Steve Riesenberg

icon indicating a website link https://insource.io

icon location Omaha, NE

Results 276 comments of Steve Riesenberg

Add `OAuth2AuthorizedClientManager` autoconfiguration without `spring-boot-starter-web` dependency

> [@sjohnr](https://github.com/sjohnr) We have `@@ConditionalOnNotWebApplication` but it looks like [`FreeMarkerNonWebConfiguration`](https://github.com/spring-projects/spring-boot/blob/main/spring-boot-project/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/freemarker/FreeMarkerNonWebConfiguration.java) is the only configuration that uses it. Interesting, thanks! (Thinking out loud) So I suppose a `spring-boot-starter-oauth2-client` + `spring-boot-starter-json` setup...

Add `OAuth2AuthorizedClientManager` autoconfiguration without `spring-boot-starter-web` dependency

Actually, that might make sense. Typically, the json support that comes with web or webflux is enough, but since OAuth2 Client is built around making OAuth 2.0 Access Token Requests...

Make OAuth2AuthorizationRequest extendable

Hi @aranoverse, thanks for your explanation! > Although I can work around this problem using `attributes`, from a design perspective, I don't think `T extends OAuth2AuthorizationRequest` which is a not...

How-to: Use Spring Cloud Gateway with Spring Authorization Server

Related gh-564, gh-297

How-to: Use Spring Cloud Gateway with Spring Authorization Server

Thanks for the upvote @lojc. One thing I'm wondering for the benefit of this guide would be: What are the main challenges you have faced when implementing a BFF? Can...

How-to: Use Spring Cloud Gateway with Spring Authorization Server

I don't think so, @HungUnicorn. That would be a separate guide, but not one that we would likely demonstrate as it is less secure than a BFF.

How-to: Use Spring Cloud Gateway with Spring Authorization Server

@loren-coding thanks for the suggestion. However, I feel like I might be missing some context. I don't think I see how multiple frontend applications are relevant to this guide. Also,...

How-to: Use Spring Cloud Gateway with Spring Authorization Server

@loren-coding it sounds like you are building something like (but perhaps not exactly) a multi-tenant gateway. Or at least a gateway with multiple frontend clients. I imagine this use case...

Support multiple OpaqueTokenIntrospector

Hi @CrazyParanoid, thanks for the suggestion. > There are cases where support for multiple `OpaqueTokenIntrospectors` in an `OpaqueTokenAuthenticationProvider` is needed. This is easier than adding another provider to `ProviderManager`, because...

Support multiple OpaqueTokenIntrospector

Thanks @CrazyParanoid. > At the same time, there are many cases where the result of introspection is the same, especially if the identity provider does not strongly contradict the specification....