31f8caec5f
Polish diamond operator usage
2024-10-14 11:51:35 -07:00
a3fd551fb5
Add ClientRegistrations.fromOidcConfiguration method
...
ClientRegistrations now provides the fromOidcConfiguration
method to create a ClientRegistration.Builder from a map
representation of an OpenID Provider Configuration Response.
This is useful when the OpenID Provider Configuration is not
available at a well-known location, or if custom validation
is needed for the issuer location (e.g. if the issuer is only
reachable via a back-channel URI that is different from the
issuer value in the configuration).
Fixes: gh-14633
2024-10-02 15:11:01 -05:00
f5991ae176
Allow access token request parameters to override defaults
...
Closes gh-11298
2024-10-02 12:05:42 -05:00
9ba2435cb2
Support refresh token for Token Exchange
...
Closes gh-15534
2024-09-27 15:57:57 -05:00
e11c188122
Customize the strategy for resolving the principal
...
Closes gh-15826
2024-09-27 15:39:56 -05:00
c1a303bc92
Add tests for overriding parameters
...
Issue gh-15298
Issue gh-11298
2024-09-19 13:01:09 -05:00
5d8cf6a8bc
Polish gh-13588
2024-09-19 12:08:48 -05:00
63f018eb18
Update tests using deprecated classes
...
Issue gh-15737
2024-09-10 15:10:42 -05:00
7490a8162b
Deprecate default OAuth2AccessTokenResponseClients
...
Closes gh-15737
2024-09-10 15:10:41 -05:00
2cead9b73f
Add RestClient implementations
...
Issue gh-15298
2024-09-10 15:10:41 -05:00
e3c19ba86c
Add RestClient interceptor
...
Closes gh-13588
2024-08-16 17:15:18 -05:00
aa9c1bab67
Upgrade to Spring Framework 6.2.0-M4
...
Closes gh-15266
2024-06-18 14:07:05 -03:00
7c45ebd81c
Polish gh-15012
2024-06-03 17:02:38 -05:00
99aee99b34
Expose user name attribute name in `OAuth2UserAuthority`
2024-06-03 12:30:34 -05:00
db9f5935ae
Merge branch '6.2.x' into 6.3.x
2024-05-29 16:24:05 -05:00
5a1d261ce0
Merge branch '5.8.x' into 6.2.x
2024-05-29 16:23:37 -05:00
e34621ec2c
Polish gh-14977
2024-05-29 16:23:00 -05:00
1695d03b72
Assert WebSession is not null
...
Issue gh-14975
2024-05-29 14:55:37 -05:00
08f11f06ab
Revert unnecessary commits from main
...
Issue gh-15016
2024-05-08 13:49:18 -03:00
2598bf8c37
Polish gh-14859
2024-04-29 15:07:45 -05:00
d0adb2aa70
Simplify Disabling Encoding Client ID and Secret
...
Closes gh-11440
2024-04-29 14:46:12 -05:00
05d3beb6a8
Polish gh-13648
2024-04-18 16:17:49 -05:00
b69939c1e5
Getters for OAuth2AuthorizedClientId properties
...
Expose getters for principalName and clientRegistrationId which compose an OAuth2AuthorizedClientId
2024-04-18 16:10:39 -05:00
b1b84f9b8a
Revert "Support overriding RestOperations in OidcIdTokenDecoderFactory"
...
This reverts commit 9c352c4b4b
2024-04-11 14:29:59 -06:00
5a50bfccac
Revert "Support overriding WebClient in ReactiveOidcIdTokenDecoderFactory"
...
This reverts commit 0041c658de
2024-04-11 14:29:59 -06:00
ff19f04fca
Add JwtValidators append to default
...
Implemented simplified creation of default OAuth2TokenValidator with additional validators.
Closes gh-14831
2024-04-02 14:41:35 -07:00
b648a24f5f
Polish Type Conversion API
...
Issue gh-6245
2024-04-01 16:14:21 -06:00
e52dd81d03
Customize mapping the OidcUser
...
Closes gh-14672
2024-03-07 15:45:39 -06:00
85c3d0ab13
Add reactive support for OAuth 2.0 Token Exchange Grant
...
Issue gh-5199
2024-03-06 16:02:58 -06:00
d2fe9094a9
Add servlet support for OAuth 2.0 Token Exchange Grant
...
Issue gh-5199
2024-03-06 16:02:58 -06:00
07ac0b616b
Introduce Customizable AuthorizationFailureHandler
...
Closes gh-13793
2024-03-01 13:11:46 -06:00
21580fd27d
Merge branch '6.2.x'
2024-02-16 13:31:20 -03:00
15306c1007
Merge branch '6.1.x' into 6.2.x
2024-02-16 13:21:15 -03:00
750cb30ce4
Add AuthenticationTrustResolver.isAuthenticated
2024-02-16 13:08:29 -03:00
96e3e4f8b1
Customize when user info is called
...
Closes gh-13259
2024-02-13 12:34:20 -06:00
e77126740d
Add ReactiveOidcIdTokenDecoderFactory#setWebClientResolver
...
Closes gh-13274
2024-02-01 10:04:06 -07:00
d7599ab192
Polish setAttributesConverter
...
- Add Tests
- Add Reactive Support
Issue gh-14186
2024-01-30 14:37:20 -07:00
04f0f2597a
Polish DefaultOAuth2UserService
...
Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
2024-01-30 14:37:20 -07:00
d9d22c75a2
Add support for nested username attribute in DefaultOAuth2User
...
Closes gh-14186
Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
2024-01-30 14:37:20 -07:00
7ee974445b
Update Checkstyle
...
Issue gh-14178
2024-01-22 08:44:54 -07:00
04394a63cd
Update Formatting
...
Issue gh-14178
2024-01-22 08:26:25 -07:00
1e90bdfc0b
Update Copyright
...
Issue gh-14178
2024-01-19 09:26:04 -07:00
9c352c4b4b
Support overriding RestOperations in OidcIdTokenDecoderFactory
...
Closes gh-14178
2024-01-19 09:24:56 -07:00
0041c658de
Support overriding WebClient in ReactiveOidcIdTokenDecoderFactory
...
Closes gh-14178
2024-01-19 09:24:56 -07:00
9db33f33c7
Revert unnecessary merges on 6.0.x
...
This commit removes unnecessary main-branch merges starting from
8750608b5b5dce82c48b
2023-10-31 15:11:45 -05:00
07b6c451fd
Merge branch '6.1.x'
...
Closes gh-13884
2023-09-29 11:47:38 -03:00
92c82191c9
Merge branch '5.8.x' into 6.0.x
...
Closes gh-13882
2023-09-29 11:46:00 -03:00
64e2a2ff8b
Apply updated Code Style
...
Closes gh-13881
2023-09-29 11:44:32 -03:00
cb33fd7850
Add OIDC Back-Channel Logout Support
...
Closes gh-12570
2023-09-16 15:12:21 -06:00
5535d17172
Merge branch '6.1.x'
...
Closes gh-13807
Closes gh-13803
Closes gh-13802
2023-09-12 18:55:42 -05:00
9df9cb5aed
refactor: AssertJ best practices
...
Use this link to re-run the recipe: https://app.moderne.io/recipes/builder/bGVuS?organizationId=RGVmYXVsdA%3D%3D
Co-authored-by: Moderne <team@moderne.io>
2023-09-12 16:18:14 -06:00
771d9cd8b6
Merge branch '5.8.x' into 6.0.x
...
Closes gh-13799
2023-09-12 17:00:47 -05:00
9b7a110704
Fix OAuth2AuthenticationExceptionMixinTests on JDK 17
...
Closes gh-11893
2023-09-12 16:51:47 -05:00
6c3636d780
Update Removed Usages
...
Issue gh-13544
2023-07-14 18:38:58 -06:00
4c33d53385
Add SupplierClientRegistrationRepository
...
Closes gh-12967
2023-07-12 15:53:22 -06:00
a77ef9ecf4
Add ClientAuthenticationMethod#toString
...
Closes gh-13497
2023-07-12 14:24:26 -06:00
80a0ade3e3
Merge branch '6.1.x'
...
Closes gh-13499
2023-07-12 14:16:08 -06:00
dbf0c66301
Fix Client Authentication Method Error Message
...
Closes gh-13496
2023-07-12 14:15:31 -06:00
52e12ad64b
Replace deprecated methods
2023-06-22 13:19:55 -06:00
9b603b99ab
Using modern Java features
2023-06-22 11:24:25 -06:00
b09a228eaf
Make class `OidcClientInitiatedLogoutSuccessHandler` extensible
2023-06-22 11:19:39 -06:00
5f26daedcb
Error On Unsupported Client Authentication Methods
...
Closes gh-13144
2023-06-12 15:13:13 -06:00
69b17f3d3f
Merge branch '5.8.x' into 6.0.x
...
Closes gh-13222
2023-05-24 15:29:39 -06:00
c1002ff745
Improve Error Handling
...
Closes gh-13143
2023-05-24 15:29:15 -06:00
7bd6deccc3
Revert "Disable Some R2dbc Tests"
...
This reverts commit 813179931a
2022-12-19 15:42:22 -07:00
813179931a
Disable Some R2dbc Tests
...
Issue gh-12339
2022-12-05 11:13:15 -07:00
b22bc42bb0
Merge branch '5.8.x' into 6.0.x
...
Closes gh-12325
2022-11-30 14:50:51 -07:00
29c00905ce
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12324
2022-11-30 14:49:26 -07:00
667cab6cda
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12323
2022-11-30 14:38:16 -07:00
52c7141aac
Save Request Before Response Is Committed
...
Specifically important for cookie-based authorization request
repositories.
Closes gh-11602
2022-11-30 14:33:08 -07:00
bb3d92e33a
Update r2dbc-h2 to 1.0.0.RELEASE
...
Closes gh-12251
2022-11-18 23:04:38 -06:00
4e88623873
Polish gh-12087 in 6.0
2022-11-17 14:31:44 -06:00
a3d35ecf3c
Merge branch '5.8.x'
...
Closes gh-12234
2022-11-17 14:27:41 -06:00
52888d6206
Warn when AuthorizationGrantType does not match
...
Log a warning when AuthorizationGrantType does not exactly match a
pre-defined constant.
Closes gh-11905
2022-11-17 14:17:54 -06:00
ce065a87da
Merge branch '5.8.x'
...
Closes gh-12207
2022-11-14 12:25:05 -06:00
71eb71d185
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12206
2022-11-14 12:11:59 -06:00
67a1f0836b
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12205
2022-11-14 12:10:55 -06:00
fde26e003a
Request user info when AS returns no scopes
...
Closes gh-12144
2022-11-10 16:29:43 -06:00
cca999c57d
Merge remote-tracking branch 'origin/5.8.x'
2022-11-01 13:46:08 -06:00
d29ab8bcae
Merge branch '5.7.x' into 5.8.x
2022-11-01 13:43:40 -06:00
c94e33b6c8
Merge branch '5.6.x' into 5.7.x
2022-11-01 13:42:35 -06:00
8315545144
Update RP-Initiated Logout target URLs.
...
The URLs we're using are not actually pointing to the OIDC RP-Initiated Logout Specs.
Fixes: gh-12081
2022-11-01 12:35:39 -06:00
801ceb0832
Merge branch '5.8.x'
2022-10-31 08:58:14 -05:00
66f2f1cde7
Merge branch '5.7.x' into 5.8.x
2022-10-31 08:55:03 -05:00
2915a70bf7
Merge branch '5.6.x' into 5.7.x
2022-10-28 13:05:48 -05:00
26a51ee198
Merge branch '5.5.x' into 5.6.x
2022-10-28 11:15:33 -05:00
e7fe778abc
Merge branch '5.4.x' into 5.5.x
2022-10-28 11:13:33 -05:00
3e2ac82612
Merge branch '5.3.x' into 5.4.x
2022-10-28 11:10:39 -05:00
5560bbaa80
Merge branch '5.2.x' into 5.3.x
2022-10-28 11:07:51 -05:00
75004587a4
Fix scope mapping
...
Issue gh-12101
2022-10-28 11:00:27 -05:00
14584b0562
Add SecurityContextHolderStrategy to OAuth2
...
Issue gh-11060
2022-10-05 23:50:54 -06:00
7f0140278e
Add native hint for OAuth2 Client's schemas
...
Closes gh-11920
2022-09-29 10:01:51 -03:00
181ee7410b
Change default authority for oauth2Login()
...
Previously, the default authority was ROLE_USER when using
oauth2Login() for both OAuth2 and OIDC providers.
* Default authority for OAuth2UserAuthority is now OAUTH2_USER
* Default authority for OidcUserAuthority is now OIDC_USER
Documentation has been updated to include this implementation detail.
Closes gh-7856
2022-09-26 10:06:31 -05:00
7527fd811c
Merge branch '5.8.x'
2022-09-26 09:56:55 -05:00
bbac85e20b
Reduce severity of invalid registrationId to warn
...
This prevents filling the log file with error messages when routine
scans are being performed.
Closes gh-11344
2022-09-26 09:56:20 -05:00
c6458c35aa
Merge branch '5.8.x'
2022-09-14 15:12:21 -05:00
bea7761a1c
ClientRegistrations#rest defines 30s connect and read timeouts
2022-09-14 15:10:34 -05:00
f84f08c4b9
Default HttpSessionRequestCache.matchingRequestParameterName=continue
...
Closes gh-11757
2022-08-26 14:44:55 -05:00
32dbaceec5
Fix mockito 4.7.0 merge
...
Issue gh-11748
2022-08-24 08:58:00 -05:00
670b71363d
Merge branch '5.8.x'
...
Closes gh-11749
2022-08-23 16:03:50 -05:00
Tran Ngoc Nhan
Giovanni Lovato
Steve Riesenberg
Marcus Hert Da Coregio
Filip Hrisafov
JANG
Crain-32
ch4mpy
Josh Cummings
Max Batischev
greg.lee
Rob Winch
ubaid4j
ahmd-nabil
Armin Krezović
Steve Riesenberg
Tim te Beek
Justin Tay
Claudio Nave
Krzysztof Krason
Kevin Yue
이경욱
Michael Sosa
Ger Roza
Daniel Garnier-Moiroux