Max Batischev
Results
13
issues of
Max Batischev
Currently `dpop` can't be configured. `OAuth2ResourceServerConfigurer` has `dPoPAuthenticationConfigurer` and it is already initialized with `DPoPAuthenticationConfigurer` and in `configure` method it is always applied to `http`. It would be nice to...
status: duplicate
type: enhancement
in: oauth2
Need to add support [OAuth 2.0 Step-up Authentication Challenge Protocol](https://datatracker.ietf.org/doc/html/rfc9470). Now I use custom validators on the server resource side: `JwtAuthenticationContextClassReferenceValidator` and `JwtMaxAgeValidagtor`. I can add it to spring security.
type: enhancement
in: oauth2
status: feedback-provided