Laurentiu Spilca
7fae37f0b5
Ensure refresh token is not revoked
...
Closes gh-158
2020-12-08 11:14:06 -05:00
Joe Grandja
7f8aff7982
Ignore unknown token_type_hint
...
Closes gh-174
2020-12-08 08:35:29 -05:00
Joe Grandja
f077337e43
Use TokenSettings.accessTokenTimeToLive()
...
Closes gh-172
2020-12-08 06:02:42 -05:00
Joe Grandja
79f1cf5a50
Allow customizing Jwt claims and headers
...
Closes gh-173
2020-12-07 16:41:17 -05:00
Joe Grandja
f97b8b2656
Apply consistent naming to builder() methods
...
Issue gh-143 gh-81
2020-11-30 08:15:44 -05:00
Joe Grandja
4e4656f7bb
Apply consistent naming for jwkSet
...
Issue gh-143
2020-11-30 07:50:05 -05:00
Joe Grandja
eb97e12f56
Rename OidcProviderMetadataClaimAccessor.getJwksUri() -> getJwkSetUri()
...
Issue gh-143
2020-11-27 14:09:51 -05:00
Joe Grandja
ab591dc39d
Polish gh-143
2020-11-25 05:51:47 -05:00
Daniel Garnier-Moiroux
6a5e277a11
Implement OpenID Provider Configuration endpoint
...
- See https://openid.net/specs/openid-connect-discovery-1_0.html
sections 3 and 4.
- We introduce here a "ProviderSettings" construct to configure
the authorization server, starting with endpoint paths (e.g.
token endpoint, jwk set endpont, ...)
Closes gh-55
2020-11-25 05:50:17 -05:00
Joe Grandja
d97235d0bb
Register SecurityFilterChain instead of WebSecurityConfigurerAdapter
...
Closes gh-163
2020-11-19 14:27:18 -05:00
Joe Grandja
c1e9c1d76c
Change JwtClaimsSet.Builder.issuer() to String
...
Issue gh-81
2020-11-16 19:42:11 -05:00
Joe Grandja
a9423c6b13
Replace ManagedKey with CryptoKey
...
Closes gh-105
2020-11-13 14:59:35 -05:00
Joe Grandja
8100568613
Polish gh-140
2020-11-10 15:34:47 -05:00
Anoop Garlapati
e1f491bd61
Add client secret POST authentication method support
...
Added support for client secret POST authentication method.
Added validation of client authentication method when
authenticating a client.
Closes gh-134
2020-11-10 16:56:29 +05:30
Joe Grandja
bf24cfb19e
Add temporary OAuth2RefreshToken2
...
Issue https://github.com/spring-projects/spring-security/pull/9146
2020-11-09 14:09:34 -05:00
Joe Grandja
77a9b2ebf3
Add temporary OAuth2ErrorCodes2
...
Issue https://github.com/spring-projects/spring-security/issues/9184
2020-11-09 14:09:34 -05:00
Joe Grandja
d76d209124
Add temporary OAuth2ParameterNames2
...
Issue https://github.com/spring-projects/spring-security/issues/9183
2020-11-09 14:09:34 -05:00
Joe Grandja
e49d4a79b4
Polish PublicClientAuthenticationConverter
...
Commit 5c31fb1b7e
2020-11-05 15:54:24 -05:00
Joe Grandja
7720e275e4
Polish OAuth2ClientAuthenticationProvider
...
Commit 5c31fb1b7e
2020-11-05 15:23:50 -05:00
Joe Grandja
cb09aef605
Use OAuth2ErrorCodes.UNSUPPORTED_TOKEN_TYPE
...
Issue gh-83
2020-11-04 07:36:37 -05:00
Joe Grandja
ebcdf7989d
Use OAuth2ParameterNames.TOKEN
...
Issue gh-83
2020-11-03 20:51:46 -05:00
Joe Grandja
df8793c902
Polish tests gh-84
2020-11-02 18:55:43 -05:00
Joe Grandja
6c7486429c
Polish gh-88
2020-11-02 18:49:35 -05:00
Joe Grandja
cf82c06502
Polish tests gh-128
2020-11-02 18:43:30 -05:00
Joe Grandja
a2167a5091
Polish gh-128
2020-10-30 11:27:27 -04:00
Alexey Nesterov
78d4bd0bad
Add Refresh Token grant type support
...
Closes gh-50
2020-10-30 11:26:51 -04:00
Joe Grandja
b7ddb837d6
Polish gh-84
2020-10-28 16:03:17 -04:00
Joe Grandja
18f8b3afaa
Enforce one-time use for authorization code
...
Closes gh-138
2020-10-22 19:43:09 -04:00
Joe Grandja
af60f3d4d0
Introduce OAuth2Tokens
...
Closes gh-137
2020-10-20 14:43:59 -04:00
Joe Grandja
ca94d02abc
Settings.setting() supports generic return type
...
Issue gh-117
2020-10-13 05:17:39 -04:00
Joe Grandja
628c8bece3
Polish gh-117
2020-10-09 16:08:00 -04:00
Joe Grandja
aa5133e170
Add user consent page
...
Closes gh-42
2020-10-09 15:01:44 -04:00
Joe Grandja
5c31fb1b7e
Move PKCE to OAuth2ClientAuthenticationProvider
...
PR gh-93
2020-10-05 21:14:47 -04:00
Joe Grandja
e5fdee3034
Polish gh-93
2020-10-02 04:03:04 -04:00
Daniel Garnier-Moiroux
ab090445b3
Implement Proof Key for Code Exchange (PKCE) RFC 7636
...
See https://tools.ietf.org/html/rfc7636
Closes gh-45
2020-09-30 15:27:37 -04:00
Joe Grandja
c3b254579c
Add client configuration settings
...
Closes gh-117
2020-09-14 21:02:21 -04:00
Joe Grandja
5a030568ce
Order highest precedence for OAuth2AuthorizationServerSecurity
...
Closes gh-103
2020-09-03 06:05:42 -04:00
Joe Grandja
e16f15cce3
Consolidate to one module
2020-08-19 15:10:58 -04:00
Joe Grandja
eeca3df66b
InMemoryOAuth2AuthorizationService uniquely identifies OAuth2Authorization
...
Closes gh-98
2020-08-19 10:03:14 -04:00
Joe Grandja
c30488cd30
Add JWK Set Endpoint Filter
...
Closes gh-82
2020-08-18 06:28:16 -04:00
Joe Grandja
edefabdc6b
Introduce JwtEncoder with JWS implementation
...
Closes gh-81
2020-08-12 15:53:22 -04:00
Joe Grandja
6d9d400f4f
Align modules with Spring Security
...
Closes gh-95
2020-07-22 06:38:33 -04:00