Tree: cfe70a5fc7

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

dependabot/gradle/6.4.x/ch.qos.logback-logback-classic-1.5.23

dependabot/gradle/6.4.x/org.apache.maven-maven-resolver-provider-3.9.12

dependabot/gradle/6.4.x/org.hibernate.orm-hibernate-core-6.6.40.Final

dependabot/gradle/6.5.x/ch.qos.logback-logback-classic-1.5.23

dependabot/gradle/6.5.x/org.apache.maven-maven-resolver-provider-3.9.12

dependabot/gradle/6.5.x/org.hibernate.orm-hibernate-core-6.6.40.Final

dependabot/gradle/main/ch.qos.logback-logback-classic-1.5.23

dependabot/gradle/main/io.spring.nullability-io.spring.nullability.gradle.plugin-0.0.8

dependabot/gradle/main/org.apache.httpcomponents.client5-httpclient5-5.5.2

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'cfe70a5fc7'

${ noResults }

Commit Graph

288 Commits (cfe70a5fc73f2b51bc1d605929c96925421e7dc9)

Author	SHA1	Message	Date
Stephen Doxsee	7739a0e91a	Add PKCE OAuth2 client support ... - Support has been added for "RFC7636: Proof Key for Code Exchange by OAuth Public Clients" (PKCE, pronounced "pixy") to mitigate against attacks targeting the interception of the authorization code - PkceParameterNames was added for the 3 additional parameters used by PKCE (i.e. code_verifier, code_challenge, and code_challenge_method) - Default code_verifier length has been set to 128 characters--the maximum allowed by RFC7636 - ClientAuthenticationMethod.NONE was added to allow clients to request tokens without providing a client secret Fixes gh-6446	7 years ago
Joe Grandja	594a169798	Introduce OAuth2AuthorizationRequest.attributes ... Fixes gh-5940	7 years ago
Josh Cummings	d77b12d229	authorization_uri Uses UriComponentsBuilder ... Because of this, authorization_uri can now be a fully-qualified url. Fixes: gh-5760	7 years ago
Joe Grandja	12f320851d	Set openid scope in OAuth2LoginTests	7 years ago
Joe Grandja	8f4f52edb9	Support configurable JwtDecoder for IdToken verification ... Fixes gh-5717	7 years ago
Josh Cummings	2a8233d035	Remove PowerMock from oauth2-core and oauth2-jose ... Issue: gh-6025	7 years ago
Josh Cummings	39933b10ff	Add scopes method to TestOAuth2AccessTokens ... Issue: gh-6025	7 years ago
Rafael Dominguez	75a2c2b729	OAuth2AccessTokenResponseBodyExtractor supports Object values ... This commit ensures the token response is parsed correctly if the values are not a String. Fixes: gh-6087	7 years ago
Josh Cummings	77fa495860	DelegatingOAuth2TokenValidator Varargs Constructor ... Fixes: gh-5889	7 years ago
Joe Grandja	e8d8eb59bf	Make OAuth2AuthorizedClient Serializable ... Fixes gh-5757	7 years ago
Joe Grandja	2c078c5dd9	Remove expiresAt constructor-arg in OAuth2RefreshToken ... Fixes gh-5854	7 years ago
Rob Winch	72301e548a	Reactive OAuth2 DSL Customizations ... Fixes: gh-5855	7 years ago
Joe Grandja	8746e71b9a	Use OAuth2AuthorizationException in authorization flows	7 years ago
Joe Grandja	b3282957a8	Add OAuth2AuthorizationException	7 years ago
Joe Grandja	229b69dd35	Add DefaultAuthorizationCodeTokenResponseClient ... Fixes gh-5547	7 years ago
Rob Winch	d0ebe47cd5	OAuth2LoginReactiveAuthenticationManager uses OAuth2AuthorizationCodeReactiveAuthenticationManager ... Issue: gh-5620	7 years ago
Rob Winch	3a7083c7e9	Add Test<DomainObject>s For OAuth2 ... Fixes: gh-5699	7 years ago
Josh Cummings	7c524aa0c8	Jwt Claim Validation ... This introduces OAuth2TokenValidator which allows the customization of validation steps that need to be performing when decoding a string token to a Jwt. At this point, two validators, JwtTimestampValidator and JwtIssuerValidator, are available for use. Fixes: gh-5133	7 years ago
Johnny Lim	68878a1675	Replace isEqualTo(null) with isNull()	7 years ago
Joe Grandja	952743269d	Add support for client_credentials grant ... Fixes gh-4982	7 years ago
Joe Grandja	b5abb99908	ClaimAccessor.getClaimAsString() checks null claim value ... Fixes gh-5608	8 years ago
Joe Grandja	e243f93eed	Default to server_error when OAuth2Error.errorCode is null ... Fixes gh-5594	8 years ago
mhyeon.lee	3c461b704c	Add AuthenticationMethod type ... This section defines three methods of sending bearer access tokens in resource requests to resource servers. Clients MUST NOT use more than one method to transmit the token in each request. RFC6750 Section 2 Authenticated Requests https://tools.ietf.org/html/rfc6750#section-2 Add AuthenticationMethod in ClientRegistration UserInfoEndpoint. Add AuthenticationMethod for OAuth2UserService to get User. To support the use of the POST method. https://tools.ietf.org/html/rfc6750#section-2.2 gh-5500	8 years ago
Joe Grandja	779597af2a	Add support for custom authorization request parameters ... Fixes gh-4911	8 years ago
mhyeon.lee	1d920680bf	Enhance OAuth2AccessToken to be serializable ... Change the TokenType to Serializable so that the OAuth2AccessToken can be serialized. (org.springframework.security.oauth2.core.OAuth2AccessToken.TokenType) Fixes gh-5492	8 years ago
Rob Winch	f7dc76de5f	Fix OAuth2BodyExtractorsTests for JDK9 ... Issue: gh-5475	8 years ago
Rob Winch	73689ecfd7	Fix Imports of OAuth2AccessTokenResponse ... Issue: gh-5474	8 years ago
Rob Winch	e27e1cd637	Add OAuth2AccessTokenResponseBodyExtractor ... This externalizes converting a OAuth2AccessTokenResponse from a ReactiveHttpInputMessage. Fixes: gh-5475	8 years ago
Rob Winch	ab61732e17	Add OAuth2AccessTokenResponse.withResponse ... Add ability to build a new OAuth2AccessTokenResponse from another OAuth2AccessTokenResponse. Fixes: gh-5474	8 years ago
Joe Grandja	02d29887fb	Associate Refresh Token to OAuth2AuthorizedClient ... Fixes gh-5416	8 years ago
Joe Grandja	32c33d1def	Add OAuth2AuthenticationException constructor that takes only OAuth2Error ... Fixes gh-5374	8 years ago
Joe Grandja	fff64db0e2	Improve ClaimAccessor getClaimAsInstant ... Fixes gh-5250	8 years ago
Joe Grandja	d8f91e4261	Fix NPE with exp claim in NimbusJwtDecoderJwkSupport ... Fixes gh-5168	8 years ago
Joe Grandja	2bd31c96ed	ClaimAccessor.getClaimAsInstant() converts Long or Date ... Fixes gh-5191, Fixes gh-5192	8 years ago
Joe Grandja	bb15213091	Ensure consistency by using Collection<GrantedAuthority> type ... Fixes gh-5143	8 years ago
Joe Grandja	90f9d728cd	Allow extension for OAuth2Error ... Fixes gh-5148	8 years ago
Joe Grandja	fe2ac00deb	Add javadoc for spring-security-oauth2-client ... Fixes gh-4884	8 years ago
Joe Grandja	e6cac604f3	Add javadoc for spring-security-oauth2-core ... Fixes gh-4883	8 years ago
Joe Grandja	1d32fffc1d	Make OAuth2Error Serializable ... Fixes gh-4944	8 years ago
Joe Grandja	268a1dc06e	DefaultOAuth2User is Serializable ... Fixes gh-4917	8 years ago
Johnny Lim	b6895e6359	Apply Checkstyle WhitespaceAfterCheck module	8 years ago
Joe Grandja	6775d9fdd8	OAuth2AccessTokenResponse should account for expires_in <= 0 ... Fixes gh-4810	8 years ago
Joe Grandja	db35dc6c03	Add tests to oauth2-core ... Fixes gh-4298	8 years ago
Joe Grandja	ef9cd76607	Polish oauth2 ... Fixes gh-4758	8 years ago
Rob Winch	d9584384c4	Move collectClaims to OidcUserAuthority ... Fixes gh-4749	8 years ago
Rob Winch	3d065b5afd	Add getIdToken getUser to OidcUser ... Fixes gh-4748	8 years ago
Rob Winch	f0c2944377	OAuth2AuthorizationResponse getAccessToken ... No longer delegate to OAuth2AccessToken but add getAccessToken() Fixes gh-4743	8 years ago
Joe Grandja	9dc4aa6c81	Make OidcUserInfo Serializable ... Fixes gh-4733	8 years ago
Sola	f0b0cfc4fd	Ensure Copyright header reads 2002-2017 ... fixes gh-4655 Signed-off-by: Sola <dev@sola.love>	8 years ago
Joe Grandja	9afefef3b9	Polish class names in oauth2-client ... Fixes gh-4722	8 years ago