f5991ae176
Allow access token request parameters to override defaults
...
Closes gh-11298
2024-10-02 12:05:42 -05:00
9ba2435cb2
Support refresh token for Token Exchange
...
Closes gh-15534
2024-09-27 15:57:57 -05:00
e11c188122
Customize the strategy for resolving the principal
...
Closes gh-15826
2024-09-27 15:39:56 -05:00
c1a303bc92
Add tests for overriding parameters
...
Issue gh-15298
Issue gh-11298
2024-09-19 13:01:09 -05:00
5d8cf6a8bc
Polish gh-13588
2024-09-19 12:08:48 -05:00
63f018eb18
Update tests using deprecated classes
...
Issue gh-15737
2024-09-10 15:10:42 -05:00
7490a8162b
Deprecate default OAuth2AccessTokenResponseClients
...
Closes gh-15737
2024-09-10 15:10:41 -05:00
2cead9b73f
Add RestClient implementations
...
Issue gh-15298
2024-09-10 15:10:41 -05:00
e3c19ba86c
Add RestClient interceptor
...
Closes gh-13588
2024-08-16 17:15:18 -05:00
aa9c1bab67
Upgrade to Spring Framework 6.2.0-M4
...
Closes gh-15266
2024-06-18 14:07:05 -03:00
7c45ebd81c
Polish gh-15012
2024-06-03 17:02:38 -05:00
99aee99b34
Expose user name attribute name in `OAuth2UserAuthority`
2024-06-03 12:30:34 -05:00
db9f5935ae
Merge branch '6.2.x' into 6.3.x
2024-05-29 16:24:05 -05:00
5a1d261ce0
Merge branch '5.8.x' into 6.2.x
2024-05-29 16:23:37 -05:00
e34621ec2c
Polish gh-14977
2024-05-29 16:23:00 -05:00
1695d03b72
Assert WebSession is not null
...
Issue gh-14975
2024-05-29 14:55:37 -05:00
08f11f06ab
Revert unnecessary commits from main
...
Issue gh-15016
2024-05-08 13:49:18 -03:00
2598bf8c37
Polish gh-14859
2024-04-29 15:07:45 -05:00
d0adb2aa70
Simplify Disabling Encoding Client ID and Secret
...
Closes gh-11440
2024-04-29 14:46:12 -05:00
05d3beb6a8
Polish gh-13648
2024-04-18 16:17:49 -05:00
b69939c1e5
Getters for OAuth2AuthorizedClientId properties
...
Expose getters for principalName and clientRegistrationId which compose an OAuth2AuthorizedClientId
2024-04-18 16:10:39 -05:00
b1b84f9b8a
Revert "Support overriding RestOperations in OidcIdTokenDecoderFactory"
...
This reverts commit 9c352c4b4b
2024-04-11 14:29:59 -06:00
5a50bfccac
Revert "Support overriding WebClient in ReactiveOidcIdTokenDecoderFactory"
...
This reverts commit 0041c658de
2024-04-11 14:29:59 -06:00
ff19f04fca
Add JwtValidators append to default
...
Implemented simplified creation of default OAuth2TokenValidator with additional validators.
Closes gh-14831
2024-04-02 14:41:35 -07:00
b648a24f5f
Polish Type Conversion API
...
Issue gh-6245
2024-04-01 16:14:21 -06:00
e52dd81d03
Customize mapping the OidcUser
...
Closes gh-14672
2024-03-07 15:45:39 -06:00
85c3d0ab13
Add reactive support for OAuth 2.0 Token Exchange Grant
...
Issue gh-5199
2024-03-06 16:02:58 -06:00
d2fe9094a9
Add servlet support for OAuth 2.0 Token Exchange Grant
...
Issue gh-5199
2024-03-06 16:02:58 -06:00
07ac0b616b
Introduce Customizable AuthorizationFailureHandler
...
Closes gh-13793
2024-03-01 13:11:46 -06:00
21580fd27d
Merge branch '6.2.x'
2024-02-16 13:31:20 -03:00
15306c1007
Merge branch '6.1.x' into 6.2.x
2024-02-16 13:21:15 -03:00
750cb30ce4
Add AuthenticationTrustResolver.isAuthenticated
2024-02-16 13:08:29 -03:00
96e3e4f8b1
Customize when user info is called
...
Closes gh-13259
2024-02-13 12:34:20 -06:00
e77126740d
Add ReactiveOidcIdTokenDecoderFactory#setWebClientResolver
...
Closes gh-13274
2024-02-01 10:04:06 -07:00
d7599ab192
Polish setAttributesConverter
...
- Add Tests
- Add Reactive Support
Issue gh-14186
2024-01-30 14:37:20 -07:00
04f0f2597a
Polish DefaultOAuth2UserService
...
Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
2024-01-30 14:37:20 -07:00
d9d22c75a2
Add support for nested username attribute in DefaultOAuth2User
...
Closes gh-14186
Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
2024-01-30 14:37:20 -07:00
7ee974445b
Update Checkstyle
...
Issue gh-14178
2024-01-22 08:44:54 -07:00
04394a63cd
Update Formatting
...
Issue gh-14178
2024-01-22 08:26:25 -07:00
1e90bdfc0b
Update Copyright
...
Issue gh-14178
2024-01-19 09:26:04 -07:00
9c352c4b4b
Support overriding RestOperations in OidcIdTokenDecoderFactory
...
Closes gh-14178
2024-01-19 09:24:56 -07:00
0041c658de
Support overriding WebClient in ReactiveOidcIdTokenDecoderFactory
...
Closes gh-14178
2024-01-19 09:24:56 -07:00
9db33f33c7
Revert unnecessary merges on 6.0.x
...
This commit removes unnecessary main-branch merges starting from
8750608b5b5dce82c48b
2023-10-31 15:11:45 -05:00
07b6c451fd
Merge branch '6.1.x'
...
Closes gh-13884
2023-09-29 11:47:38 -03:00
92c82191c9
Merge branch '5.8.x' into 6.0.x
...
Closes gh-13882
2023-09-29 11:46:00 -03:00
64e2a2ff8b
Apply updated Code Style
...
Closes gh-13881
2023-09-29 11:44:32 -03:00
cb33fd7850
Add OIDC Back-Channel Logout Support
...
Closes gh-12570
2023-09-16 15:12:21 -06:00
5535d17172
Merge branch '6.1.x'
...
Closes gh-13807
Closes gh-13803
Closes gh-13802
2023-09-12 18:55:42 -05:00
9df9cb5aed
refactor: AssertJ best practices
...
Use this link to re-run the recipe: https://app.moderne.io/recipes/builder/bGVuS?organizationId=RGVmYXVsdA%3D%3D
Co-authored-by: Moderne <team@moderne.io>
2023-09-12 16:18:14 -06:00
771d9cd8b6
Merge branch '5.8.x' into 6.0.x
...
Closes gh-13799
2023-09-12 17:00:47 -05:00
9b7a110704
Fix OAuth2AuthenticationExceptionMixinTests on JDK 17
...
Closes gh-11893
2023-09-12 16:51:47 -05:00
6c3636d780
Update Removed Usages
...
Issue gh-13544
2023-07-14 18:38:58 -06:00
4c33d53385
Add SupplierClientRegistrationRepository
...
Closes gh-12967
2023-07-12 15:53:22 -06:00
a77ef9ecf4
Add ClientAuthenticationMethod#toString
...
Closes gh-13497
2023-07-12 14:24:26 -06:00
80a0ade3e3
Merge branch '6.1.x'
...
Closes gh-13499
2023-07-12 14:16:08 -06:00
dbf0c66301
Fix Client Authentication Method Error Message
...
Closes gh-13496
2023-07-12 14:15:31 -06:00
52e12ad64b
Replace deprecated methods
2023-06-22 13:19:55 -06:00
9b603b99ab
Using modern Java features
2023-06-22 11:24:25 -06:00
b09a228eaf
Make class `OidcClientInitiatedLogoutSuccessHandler` extensible
2023-06-22 11:19:39 -06:00
5f26daedcb
Error On Unsupported Client Authentication Methods
...
Closes gh-13144
2023-06-12 15:13:13 -06:00
69b17f3d3f
Merge branch '5.8.x' into 6.0.x
...
Closes gh-13222
2023-05-24 15:29:39 -06:00
c1002ff745
Improve Error Handling
...
Closes gh-13143
2023-05-24 15:29:15 -06:00
7bd6deccc3
Revert "Disable Some R2dbc Tests"
...
This reverts commit 813179931a
2022-12-19 15:42:22 -07:00
813179931a
Disable Some R2dbc Tests
...
Issue gh-12339
2022-12-05 11:13:15 -07:00
b22bc42bb0
Merge branch '5.8.x' into 6.0.x
...
Closes gh-12325
2022-11-30 14:50:51 -07:00
29c00905ce
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12324
2022-11-30 14:49:26 -07:00
667cab6cda
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12323
2022-11-30 14:38:16 -07:00
52c7141aac
Save Request Before Response Is Committed
...
Specifically important for cookie-based authorization request
repositories.
Closes gh-11602
2022-11-30 14:33:08 -07:00
bb3d92e33a
Update r2dbc-h2 to 1.0.0.RELEASE
...
Closes gh-12251
2022-11-18 23:04:38 -06:00
4e88623873
Polish gh-12087 in 6.0
2022-11-17 14:31:44 -06:00
a3d35ecf3c
Merge branch '5.8.x'
...
Closes gh-12234
2022-11-17 14:27:41 -06:00
52888d6206
Warn when AuthorizationGrantType does not match
...
Log a warning when AuthorizationGrantType does not exactly match a
pre-defined constant.
Closes gh-11905
2022-11-17 14:17:54 -06:00
ce065a87da
Merge branch '5.8.x'
...
Closes gh-12207
2022-11-14 12:25:05 -06:00
71eb71d185
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12206
2022-11-14 12:11:59 -06:00
67a1f0836b
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12205
2022-11-14 12:10:55 -06:00
fde26e003a
Request user info when AS returns no scopes
...
Closes gh-12144
2022-11-10 16:29:43 -06:00
cca999c57d
Merge remote-tracking branch 'origin/5.8.x'
2022-11-01 13:46:08 -06:00
d29ab8bcae
Merge branch '5.7.x' into 5.8.x
2022-11-01 13:43:40 -06:00
c94e33b6c8
Merge branch '5.6.x' into 5.7.x
2022-11-01 13:42:35 -06:00
8315545144
Update RP-Initiated Logout target URLs.
...
The URLs we're using are not actually pointing to the OIDC RP-Initiated Logout Specs.
Fixes: gh-12081
2022-11-01 12:35:39 -06:00
801ceb0832
Merge branch '5.8.x'
2022-10-31 08:58:14 -05:00
66f2f1cde7
Merge branch '5.7.x' into 5.8.x
2022-10-31 08:55:03 -05:00
2915a70bf7
Merge branch '5.6.x' into 5.7.x
2022-10-28 13:05:48 -05:00
26a51ee198
Merge branch '5.5.x' into 5.6.x
2022-10-28 11:15:33 -05:00
e7fe778abc
Merge branch '5.4.x' into 5.5.x
2022-10-28 11:13:33 -05:00
3e2ac82612
Merge branch '5.3.x' into 5.4.x
2022-10-28 11:10:39 -05:00
5560bbaa80
Merge branch '5.2.x' into 5.3.x
2022-10-28 11:07:51 -05:00
75004587a4
Fix scope mapping
...
Issue gh-12101
2022-10-28 11:00:27 -05:00
14584b0562
Add SecurityContextHolderStrategy to OAuth2
...
Issue gh-11060
2022-10-05 23:50:54 -06:00
7f0140278e
Add native hint for OAuth2 Client's schemas
...
Closes gh-11920
2022-09-29 10:01:51 -03:00
181ee7410b
Change default authority for oauth2Login()
...
Previously, the default authority was ROLE_USER when using
oauth2Login() for both OAuth2 and OIDC providers.
* Default authority for OAuth2UserAuthority is now OAUTH2_USER
* Default authority for OidcUserAuthority is now OIDC_USER
Documentation has been updated to include this implementation detail.
Closes gh-7856
2022-09-26 10:06:31 -05:00
7527fd811c
Merge branch '5.8.x'
2022-09-26 09:56:55 -05:00
bbac85e20b
Reduce severity of invalid registrationId to warn
...
This prevents filling the log file with error messages when routine
scans are being performed.
Closes gh-11344
2022-09-26 09:56:20 -05:00
c6458c35aa
Merge branch '5.8.x'
2022-09-14 15:12:21 -05:00
bea7761a1c
ClientRegistrations#rest defines 30s connect and read timeouts
2022-09-14 15:10:34 -05:00
f84f08c4b9
Default HttpSessionRequestCache.matchingRequestParameterName=continue
...
Closes gh-11757
2022-08-26 14:44:55 -05:00
32dbaceec5
Fix mockito 4.7.0 merge
...
Issue gh-11748
2022-08-24 08:58:00 -05:00
670b71363d
Merge branch '5.8.x'
...
Closes gh-11749
2022-08-23 16:03:50 -05:00
2fb625db84
Remove mockito deprecations
...
Issue gh-11748
2022-08-23 15:59:52 -05:00
2e66b9f6cc
Allow customization of redirect strategy
...
The default redirect strategy will provide authorization redirect
URI within HTTP 302 response Location header.
Allowing the configuration of custom redirect strategy will provide
an option for the clients to obtain the authorization URI from e.g.
HTTP response body as JSON payload, without a need to handle
automatic redirection initiated by the HTTP Location header.
Closes gh-11373
2022-08-08 15:44:01 -05:00
efaee4e56b
Allow customization of redirect strategy
...
The default redirect strategy will provide authorization redirect
URI within HTTP 302 response Location header.
Allowing the configuration of custom redirect strategy will provide
an option for the clients to obtain the authorization URI from e.g.
HTTP response body as JSON payload, without a need to handle
automatic redirection initiated by the HTTP Location header.
Closes gh-11373
2022-08-08 15:35:49 -05:00
b5b3ddd6b4
Deprecate Resource Owner Password Credentials grant
...
Closes gh-11590
2022-07-15 16:45:00 -04:00
95155ddb0c
Deprecate Resource Owner Password Credentials grant
...
Closes gh-11590
2022-07-15 16:28:47 -04:00
6ee1643bae
Remove deprecations in ServerOAuth2AuthorizedClientExchangeFilterFunction
...
Closes gh-11589
2022-07-15 15:13:40 -04:00
054791c26c
Remove deprecations in ServletOAuth2AuthorizedClientExchangeFilterFunction
...
Closes gh-11588
2022-07-15 15:12:39 -04:00
0859da5590
Remove deprecations in OAuth2AuthorizedClientArgumentResolver
...
Closes gh-11584
2022-07-15 14:42:03 -04:00
743b6a5bfe
Remove deprecations in OidcClientInitiatedLogoutSuccessHandler
...
Closes gh-11565
2022-07-15 14:04:09 -04:00
cae22867b2
Remove deprecated allowMultipleAuthorizationRequests
...
Closes gh-11564
2022-07-15 13:50:30 -04:00
0e291a3295
Remove deprecations in AuthorizationRequestRepository
...
Closes gh-11519
2022-07-15 08:15:52 -04:00
e12823095f
Remove deprecations in ClientRegistration
...
Closes gh-11518
2022-07-15 08:15:30 -04:00
61b034bf69
Remove deprecations in AbstractOAuth2AuthorizationGrantRequest
...
Closes gh-11517
2022-07-15 08:14:56 -04:00
be58e2ac49
Remove deprecations in ClientAuthenticationMethod
...
Closes gh-11516
2022-07-15 07:45:33 -04:00
746d27eab1
Remove deprecated NimbusAuthorizationCodeTokenResponseClient
...
Closes gh-11512
2022-07-14 16:32:21 -04:00
42683693c0
Remove deprecated CustomUserTypesOAuth2UserService
...
Closes gh-11511
2022-07-14 14:28:41 -04:00
67b27a41c3
Remove deprecated UnAuthenticatedServerOAuth2AuthorizedClientRepository
...
Closes gh-11508
2022-07-14 12:10:58 -04:00
a3326fc0ee
Remove deprecated implicit authorization grant type
...
Closes gh-11506
2022-07-14 10:05:15 -04:00
ecbfa84b39
Revert "Disable failing tests until r2dbc-h2 is upgraded"
...
This reverts commit 614065bb3b
2022-07-13 10:55:12 -03:00
8776f66fb9
Update io.r2dbc:r2dbc-h2 to 1.0.0.RC1
...
Closes gh-11479
2022-07-13 10:55:12 -03:00
614065bb3b
Disable failing tests until r2dbc-h2 is upgraded
...
Issue gh-11479
2022-07-11 10:32:38 -05:00
1d72a05c32
Add SecurityContextHolderStrategy to OAuth2
...
Issue gh-11060
2022-06-27 13:05:12 -06:00
539a11d0a4
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:13:42 -06:00
f035c30edb
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:12:13 -06:00
01513ab17e
Add placeholders to reactive post_logout_redirect_uri
...
Now also supports baseScheme, baseHost, basePort, and basePath
Issue gh-11229
2022-06-16 16:10:26 -06:00
6f69d85fcb
Reactive OAuth 2.0 logout handler resolves registrationId
...
Closes gh-11378
2022-06-16 16:09:57 -06:00
3f30de388a
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:09:56 -06:00
e4505ed6c8
Add placeholders to post_logout_redirect_uri
...
Now supports baseScheme, baseHost, basePort, and basePath in addition
to extant baseUrl.
Closes gh-11229
2022-06-16 16:09:56 -06:00
a8ab432aea
Add placeholders to reactive post_logout_redirect_uri
...
Now also supports baseScheme, baseHost, basePort, and basePath
Issue gh-11229
2022-06-16 15:58:44 -06:00
ebb5746f6e
Reactive OAuth 2.0 logout handler resolves registrationId
...
Closes gh-11378
2022-06-16 15:58:44 -06:00
18f7cf5406
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 15:58:43 -06:00
cb0ab49adc
Add placeholders to post_logout_redirect_uri
...
Now supports baseScheme, baseHost, basePort, and basePath in addition
to extant baseUrl.
Closes gh-11229
2022-06-16 15:58:35 -06:00
d18291676f
Update copyright year
...
Issue gh-11372
2022-06-15 13:14:07 -05:00
c7df39a3e6
Fix tests using root cause for exception messages
...
Closes gh-11372
2022-06-14 17:12:15 -05:00
b8b0661d73
Lock Dependencies for Release
2022-05-16 14:01:51 -06:00
000b87f9aa
Revert "Use Spring Framework version 6.0.0-M3"
...
This reverts commit b803e845e7
2022-05-11 08:36:14 -03:00
806e05855c
Replace removed context-related operators
...
Closes gh-11194
2022-05-10 14:58:02 -03:00
b803e845e7
Use Spring Framework version 6.0.0-M3
...
Closes gh-11193
2022-05-10 14:49:02 -03:00
50f8df6f07
Use HttpStatusCode
...
Closes gh-11091
2022-04-11 09:19:56 -03:00
e1f649690b
Adapt to changes in R2DBC
2022-04-11 09:19:47 -03:00
8aa7029d07
Fix checkstyle errors
...
Issue gh-10989
2022-03-18 22:53:29 -05:00
e81990c44e
Update io.r2dbc to 0.9.1.RELEASE
...
Closes gh-10988
2022-03-18 18:11:49 -05:00
f0168c6c27
Add support for customizing claims in JWT Client Assertion
...
Closes gh-9855
2022-03-17 09:53:16 -05:00
428216b322
Add support for customizing claims in JWT Client Assertion
...
Closes gh-9855
2022-03-17 09:50:25 -05:00
50a3bcf728
Remove unused code
2022-03-17 05:08:39 -04:00
50d315d833
Remove unused code
2022-03-17 04:23:44 -04:00
54b033078b
Allow configuring PKCE for confidential clients
...
Closes gh-6548
2022-03-16 13:36:10 -04:00
a2ffc88294
Allow configuring PKCE for confidential clients
...
Closes gh-6548
2022-03-16 13:33:12 -04:00
92a385ed05
OAuth 2.0 logout handler resolves uri placeholders
...
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri
Closes gh-7900
2022-03-15 14:05:26 -06:00
73003d59d6
OAuth 2.0 logout handler resolves uri placeholders
...
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri
Issue gh-7900
2022-03-15 12:54:39 -06:00
68e2586f06
Move UnmodifiableMapDeserializer
...
Issue gh-10905
2022-03-01 14:17:17 -07:00
931fb6a328
Move UnmodifiableMapDeserializer
...
Issue gh-10905
2022-03-01 14:03:41 -07:00
Steve Riesenberg
Marcus Hert Da Coregio
Filip Hrisafov
JANG
Crain-32
ch4mpy
Josh Cummings
Max Batischev
greg.lee
Rob Winch
ubaid4j
ahmd-nabil
Armin Krezović
Steve Riesenberg
Tim te Beek
Justin Tay
Claudio Nave
Krzysztof Krason
Kevin Yue
이경욱
Michael Sosa
Ger Roza
Daniel Garnier-Moiroux
Igor Bolic
Joe Grandja
Michael
Simone Giannino