spring-security

Commit Graph

Author	SHA1	Message	Date
Josh Cummings	6dc22835fd	Renew Sample Certificate Closes gh-9320	5 years ago
Eleftheria Stein	0e37c722e2	Revert "Temporarily ignore RSocket integration tests" This reverts commit `d5eeec0ae6`. Fixes gh-8643	6 years ago
Eleftheria Stein	d5eeec0ae6	Temporarily ignore RSocket integration tests Issue gh-8643	6 years ago
Eleftheria Stein	3ed31400f7	Update SAML2 errors in integration tests	6 years ago
Joe Grandja	148b570a98	Remove redundant validation for redirect-uri Fixes gh-7706	6 years ago
Josh Cummings	7cbd1665a6	Isolate Jwt Test Support Isolating Jwt test support inside JwtRequestPostProcessor and JwtMutator. Fixes gh-7641	6 years ago
Eddú Meléndez	27aa61b02f	Use LocalRSocketServerPort annotation	6 years ago
Filip Hanik	0cafcf37e2	Make the loginProcessingUrl configurable for saml2Login() Fixes gh-7565 https://github.com/spring-projects/spring-security/issues/7565	6 years ago
Filip Hanik	4489163163	Use Spring Boot configuration for saml2Login() Fixes gh-7521 https://github.com/spring-projects/spring-security/issues/7521	6 years ago
Filip Hanik	5345aecd7f	Align RSocket sample with new Spring Boot configuration	6 years ago
Rob Winch	03e2efacf4	Add Hello RSocket Sample Fixes gh-7504	6 years ago
Filip Hanik	83b5f5c7ae	Improve the Saml2AuthenticationRequest object - introduce the AssertionConsumerServiceURL attribute - add javadoc - align property name with SAML XML for AuthNRequest	6 years ago
Filip Hanik	9731386de5	Correctly set "Destination" in AuthNRequest message Fixes gh-7494 https://github.com/spring-projects/spring-security/issues/7494	6 years ago
Filip Hanik	7adb4da3ef	Always require signature on either response or assertion Fixes gh-7490 https://github.com/spring-projects/spring-security/issues/7490	6 years ago
Filip Hanik	22da2b45c9	SAML Assertion validation should propagate errors: #7375 and #7375 Fixes gh-7377 Fixes gh-7375 https://github.com/spring-projects/spring-security/issues/7377 https://github.com/spring-projects/spring-security/issues/7375 Clean up code - Authentication request factory should only throw Saml2Exception - OpenSamlImplementation should only throw Saml2Exception - Move the OpenSamlImplementation package private methods to the right section	6 years ago
Ivo Smid	a11e61432e	Document OAuth2 Client behind proxy and redirect_uri Fixes gh-7312	6 years ago
Filip Hanik	adde18b873	Revert "Merge pull request #7432 from fhanik/feature/propagate_saml_authentication_exception" This reverts commit `e9619fb0e7`, reversing changes made to `45a1490d5d`.	6 years ago
Filip Hanik	d472e99528	SAML Assertion validation should propagate errors: #7375 and #7375 Fixes gh-7377 Fixes gh-7375 https://github.com/spring-projects/spring-security/issues/7377 https://github.com/spring-projects/spring-security/issues/7375	6 years ago
Josh Cummings	bdaf530511	Remove Stray @MockBean Issue gh-7170	6 years ago
Josh Cummings	b55b2914c2	Mock Jwt Disables CSRF Fixes gh-7170	6 years ago
Joe Grandja	a60446836b	OAuth2AuthorizeRequest supports attributes Fixes gh-7341	6 years ago
Filip Hanik	e9a44bc0ce	HttpSecurity.saml2login() - MVP Core Code Implements minimal SAML 2.0 login/authentication functionality with the following feature set: - Supports IDP initiated login at the default url of /login/saml2/sso/{registrationId} - Supports SP initiated login at the default url of /saml2/authenticate/{registrationId} - Supports basic java-configuration via DSL - Provides an integration sample using Spring Boot Not implemented with this MVP - Single Logout - Dynamic Service Provider Metadata Fixes gh-6019	6 years ago
Joe Grandja	dcd997ea43	Add support for Resource Owner Password Credentials grant Fixes gh-6003	6 years ago
Josh Cummings	82ae4db4cc	Update Multi Tenancy Sample to Convert Jwts Issue gh-7346	6 years ago
Josh Cummings	068f4f0147	Polish Opaque Token Use OAuth2AuthenticatedPrincipal Use BearerTokenAuthentication Update names to reflect more generic approach. Fixes gh-7344 Fixes gh-7345	6 years ago
Lars Grefer	34dd5fea30	Remove redundant throws clauses Removes exceptions that are declared in a method's signature but never thrown by the method itself or its implementations/derivatives.	6 years ago
Eleftheria Stein	2ddab8b23e	Use UserDetailsService bean in sample app Fixes: gh-7283	6 years ago
Joe Grandja	46756d2e6b	Introduce Reactive OAuth2AuthorizedClient Manager/Provider Fixes gh-7116	6 years ago
Josh Cummings	95caa4715f	Add Reactive Mock Jwt Sample Tests Fixes gh-7278	6 years ago
Josh Cummings	10a9207cd5	Pivot Resource Server Sample Changed sample to manage its own JwtDecoder, allowing the Nimbus Jwt Decoder Builder API to evolve during milestone development.	6 years ago
Josh Cummings	0ecffb0840	Multi-tenancy Sample AuthenticationManagers Fixes gh-7272	6 years ago
Josh Cummings	9735a718cc	Remove MultiTenantAuthenticationManagerResolver Fixes gh-7259	6 years ago
Josh Cummings	4ed197e515	Rename OAuth2TokenIntrospectionClient Renamed to OpaqueTokenIntrospector Fixes gh-7245	6 years ago
Lars Grefer	ff1070df36	remove redundant modifiers found by checkstyle	6 years ago
Henrique Luis Schmidt	da62c31fdc	Add test examples for the resource server sample - Add a post endpoint in /messages - Changes the security config to require the read scope to GET a message and the write scope to POST a new message. - Changes the jwks of the mock server so I could create a new access token with the write scope. - Creates tests and integration-tests for the POST endpoint. - Changes the README to add an example of a POST request. Fixes gh-7118	6 years ago
Lars Grefer	776a4c3760	Use org.mockito.ArgumentMatchers in favor of org.mockito.Matchers	7 years ago
Eleftheria Stein	0b4502b2c5	Remove exceptions from lambda security configuration Fixes: gh-7128	7 years ago
Joe Grandja	c05b0765c1	Introduce OAuth2AuthorizedClient Manager/Provider Fixes gh-6845	7 years ago
Eleftheria Stein	a288ce4b00	Support nested builder in DSL for reactive apps Fixes: gh-7107	7 years ago
Eleftheria Stein	a0ca45e4b8	Use http security nested builder in samples Issue: gh-5557	7 years ago
Lars Grefer	3ea9d376b2	Cleanup explicit type arguments	7 years ago
Lars Grefer	c5b5cc507c	Cleanup redundant type casts	7 years ago
Clement Ng	cd54808718	Update Opaque Token Sample and tests Issue: gh-6498	7 years ago
Josh Cummings	f5da63118e	Add MultiTenantAuthenticationManagerResolver A class with a number of handy request-based implementations of AuthenticationManagerResolver targeted at common multi-tenancy scenarios. Fixes: gh-6976	7 years ago
Josh Cummings	ecb13aa8cc	Resource Server JWE Sample Issue: gh-4435	7 years ago
Josh Cummings	d0f5b42884	Mock Jwt Test Support and Jwt.Builder Polish Simplified the initial support to introduce fewer classes and only the features described in the ticket. Changed tests to align with existing patterns in the repository. Added JavaDoc to remaining public methods introduced for this feature. Issue: gh-6634 Issue: gh-6851	7 years ago
Jérôme Wacongne	e59d8a529b	Mock Jwt Test Support and Jwt.Builder Fixes: gh-6634 Fixes: gh-6851	7 years ago
Eleftheria Stein	c4b6cdea3f	Fix OAuth2 multitenancy sample Allowing requests with valid tokens, and fixed documentation. Fixes: gh-6834	7 years ago
Josh Cummings	b1195e7789	Opaque Token Intermediate Type Introducing OAuth2TokenIntrospectionClient and also ReactiveOAuth2TokenIntrospectionClient as configuration points. The DSL looks in the application context for these types in the same way it looks for JwtDecoder and ReactiveJwtDecoder, and exposes similar configuration methods. Fixes: gh-6632	7 years ago
Alexey Nesterov	a21fa1494a	Add an example and basic integration test for x509 authentication [gh #5038]	7 years ago

1 2 3 4

194 Commits (57dfbeecbb6c13bfbfbd405cd196b6eeea7e763a)