Commit Graph

404 Commits

Author SHA1 Message Date
Joe Grandja
f0a6a4c0bf Polish gh-1468 2023-12-18 11:00:07 -05:00
Greg Li
4bc0df5ef8 Fix to ensure endpoints distinguish between form and query parameters
Closes gh-1451
2023-12-15 16:06:05 -05:00
Joe Grandja
639fe93544 Remove unused OAuth2EndpointUtils 2023-12-08 08:38:25 -05:00
Joe Grandja
30d6129117 Revert "Issuer should not support path component"
This reverts commit c3f86d11f8.
2023-12-06 10:02:10 -05:00
Joe Grandja
d52edb8f76 Update javadoc for JDBC implementations 2023-11-20 11:03:58 -05:00
Martin Bogusz
8f6593ab2a Set default timeout when fetching JWKSet for private_key_jwt
Closes gh-1413
2023-11-07 07:57:45 -05:00
Joe Grandja
c3f86d11f8 Issuer should not support path component
Closes gh-1435
2023-11-06 14:53:04 -05:00
Joe Grandja
5286affbfe Fix tests for OAuth2 Authorization Server Metadata Endpoint
Closes gh-1419
2023-10-23 13:46:12 -04:00
Joe Grandja
b0862336d3 Fix tests for OIDC Provider Configuration Endpoint
Closes gh-1416
2023-10-23 10:12:51 -04:00
Joe Grandja
75c3a52788 Client credentials are not allowed in query parameters
Closes gh-1378
2023-10-16 07:15:16 -04:00
Joe Grandja
6d21a65ff4 Polish gh-1345 2023-10-11 12:20:57 -04:00
Yuta Saito
9109d3714b Fix to return hashed client_secret when registering with client_secret_jwt
Closes gh-1344
2023-10-11 11:53:13 -04:00
Joe Grandja
2b3b5d2531 Polish gh-1252 2023-06-16 10:27:44 -04:00
Martin Lindström
890b1ef0ed Fix to save all values for multi-valued request parameters
Fixes gh-1250
2023-06-16 06:11:01 -04:00
Joe Grandja
4bb741b0ba Revert serialVersionUID to 0.4.0
Closes gh-1218
2023-05-19 14:50:28 -04:00
Joe Grandja
089096a835 Next Development Version 2023-04-18 06:56:49 -04:00
HuiYeong
25bc45cdff Fix refresh token error code INVALID_CLIENT to INVALID_GRANT
Closes gh-1139
2023-04-06 07:53:45 -04:00
Joe Grandja
ef4c5d7b6f Allow localhost in redirect_uri
Closes gh-651
2023-04-05 15:44:54 -04:00
Joe Grandja
addd6e13d5 Polish gh-1056 2023-03-07 04:26:13 -05:00
Yuta Saito
63aa5d8933 Fix client secret encoding when client dynamically registered
Closes gh-1056
2023-03-06 17:39:36 -05:00
Joe Grandja
fc6bf6160e Next Development Version 2023-02-21 11:12:48 -05:00
Joe Grandja
0cd594082e Polish authorization error response encoding
Issue gh-1011
2023-02-21 03:47:53 -05:00
Joe Grandja
30927ad5e7 Polish gh-1011 2023-02-15 16:58:28 -05:00
Andreas Fleig
26205a2d8d Preserve encoding for authorization request redirect_uri parameter
Closes gh-1011
2023-02-15 15:27:02 -05:00
Joe Grandja
1783bf7611 Polish gh-1013 2023-02-15 09:46:40 -05:00
topiam
9767d1eabb Fix redirect_uri resolver
Closes gh-1012
2023-02-15 09:30:06 -05:00
Joe Grandja
e332a9dac5 Next Development Version 2022-11-21 13:40:03 -05:00
Seyed Mohammad Hossein Jamali
4e63c3b6b6 Update links to current version of OAuth 2.1
Closes gh-960
2022-11-21 11:15:09 -05:00
Joe Grandja
8ed0194744 client_id authentication parameter must have printable ASCII characters
Closes gh-889
2022-11-18 14:30:06 -05:00
Joe Grandja
fcbb5c1197 Polish OAuth2AuthorizationCodeGrantTests 2022-11-16 04:27:45 -05:00
Steve Riesenberg
74fe63a65b Add logging for authentication filters
Closes gh-159
2022-11-09 07:38:47 -05:00
Steve Riesenberg
2c4bd29f98 Add logging for authentication providers
Issue gh-159
2022-11-09 07:38:47 -05:00
Joe Grandja
8b0e7578df Upgrade to JUnit 5
Closes gh-964
2022-11-08 11:35:27 -05:00
Joe Grandja
0e509333bc Assert unique identifiers in JdbcRegisteredClientRepository
Closes gh-959
2022-11-03 16:29:12 -04:00
Joe Grandja
6dc3944eef Add OidcClientRegistrationAuthenticationProvider.setRegisteredClientConverter()
Closes gh-696
2022-10-31 14:45:39 -04:00
Joe Grandja
4eb25c163f Polish gh-920 2022-10-31 11:56:03 -04:00
Jonah Back
356d669a78 Fix URL encoding for authorization request state parameter
Closes gh-875
2022-10-31 11:38:25 -04:00
Joe Grandja
11ce8ef201 Polish gh-929 2022-10-28 18:04:17 -04:00
Joe Grandja
bfd7a09c3b Polish gh-946 2022-10-28 17:36:14 -04:00
Daniel Garnier-Moiroux
efbfdc234c Improve customizing OIDC Client Registration endpoint
Related gh-696

Closes gh-946
2022-10-28 17:35:11 -04:00
Joe Grandja
2ba711c83a Polish gh-929 2022-10-28 14:23:16 -04:00
Daniel Garnier-Moiroux
8d7f8b3420 Improve customizing OIDC UserInfo endpoint
Closes gh-785
2022-10-27 13:55:02 -04:00
Joe Grandja
8c2b095195 Extract JwtDecoderFactory from JwtClientAssertionAuthenticationProvider
Closes gh-944
2022-10-27 10:12:35 -04:00
Joe Grandja
72804be45b Extract OIDC client configuration implementation
Closes gh-941
2022-10-25 15:13:14 -04:00
Joe Grandja
629e220c2f Use Boolean field for OidcUserInfo.phoneNumberVerified
Related https://github.com/spring-projects/spring-security/issues/11315

Closes gh-923
2022-10-24 14:47:48 -04:00
Joe Grandja
d7aa72af68 Disable OpenID Connect 1.0 by default
Closes gh-928
2022-10-20 09:31:49 -04:00
Joe Grandja
92dbcf29a5 Move integration tests for OidcProviderConfiguration 2022-09-20 12:25:58 -04:00
Joe Grandja
26aed3c183 Polish gh-881 2022-09-20 11:23:42 -04:00
sahariardev
cd6f1d7dc3 Return registration_endpoint when client registration is enabled
Closes gh-370
2022-09-20 11:22:45 -04:00
Joe Grandja
4d94e7095d Decompose OAuth2AuthorizationCodeRequestAuthenticationProvider
Closes gh-896
2022-09-20 06:03:32 -04:00