Permalink
Commits on Sep 25, 2016
Commits on Sep 23, 2016
  1. Fix repositories in samples

    dsyer committed Sep 23, 2016
Commits on Sep 22, 2016
  1. Use incoming refresh token if it exists, otherwise revert to old one

    Before this change the old refresh token was always retained after using
    it, discarding a new value that might be coming in from the auth server.
    Mostly clients that use Spring Security auth servers wouldn't notice
    because the reuseRefreshTokens flag is true by default in the server.
    
    Fixes gh-816
    dsyer committed Sep 22, 2016
  2. Switch @Configuration to @Component

    Prevents WARN log from Spring on startup, but otherwise has no
    functional impact.
    
    Fixes gh-809
    dsyer committed Sep 22, 2016
Commits on Aug 26, 2016
  1. Added warning message to the RemoteTokenServices

    When attempting to use a null client ID or client secret
    we now send a warning log message
    
    Fixes gh-829
    Chris Cooney committed with dsyer Aug 24, 2016
Commits on Aug 25, 2016
  1. Revert to snapshots

    dsyer committed Aug 25, 2016
  2. Release 2.0.11

    dsyer committed Aug 25, 2016
  3. Prevent user from obtaining token via client_credentials or password …

    …grant
    
    Fixes gh-808
    jgrandja committed Aug 18, 2016
Commits on Jun 3, 2016
  1. Revert to snapshots

    dsyer committed Jun 3, 2016
  2. Update to 2.0.10

    dsyer committed Jun 3, 2016
  3. Add test for custom mapping of auth server endpoints

    (in a resources server)
    dsyer committed Jun 3, 2016
  4. Use basic auth entry point as default for token endpoint

    For some reason it was almost working without this change, but
    not with a custom /token endpoint path. It should clearly be
    a 401 with Basic challenge so this makes more sense to me.
    dsyer committed Jun 3, 2016
  5. Match on mapped path instead of raw path

    Fixes gh-743
    dsyer committed Jun 3, 2016
  6. Fix compiler warnings

    dsyer committed Jun 3, 2016
  7. Fix compiler warnings

    dsyer committed Jun 3, 2016
  8. Fix compiler error in Eclipse

    dsyer committed Jun 3, 2016
Commits on May 26, 2016
Commits on May 25, 2016
Commits on May 24, 2016
Commits on May 20, 2016
Commits on May 19, 2016
Commits on May 18, 2016
  1. Fix broken test for DefaultAccessTokenConverter

    The 'scope' ordering needs to be preserved when converting the raw token
    into an Authentication or AccessToken or else tests will break.
    
    Fixes gh-745
    jgrandja committed May 18, 2016
Commits on May 17, 2016
  1. Add support for single scope String type

    DefaultAccessTokenConverter originally expected a String Collection
    for the 'scope' attribute in the raw token while
    extracting it into an Authentication or AccessToken.
    This commit adds support for a single String value for the 'scope' attribute
    as certain Authorization Servers are returning a String type instead of a Collection/Array type.
    
    Fixes gh-745
    jgrandja committed May 17, 2016
Commits on May 16, 2016
  1. Add support for scopes as JSON array

    Normally the scope is a space separated list, but at least one endpoint uses
    a JSON array instead.  This change adds support for parsing a JSON array in
    addition to a space separated list.
    
    Fixes gh-722
    Michael Woodson committed with jgrandja Mar 27, 2016
Commits on May 13, 2016
  1. Fix logout link tonr2 sample

    Fixes gh-726
    jgrandja committed May 13, 2016
  2. Revert to snapshots

    dsyer committed May 13, 2016