Commit Graph

1685 Commits

Author SHA1 Message Date
dependabot[bot]
ffb632ba8c Bump io-spring-javaformat from 0.0.45 to 0.0.46
Bumps `io-spring-javaformat` from 0.0.45 to 0.0.46.

Updates `io.spring.javaformat:spring-javaformat-checkstyle` from 0.0.45 to 0.0.46
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.45...v0.0.46)

Updates `io.spring.javaformat:spring-javaformat-gradle-plugin` from 0.0.45 to 0.0.46
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.45...v0.0.46)

---
updated-dependencies:
- dependency-name: io.spring.javaformat:spring-javaformat-checkstyle
  dependency-version: 0.0.46
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: io.spring.javaformat:spring-javaformat-gradle-plugin
  dependency-version: 0.0.46
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-06-13 10:17:23 -04:00
Joe Grandja
76ae518d56 Increase request_uri expiry for OAuth2 Pushed Authorization Request
Closes gh-2024
2025-06-04 06:10:20 -04:00
Joe Grandja
c4e8427a3a Merge branch '1.4.x' 2025-06-03 13:24:22 -04:00
Joe Grandja
b40b265ac5 Merge branch '1.3.x' into 1.4.x 2025-06-03 13:17:30 -04:00
Joe Grandja
fe4b5ada8c Polish gh-1997 2025-06-03 09:30:40 -04:00
Antoine Lauzon
ce528eed9b Check user code expiry and invalidity
Closes gh-1977

Signed-off-by: Antoine Lauzon <139174762+antoinelauzon-bell@users.noreply.github.com>
2025-06-03 09:27:27 -04:00
Joe Grandja
5bf66c305d Polish logging in OAuth2ClientAuthenticationFilter
Closes gh-2025
2025-06-02 13:29:23 -04:00
github-actions[bot]
0e4f8b5b7e Next development version 2025-05-20 15:48:52 +00:00
github-actions[bot]
ebd3c3c9bd Release 1.5.0 2025-05-20 15:24:16 +00:00
Joe Grandja
010edeec7e Merge branch '1.4.x' 2025-05-20 06:15:15 -04:00
Joe Grandja
e5dbc3be9d Merge branch '1.3.x' into 1.4.x 2025-05-20 06:12:25 -04:00
dependabot[bot]
0a69baa3c0 Bump io-spring-javaformat from 0.0.43 to 0.0.45
Bumps `io-spring-javaformat` from 0.0.43 to 0.0.45.

Updates `io.spring.javaformat:spring-javaformat-checkstyle` from 0.0.43 to 0.0.45
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.43...v0.0.45)

Updates `io.spring.javaformat:spring-javaformat-gradle-plugin` from 0.0.43 to 0.0.45
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.43...v0.0.45)

---
updated-dependencies:
- dependency-name: io.spring.javaformat:spring-javaformat-checkstyle
  dependency-version: 0.0.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: io.spring.javaformat:spring-javaformat-gradle-plugin
  dependency-version: 0.0.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-20 05:59:00 -04:00
dependabot[bot]
69a775f1a2 Bump org.springframework.security:spring-security-bom
Bumps [org.springframework.security:spring-security-bom](https://github.com/spring-projects/spring-security) from 6.4.5 to 6.4.6.
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](https://github.com/spring-projects/spring-security/compare/6.4.5...6.4.6)

---
updated-dependencies:
- dependency-name: org.springframework.security:spring-security-bom
  dependency-version: 6.4.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-20 05:58:37 -04:00
dependabot[bot]
bf17b16415 Bump io-spring-javaformat from 0.0.43 to 0.0.45
Bumps `io-spring-javaformat` from 0.0.43 to 0.0.45.

Updates `io.spring.javaformat:spring-javaformat-checkstyle` from 0.0.43 to 0.0.45
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.43...v0.0.45)

Updates `io.spring.javaformat:spring-javaformat-gradle-plugin` from 0.0.43 to 0.0.45
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.43...v0.0.45)

---
updated-dependencies:
- dependency-name: io.spring.javaformat:spring-javaformat-checkstyle
  dependency-version: 0.0.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: io.spring.javaformat:spring-javaformat-gradle-plugin
  dependency-version: 0.0.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-20 05:54:01 -04:00
dependabot[bot]
eedaa5b8cc Bump org.springframework.security:spring-security-bom
Bumps [org.springframework.security:spring-security-bom](https://github.com/spring-projects/spring-security) from 6.5.0-RC1 to 6.5.0.
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](https://github.com/spring-projects/spring-security/compare/6.5.0-RC1...6.5.0)

---
updated-dependencies:
- dependency-name: org.springframework.security:spring-security-bom
  dependency-version: 6.5.0
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-20 05:53:06 -04:00
dependabot[bot]
84f9299e7b Bump io-spring-javaformat from 0.0.43 to 0.0.45
Bumps `io-spring-javaformat` from 0.0.43 to 0.0.45.

Updates `io.spring.javaformat:spring-javaformat-checkstyle` from 0.0.43 to 0.0.45
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.43...v0.0.45)

Updates `io.spring.javaformat:spring-javaformat-gradle-plugin` from 0.0.43 to 0.0.45
- [Release notes](https://github.com/spring-io/spring-javaformat/releases)
- [Commits](https://github.com/spring-io/spring-javaformat/compare/v0.0.43...v0.0.45)

---
updated-dependencies:
- dependency-name: io.spring.javaformat:spring-javaformat-checkstyle
  dependency-version: 0.0.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: io.spring.javaformat:spring-javaformat-gradle-plugin
  dependency-version: 0.0.45
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-20 05:44:33 -04:00
dependabot[bot]
f43038e901 Bump org.springframework:spring-framework-bom from 6.2.6 to 6.2.7
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.2.6 to 6.2.7.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.2.6...v6.2.7)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-version: 6.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:27:25 -04:00
dependabot[bot]
1a8ba60f46 Bump com.fasterxml.jackson:jackson-bom from 2.18.3 to 2.18.4
Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.18.3 to 2.18.4.
- [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.3...jackson-bom-2.18.4)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson:jackson-bom
  dependency-version: 2.18.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:27:00 -04:00
dependabot[bot]
892a37775d Bump io.spring.security.release from 1.0.5 to 1.0.6
Bumps io.spring.security.release from 1.0.5 to 1.0.6.

---
updated-dependencies:
- dependency-name: io.spring.security.release
  dependency-version: 1.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:26:33 -04:00
dependabot[bot]
ccf5a98e8c Bump org.springframework:spring-framework-bom from 6.2.6 to 6.2.7
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.2.6 to 6.2.7.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.2.6...v6.2.7)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-version: 6.2.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:25:33 -04:00
dependabot[bot]
ce95709ee7 Bump com.fasterxml.jackson:jackson-bom from 2.18.3 to 2.18.4
Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.18.3 to 2.18.4.
- [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.3...jackson-bom-2.18.4)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson:jackson-bom
  dependency-version: 2.18.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:25:00 -04:00
dependabot[bot]
4035044006 Bump io.spring.security.release from 1.0.5 to 1.0.6
Bumps io.spring.security.release from 1.0.5 to 1.0.6.

---
updated-dependencies:
- dependency-name: io.spring.security.release
  dependency-version: 1.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:24:35 -04:00
dependabot[bot]
9b11e88880 Bump org.springframework:spring-framework-bom from 6.1.19 to 6.1.20
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.1.19 to 6.1.20.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.1.19...v6.1.20)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-version: 6.1.20
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:23:37 -04:00
dependabot[bot]
85ed91fe66 Bump io.spring.security.release from 1.0.5 to 1.0.6
Bumps io.spring.security.release from 1.0.5 to 1.0.6.

---
updated-dependencies:
- dependency-name: io.spring.security.release
  dependency-version: 1.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-05-16 11:23:00 -04:00
Joe Grandja
90e6a795c4 Add documentation for OAuth 2.0 Pushed Authorization Requests (PAR)
Closes gh-2014
2025-05-15 11:59:21 -04:00
Joe Grandja
3debeb6f65 Add documentation for DPoP support
Closes gh-2009
2025-05-14 19:06:01 -04:00
Joe Grandja
86b5607a03 Fix DPoP jkt claim validation during refresh_token grant for public clients
Closes gh-2008
2025-05-14 06:16:14 -04:00
Joe Grandja
07f9621b02 Fix DPoP jkt claim to be JWK SHA-256 thumbprint
Closes gh-2007
2025-05-13 16:37:17 -04:00
DevDengChao
40d503abe4 Replace @MockBean with @MockitoBean
Closes gh-1972

Signed-off-by: DevDengChao <2325690622@qq.com>
2025-04-30 09:35:43 -04:00
Joe Grandja
76e3b03e74 Merge branch '1.4.x' 2025-04-29 06:50:43 -04:00
Joe Grandja
20aca47d12 Merge branch '1.3.x' into 1.4.x
Closes gh-1995
2025-04-29 06:48:48 -04:00
Tran Ngoc Nhan
6bbd62914c Prevent NPE
Closes gh-1955

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
2025-04-29 06:45:29 -04:00
Joe Grandja
51dd7c6124 Merge branch '1.4.x' 2025-04-23 12:03:59 -04:00
Joe Grandja
4b2a87516c Merge branch '1.3.x' into 1.4.x 2025-04-23 11:53:39 -04:00
Joe Grandja
02f9d1e1c3 Revert "Temporarily modify workflow to complete 1.4.3 release"
This reverts commit a13d7cda99.
2025-04-22 15:45:04 -04:00
github-actions[bot]
ec9f5efa7b Next development version 2025-04-22 19:41:51 +00:00
Joe Grandja
a13d7cda99 Temporarily modify workflow to complete 1.4.3 release 2025-04-22 15:36:20 -04:00
github-actions[bot]
fb619ee188 Next development version 2025-04-22 15:40:48 +00:00
github-actions[bot]
27b0504656 Next development version 2025-04-22 15:28:04 +00:00
github-actions[bot]
c42ea5be7d Release 1.3.6 2025-04-22 15:22:30 +00:00
github-actions[bot]
e1a859b16c Release 1.4.3 2025-04-22 15:22:18 +00:00
github-actions[bot]
f12173899b Release 1.5.0-RC1 2025-04-22 15:22:15 +00:00
Joe Grandja
23179507d5 Use OAuth2ParameterNames.REQUEST_URI
Issue gh-1925

Closes gh-1991
2025-04-22 06:06:31 -04:00
Joe Grandja
834d405fee Merge branch '1.4.x' 2025-04-22 05:34:41 -04:00
Joe Grandja
9b94f26aa4 Merge branch '1.3.x' into 1.4.x 2025-04-22 05:33:00 -04:00
dependabot[bot]
0dc3759cff Bump org.springframework.security:spring-security-bom
Bumps [org.springframework.security:spring-security-bom](https://github.com/spring-projects/spring-security) from 6.3.8 to 6.3.9.
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](https://github.com/spring-projects/spring-security/compare/6.3.8...6.3.9)

---
updated-dependencies:
- dependency-name: org.springframework.security:spring-security-bom
  dependency-version: 6.3.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-04-22 05:22:45 -04:00
dependabot[bot]
aaedad935c Bump org.springframework.security:spring-security-bom
Bumps [org.springframework.security:spring-security-bom](https://github.com/spring-projects/spring-security) from 6.4.4 to 6.4.5.
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](https://github.com/spring-projects/spring-security/compare/6.4.4...6.4.5)

---
updated-dependencies:
- dependency-name: org.springframework.security:spring-security-bom
  dependency-version: 6.4.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-04-22 05:22:13 -04:00
dependabot[bot]
14f1e70488 Bump org.springframework.security:spring-security-bom
Bumps [org.springframework.security:spring-security-bom](https://github.com/spring-projects/spring-security) from 6.5.0-M3 to 6.5.0-RC1.
- [Release notes](https://github.com/spring-projects/spring-security/releases)
- [Changelog](https://github.com/spring-projects/spring-security/blob/main/RELEASE.adoc)
- [Commits](https://github.com/spring-projects/spring-security/compare/6.5.0-M3...6.5.0-RC1)

---
updated-dependencies:
- dependency-name: org.springframework.security:spring-security-bom
  dependency-version: 6.5.0-RC1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-04-22 05:21:23 -04:00
dependabot[bot]
76120b9a41 Bump io.spring.security.release from 1.0.4 to 1.0.5
Bumps io.spring.security.release from 1.0.4 to 1.0.5.

---
updated-dependencies:
- dependency-name: io.spring.security.release
  dependency-version: 1.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-04-22 05:19:55 -04:00
dependabot[bot]
eb6ce03e49 Bump io.spring.security.release from 1.0.4 to 1.0.5
Bumps io.spring.security.release from 1.0.4 to 1.0.5.

---
updated-dependencies:
- dependency-name: io.spring.security.release
  dependency-version: 1.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-04-22 05:19:23 -04:00