthorizationService
Add new JDBC implementation of the OAuth2AuthorizationService

Closes gh-245
2021-06-15 17:43:25 -05:00
Joe Grandja
f3cb8f758c Polish gh-280 2021-06-04 06:36:40 -04:00
Daniel Garnier-Moiroux
683dad1443 Remember user consent and make consent page configurable
Closes gh-283
2021-06-03 09:56:13 -04:00
Joe Grandja
4688b0f879 Polish gh-161 2021-06-03 09:43:10 -04:00
Steve Riesenberg
c37ecd747f OAuth2AuthorizationCodeAuthenticationProvider checks if code has expired
Closes gh-290
2021-05-26 13:41:49 -04:00
Joe Grandja
5e0fe9c862 Next Development Version 2021-05-07 15:17:12 -04:00
Joe Grandja
93d16d4419 Polish gh-272 2021-05-07 14:26:29 -04:00
Rafal Lewczuk
8cd954ffa2 Use PasswordEncoder in OAuth2ClientAuthenticationProvider
Closes gh-271
2021-05-07 14:25:24 -04:00
Joe Grandja
0c70e8ad3a Rename OAuth2TokenIntrospection.Builder.validateClaims() to validate()
Issue gh-161
2021-05-07 11:44:02 -04:00
Joe Grandja
e7feb6c0ed Polish gh-189 2021-05-07 11:21:41 -04:00
Ovidiu Popa
8224a0d971 Implement OpenID client registration endpoint
See: https://openid.net/specs/openid-connect-registration-1_0.html#ClientRegistration

Closes gh-57
2021-05-07 11:06:11 -04:00
Daniel Garnier-Moiroux
2712a7b86c Polish ProviderSettingsTests
Issue gh-167
2021-04-30 06:15:04 -04:00
Joe Grandja
7dc9da3340 Polish gh-167 2021-04-30 05:49:38 -04:00
Daniel Garnier-Moiroux
0a4775423b Implement OAuth 2.0 Server Metadata (RFC 8414)
See See https://tools.ietf.org/html/rfc8414

Closes gh-54
2021-04-28 10:13:51 +02:00
Joe Grandja
9a45ae9804 Polish gh-161 2021-04-26 09:51:39 -04:00
Gerardo Roza
92e8c08ce6 Add Token Introspection Endpoint
Closes gh-52
2021-04-26 09:51:39 -04:00
Joe Grandja
85d6a12000 Login page should not be configured
Closes gh-267
2021-03-26 11:09:20 -04:00
Anoop Garlapati
8d57c893fb Redirect URI validation for loopback address
Modified redirect_uri validation as per OAuth 2.1 to
accomodate for redirections on loopback address interface.

Closes gh-243
2021-03-25 15:50:53 -04:00
Daniel Garnier-Moiroux
59040a4c3d Use nimbus-jose-jwt and oauth2-oidc-sdk versions from spring-security
- Spring Security 5.4.5 downgraded nimbus-jose-jwt to 8.+ from 9.+,
  which breaks NimbusJwsEncoder.
- Bump Security to 5.4.5, and Boot to 2.4.3 to match Security

Closes gh-256
2021-03-16 10:04:42 -04:00
Joshua Casey
3b0938883b Scope "openid" should be in access token response scope
- Still does not require user consent

Closes gh-252
2021-03-15 12:00:44 -04:00
Daniel Garnier-Moiroux
1962b9c5b7 Bump Jacoco to 0.8.6 to support Java 15 2021-03-12 16:09:38 -05:00
Joe Grandja
e440935c14 Next Development Version 2021-02-11 21:52:34 -05:00
Joe Grandja
69a34bce5b Fix package tangles 2021-02-11 15:16:37 -05:00
Joe Grandja
7652d0ebbe Propagate additional token request parameters
Closes gh-226
2021-02-11 10:42:26 -05:00
Joe Grandja
b5d47366ad openid scope does not require user consent
Closes gh-225
2021-02-11 08:35:17 -05:00
Joe Grandja
ece5f2b3b1 Add JwtEncodingContext.getAuthorizedScopes()
Issue gh-199
2021-02-10 20:26:01 -05:00
Joe Grandja
c00226d0c6 Store authorizedScopes attribute for client_credentials grant
Issue gh-213
2021-02-10 19:37:14 -05:00
Joe Grandja
6ffda38cb9 OAuth2AccessToken.scopes includes authorized or requested scopes
Closes gh-224
2021-02-10 15:45:26 -05:00
Joe Grandja
09846eebeb InMemoryOAuth2AuthorizationService.save() supports insert and update
Related gh-220

Closes gh-222
2021-02-10 13:36:52 -05:00
Joe Grandja
c9afc3e061 Set iss claim in Jwt using configured issuer
Closes gh-223
2021-02-10 08:47:19 -05:00