667cab6cda
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12323
2022-11-30 14:38:16 -07:00
52c7141aac
Save Request Before Response Is Committed
...
Specifically important for cookie-based authorization request
repositories.
Closes gh-11602
2022-11-30 14:33:08 -07:00
67a1f0836b
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12205
2022-11-14 12:10:55 -06:00
fde26e003a
Request user info when AS returns no scopes
...
Closes gh-12144
2022-11-10 16:29:43 -06:00
c94e33b6c8
Merge branch '5.6.x' into 5.7.x
2022-11-01 13:42:35 -06:00
8315545144
Update RP-Initiated Logout target URLs.
...
The URLs we're using are not actually pointing to the OIDC RP-Initiated Logout Specs.
Fixes: gh-12081
2022-11-01 12:35:39 -06:00
2915a70bf7
Merge branch '5.6.x' into 5.7.x
2022-10-28 13:05:48 -05:00
26a51ee198
Merge branch '5.5.x' into 5.6.x
2022-10-28 11:15:33 -05:00
e7fe778abc
Merge branch '5.4.x' into 5.5.x
2022-10-28 11:13:33 -05:00
3e2ac82612
Merge branch '5.3.x' into 5.4.x
2022-10-28 11:10:39 -05:00
5560bbaa80
Merge branch '5.2.x' into 5.3.x
2022-10-28 11:07:51 -05:00
75004587a4
Fix scope mapping
...
Issue gh-12101
2022-10-28 11:00:27 -05:00
539a11d0a4
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:13:42 -06:00
f035c30edb
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:12:13 -06:00
f0168c6c27
Add support for customizing claims in JWT Client Assertion
...
Closes gh-9855
2022-03-17 09:53:16 -05:00
50d315d833
Remove unused code
2022-03-17 04:23:44 -04:00
a2ffc88294
Allow configuring PKCE for confidential clients
...
Closes gh-6548
2022-03-16 13:33:12 -04:00
73003d59d6
OAuth 2.0 logout handler resolves uri placeholders
...
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri
Issue gh-7900
2022-03-15 12:54:39 -06:00
931fb6a328
Move UnmodifiableMapDeserializer
...
Issue gh-10905
2022-03-01 14:03:41 -07:00
214cfe807e
Allow Jwt assertion to be resolved
...
Closes gh-9812
2022-01-10 10:42:10 -05:00
17e28fa7aa
Update clockSkew javadoc according to implementation
...
Closes gh-10174
2021-11-19 13:48:32 +01:00
aa1ef46d84
Update clockSkew javadoc according to implementation
...
Closes gh-10174
2021-11-19 13:33:05 +01:00
00fafd878c
Allow custom OAuth2ErrorHttpMessageConverter with OAuth2ErrorResponseErrorHandler
...
Closes gh-10425
2021-11-16 15:27:48 -06:00
076c01daef
Add missing @since 5.6
2021-11-09 14:07:05 -06:00
e4a76b0ec9
Checkstyle Fixes
...
- Javadoc tag ordering
- Private constructors before inner classes
Issue gh-10394
2021-10-22 10:19:34 -05:00
f836897190
Checkstyle Fixes
...
- Javadoc tag ordering
- Private constructors before inner classes
Issue gh-10394
2021-10-18 21:03:35 -05:00
3b564b2026
Add parameters converter support to AbstractWebClientReactiveOAuth2AccessTokenResponseClient
...
This adds support for configuring NimbusJwtClientAuthenticationParametersConverter to any AbstractWebClientReactiveOAuth2AccessTokenResponseClient as an additional parameters converter, which in turns adds reactive support for jwt client authentication.
Closes gh-10146
2021-10-06 13:09:33 -05:00
9b24f66f1c
Implement reactive support for JWT as an Authorization Grant
...
Closes gh-10147
2021-10-05 16:09:24 -05:00
97c949d929
oauth2Login() AuthenticationProvider's preserve root cause exception when rethrown
...
Closes gh-10228
2021-09-24 10:41:31 -04:00
5830fda2fa
Introduce JwtEncoder
...
Closes gh-9208
2021-09-24 05:13:40 -04:00
860690491a
Add setBodyExtractor
...
Closes gh-10260
2021-09-22 15:32:19 -06:00
9b4ddd7e0a
Make AuthorizationGrantTypeConverter support custom grant type
...
Closes gh-10155
2021-08-19 13:13:20 -04:00
6d6dc113d8
Add converter for authentication result in OAuth2LoginAuthenticationFilter
...
Closes gh-10033
2021-08-10 16:50:19 -05:00
fc553bf19a
Add gh-10130 to tests
2021-08-09 15:33:54 -05:00
acca3dba69
Polish gh-10131
2021-08-09 11:07:12 -05:00
044157061f
Enable customizing headers in token requests
...
Adds the possibility to customize the headers of the access token request in AbstractWebClientReactiveOAuth2AccessTokenResponseClient, similarly to what is done in the AbstractOAuth2AuthorizationGrantRequestEntityConverter.
Closes gh-10130
2021-08-09 10:50:37 -05:00
e1b6a7ba29
Revert "URL encode client credentials"
...
This reverts commit c0200512a7
2021-07-20 14:06:46 -05:00
f55247e28a
Revert "URL encode client credentials"
...
This reverts commit 6cafa48369
2021-07-20 14:05:55 -05:00
dc81e1c86b
Revert "URL encode client credentials"
...
This reverts commit 5243b1b8a8
2021-07-20 13:29:29 -05:00
dfebd6d9d4
Revert "URL encode client credentials"
...
This reverts commit e6c268add0
2021-07-20 12:59:44 -05:00
b6ff4d3674
Fix mockito UnnecessaryStubbingException
2021-07-09 14:35:10 -05:00
3e93b024d6
openrewrite Junit Migration
2021-07-09 14:32:52 -05:00
1cd4ffeeb7
fix typo preventing full exception to be displayed in log
...
closes gh-9901
2021-06-17 08:40:55 -06:00
5fd81eeaf1
fix typo preventing full exception to be displayed in log
...
closes gh-9901
2021-06-17 08:38:24 -06:00
d4c3cea0e6
Update Copyright
...
Issue gh-9901
2021-06-17 08:34:31 -06:00
1d606ccedb
fix typo preventing full exception to be displayed in log
...
closes gh-9901
2021-06-17 08:33:32 -06:00
a332e2a728
Support additional client authentication methods
...
Closes gh-9780
2021-06-16 16:03:13 -05:00
9daf058a6e
Handle missing authorization endpoint uri
...
Closes gh-9795
2021-06-16 16:00:53 -05:00
839cc5e851
Remove validation for unsupported grant types
...
Closes gh-9828
2021-06-16 15:55:45 -05:00
807ce30948
Support additional client authentication methods
...
Closes gh-9780
2021-06-16 15:48:03 -05:00
Josh Cummings
이경욱
Steve Riesenberg
Ger Roza
Joe Grandja
Simone Giannino
Dávid Kováč
Khaled Hamlaoui
Rob Winch
bishoy basily
Rujun Chen
Vincent Boulaye
Arnaud Mergey