Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

cleanup/azure_aad_issuer_uri #3709

Draft
wants to merge 16 commits into
base: master
Choose a base branch
from
Draft

cleanup/azure_aad_issuer_uri #3709

wants to merge 16 commits into from

Conversation

rfc3092
Copy link
Contributor

@rfc3092 rfc3092 commented Dec 20, 2024

No description provided.

rfc3092 added 16 commits December 19, 2024 12:39
@rfc3092
Remove explicit reference to AAD_ISSUER_URI - already in received Azu…
4665911 
…reClientCredential and verified by ConditionalOnDollyApplicationConfiguredForAzure.
@rfc3092
Removed usage of AAD_ISSUER_URI for pdl-proxy, for initial sanity check.
0b75b21
@rfc3092
- Setting issuer-uri from AZURE_OPENID_CONFIG_ISSUER.
8cb87b9 
- Setting jwk-set-uri from AZURE_OPENID_CONFIG_JWKS_URI.
- Setting token-uri from AZURE_OPENID_CONFIG_TOKEN_ENDPOINT.
- Setting authorization-uri from an unholy use of SpEL and AZURE_OPENID_CONFIG_TOKEN_ENDPOINT (tentatively).
- Removed hardcoded AAD_ISSUER_URI from YAML config.
- Replaced usage of AAD_ISSUER_URI in no.nav.testnav.libs.standalone.servletsecurity.exchange.AzureAdTokenService with AZURE_OPENID_CONFIG_TOKEN_ENDPOINT.
- Replaced usage of AAD_ISSUER_URI in no.nav.testnav.libs.servletsecurity.exchange.AzureAdTokenService with spring.security.oauth2.resourceserver.aad.issuer-uri (to match @ConditionalOnProperty; note difference between above AzureAdTokenService).
@rfc3092
Used AAD_ISSUER_URI directly to resolve token endpoint. Now using tok…
349c293 
…en endpoint from config.
@rfc3092
Test cleanup.
1128e92
@rfc3092
Testing use of issuer-uri instead of authorization-uri.
afac231
@rfc3092
Fixed test by mocking ReactiveClientRegistrationRepository.
a10f9f0
@rfc3092
Testing with only issuer-uri (relying on well-known).
7dfe000
@rfc3092
Revert "Testing with only issuer-uri (relying on well-known)."
ad21b6c 
This reverts commit 7dfe000.
@rfc3092
Removes SpEL magic with hardcoding (for now).
bf6f263
@rfc3092
Testing with only issuer-uri (relying on well-known).
e4c30b1
@rfc3092
- Added Spring Security debug logging.
4210958 
- Changed provider to azure.
@rfc3092
Changes reply URLs.
67b0185
@rfc3092
Test using AZURE_APP_TENANT_ID.
8362c37
@rfc3092
Back to issuer-uri, but now with a CustomOidcUserService that dont' l…
da5e8d5 
…ook up user info.
@rfc3092
- Added a CustomOidcReactiveOAuth2UserService bean.
3b1c2d2 
- Added a CustomReactiveOAuth2UserService bean.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@rfc3092