Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow configuration of RSA Public Key for Resource Server #5131

Closed
jgrandja opened this issue Mar 16, 2018 · 0 comments
Closed

Allow configuration of RSA Public Key for Resource Server #5131

jgrandja opened this issue Mar 16, 2018 · 0 comments
Assignees
@jzheaux
Labels
in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
Milestone
5.2.0.M1

Comments

@jgrandja
Copy link
Contributor

If the Authorization Server does not support/expose a JWK Set URI than we need an alternative method for configuring the Resource Server with the Public Key(s) used for verifying the signature of the JWT.

The initial support will be for RSA keys only.

The RSA key(s) may be discoverable via the ApplicationContext as @Bean or well-known properties in the Environment.
@jgrandja jgrandja added New Feature in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) labels Mar 16, 2018
@jgrandja jgrandja added this to the 5.1.0.M2 milestone Mar 16, 2018
@rwinch rwinch mentioned this issue Mar 16, 2018
Closed
11 tasks
@jzheaux jzheaux mentioned this issue Apr 20, 2018
Closed
jzheaux added a commit to jzheaux/spring-security-oauth2-resource-server that referenced this issue Apr 25, 2018
@jzheaux
Support for Local Key Set
b8e7fb2 
Confguring with a local key is important for simple resource server
configurations, and this commit provides minimal support for making
those keys rotatable.

Issue: spring-projects/spring-security#5131
@jgrandja jgrandja mentioned this issue May 17, 2018
Closed
@jgrandja jgrandja modified the milestones: 5.1.0.M2, 5.1.0.RC1 Jul 25, 2018
@jzheaux jzheaux mentioned this issue Aug 8, 2018
Merged
@rwinch rwinch modified the milestones: 5.1.0.RC1, 5.1.0.RC2 Aug 20, 2018
@rwinch rwinch modified the milestones: 5.1.0.RC2, General Backlog Aug 21, 2018
@jzheaux jzheaux mentioned this issue Oct 1, 2018
Closed
@jgrandja jgrandja modified the milestones: General Backlog, 5.2.x Oct 19, 2018
@jzheaux jzheaux modified the milestones: 5.2.x, 5.2.0.M1 Oct 30, 2018
@jzheaux jzheaux self-assigned this Nov 13, 2018
jzheaux added a commit to jzheaux/spring-security that referenced this issue Nov 16, 2018
@jzheaux
Jwt Decoder Local Key Configuration
99ecff1 
Adds support for configuring Resource Server DSL with a local public
key.

Fixes: spring-projectsgh-5131
rwinch pushed a commit that referenced this issue Nov 16, 2018
@jzheaux @rwinch
Jwt Decoder Local Key Configuration
1ea73e7 
Adds support for configuring Resource Server DSL with a local public
key.

Fixes: gh-5131
jer051 pushed a commit to jer051/spring-security that referenced this issue Nov 21, 2018
@jzheaux
Jwt Decoder Local Key Configuration
44c8fb9 
Adds support for configuring Resource Server DSL with a local public
key.

Fixes: spring-projectsgh-5131
@jzheaux jzheaux mentioned this issue Dec 22, 2018
Closed
@jzheaux jzheaux mentioned this issue Jan 30, 2019
Closed
@rwinch rwinch added the type: enhancement A general enhancement label May 3, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jzheaux jzheaux

Labels
in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
Projects
None yet
Milestone
5.2.0.M1
Development

No branches or pull requests
3 participants
@rwinch @jzheaux @jgrandja