ch4mpy/spring-addons

Issues

• Invalid SpringAddonsOidcProperties breaks native image

  #213 opened 16 days ago by MichalJanocha
  7

• `@WithOidcLogin` using json file similarly as `@WithJwt`

  #211 opened 16 days ago by ffroliva
  8

• Need support in resolving 401 Unauthorized Error for Multi Tenant JWT Auth with Resource Server

  #212 opened 17 days ago by saravanad
  1

• Import keycloak realms with spring-addons-starters-rest

  #210 opened a month ago by ffroliva
  1

• Logout Issue (Invalid CSRF Token)

  #208 opened a month ago by adhik
  3

• Expand servlet-client tutorial to show calling servlet-resource-server with user that has NICE privileges.

  #207 opened a month ago by tvogel8570
  2

• Downstream services times out reading request body when csrf is set to cookie-accessible-from-js

  #203 opened 2 months ago by FusionHS
  2

• Handle CORS Requests with Keycloak's "allowed-origins" claim like the keycloak adapter (now deprecated)

  #202 opened 2 months ago by ulk200
  2

• Support for resource owner password credential flow (ROPC)

  #199 opened 2 months ago by janbols
  1

• `spring-security-oauth2-resource-server`, `spring-security-oauth2-client` and `spring-webflux` should be `optional` dependencies

  #192 opened 3 months ago by ch4mpy
  1

• (Not a bug)Why the custom JwtDecoder bean is useless

  #189 opened 3 months ago by spkingr
  2

• BFF configuration token is not refreshed

  #187 opened 4 months ago by glennvdv
  3

• Getting response 401 (Unauthorized) for permit-all requests after update

  #188 opened 4 months ago by TheNullablePrototype
  2

• Allow anonymous CORS preflight requests (`OPTIONS` requests to a path configured with CORS)

  #183 opened 4 months ago by ch4mpy
  1

• Configuration properties to add parameters to token requests

  #184 opened 4 months ago by ch4mpy
  1

• Spring Starter OICD, Resource Server: Option to disable the default behavior for authorized/protected routes

  #185 opened 4 months ago by Cammeritz
  1

• POST /logout response Forbidden 403

  #179 opened 4 months ago by TheNullablePrototype
  9

• Doubled path-prefix by `SpringAddonsServerOAuth2AuthorizationRequestResolver`

  #182 opened 4 months ago by ch4mpy
  1

• Support several JWT authentication converters (or converters with a `@Qualifier` which is not `jwtAuthenticationConverter`)

  #181 opened 4 months ago by ch4mpy
  0

• `authorization-request-params` ignored

  #178 opened 4 months ago by ch4mpy
  1

• Post-login success & failure URI params and headers on authentication request are ignored in reactive applications

  #177 opened 4 months ago by ch4mpy
  1

• Exception thrown when `post-logout-redirect-path` configuration property is null

  #176 opened 4 months ago by ch4mpy
  1

• Deprecated WithMockJwtAuth Annotation Concern

  #166 opened 6 months ago by danielshiplett
  12

• After 7.3.0 authentication for web mvc client against keycloak ends in endless redirect

  #174 opened 5 months ago by yennor
  8

• NPE when trying to protect client

  #173 opened 5 months ago by yennor
  2

• `@WithJwt` does not convert claims using `ConfigurableClaimSetAuthoritiesConverter` and path from configuration

  #171 opened 5 months ago by andreasgerner
  5

• Per request post-login and post-logout URIs

  #169 opened 5 months ago by ch4mpy
  1

• Missing default authentication converter when using `@WithJwt`

  #159 opened 6 months ago by ch4mpy
  1

• Spring Boot [3.2.0] is not compatible with this Spring Cloud release train

  #161 opened 6 months ago by devozs
  3

• (Not a bug, jus a question) How do I add a filter ?

  #162 opened 6 months ago by david-randoll
  2

• Sample Flutter-Android application with BFF pattern

  #156 opened 6 months ago by ch4mpy
  0

• Configurable HTTP status for responses to authorization_code flow initiation, authorization-code callback and logout

  #155 opened 6 months ago by ch4mpy
  1

• Resource server token introspection - ClassCastException

  #153 opened 7 months ago by cezaryluksza
  3

• Ability to configure exceptionHandling functionality for com.c4-soft.springaddons.oidc.resourceserver

  #151 opened 7 months ago by nexus061
  7

• Add note on how to use with @SpringBootTest if non-mocked

  #147 opened 8 months ago by wimdeblauwe
  9

• Clarify the trend towards BFF pattern vs oauth2 public clients

  #108 opened a year ago by ddewaele
  2

• SSH Configure Caused "retrieve remote JWK set" Exception

  #146 opened 9 months ago by haiyunhzhang
  5

• Exception when using using graalvm-native with version 7.1.0 but works fine with 7.0.8

  #144 opened 9 months ago by anand1st
  4

• BackChannelLogoutController injects ServerOAuth2AuthorizedClientRepository instead of SpringAddonsServerOAuth2AuthorizedClientRepository

  #140 opened 10 months ago by kwonglau
  9

• CSRF cookie_accessible_from_js produce 403 Forbidden on PUT requests

  #138 opened 10 months ago by Cybelius
  1

• Add a property to add an `audience` validator to resource servers JWT decoders

  #133 opened a year ago by ch4mpy
  0

• Auto-configure (with application properties) additional parameters for authorization-code request

  #129 opened a year ago by ch4mpy
  1

• Property on `@OpenIdClaims` to define all claims with a JSON string

  #127 opened a year ago by ch4mpy
  0

• Add `@ClasspathClaims` to load a JSON resource from the classpath

  #128 opened a year ago by ch4mpy
  0

• Claims used as authorities source should be split on space and comma (and trimmed)

  #125 opened a year ago by ch4mpy
  0

• Support for parametrized OAuth2 Authentications in `@ParameterizedTest`

  #122 opened a year ago by thekalinga
  3

• CSRF httpOnly configuration

  #112 opened a year ago by giovannicandido
  3

• [No bug] Migrating from MockKeycloakAuth

  #111 opened a year ago by cvetan
  1

• Add @ConditionalOnWebApplication to AddonsWebSecurityBeans for command line applications

  #106 opened a year ago by fanalin
  8

• JwtIssuerReactiveAuthenticationManagerResolver bean from autoconfiguration has a bug

  #100 opened a year ago by lArtiquel
  3