-
**Describe the bug**
When using opaque tokens with an OAuth 2 resource server, webflux's `ServerBearerTokenAuthenticationConverter` does not support authentication via url-encoded POST requests w…
-
## CVE-2018-1260 - Critical Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://stat…
-
## CVE-2019-11269 - Medium Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://stati…
-
## CVE-2019-3778 - Medium Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://static…
-
## CVE-2018-15758 - High Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://static.…
-
**Expected Behavior**
Should be possible to configure scope delimiter if server sends scopes as comma-delimited string (e.g. GitHub does this).
**Current Behavior**
Delimiter is hard coded he…
-
## 작업 요약
spring security 도입
### 작업 세부 사항
- [ ]
- [ ]
- [ ]
-
I would like to implement OAuth2 resource server in the Spring Config Server and require JWT for all configuration requests.
**Is your feature request related to a problem? Please describe.**
I …
-
## 이슈 내용
#36 에서 제안주신 내용입니다.
예전에 Spring Security를 적용해본 적이 있는데, 적용하자 마자 보안에 관련된 필터들이 설정도 하지 않았는데 덕지덕지 붙어버려 크게 당황했던 기억이 있네요. 😂
이번 프로젝트에서 도입해 보는 것도 나쁘지 않아 보입니다.
-
- [생활코딩 - OAuth 2.0](https://www.youtube.com/playlist?list=PLuHgQVnccGMA4guyznDlykFJh28_R08Q-)
- [Spring Boot and OAuth2 Tutorial](https://spring.io/guides/tutorials/spring-boot-oauth2/)
- [RFC 6479…