fde26e003a
Request user info when AS returns no scopes
...
Closes gh-12144
3 years ago
8315545144
Update RP-Initiated Logout target URLs.
...
The URLs we're using are not actually pointing to the OIDC RP-Initiated Logout Specs.
Fixes: gh-12081
4 years ago
75004587a4
Fix scope mapping
...
Issue gh-12101
4 years ago
7c7f9380c7
Refresh remote JWK when unknown KID error occurs
...
Closes gh-11621
4 years ago
888715bbb2
Add tests for unknown KID error
...
Issue gh-11621
4 years ago
53a3ff8932
Refresh remote JWK when unknown KID error occurs
...
Closes gh-11621
4 years ago
77d11a3f9f
Add tests for unknown KID error
...
Issue gh-11621
4 years ago
539a11d0a4
Encode postLogoutRedirectUri query params
...
Closes gh-11379
4 years ago
f035c30edb
Encode postLogoutRedirectUri query params
...
Closes gh-11379
4 years ago
b8b0661d73
Lock Dependencies for Release
4 years ago
f0168c6c27
Add support for customizing claims in JWT Client Assertion
...
Closes gh-9855
4 years ago
50d315d833
Remove unused code
4 years ago
a2ffc88294
Allow configuring PKCE for confidential clients
...
Closes gh-6548
4 years ago
73003d59d6
OAuth 2.0 logout handler resolves uri placeholders
...
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri
Issue gh-7900
4 years ago
9db79aa5d7
BearerTokenAuthenticationFilter.securityContextRepository
...
Issue gh-10953
4 years ago
931fb6a328
Move UnmodifiableMapDeserializer
...
Issue gh-10905
4 years ago
bebd615507
Update io.r2dbc to 0.9.1.RELEASE
...
Closes gh-10883
4 years ago
883c480af0
Update r2dbc-h2 to 0.8.5.RELEASE
...
Closes gh-10869
4 years ago
d655deb718
Update r2dbc-h2 to 0.8.5.RELEASE
...
Closes gh-10856
4 years ago
c67ee6f2a8
javax.servlet:javax.servlet-api -> jakarta.servlet:jakarta.servlet-api
...
Issue gh-10501
4 years ago
8f64bb6c8c
javax.servlet:javax.servlet-api -> jakarta.servlet:jakarta.servlet-api
...
Issue gh-10501
4 years ago
7c54f98944
Update io.r2dbc to 0.9.0.RELEASE
...
Closes gh-10717
4 years ago
214cfe807e
Allow Jwt assertion to be resolved
...
Closes gh-9812
4 years ago
3389cf3ffc
Revert "Lock dependencies"
...
This reverts commit 83bb4603f89c27b97305f32a0237bb6c417e7843.
4 years ago
cfbf28b8ba
Revert "Lock Dependencies for Release"
...
This reverts commit 3d4e90ba2aa6bf026024da6c8a57672f4e08c920.
4 years ago
83bb4603f8
Lock dependencies
4 years ago
3d4e90ba2a
Lock Dependencies for Release
4 years ago
606bf6b38d
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request
error on claim validation failure.
But validators have to return invalid_token errors on failure
according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Closes gh-10337
4 years ago
5c732b9b7f
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
4 years ago
aefd2d497c
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
4 years ago
8c063f8ccb
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
4 years ago
dec858a5b7
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
4 years ago
17e28fa7aa
Update clockSkew javadoc according to implementation
...
Closes gh-10174
4 years ago
aa1ef46d84
Update clockSkew javadoc according to implementation
...
Closes gh-10174
4 years ago
00fafd878c
Allow custom OAuth2ErrorHttpMessageConverter with OAuth2ErrorResponseErrorHandler
...
Closes gh-10425
4 years ago
7b03fb5321
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
5 years ago
f89a34c30b
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
5 years ago
72db6a20c9
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
5 years ago
538541bf40
Don't Cache ReactiveJwtDecoders Errors
...
Closes gh-10444
5 years ago
076c01daef
Add missing @since 5.6
5 years ago
e4a76b0ec9
Checkstyle Fixes
...
- Javadoc tag ordering
- Private constructors before inner classes
Issue gh-10394
5 years ago
f836897190
Checkstyle Fixes
...
- Javadoc tag ordering
- Private constructors before inner classes
Issue gh-10394
5 years ago
0c088e278a
Update r2dbc-spi-test to 0.8.6.RELEASE
...
Closes gh-10393
5 years ago
0704c709dc
Revert "Lock Dependencies for Release"
...
This reverts commit 03c2c49d66fe395374ecb3bed696087e882a6bbc.
5 years ago
03c2c49d66
Lock Dependencies for Release
5 years ago
c83bd075a2
Revert "Lock Dependencies for Release"
...
This reverts commit bedb569f0d
5 years ago
bedb569f0d
Lock Dependencies for Release
5 years ago
b2db2bdb2a
Update r2dbc-spi-test to 0.8.6.RELEASE
...
Closes gh-10410
5 years ago
5c8cd23a2d
Revert "Lock dependencies"
...
This reverts commit fc53f81d2e
5 years ago
64e9ac995a
getClaimAsBoolean() should not be falsy
...
Closes gh-10148
5 years ago
Steve Riesenberg
Ger Roza
tinolazreg
Josh Cummings
Marcus Da Coregio
Joe Grandja
Simone Giannino
Rob Winch
Eleftheria Stein
Jonas Erbe
Dávid Kováč
Khaled Hamlaoui