370fc48afe
Polish LogoutBuilder
...
Issue gh-4603
8 years ago
79e749790f
Add Reactive LogoutBuilder
...
Fixes gh-4541
8 years ago
c77cc72cd3
Fix EnableWebFluxSecurityTests
...
Fixes gh-4604
8 years ago
926ad45f21
Add default config for common OAuth2 Providers
...
Fixes gh-4597
8 years ago
eca2b67137
ClientRegistration supports 'baseUrl' uri variable
...
Fixes gh-4589
8 years ago
dec0bce100
Remove authorities -> AuthorizationGrantAuthenticationToken constructor
...
Fixes gh-4602
8 years ago
29d36e4d16
Remove OAuth2ClientTemplatePropertiesLoader
...
Fixes gh-4598
8 years ago
1b7e761be4
Remove SecurityTokenRepository from AuthorizationCodeAuthenticationProvider constructor
...
Fixes gh-4591
8 years ago
eb320bfed4
AuthorizationCodeAuthenticationProcessingFilter -> AuthorizationCodeAuthenticationFilter
8 years ago
5c14e48b18
Add OAuth2UserAuthenticationProvider
...
Moved logic from AuthorizationCodeAuthenticationProvider
to OAuth2UserAuthenticationProvider (new) related to
loading user attributes via OAuth2UserService.
This re-factor is part of the work required for Issue gh-4513
8 years ago
f8a9077d5a
Generalize AuthorizationCodeAuthenticationProvider
...
The AuthorizationCodeAuthenticationProvider implements part of the
Authorization Code Grant flow as defined in
OAuth 2.0 Authorization Framework and OpenID Connect Core 1.0.
The implementation needs to be de-coupled to allow for better re-use and readability.
This commit introduces the AuthorizationGrantAuthenticator and extracts logic from
AuthorizationCodeAuthenticationProvider and provides different implementations
for OAuth 2.0 and OpenID Connect 1.0.
This re-factor is part of the work required for Issue gh-4513
8 years ago
f184ada186
Update to Spring Data RELEASE
8 years ago
f2bbeba9d2
Update to spring-build-conventions-0.0.4.RELEASE
8 years ago
0d516ca32c
Rename scopes -> scope
8 years ago
fb57111ecd
redirect-uri property supports 'baseRedirectUrl' uri variable
...
Fixes gh-4589
8 years ago
66647070ab
Default login page supports Iterable<ClientRegistration>
...
Fixes gh-4596
8 years ago
99f06ca58c
HttpSecurity invokes configure(this)
...
Issue gh-4542
8 years ago
b3bd5ba946
Add Reactive HttpSecurity.addWebFilterAt
...
Fixes gh-4542
8 years ago
737c48de06
Polish
8 years ago
ad91adf9dc
Retrieving the UserInfo is conditional
...
Fixes gh-4451
8 years ago
f3828924ff
Fix equals and hashCode alignment
...
Fixes gh-4588
8 years ago
646b3e48b3
Avoid Exception Message in HTTP Response
...
Fixes gh-4587
8 years ago
1c9b627267
Update to Spring Framework 5.0.0.RELEASE
...
Fixes gh-4585
8 years ago
c63eb11578
Update to Reactor Bismuth-RELEASE
...
Fixes gh-4586
8 years ago
b9258aa6ee
Make AuthorizationRequestUriBuilder optional
...
Fixes gh-4577
8 years ago
bfb77a7804
Remove unnecessary dependencies
8 years ago
9a8ddebc94
Use param matching for Authorization Response
...
Fixes gh-4576
8 years ago
d191bcc8ac
Remove ClientRegistrationRepository.findByClientId()
...
Fixes gh-4583
8 years ago
52f495a5ec
Remove ProviderJwtDecoderRegistry
...
Fixes gh-4581
8 years ago
8448a54678
Remove ClientRegistrationRepository.getRegistrations()
...
Fixes gh-4582
8 years ago
3217582805
Introduce JwtDecoderRegistry
...
Fixes gh-4584
8 years ago
b463f8e6b5
Remove httpSecurity.oauth2Login().userInfoEndpoint().userNameAttributeName()
...
Related gh-4580
8 years ago
814742fef6
Rename ClientRegistration.clientAlias -> registrationId
...
Fixes gh-4575
8 years ago
38be35677d
Add userNameAttributeName to ClientRegistration
...
Fixes gh-4580
8 years ago
7fb3093617
Fix NPE InMemoryClientRegistrationRepository
8 years ago
0e9b2807bf
Split up NimbusOAuth2UserService
...
Fixes gh-4447
8 years ago
71b1720cfe
Use WebHttpHandlerBuilder in samples
...
DispatcherHandler.toHttpHandler was removed
8 years ago
6d26b86792
Add UserDetailsRepositoryResourceFactoryBean.fromString
...
Fixes gh-4566
8 years ago
a4c2073bcd
Add UserDetailsManagerResourceFactoryBean.fromString
...
Fixes gh-4567
8 years ago
bc99f8aff3
Add UserDetailsResourceFactoryBean.fromString
...
Fixes gh-4568
8 years ago
b59265c641
Add InMemoryUserDetailsManager(UserDetails... users)
8 years ago
1321711824
Upgrade Nimbus dependencies
...
- Nimbus JOSE + JWT 5.1
- Nimbus OAuth + OIDC SDK 5.36
Fixes gh-4547
8 years ago
a06487c0f7
Move additionalParameters to TokenResponseAttributes
...
Fixes gh-4554
8 years ago
773820158f
Exclude transitive aopalliance
8 years ago
496ea3e321
Also update the dependency management section
...
The `aopalliance:aopalliance:1.0` dependency is indirectly pulled in by
`spring-security-openid` through its dependence on
`com.google.inject:guice:3.0`. There are no other references to
``aopalliance:aopalliance`.
8 years ago
9e719bc313
Drop the `aopalliance:aopalliance` dependency
...
As of Spring 4.3 RC1 the `org.aopalliance` interfaces are once again bundled
with `spring-aop` [1]. Moreover, all modules with a dependency on
`aopalliance:aopalliance` directly or indirectly also depend on `spring-aop`.
This change drops the `aopalliance:aopalliance` dependency in all places it's
declared. Where applicable an explicit dependency on `spring-aop` was added in
its place. (This dependency was already present in most places; in one case the
module didn't require `aopalliance:aopalliance` in the first place.)
The documentation is updated accordingly.
[1] https://jira.spring.io/browse/SPR-13984
8 years ago
192a177ddf
Update to Gradle 4.2
8 years ago
680984c242
SecurityTokenRepository associates SecurityToken to ClientRegistration
...
Fixes gh-4563
8 years ago
8521ca8f94
Polish gh-4560
8 years ago
7fb386669f
InMemoryClientRegistrationRepository -> enforce unique ClientRegistration's
...
Fixes gh-4562
8 years ago
Rob Winch
shazin.sadakath@gmail.com
Joe Grandja
Vedran Pavic
Stephan Schroevers