cubetiq/ spring-authorization-server
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
197 Commits 1 Branch 4 Tags 1 MiB
Commit Graph

53 Commits

Author SHA1 Message Date
Joe Grandja 3c6571044d Rename TokenType to OAuth2TokenType 
Closes gh-219
 2021-02-09 13:29:06 -05:00
Joe Grandja 2f1684d44b Polish gh-213 2021-02-09 04:55:31 -05:00
Joe Grandja 2cdb7ef0fc Remove OAuth2AuthorizationAttributeNames 
Issue gh-213
 2021-02-09 03:51:00 -05:00
Joe Grandja ee1b46b9a6 Remove OAuth2AuthorizationAttributeNames.PRINCIPAL 
Issue gh-213
 2021-02-08 21:14:33 -05:00
Joe Grandja cee5aacc15 Remove OAuth2AuthorizationAttributeNames.STATE 
Issue gh-213
 2021-02-08 20:47:14 -05:00
Joe Grandja 7261b40cd5 Add OAuth2Authorization.authorizationGrantType 
Issue gh-213
 2021-02-08 19:36:14 -05:00
Joe Grandja bffcbc5440 Improve OAuth2Authorization model 
This commit removes OAuth2Tokens and OAuth2TokenMetadata and consolidates the code into OAuth2Authorization.

Closes gh-213
 2021-02-08 19:36:14 -05:00
Joe Grandja 218d49b134 Introduce base Authentication for authorization grant 
Closes gh-216
 2021-02-05 11:48:21 -05:00
Joe Grandja adf96b4e25 Add OAuth2TokenCustomizer 
Closes gh-199
 2021-02-04 13:57:37 -05:00
Gerardo Roza 4bcc1afac7 OAuth2TokenRevocationAuthenticationProvider ignores token_type_hint 
Closes gh-175
 2021-01-20 10:25:20 -05:00
Joe Grandja b7996e26d0 Fix NimbusJwkSetEndpointFilter 
Closes gh-198
 2021-01-19 04:39:04 -05:00
Joe Grandja 12f4001c9d Remove CryptoKeySource 
Closes gh-196
 2021-01-16 05:45:06 -05:00
Joe Grandja 36e66bd732 Remove unused RegisteredClientRepository from OAuth2AuthorizationCodeAuthenticationProvider 2020-12-11 11:53:31 -05:00
Joe Grandja 42a89d15b1 Remove unused OAuth2AuthorizationService from OAuth2TokenEndpointFilter 2020-12-11 11:50:07 -05:00
Joe Grandja 259b55f682 Move OidcProviderConfigurationEndpointFilter 
Issue gh-143
 2020-12-11 11:30:35 -05:00
Joe Grandja f2bb523105 Add OpenID Connect 1.0 Authorization Code Flow 
Closes gh-53
 2020-12-10 15:47:12 -05:00
Joe Grandja 8c71e56350 Polish gh-168 2020-12-08 14:12:29 -05:00
Laurentiu Spilca 7c7e664bb7 Refresh token not issued when grant type not configured 
Closes gh-155
 2020-12-08 13:52:50 -05:00
Laurentiu Spilca 7fae37f0b5 Ensure refresh token is not revoked 
Closes gh-158
 2020-12-08 11:14:06 -05:00
Joe Grandja 7f8aff7982 Ignore unknown token_type_hint 
Closes gh-174
 2020-12-08 08:35:29 -05:00
Joe Grandja f077337e43 Use TokenSettings.accessTokenTimeToLive() 
Closes gh-172
 2020-12-08 06:02:42 -05:00
Joe Grandja 4e4656f7bb Apply consistent naming for jwkSet 
Issue gh-143
 2020-11-30 07:50:05 -05:00
Joe Grandja ab591dc39d Polish gh-143 2020-11-25 05:51:47 -05:00
Daniel Garnier-Moiroux 6a5e277a11 Implement OpenID Provider Configuration endpoint 
- See https://openid.net/specs/openid-connect-discovery-1_0.html
  sections 3 and 4.
- We introduce here a "ProviderSettings" construct to configure
  the authorization server, starting with endpoint paths (e.g.
  token endpoint, jwk set endpont, ...)

Closes gh-55
 2020-11-25 05:50:17 -05:00
Joe Grandja a9423c6b13 Replace ManagedKey with CryptoKey 
Closes gh-105
 2020-11-13 14:59:35 -05:00
Joe Grandja 8100568613 Polish gh-140 2020-11-10 15:34:47 -05:00
Anoop Garlapati e1f491bd61 Add client secret POST authentication method support 
Added support for client secret POST authentication method.
Added validation of client authentication method when
authenticating a client.

Closes gh-134
 2020-11-10 16:56:29 +05:30
Joe Grandja bf24cfb19e Add temporary OAuth2RefreshToken2 
Issue https://github.com/spring-projects/spring-security/pull/9146
 2020-11-09 14:09:34 -05:00
Joe Grandja 77a9b2ebf3 Add temporary OAuth2ErrorCodes2 
Issue https://github.com/spring-projects/spring-security/issues/9184
 2020-11-09 14:09:34 -05:00
Joe Grandja d76d209124 Add temporary OAuth2ParameterNames2 
Issue https://github.com/spring-projects/spring-security/issues/9183
 2020-11-09 14:09:34 -05:00
Joe Grandja e49d4a79b4 Polish PublicClientAuthenticationConverter 
Commit 5c31fb1b7e
 2020-11-05 15:54:24 -05:00
Joe Grandja 7720e275e4 Polish OAuth2ClientAuthenticationProvider 
Commit 5c31fb1b7e
 2020-11-05 15:23:50 -05:00
Joe Grandja cb09aef605 Use OAuth2ErrorCodes.UNSUPPORTED_TOKEN_TYPE 
Issue gh-83
 2020-11-04 07:36:37 -05:00
Joe Grandja ebcdf7989d Use OAuth2ParameterNames.TOKEN 
Issue gh-83
 2020-11-03 20:51:46 -05:00
Joe Grandja df8793c902 Polish tests gh-84 2020-11-02 18:55:43 -05:00
Joe Grandja 6c7486429c Polish gh-88 2020-11-02 18:49:35 -05:00
Joe Grandja cf82c06502 Polish tests gh-128 2020-11-02 18:43:30 -05:00
Joe Grandja a2167a5091 Polish gh-128 2020-10-30 11:27:27 -04:00
Alexey Nesterov 78d4bd0bad Add Refresh Token grant type support 
Closes gh-50
 2020-10-30 11:26:51 -04:00
Joe Grandja b7ddb837d6 Polish gh-84 2020-10-28 16:03:17 -04:00
Joe Grandja 18f8b3afaa Enforce one-time use for authorization code 
Closes gh-138
 2020-10-22 19:43:09 -04:00
Joe Grandja af60f3d4d0 Introduce OAuth2Tokens 
Closes gh-137
 2020-10-20 14:43:59 -04:00
Joe Grandja ca94d02abc Settings.setting() supports generic return type 
Issue gh-117
 2020-10-13 05:17:39 -04:00
Joe Grandja 628c8bece3 Polish gh-117 2020-10-09 16:08:00 -04:00
Joe Grandja aa5133e170 Add user consent page 
Closes gh-42
 2020-10-09 15:01:44 -04:00
Joe Grandja 5c31fb1b7e Move PKCE to OAuth2ClientAuthenticationProvider 
PR gh-93
 2020-10-05 21:14:47 -04:00
Joe Grandja e5fdee3034 Polish gh-93 2020-10-02 04:03:04 -04:00
Daniel Garnier-Moiroux ab090445b3 Implement Proof Key for Code Exchange (PKCE) RFC 7636 
See https://tools.ietf.org/html/rfc7636

Closes gh-45
 2020-09-30 15:27:37 -04:00
Joe Grandja c3b254579c Add client configuration settings 
Closes gh-117
 2020-09-14 21:02:21 -04:00
Joe Grandja eeca3df66b InMemoryOAuth2AuthorizationService uniquely identifies OAuth2Authorization 
Closes gh-98
 2020-08-19 10:03:14 -04:00