-
Notifications
You must be signed in to change notification settings - Fork 282
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[ELY-2584] Add the ability to specify that the OIDC Authentication Request should include request and request_uri parameters #1984
Conversation
93dc491
to
3ce624a
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@PrarthonaPaul Looks good! I've just had a quick look at it and added some minor comments, I'll look at it more and its affiliated wildfly PR later this week
http/oidc/src/main/java/org/wildfly/security/http/oidc/JWTClientCredentialsProvider.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcJsonConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
http/oidc/src/test/java/org/wildfly/security/http/oidc/KeycloakConfiguration.java
Outdated
Show resolved
Hide resolved
3ce624a
to
aa4ac31
Compare
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/JWTClientCredentialsProvider.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcJsonConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
http/oidc/src/test/java/org/wildfly/security/http/oidc/KeycloakConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
aa4ac31
to
58fd4a6
Compare
58fd4a6
to
0bc8938
Compare
http/oidc/src/main/java/org/wildfly/security/http/oidc/JWTClientCredentialsProvider.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/Oidc.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcClientConfiguration.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
http/oidc/src/test/java/org/wildfly/security/http/oidc/OidcTest.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/JWTSigningUtils.java
Outdated
Show resolved
Hide resolved
fd7a498
to
0c6f43d
Compare
@@ -38,15 +38,18 @@ | |||
"resource", "public-client", "credentials", | |||
"use-resource-role-mappings", "use-realm-role-mappings", | |||
"enable-cors", "cors-max-age", "cors-allowed-methods", "cors-exposed-headers", | |||
"expose-token", "bearer-only", "autodetect-bearer-only", | |||
"connection-pool-size", | |||
"expose-token", "bearer-only", "autodetect-bearer-only", "connection-pool-size", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Not necessarily as part of this PR but we seem to have String constants being repeated - should these reference common constants defined somewhere?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I believe some (if not all) are constants inside Oidc.java class. So, we might be able to use those instead.
Generally the PR looks good but one piece missing for me is that it is proposed that this feature comes to WildFly at the Preview stability level but when it comes to the JSON handling that appears that it will be active at all stability levels? |
No, The Json will also fail if the stability level is not set correctly. |
http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/JWTSigningUtils.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/ElytronMessages.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/ServerRequest.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/ServerRequest.java
Outdated
Show resolved
Hide resolved
http/oidc/src/main/java/org/wildfly/security/http/oidc/OidcRequestAuthenticator.java
Outdated
Show resolved
Hide resolved
7102a14
to
044a01f
Compare
http/oidc/src/test/java/org/wildfly/security/http/oidc/OidcTest.java
Outdated
Show resolved
Hide resolved
016e793
to
25d6a18
Compare
…quest should include request and request_uri parameters.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Adding my approval on this one. The majority of the comments have been addressed and I don't think there's anything remaining that should block merging this one.
@PrarthonaPaul Would you be able to create issues to track any remaining tests that we're planning on adding or any other comments that haven't been addressed yet?
Thanks very much for all the updates on this one!
Thanks @fjuma @rsearls |
https://issues.redhat.com/browse/ELY-2584
Analysis doc: wildfly/wildfly-proposals#532
Relevant discussion page: