Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow building a ClientRegistration from provided configuration #15716

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Allow building a ClientRegistration from provided configuration #15716

wants to merge 1 commit into from
+154 −0

Conversation

heruan
Copy link
Contributor

@heruan heruan commented Aug 31, 2024
edited
Loading

This adds the fromOidcConfiguration method to ClientRegistrations to build a ClientRegistration from a map representation of an OpenID Provider Configuration Response.

This is useful when the OpenID Provider Configuration is not available at a well-known location, or if custom validation is needed for the issuer location (e.g. if the issuer is only reachable via a back-channel URI that is different from the issuer value in the configuration).

Example usage:

RequestEntity<Void> request = RequestEntity.get(metadataEndpoint).build();
ParameterizedTypeReference<Map<String, Object>> typeReference = new ParameterizedTypeReference<>() {};
Map<String, Object> configuration = rest.exchange(request, typeReference).getBody();
// Validate configuration.get("issuer") as per in the OIDC specification
ClientRegistration registration = ClientRegistrations.fromOidcConfiguration(configuration)
    .clientId("client-id")
    .clientSecret("client-secret")
    .build();

Fixes: gh-14633

@heruan heruan mentioned this pull request Aug 31, 2024
Open
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Aug 31, 2024
@heruan heruan force-pushed the gh-14633 branch 2 times, most recently from a349ff4 to 0c0963a Compare August 31, 2024 11:06
@heruan heruan changed the title Allow an expected issuer to be successfully validated Allow building a ClientRegistration from provided configuration Sep 20, 2024
@heruan
Add ClientRegistrations.fromOidcConfiguration method
9dbec04 
ClientRegistrations now provides the fromOidcConfiguration
method to create a ClientRegistration.Builder from a map
representation of an OpenID Provider Configuration Response.

This is useful when the OpenID Provider Configuration is not
available at a well-known location, or if custom validation
is needed for the issuer location (e.g. if the issuer is only
reachable via a back-channel URI that is different from the
issuer value in the configuration).

Fixes: spring-projectsgh-14633
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
status: waiting-for-triage An issue we've not yet triaged
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Support different OIDC issuer hostnames for frontend/backend endpoints
2 participants
@heruan @spring-projects-issues