spring-security

Commit Graph

Author	SHA1	Message	Date
Joe Grandja	5c14e48b18	Add OAuth2UserAuthenticationProvider Moved logic from AuthorizationCodeAuthenticationProvider to OAuth2UserAuthenticationProvider (new) related to loading user attributes via OAuth2UserService. This re-factor is part of the work required for Issue gh-4513	8 years ago
Joe Grandja	f8a9077d5a	Generalize AuthorizationCodeAuthenticationProvider The AuthorizationCodeAuthenticationProvider implements part of the Authorization Code Grant flow as defined in OAuth 2.0 Authorization Framework and OpenID Connect Core 1.0. The implementation needs to be de-coupled to allow for better re-use and readability. This commit introduces the AuthorizationGrantAuthenticator and extracts logic from AuthorizationCodeAuthenticationProvider and provides different implementations for OAuth 2.0 and OpenID Connect 1.0. This re-factor is part of the work required for Issue gh-4513	8 years ago
Joe Grandja	0d516ca32c	Rename scopes -> scope	8 years ago
Joe Grandja	fb57111ecd	redirect-uri property supports 'baseRedirectUrl' uri variable Fixes gh-4589	8 years ago
Joe Grandja	66647070ab	Default login page supports Iterable<ClientRegistration> Fixes gh-4596	8 years ago
Joe Grandja	ad91adf9dc	Retrieving the UserInfo is conditional Fixes gh-4451	8 years ago
Rob Winch	646b3e48b3	Avoid Exception Message in HTTP Response Fixes gh-4587	8 years ago
Joe Grandja	b9258aa6ee	Make AuthorizationRequestUriBuilder optional Fixes gh-4577	8 years ago
Joe Grandja	bfb77a7804	Remove unnecessary dependencies	8 years ago
Joe Grandja	9a8ddebc94	Use param matching for Authorization Response Fixes gh-4576	8 years ago
Joe Grandja	d191bcc8ac	Remove ClientRegistrationRepository.findByClientId() Fixes gh-4583	8 years ago
Joe Grandja	52f495a5ec	Remove ProviderJwtDecoderRegistry Fixes gh-4581	8 years ago
Joe Grandja	8448a54678	Remove ClientRegistrationRepository.getRegistrations() Fixes gh-4582	8 years ago
Joe Grandja	3217582805	Introduce JwtDecoderRegistry Fixes gh-4584	8 years ago
Joe Grandja	b463f8e6b5	Remove httpSecurity.oauth2Login().userInfoEndpoint().userNameAttributeName() Related gh-4580	8 years ago
Joe Grandja	814742fef6	Rename ClientRegistration.clientAlias -> registrationId Fixes gh-4575	8 years ago
Joe Grandja	38be35677d	Add userNameAttributeName to ClientRegistration Fixes gh-4580	8 years ago
Joe Grandja	7fb3093617	Fix NPE InMemoryClientRegistrationRepository	8 years ago
Joe Grandja	0e9b2807bf	Split up NimbusOAuth2UserService Fixes gh-4447	8 years ago
Joe Grandja	a06487c0f7	Move additionalParameters to TokenResponseAttributes Fixes gh-4554	8 years ago
Joe Grandja	680984c242	SecurityTokenRepository associates SecurityToken to ClientRegistration Fixes gh-4563	8 years ago
Joe Grandja	7fb386669f	InMemoryClientRegistrationRepository -> enforce unique ClientRegistration's Fixes gh-4562	8 years ago
Joe Grandja	9b61eba41d	Add identifier strategy for ClientRegistration Fixes gh-4561	8 years ago
Joe Grandja	991a154703	Add OIDC Client and User Authentication Fixes gh-4521	8 years ago
Joe Grandja	c54c622124	Re-structure OAuth2AuthenticationToken Fixes gh-4553	8 years ago
Rob Winch	e345dd106c	Remove leading whitespaces	8 years ago
Joe Grandja	65b968f04a	Move servlet-specific classes to 'web' package Fixes gh-4366	9 years ago
Joe Grandja	9133eb1b78	Revert "Provide fix for Google iss claim" This reverts commit `b6212cba66`.	9 years ago
Vedran Pavic	549decf00a	Prefer `sub` claim as OIDC principal name This commit removes preference for `name` claim as principal name in `DefaultOidcUser` so that the default is now `sub` claim. In addition to that, `DefaultOidcUser` now also provides constructors to explicitly define the claim to be preferred as principal name. Fixes gh-4515	9 years ago
Joe Grandja	4ff0b52f74	Remove HttpClientConfig Issue gh-4478	9 years ago
Joe Grandja	223b126de5	Remove Serializable from OAuth2User Fixes gh-4514	9 years ago
Joe Grandja	306f81b7f7	Minor renames to oauth2 client properties Fixes gh-4296	9 years ago
Joe Grandja	b6212cba66	Provide fix for Google iss claim Fixes gh-4511	9 years ago
Joe Grandja	4951550d7d	Add context path to authorization request URI Fixes gh-4510	9 years ago
Luander Ribeiro	ec908bb700	Add unit tests for endpoints package Fixes gh-4499 This commit contains unit tests for the endpoints package in oauth2-core.	9 years ago
Joe Grandja	bc6be86aec	Add in-memory AccessTokenRepository Fixes gh-4508	9 years ago
Joe Grandja	d6ba348a59	Add SecurityTokenRepository abstraction Fixes gh-4405	9 years ago
Joe Grandja	93c2b2533e	Allow configuring request paths for oauth2 filters Fixes gh-4473	9 years ago
Rob Winch	e16b8e7976	Fix logback-test.xml	9 years ago
Luander Ribeiro	65734414f7	Added HttpServletResponse to AuthorizationRequestRepository This change enables AuthorizationRequestRepository to possibly save the AuthorizationRequestAttributes to a cookie. Fixes gh-4446	9 years ago
Joe Grandja	ef1de5eda0	Remove Accept header for UserInfo request Fixes gh-4481	9 years ago
Joe Grandja	c872499eee	Enable custom configuration for HTTP client Fixes gh-4477	9 years ago
Joe Grandja	3b42323b6d	AuthorizationCodeRequestRedirectFilter -> always expand redirectUri Fixes gh-4444	9 years ago
Joe Grandja	c204cc2c31	Completed implementation in ClaimAccessor's Fixes gh-4449	9 years ago
Joe Grandja	33423c46d3	Rename AbstractToken to SecurityToken Fixes gh-4466	9 years ago
Joe Grandja	f50812c385	Renamed methods in AuthorizationCodeRequestRedirectFilter Fixes gh-4443	9 years ago
Joe Grandja	598a08e2d8	Update docs AuthorizationCodeAuthenticationProvider Fixes gh-4450	9 years ago
Joe Grandja	9cfb890207	Use id_token for user authentication Fixes gh-4410	9 years ago
Joe Grandja	c986b6f4b5	Add support for JWT/JWS Fixes gh-4434	9 years ago
Joe Grandja	6c0ecea494	Use java.util.Function instead of Converter Fixes gh-4323	9 years ago

... 21 22 23 24 25

1228 Commits (820e3f57504a7fb8fcc8a74e06a481ab47a10ea2)