c7f01f0795
Polish gh-427
2021-10-27 19:47:38 -04:00
37e45619ae
Implement Client Configuration Endpoint
...
See: https://openid.net/specs/openid-connect-registration-1_0.html#ClientConfigurationEndpoint
Generate registration_client_uri and registration_access_token when registering a new client (see: https://openid.net/specs/openid-connect-registration-1_0.html#ClientRegistration )
Closes gh-355
2021-10-25 15:00:39 -04:00
72c5e24ab8
Polish gh-441
2021-10-25 12:26:53 -04:00
8e8e6d1b17
Implement User Info Endpoint
...
Closes gh-176
2021-10-25 12:26:28 -04:00
9667229429
Initial implementation of User Info Endpoint
...
Issue gh-176
2021-10-25 12:25:31 -04:00
33bac0f7c2
JdbcOAuth2AuthorizationService now uses LobCreator in findBy method
...
Closes gh-455
2021-10-21 19:54:41 -04:00
63c248440c
Fix PKCE tests in OAuth2ClientAuthenticationProviderTests
2021-10-21 18:21:15 -04:00
71be32b245
Add support for deserializing LinkedHashSet
...
This is needed because OAuth2ClientCredentialsAuthenticationProvider stores authorized scopes in a LinkedHashSet.
Closes gh-457
2021-10-21 11:49:54 -05:00
4b19637fbb
Update RegisteredClient.Builder to use getters
...
- Since the class is not final, it is possible to extend it.
Because the Builder was directly accessing the properties
rather than using the getters, it was not possible to use
the .from(id) constructor in the extended class.
Closes gh-451
2021-10-14 15:27:10 -04:00
26f15b99bb
Make OAuth2ClientAuthenticationToken @Transient
2021-10-14 15:17:57 -04:00
298ebc7c01
Avoid client secret double encoding when updating a registered client
...
This might have to be revisited at a later point, but to check if a value is encoded or not is quite tricky. The decision was to remove client_secret and client_secret_expires_at from the update statement
Closes gh-389
2021-09-23 13:51:56 -04:00
0735abdaad
Polish gh-411
2021-09-23 12:01:42 -04:00
0dfe5cb44a
Fix cancel consent functionality on default consent page
...
- Fix also applies to custom consent sample
Closes gh-393
2021-09-23 08:17:54 -04:00
4ccdd2baf4
OAuth2TokenIntrospectionAuthenticationProvider checks for null issuer
...
Closes gh-438
2021-09-23 06:25:07 -04:00
e4ce97b887
Access token is active after revoke then refresh
...
Closes gh-432
2021-09-22 10:34:55 -04:00
aaeca70b4c
Removed an empty statement
2021-09-21 15:45:04 -04:00
8e8979af60
Next Development Version
2021-08-18 21:01:07 -04:00
f3f69b300f
Authorization failure does not clear current Authentication
...
Closes gh-409
2021-08-18 20:00:02 -04:00
f3c29bd545
Use OAuth2AuthenticationException(String errorCode)
...
Closes gh-402
2021-08-18 15:23:45 -04:00
ea1f95b4ed
Replace stream usage with for loops
...
Closes gh-401
2021-08-18 13:42:08 -04:00
42d611828a
Polish OAuth2TokenCustomizer
2021-08-18 11:26:12 -04:00
9388002158
Add javadoc for OAuth2TokenCustomizer
...
Issue gh-199
2021-08-18 10:58:05 -04:00
1d4dcddc11
Polish loopback address validation in DefaultRedirectUriOAuth2AuthenticationValidator
...
Changed loopback address validation from regex to explicit
validation using IPv4 loopback address range and IPv6 address.
Issue gh-243
2021-08-17 15:00:42 -04:00
3ee47efff7
Disable Oidc client registration by default
...
Closes gh-398
2021-08-17 10:04:19 -04:00
fe27e39c5d
Extract configurer for OpenID Connect 1.0 support
...
Issue gh-398
2021-08-17 10:03:54 -04:00
7680505eed
Move OAuth2AuthorizationCode
...
Closes gh-395
2021-08-13 04:56:24 -04:00
d15a68514d
Polish OAuth2Authorization
2021-08-13 04:24:34 -04:00
53ed5b8481
Polish OAuth2TokenContext
2021-08-13 04:11:31 -04:00
c89f2f3819
Polish PublicClientAuthenticationConverter
2021-08-13 03:15:04 -04:00
ebecb2a7f6
Polish ClientSecretPostAuthenticationConverter
2021-08-13 03:14:25 -04:00
4995acc825
Polish ClientSecretBasicAuthenticationConverter
2021-08-13 03:13:34 -04:00
a4a61fcf50
Polish ConfigurationSettingNames
2021-08-13 02:37:03 -04:00
86997bc0ac
Polish RegisteredClient
2021-08-12 17:06:13 -04:00
a740e819ae
Polish OAuth2TokenRevocationAuthenticationToken
2021-08-12 16:53:29 -04:00
c7815939d2
Validate redirect_uri on dynamic client registration
...
Closes gh-392
2021-08-10 09:28:26 -04:00
2c8d5a19ac
Remove comment in OAuth2AuthorizationCodeRequestAuthenticationProvider
2021-08-10 05:20:59 -04:00
6b5d9f0fe5
Polish JwtEncoder APIs
...
Closes gh-391
2021-08-10 04:49:27 -04:00
115a78d5f5
Add post processor to register ProviderSettings Bean
...
Closes gh-373
2021-07-30 11:58:42 -04:00
1929e3a80a
JdbcRegisteredClientRepository hashes client secret on save
...
Closes gh-378
2021-07-30 11:11:32 -04:00
7546d18a40
Polish gh-379
2021-07-30 09:55:29 -04:00
83915e8421
Do not issue refresh token to public client
...
Closes gh-296
2021-07-30 09:55:29 -04:00
0493bbf1d1
OAuth2ClientAuthenticationToken supports any type of credentials
...
Closes gh-382
2021-07-30 09:54:56 -04:00
41f8c9cd00
Add update support in JdbcRegisteredClientRepository
...
Closes gh-356
2021-07-29 11:10:36 -04:00
3d4df8807d
Provide configuration for client authentication
...
Closes gh-380
2021-07-29 10:24:00 -04:00
850bd76aee
Polish OAuth2ClientAuthenticationFilter
2021-07-29 05:55:37 -04:00
7f294abfbb
Polish gh-376
2021-07-28 06:07:52 -04:00
3ea7d8c9b6
Provide configuration for refresh token generator
...
Closes gh-377
2021-07-28 06:02:56 -04:00
06ad211fce
Provide configuration for authorization code generator
...
Closes gh-376
2021-07-28 04:56:05 -04:00
84e53f635c
Remove Context.of()
...
Closes gh-375
2021-07-27 05:02:19 -04:00
f6c4d49b9f
Introduce OAuth2AuthenticationValidator
...
Closes gh-374
2021-07-27 04:28:23 -04:00
Joe Grandja
Ovidiu Popa
Steve Riesenberg
Ido Salomon
Alexey Makarov
Sarah McAlear
Daniel Garnier-Moiroux
Dmitriy Dubson
Kirat Kumar
Anoop Garlapati