Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Submit feedback
Sign in / Register
Toggle navigation
S
spring-boot
Project
Project
Details
Activity
Releases
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
DEMO
spring-boot
Commits
ceaac988
Commit
ceaac988
authored
Jul 18, 2018
by
Madhura Bhave
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Update docs with OIDC provider configuration
See gh-13210
parent
6333edbe
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
16 additions
and
5 deletions
+16
-5
OAuth2ClientProperties.java
...figure/security/oauth2/client/OAuth2ClientProperties.java
+1
-5
spring-boot-features.adoc
...ing-boot-docs/src/main/asciidoc/spring-boot-features.adoc
+15
-0
No files found.
spring-boot-project/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/security/oauth2/client/OAuth2ClientProperties.java
View file @
ceaac988
...
...
@@ -209,11 +209,7 @@ public class OAuth2ClientProperties {
private
String
jwkSetUri
;
/**
* URI that an OpenID Connect Provider asserts as its Issuer Identifier. If the
* issuer provided is "https://example.com", then an "OpenID Provider
* Configuration Request" will be made to
* "https://example.com/.well-known/openid-configuration". The result is expected
* to be an "OpenID Provider Configuration Response".
* URI that an OpenID Connect Provider asserts as its Issuer Identifier.
*/
private
String
issuerUri
;
...
...
spring-boot-project/spring-boot-docs/src/main/asciidoc/spring-boot-features.adoc
View file @
ceaac988
...
...
@@ -3240,6 +3240,21 @@ In other words, the two configurations in the following example use the Google p
spring.security.oauth2.client.registration.google.client-secret=password
----
For OpenID Connect providers that support https://openid.net/specs/openid-connect-discovery-1_0.html[OpenID Connect discovery],
the configuration can be further simplified. The provider needs to be configured with an `issuer-uri` which is the
URI that the it asserts as its Issuer Identifier. For example, if the
`issuer-uri` provided is "https://example.com", then an `OpenID Provider Configuration Request`
will be made to "https://example.com/.well-known/openid-configuration". The result is expected
to be an `OpenID Provider Configuration Response`. The following example shows how an OpenID Connect
Provider can be configured with the `issuer-uri`:
[source,properties,indent=0]
----
spring.security.oauth2.client.registration.oidc-provider.client-id=abcd
spring.security.oauth2.client.registration.oidc-provider.client-secret=password
spring.security.oauth2.client.provider.oidc-provider.issuer-uri=https://dev-123456.oktapreview.com/oauth2/default/
----
[[boot-features-security-oauth2-server]]
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
