1a4602c8c3
Add mapping for DPoP in DefaultMapOAuth2AccessTokenResponseConverter
...
Closes gh-16806
Signed-off-by: muha <muha@kreftregisteret.no>
8 months ago
f631a0fcd5
Polish ClientRegistrationsTests
...
Simplified the assertion so that it is focused on the core
behavior being verified. This will likely also make the test
more stable when updating Spring Framework versions.
Issue gh-16860
8 months ago
0e84f31a00
Add ClientRegistration's RestClient failed attempts information to exception message
...
Closes gh-16860
Signed-off-by: Evgeniy Cheban <mister.cheban@gmail.com>
8 months ago
eecd7d9559
Update Deprecated Reactor Usage
8 months ago
834370d8eb
Update Deprecated Spring Web Usage
8 months ago
19090e7873
Add request_uri in OAuth2ParameterNames
...
Closes gh-16947
8 months ago
791feee355
Prevent downgraded usage of DPoP-bound access tokens
...
Issue gh-16574
Closes gh-16937
8 months ago
1ca33cae70
Make DPoP IatClaimValidator public to allow configuring clock and clockSkew
...
Issue gh-16574
Closes gh-16921
8 months ago
47e1fc045f
Formatted
...
Signed-off-by: Risto Virtanen <818702+mapsu@users.noreply.github.com>
8 months ago
1db557e395
Replace ClientRegistrationMixinTests with StdConvertersTest
...
Signed-off-by: Risto Virtanen <818702+mapsu@users.noreply.github.com>
8 months ago
368fe2e7a0
Add missing ClientAuthenticationMethods to jackson2 converter
...
Closes gh-16825
Signed-off-by: Risto Virtanen <818702+mapsu@users.noreply.github.com>
8 months ago
9d442c13de
Mark password grant for removal
...
This commit also updates link to the document "Best Current Practice for
OAuth 2.0 Security" to point to RFC 9700.
Closes gh-16913
8 months ago
197ee38aa0
Mark deprecated response clients for removal
...
Issue gh-16913
8 months ago
d864e51ff6
Format OpaqueTokenIntrospector
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
8 months ago
d899bc5240
Polish javadoc
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
8 months ago
1fb3fc80f9
Polish gh-15819
...
Closes gh-15818
8 months ago
9674532f4d
Add support for access token in body parameter as per rfc 6750 Sec. 2.2
...
Issue gh-15818
8 months ago
3c0fef59b5
Polish gh-16039
...
Closes gh-16038
8 months ago
da94fbe431
Evaluate URI query parameter only if enabled
...
Issue gh-16038
8 months ago
2885b0f75f
Add valueOf
...
This commit adds a static factory for returning a constant
ClientAuthenticationMethod or creating a new one when there
is no match.
Issue gh-16825
9 months ago
7bca17cb5a
Polish
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
9 months ago
99345537d6
Add RequestMatcher Migration Path for AbstractAuthenticationProcessingFilter
...
Issue gh-16417
9 months ago
860f130bc4
Add additional validation when refreshing ID tokens
...
Issue gh-16589
9 months ago
5f98ce5ecc
Polish gh-16589
9 months ago
de07b1108f
Use PathPatternRequestMatcher in Web Components
...
This commit changes filters and resolvers that were using AntPathRequestMatcher as their
default to using PathPatternRequestMatcher.
Issue gh-16632
9 months ago
56e757a2a1
Provide Authentication to AuthenticationExceptions
...
Issue gh-16444
9 months ago
a53ca7c3d0
Update ServerOAuth2AuthorizedClientExchangeFilterFunction javadoc
...
Closes gh-16555
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
9 months ago
cfe70a5fc7
Restore authorizedClientParametersMapper Assertion
...
Issue gh-16726
9 months ago
6c24a1e717
Improve JdbcOAuth2AuthorizedClientService saveAuthorizedClient
...
Closes gh-16726
Signed-off-by: Max Batischev <mblancer@mail.ru>
9 months ago
5bb5d0f6be
Polish gh-16589
9 months ago
fc1469ad5e
Ensure ID Token is updated after refresh token
...
Signed-off-by: Hao <kyrieeeee2@gmail.com>
9 months ago
adb303e152
Add testRuntimeOnly junit-platform-launcher
...
Closes gh-16755
9 months ago
0938ca01a4
Add support for automatic context-propagation with Micrometer
...
Closes gh-16665
9 months ago
401e237082
Introduce JwtAudienceValidator
...
Signed-off-by: Vedran Pavic <vedran@vedranpavic.com>
10 months ago
7df85a2ed9
Polish NimbusJwtDecoder
10 months ago
ab43a660b9
Add RFC 9068 Support
...
Closes gh-13185
10 months ago
81e2fd2fe8
Add Type Validation
...
Closes gh-16672
10 months ago
2bd3cadde8
Use possessive pronoun rather contraction
...
Signed-off-by: Pat McCusker <patmccusker14@gmail.com>
10 months ago
bfce6e438d
Add fourth oauth grant type to javadoc
...
Signed-off-by: Pat McCusker <patmccusker14@gmail.com>
10 months ago
b6c813c5a2
ClientRegistrations supports hostnames with underscores
...
Issue gh-15852
10 months ago
3d15be1b06
JwtDecoders Supports Hostnames with Underscores
...
In the process of verifying gh-15852, another issue with URI was discovered.
This commit adds tests to the uri-computing methods and changes them to use
UriComponents instead of URI.
Issue gh-15852
10 months ago
0cd6a19b87
Avoid UriComponentsBuilder.fromUri
...
Closes gh-15852
10 months ago
7fc5d50adf
Polish gh-16551
10 months ago
00cd95be76
Add setRedirectStrategy to OidcClientInitiatedServerLogoutSuccessHandler
...
Closes gh-16556
Signed-off-by: Max Batischev <mblancer@mail.ru>
10 months ago
6793334575
Polish setJwkSelector
...
Make so that it runs only when selection is needed.
Require the provided selector be non-null.
Add Tests.
Issue gh-16170
10 months ago
e22bc11cc9
Support JWK Selection Strategy
...
Closes gh-16170
Signed-off-by: douxiaofeng99 <18600127780@163.com>
10 months ago
2480d41981
Add support for OAuth 2.0 Demonstrating Proof of Possession (DPoP)
...
Signed-off-by: Joe Grandja <10884212+jgrandja@users.noreply.github.com>
10 months ago
11113adf62
Polish Nimbus JWK Source Implementation
...
Issue gh-16251
11 months ago
7b7abb28bb
Remove Deprecated Usages of RemoteJWKSet
...
Closes gh-16251
Signed-off-by: Daeho Kwon <trewq231@naver.com>
11 months ago
f9824fd688
Polish Tests
...
Issue gh-16251
11 months ago
hammadirshad
Josh Cummings
Evgeniy Cheban
Joe Grandja
Risto Virtanen
Steve Riesenberg
Tran Ngoc Nhan
Jonah Klöckner
Max Batischev
Hao
Rob Winch
Vedran Pavic
Pat McCusker
Bodo Graumann
douxiaofeng99
Daeho Kwon