You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
[java-api] SecurityContext has been extended with a thread local storage for Service
Plans. setServicePlans(), getServicePlans(), clearServicePlans() methods have been added.
[java-security]
added support for Identity Service Proof Token validation. Proof Token validation can be enabled by
calling JwtValidatorBuilder.enableProofTokenCheck(). Once enabled, it will forward the X509 client certificate from the
request header x-fowarded-client-cert as x-client_cert header to the /oauth2/token_keys endpoint.
DefaultOAuth2TokenKeyService saves the service plans from response header x-osb_plan (identity broker service plan)
in the new SecurityContext thread local storage for Service Plans. The header should be available when proof token validation is enabled.
In this case, a x-client_cert is sent in the request to /oauth2/token_keys which should trigger the x-osb_plan response header.
[spring-security] fixes a bug in ReactiveHybridJwtDecoder when parsing iat claim #1490
Dependency upgrades
Bump commons-io:commons-io from 2.15.1 to 2.16.1
Bump spring.boot.version from 3.2.2 to 3.2.4
Bump spring.core.version from 6.1.5 to 6.1.6
Bump io.projectreactor:reactor-core from 3.6.2 to 3.6.5
