ab43a660b9
Add RFC 9068 Support
...
Closes gh-13185
2025-02-27 12:40:01 -07:00
54a6a19e05
Polish gh-16214
...
This commit applies the following changes:
* Added local Content-Security-Policy with script-src nonce directive
* Removed form-redirect.js and associated changes
* Renamed to FormPostRedirectStrategy
* Removed HtmlUtils usage
* Moved to same package as DefaultRedirectStrategy
2025-02-03 14:52:30 -06:00
58534e7f60
Add FormRedirectStrategy to enable POST OIDC Logout
...
FormRedirectStrategy redirects using an autosubmitting HTML form using the POST method versus DefaultRedirectStrategy which redirects using the GET method.
Can be used to implement POST binding for relying party initiated OIDC logout by setting FormRedirectStrategy as the redirection strategy on OidcClientInitiatedLogoutSuccessHandler.
Closes gh-13002
Signed-off-by: Craig Andrews <candrews@integralblue.com>
2025-02-03 14:52:30 -06:00
85d7cc1335
Document requireProofKey
...
Issue gh-16386
2025-01-17 17:26:48 -06:00
a5af8503df
Update OpaqueTokenIntrospector Documentation
...
Issue gh-15988
2025-01-16 16:46:46 -07:00
5fdacef398
Remove obsolete typo in OAuth 2.0 Client page
2025-01-07 14:05:45 -06:00
f5eccf7cd3
Fix OAuth2 documentation: Corrected OAuth2ClientHttpRequestInterceptor usage
...
Closes gh-16165
2024-11-26 12:18:19 -06:00
5c7237be79
Merge branch '6.3.x'
2024-11-18 12:13:20 -07:00
1414b88ef3
Merge branch '6.2.x' into 6.3.x
2024-11-18 12:13:05 -07:00
ba520db7f7
Merge branch '5.8.x' into 6.2.x
2024-11-18 12:12:46 -07:00
85248083c0
Add Dark Mode CSS Style
...
Closes gh-14834
2024-11-18 12:10:48 -07:00
ea5bc28773
Polish OAuth2 docs
2024-10-28 16:06:50 -05:00
8982851355
Document RestClient-based implementations
...
Closes gh-15938
2024-10-18 12:24:17 -05:00
d0fc4fe4dc
Document RestClient integration
...
Closes gh-15894
2024-10-18 12:24:17 -05:00
9b89fc2f1f
Add example for setting up client credentials
...
Closes gh-15304
2024-10-18 12:24:16 -05:00
b49051a1e6
Merge branch '6.2.x' into 6.3.x
2024-09-26 13:08:34 -06:00
f7b85ed314
Fix Broken Resource Server Doc Links
2024-09-26 13:08:12 -06:00
4e2cb8bc25
Fix Broken Resource Server Doc Links
2024-09-26 12:07:40 -07:00
5d8cf6a8bc
Polish gh-13588
2024-09-19 12:08:48 -05:00
8bb5875595
Expose OidcBackChannelLogoutHandler
...
This component already uses by default a URI that doesn't require
a CSRF token and aalready allows for configuring a cookie name.
So, by making it public and configurable in the DSL, both
of these tickets quite naturally close.
Closes gh-13841
Closes gh-14904
2024-09-15 21:30:55 -07:00
d2e8c19789
Merge branch '6.3.x'
2024-08-26 16:33:04 -06:00
279cb89eac
Merge branch '6.2.x' into 6.3.x
2024-08-26 16:32:58 -06:00
2ba9b6821a
Fix OIDC Logout Code Snippets
2024-08-26 15:32:35 -07:00
f372f5cf52
Replace OidcSessionStrategy References with OidcSessionRegistry
2024-08-26 15:32:35 -07:00
f0f04e490e
Merge branch '6.3.x'
2024-08-26 16:25:27 -06:00
6ea33ceaea
Merge branch '6.2.x' into 6.3.x
2024-08-26 16:25:12 -06:00
47723f6d39
Fix code format in OIDC Logout docs
2024-08-26 15:14:02 -07:00
e3c19ba86c
Add RestClient interceptor
...
Closes gh-13588
2024-08-16 17:15:18 -05:00
5bd4db1a13
Use javadoc macro
...
Closes gh-15386
2024-07-09 22:35:01 -05:00
f184d13096
Update the OAuth2 jwt and opaque resource server documentation with the Lambda DSL
...
The OAuth2ResourceServerConfigurer::opaqueToken() and ::jwt() methods are deprecated since Spring Security 6.1
2024-07-09 07:25:13 -07:00
24e3bb11bc
Merge branch '6.3.x'
2024-06-06 13:46:08 -06:00
bce8035bb6
Merge branch '6.2.x' into 6.3.x
...
Closes gh-15212
2024-06-06 13:45:56 -06:00
0532659245
Fix Typo in Oidc Logout Docs
...
Closes gh-15198
2024-06-06 13:45:35 -06:00
67853d585e
docs: add correction to java example in multitenanci.adoc
2024-05-24 16:59:13 -06:00
da1869c271
Merge branch '6.2.x'
...
Closes gh-15151
2024-05-23 14:17:20 -03:00
58cbc47376
Merge branch '5.8.x' into 6.2.x
...
Closes gh-15150
2024-05-23 14:17:09 -03:00
896dd93313
fix: add correction to java example in multitenancy.adoc
...
Closes gh-15146
2024-05-23 14:16:59 -03:00
08f11f06ab
Revert unnecessary commits from main
...
Issue gh-15016
2024-05-08 13:49:18 -03:00
2dd908dff8
Document additional client authenticating methods
...
Issue gh-11440
Closes gh-14982
2024-04-29 15:07:46 -05:00
2598bf8c37
Polish gh-14859
2024-04-29 15:07:45 -05:00
d0adb2aa70
Simplify Disabling Encoding Client ID and Secret
...
Closes gh-11440
2024-04-29 14:46:12 -05:00
1657296bb7
Replace "Spring Boot 2.x" with "Spring Boot"
...
Closes gh-14917
2024-04-18 16:01:54 -05:00
4c44de7db2
Update What's New in 6.3
...
Closes gh-14918
2024-04-17 10:13:49 -06:00
313619fec3
Polish OAuth2 Client docs
...
Issue gh-14698
2024-03-26 16:00:29 -05:00
f3c745c65b
Add reference documentation for Token Exchange
...
Closes gh-14698
2024-03-26 16:00:29 -05:00
be340a0085
Polish servlet OAuth2 docs landing page
...
Issue gh-14758
2024-03-26 16:00:28 -05:00
9751636735
Polish gh-12281
2024-03-07 16:26:26 -06:00
488901dd4e
Fix Delegation-based Strategy examples
...
Fix examples not copying userNameAttributeName
Issue gh-12275
Issue gh-12282
Issue gh-14672
2024-03-07 16:26:24 -06:00
34526c3e01
Merge branch '6.2.x'
2024-02-12 12:54:29 -07:00
3ab323663a
Do Not Wire Default OidcSessionStrategy without OidcLogoutConfigurer
...
Closes gh-14558
2024-02-12 12:53:48 -07:00
Josh Cummings
Steve Riesenberg
Craig Andrews
Rob Winch
Tran Ngoc Nhan
Harpreet Singh Bhullar
Josh Cummings
Hero Wanders
Junhyunny
Antoine Rey
Caio Henrique
Marcus Hert Da Coregio
Crain-32
MrJovanovic13
Daniel Shuy