Skip to content

Feature/7160 #8111

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 16 commits into from
Closed

Feature/7160 #8111

wants to merge 16 commits into from

Conversation

hitchan
Copy link
Contributor

@hitchan hitchan commented Mar 13, 2020

This PR adds support for creating a JWSVerificationKeySelector dynamically based on the availability of JWK algorithms from a given JWK Set provided by an OIDC discovery document (Issue 7160). Non-standard or unknown algorithms will be silently ignored (see SignatureAlgorithm class). A warning log has also been added to let developers know if there was a problem fetching the JWK Set, although this does not halt the application from starting.

The original functionality is still in place that adds the RS256 algorithm if none are provided during initial configuration for backwards compatibility.

A new unit test as well as an extended mock JWK set for verification.

eleftherias and others added 16 commits March 5, 2020 14:57
@eleftherias
Add test for ServerRequestCacheWebFilter
38979b1
@eleftherias
Add server request cache that uses cookie
ae532c0 
Fixes: gh-8033
@aj-jaswanth @eleftherias
SessionRegistryImpl is now aware of SessionIdChangedEvent
5fc6414
@eleftherias
Polish SessionIdChangedEvent
b2ea0ba 
Add AbstractSessionEvent; clean up license headers and Javadocs

Fixes: gh-5438
@eleftherias
Use range for Kotlin version
9128dde
@eleftherias
Next development version
426d842
@eleftherias
Fix security version test
5850a4c
@eleftherias
Update taglib version
06d360e
@jzheaux
OAuth 2.0 Test Support Docs
4ef37f2 
- Added WebTestClient documentation
- Updated MockMvc documentation to align

Fixes gh-8050
@jzheaux
Document baseUrl Support for OIDC Logout
69e1034 
Fixes gh-8072
@jzheaux
Add Resource Server XML snippets
5b1838f 
Fixes gh-8077
@mengelbrecht @jzheaux
Fix typo 'properites' in documentation
d81321b 
Fixes gh-8095
@jzheaux
Document AuthenticationEventPublisher
3b80c2e 
Fixes gh-8081
@aj-jaswanth @eleftherias
Transfer session's max inactive interval
02b7d04 
Fixes: gh-2693
@eleftherias
Polish transfer session's max inactive interval
47011eb 
Issue: gh-2693
@hitchan
Adds support for JWKKeySelector introspection given a valid JWK Set.
8b3ddd9
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Mar 13, 2020
@hitchan
Copy link
Contributor Author

hitchan commented Mar 13, 2020

Should have only been one commit...

@hitchan hitchan closed this Mar 13, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
status: waiting-for-triage An issue we've not yet triaged
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@hitchan @spring-projects-issues @eleftherias @aj-jaswanth @jzheaux @mengelbrecht