spring-authorization-server
spring-authorization-server copied to clipboard
spring-projects
Spring Authorization Server
**Expected Behavior** When a token request includes scopes that part of them aren't permitted, return the new token with only the permitted scopes **Current Behavior** When a token request includes...
samples/demo-authorizationserver/src/main/java/sample/config/DefaultSecurityConfig.java
This update enhances the OAuth2ClientAuthenticationFilter by adding the method validateClientAuthenticationMethod(Authentication authentication). This method ensures that client authentication methods requiring a client secret have it included in the authentication process. Additionally,...
Greetings, I hope this message finds you well. My name is Kyriakidis Dimitrios, and I'm excited to contribute to spring-projects/spring-authorization-server. This request addresses an issue related to NullPointerException handling and...
Add reference documentation for OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens. Related gh-1558, gh-1559, gh-1560
Add support for Mutual-TLS Client Certificate-Bound Access Tokens. See section [3. Mutual-TLS Client Certificate-Bound Access Tokens](https://datatracker.ietf.org/doc/html/rfc8705#name-mutual-tls-client-certifica) in RFC 8705 OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens. Related gh-101
Add support for Self-Signed Certificate Mutual-TLS client authentication method (`self_signed_tls_client_auth`). See section [2.2. Self-Signed Certificate Mutual-TLS Method](https://datatracker.ietf.org/doc/html/rfc8705#name-self-signed-certificate-mut) in RFC 8705 OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens. Related...
**Expected Behavior** Make it possible to inject custom implementation of RedirectStrategy (via constructor or setter) in OAuth2AuthorizationEndpointFilter, so that a developer can adjust its behavior and create login and consent...
curl --location --request POST 'http://identity.nuzar.com/oauth2/token' \ --header 'User-Agent: Apifox/1.0.0 (https://www.apifox.cn)' \ --header 'Authorization: Basic NzhhZWQwZmQzNGQxNDJlNjg5YjQwOTYzOWNmNDYyMjA6TnV6YXIxMjM0NTZf' \ --header 'Accept: */*' \ --header 'Host: identity.nuzar.com' \ --header 'Connection: keep-alive' \ --header 'Content-Type:...
This PR fixes [Issue-1541](https://github.com/spring-projects/spring-authorization-server/issues/1541#issue-2143352464) Some things worth mentioning. 1. The Predicate naming is too similar to the private method name, do you think we should find a different name? 2....
