v2.0.0.M3 (2020-06-08)
Implemented enhancements:
- Handling logout for Okta when micronaut.security.idtoken is used #263
- Enhance DefaultProviderResolver to resolve provider via iss claim #258
- Authorization header prefix treated case-sensitive #252
- Simplify the configuration of LoginHandlers and Logout Handlers #246
- Simplify redirect configuration #245
- login controller enabled by default #244
- logout controller enabled by default #243
- refresh controller enabled by default #242
- Keys endpoint enabled by default #241
- Create ErrorResponse contract #233
Fixed bugs:
- TokenCookieConfiguration not being loaded #270
- invalid refresh token should return 400 #235
- wrong response JSON body for invalid refresh request #234
- OpenIdClientCondition causing circular bean reference #220
Closed issues:
- Security-session only looks for old config #261
- Idtoken should support session #260
- Ability to set the token expiration time dinamically. #255
- RefreshTokenPersistence response in case of invalid refresh token #251
- Deprecate JwtGeneratorConfiguration #247
- Version 1.4.0 Support for request/request-headers in TokenValidator #236
- io.micronaut.security.oauth2.ApplicationContextSpecification starts embeeded server #232
- Improve RefreshTokenConfigurationProperties Javadoc and docs default value for enabled #231
- Oauth scopes lead to NullPointerException #225
- Update guide #193
Merged pull requests:
- [security] Update common files for branch master #274 (@micronaut-build)
- [security] Update common files for branch master #273 (@micronaut-build)
- [security] Update common files for branch master #268 (@micronaut-build)
- [WIP] Make Authorization header prefix check case insensitive #257 (@jcassee)
- GraalVM: Initialize com.nimbusds.jose.JWSAlgorithm at build-time #240 (@ilopmar)
- refactor: simpler refresh token generator #237 (@sdelamo)
* This Changelog was automatically generated by github_changelog_generator