All work
- Fix Principal typing issue in profile config default implementationJCOMOIDC-101Resolved issue: JCOMOIDC-101Philip Smart
- Add CSP protection to viewsJCOMOIDC-90Resolved issue: JCOMOIDC-90Philip Smart
- Add protocol message logging support to the AbstractOIDCMessageEncoderJCOMOIDC-79Resolved issue: JCOMOIDC-79Philip Smart
- Fix possible NPE in JWETokenDecrypter when jcaKeyAlg is not supported by the registryJCOMOIDC-78Resolved issue: JCOMOIDC-78Philip Smart
- Use security params lookup strategy in base signature security handlerJCOMOIDC-77Philip Smart
- Decouple signature signing logic from SignJWTHandlerJCOMOIDC-76Resolved issue: JCOMOIDC-76Philip Smart
- Complete decode function of OIDCScopedStringAttributeTranscoderJCOMOIDC-71Resolved issue: JCOMOIDC-71Philip Smart
- A128CBC-HS256 Potentially returning the wrong keysizeJCOMOIDC-61Resolved issue: JCOMOIDC-61Henri Mikkonen
- Root cause logging in FilesystemClientInformationResolverJCOMOIDC-42Resolved issue: JCOMOIDC-42Henri Mikkonen
- Exclude jcip-annotations jar from parent POMJCOMOIDC-36Resolved issue: JCOMOIDC-36Philip Smart
- Observations about the packaging of oidc-commonsJCOMOIDC-24Henri Mikkonen
11 of 11
Fix Principal typing issue in profile config default implementation
Fixed
Basics
Logistics
Basics
Logistics
Description
Environment
None
Created February 23, 2024 at 9:20 AM
Updated March 1, 2024 at 2:54 PM
Resolved February 23, 2024 at 9:43 AM
Activity
Philip Smart February 23, 2024 at 9:42 AM
Philip Smart
February 23, 2024 at 9:42 AM
I changed those over to Principal.
As for the SAML case in , it also appears the OIDC profile configuration bean implementation of
getDefaultAuthenticationMethodsinAbstractOAuth2ClientAuthenticableProfileConfigurationnarrows the allowed return type toAuthenticationContextClassReferencePrincipal. It should allow any Principal type, as the interface definition specifies.