6e1ed9fd87
Fix NPE on access token in OAuth2AuthorizationCodeAuthenticationProvider
...
Closes gh-1233
3 years ago
27a893fbee
Validate authorized principal instead of sub during logout
...
Closes gh-1235
3 years ago
a73181153d
Use substring instead of replaceFirst in OAuth2AuthorizationConsent
...
Closes gh-1222
3 years ago
00c114cc12
ID Token contains sid claim after refresh_token grant
...
Closes gh-1224
3 years ago
878a75d6ed
Revert serialVersionUID to 1.1.0
...
Closes gh-1220
3 years ago
04da0129f9
Revert serialVersionUID to 1.0.0
...
Closes gh-1219
3 years ago
4bb741b0ba
Revert serialVersionUID to 0.4.0
...
Closes gh-1218
3 years ago
6eeca49428
Next Development Version
3 years ago
2f6de73a06
Polish tests
3 years ago
a70783e6e7
Hash the sid claim in the ID Token
...
Closes gh-1207
3 years ago
64ddcfc3ec
Polish gh-1152
3 years ago
51317141b9
Invalidate tokens previously issued when code is reused
...
Closes gh-1152
3 years ago
e0340f7b81
Add integration tests for device grant
...
Issue gh-1116
3 years ago
b6ff06d6fe
Add test for dynamic client registration with custom metadata
...
Issue gh-1172
3 years ago
5b2b42f71c
Next Development Version
3 years ago
089096a835
Next Development Version
3 years ago
213048b780
Polish gh-1127
3 years ago
13a61034ed
Add tests and update examples in docs
...
Closes gh-1156
3 years ago
5c6879d979
Polish gh-1143
3 years ago
cf7ecc161d
JDBC device_code authorization
...
Issue gh-1156
3 years ago
8e04da773d
Add tests for OAuth 2.0 Device Authorization Grant
...
This commit adds tests for the following components:
* AuthenticationConverters
* AuthenticationProviders
* Endpoint Filters
Issue gh-44
Closes gh-1127
3 years ago
1bfc54fe6a
Do not require authorizationRequest for device grant
...
Issue gh-1127
3 years ago
25bc45cdff
Fix refresh token error code INVALID_CLIENT to INVALID_GRANT
...
Closes gh-1139
3 years ago
ef4c5d7b6f
Allow localhost in redirect_uri
...
Closes gh-651
3 years ago
597abe18c3
Ensure ID Token is active before processing logout request
...
Issue gh-1077
3 years ago
3b1958e4df
Add OidcLogoutAuthenticationToken.isPrincipalAuthenticated()
...
Issue gh-1077
3 years ago
5f39c85264
Polish gh-1068
...
Issue gh-1077
3 years ago
5b690dfb3a
Avoid persisting client principal in device authorization request
...
Issue gh-1106
3 years ago
1354ca4549
Polish gh-1106 Device Authorization Grant
3 years ago
cc6b3dc791
Polish gh-1106
3 years ago
291ba8c92d
Add support for OAuth 2.0 Device Authorization Grant
...
Closes gh-44
3 years ago
ad01779479
Polish gh-1105
3 years ago
0255a24849
Upgrade client secret when available
...
Closes gh-1099
3 years ago
d197c188ba
Allow PasswordEncoder to be configured in OidcClientRegistrationAuthenticationProvider
...
Issue gh-1056
3 years ago
addd6e13d5
Polish gh-1056
3 years ago
63aa5d8933
Fix client secret encoding when client dynamically registered
...
Closes gh-1056
3 years ago
2ee1a179e9
Next Development Version
3 years ago
fc6bf6160e
Next Development Version
3 years ago
0cd594082e
Polish authorization error response encoding
...
Issue gh-1011
3 years ago
98e3fe807a
Add OpenID Connect 1.0 Logout Endpoint
...
Closes gh-266
3 years ago
7c6516bbbb
Next Minor Version
3 years ago
30927ad5e7
Polish gh-1011
3 years ago
26205a2d8d
Preserve encoding for authorization request redirect_uri parameter
...
Closes gh-1011
3 years ago
32022c120c
HttpMessageConverters uses jakarta.json.bind.Jsonb
...
Closes gh-1054
3 years ago
1783bf7611
Polish gh-1013
3 years ago
9767d1eabb
Fix redirect_uri resolver
...
Closes gh-1012
3 years ago
9179881347
Next Development Version
3 years ago
e332a9dac5
Next Development Version
3 years ago
4e63c3b6b6
Update links to current version of OAuth 2.1
...
Closes gh-960
3 years ago
8ed0194744
client_id authentication parameter must have printable ASCII characters
...
Closes gh-889
3 years ago
Pavel Efros
Joe Grandja
heartape
Steve Riesenberg
neochae
Xu Xiaowei
HuiYeong
Shannon Pamperl
Yuta Saito
Andreas Fleig
luamas
topiam
Seyed Mohammad Hossein Jamali