CHANGELOG.md

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.0.3 (2024-04-03)

2.0.2 (2024-04-03)

Bug Fixes

• fixed get custom claims endpoint. (4b7deb3)

2.0.1 (2024-04-03)

2.0.0 (2024-04-03)

⚠ BREAKING CHANGES

• clients won't send additional_claims parameter to /oauth/token endpoint.

Features

• error page redirect (c56f974)
• implemented CustomClaimService. (6aed317)
• remove additional_claims parameter from TokenRequestModel and add custom claim hook service. (02f714f)
• removed invalid parameters while redirecting to redirect uri. (2c13476)

Bug Fixes

• authorization header must be start with "Basic". (b47ee92)
• fixed /authorize tests. (ba43ffb)
• fixed entity. (a595659)
• fixed error returns. (4676c4a)
• fixed TokenGrantProviderAuthorizationCode tests. (92cdadf)
• fixed TokenGrantProviderClientCredentials tests. (db40475)
• fixed TokenGrantProviderRefreshToken tests. (a3954bf)
• fixing error messages. (49e8336)
• make scope nullable. (ab7b75a)
• return as HashMap. (80d1a40)

1.11.2 (2024-03-11)

1.11.1 (2024-03-11)

1.11.0 (2024-02-28)

Features

• make audience and issuer_uri nullable. (a14cb82)

1.10.2 (2024-02-14)

Bug Fixes

• fix url patterns for corsfilter (4b84d75)

1.10.1 (2024-02-13)

1.10.0 (2024-02-13)

Features

• TMID-873: added body to error response. (a21b5cd)
• TMID-873: added check for consent endpoint. (c0b824f)
• TMID-873: added check for consent endpoint. (9ebf29a)
• TMID-873: added check for request type. (b1c38e4)
• TMID-873: added implicit grant for test cases. (7fd26ee)
• TMID-873: added scope parameter to /authorize endpoint. (d17ab71)
• TMID-873: added scope to authorization codes. (2867879)
• TMID-874: added scope parameter to validate method. (810cc04)
• TMID-875: added clients_scopes relation. (8f1cebf)
• TMID-875: added scope validation to ClientValidator. (da6d00d)
• TMID-875: added scopeList. (30a5e2b)
• TMID-875: added ScopeModel class. (5e5f308)
• TMID-881: add ScopeValidator (3bcc33c)
• TMID-883: refactor ClientUserService.getOrCreate (cb852c9)
• TMID-933: added azp and scope claims. (22839fd)
• TMID-934, TMID-931: added generating id token. (c14db7b)
• TMID-934: add ENABLE_ID_TOKEN env. (4de3620)
• TMID-935: add UserIdentityService (fbbb270)

Bug Fixes

• TMID-873: typo on oauth.consent_endpoint config (baae558)
• TMID-934: fix userIdentityInfo fixture random map count to 2 (7e1db3f)
• TMID-935: generify user info model response (28081e1)

1.9.0 (2024-01-19)

Features

• TMID-930: removed jwt.secret.key env. (77bb887)
• TMID-930: sign tokens with client secret instead of jwt.secret.key env. (9e254fe)

Bug Fixes

• TMID-853: remove phone related properties from UserCookieModel,UserCookieModelTest,UserCookieManagerTest (d3e7a18)

1.8.0 (2024-01-15)

Features

• TMID-555: swagger endpoint created (1b9ace0)

Bug Fixes

• TMID-537: remove unnecessary client upload endpoint, aws, s3 dependency, file upload providers (a0a6ef2)
• TMID-537: remove unnecessary client upload endpoint, aws, s3 dependency, file upload providers (976cc0b)
• TMID-555: removed isSwaggerUIRequest method in CORSFilter.java and add urlPattern in FilterConfig.java (a7d2daa)
• TMID-555: Updated isSwaggerUIRequest method in CORSFilter.java (0787166)

1.7.8 (2023-08-17)

Bug Fixes

• add override for request.getInputStream in CORSFilter (515fc92)

1.7.7 (2023-08-17)

Bug Fixes

• TMID-416, TMID-418: Handle preflight-requests. (81290a9)

1.7.6 (2023-08-17)

Bug Fixes

• TMID-416, TMID-418: Handle preflight-requests. (8bd9d79)

1.7.5 (2023-08-17)

Bug Fixes

• TMID-416, TMID-418: Handle preflight-requests. (351b4d1)

1.7.4 (2023-08-17)

Bug Fixes

• TMID-416, TMID-418: Add cors configuration in OPTIONS request also. (da500a0)

1.7.3 (2023-08-17)

Bug Fixes

• TMID-416, TMID-418: Fixed adding cors configuration. (5760de1)

1.7.2 (2023-08-17)

Bug Fixes

• TMID-416, TMID-418: Modified adding cors configuration. (e9b13f1)

1.7.1 (2023-08-16)

Bug Fixes

• TMID-416, TMID-418: Replace "Origin" header check with "Referrer" check since "Origin" may be null. (f3b9a55)

1.7.0 (2023-08-04)

Features

• TMID-369: add additional_claims to token endpoint requests model (1256372)
• TMID-387: Added CORSMiddleware. (25d026b)
• TMID-387: added unit test for clientService. (5b7e675)
• TMID-387: added unit test for CORSMiddleware. (265fc30)
• TMID-387: added unit tests.. (b56a6c7)
• TMID-387: Added WebOrigin entity. (0625343)
• TMID-387: Added WebOriginModel. (67cffb8)
• TMID-387: fixed integration test. (635759b)
• TMID-387: Implemented CORSMiddleware. (a1f7358)

Bug Fixes

• fix UserCookieModel parser (70cad6a)
• fix UserCookieModel parser as safe (24e3951)
• TMID-387: remove unnecessary dependencies. (9ec0f06)

1.6.0 (2023-07-25)

Features

• TMID-296: add set client logo post endpoint (b0bc876)
• TMID-296: add set client logo post endpoint (a3bde7d)
• TMID-351: add S3StorageProvider, move factories to service/factory (5f9c2b7)
• TMID-352: add BaseFileStorageProvider, FileStorageProvider, FileStorageProviderFactory (4c7c4ec)
• TMID-357: changed user id related fields from long to string. (7188584)
• TMID-360: add user_id to redirected query params in authorize (406efa8)
• TMID-370: add TokenCookieManager.setTokens (576572f)

Bug Fixes

• TMID-350: create setClientLogo service method on ClientService (1d3d700)
• TMID-351: add new illegal argument cases (5dd1690)
• TMID-351: cleanup (02ccc6c)
• TMID-357: fixed conflicted. (47ef15c)
• TMID-357: fixed user id format in test cases. (9db60ab)
• TMID-357: removed typo. (63348c2)
• TMID-357: resolved minor conflict. (1639386)

1.5.0 (2023-07-10)

Features

• TMID-297: refactor user cookie format (ea8c4d3)

1.4.0 (2023-07-04)

Features

• TMID-282: add validator for conditional redirect uri requirement (9874e70)

Bug Fixes

• TMID-282: add coverage for token request model validator (7b113e0)

1.3.9 (2023-06-14)

1.3.8 (2023-06-14)

1.3.7 (2023-06-13)

1.3.6 (2023-06-13)

1.3.5 (2023-06-13)

1.3.4 (2023-06-13)

1.3.3 (2023-06-13)

1.3.2 (2023-06-09)

1.3.1 (2023-05-04)

Bug Fixes

• fix parameter conversion. (7c5c967)
• fix parameter conversion. (9d5b5b8)

1.3.0 (2023-05-04)

Features

• TMID-162: add EncryptionUtils class. (740279b)
• TMID-162: convert cookie key to "user". (9ad17f7)
• TMID-162: implement user cookie manager. (2feae75)
• TMID-162: refactored redirecting to login. (f7f131c)
• TMID-162: refactored redirecting to login. (1745fb6)

Bug Fixes

• fixed invalid environment variable. (e73ddf8)

1.2.2 (2023-04-18)

Bug Fixes

• authorization code expires ms value from environment value (78da1c9)

1.2.1 (2023-04-13)

Bug Fixes

• fix expiresAt value, (c82ae3a)

1.2.0 (2023-04-11)

Features

• MOB-100: add TokenGrantProviderFactory new service (f17375e)
• MOB-100: add TokenGrantProviderRefreshToken.generateToken and unit tests (b23b03a)
• MOB-100: add TokenGrantProviderRefreshToken.validate and tests (1dcdaac)
• MOB-100: fix RefreshTokenService.revokeRefreshToken (79d2418)
• MOB-100: fix RefreshTokenService.revokeRefreshToken (86ac648)
• MOB-110: add AuthorizeController.tokenPost (561102d)
• MOB-99: add TokenGrantProviderClientCredentials and unit tests (b990fd6)
• MOB-99: add unit test case to prevent partial coverage (3b9a7a4)
• MOB-99: alter jwt and token services to generate token without subject (027af8f)
• TMID-100: remove constructor, add autowired (d26e2af)
• TMID-103: added issue_refresh_tokens column. (eb1fa8b)
• TMID-104: added JwtService. (9e517f0)
• TMID-104: added JwtServiceImpl. (741de56)
• TMID-105: implemented signToken(subject, audience, issuerUri, state, tokenExpiresInMinutes, signingKey, additionalClaims, refreshToken). (50510cd)
• TMID-107, TMID-109: implemented TokenService. (948e8cf)
• TMID-107,TMID-109: implemented generateToken methods. (ab07ec6)
• TMID-110: add /oauth/token (6fcb68d)
• TMID-110: add AuthorizeControllerTest auth/token AuthorizationCode provider (785613f)
• TMID-110: add AuthorizeControllerTest ClientCred. provider unit test (4e5f78c)
• TMID-110: add AuthorizeControllerTest Refresh Token provider unit test (50113c0)
• TMID-110: pr feedbacks (59a74ae)
• TMID-110: remove unnecessary jpa method from RefreshTokenRepository. (123ab7c)
• TMID-28: add interface IBaseAuthorizeTypeProvider and abstract BaseAuthorizeTypeProvider for AuthorizeTypeProviders (709138f)
• TMID-28: add interface IBaseAuthorizeTypeProvider and abstract BaseAuthorizeTypeProvider for AuthorizeTypeProviders (44d1b6a)
• TMID-33: Added Validator interface. (7022d1d)
• TMID-33: Renamed parameter. (b3dd2b5)
• TMID-34: Added grantList, redirectUriList. (c4821f3)
• TMID-34: Added GrantModel. (1cfe224)
• TMID-34: Added RedirectUriModel. (9f74a07)
• TMID-34: Deleted unnecessary ClientController. (ccb2591)
• TMID-34: Implemented ClientValidator. (cde1605)
• TMID-35: add AuthorizeTypeProvider with its factory (053d132)
• TMID-35: add service factory exception unit test cases (da58d2e)
• TMID-36: add abstract ServiceFactory (1b8cd9f)
• TMID-42: add AuthorizationCode data, fixture, service and unit tests (52b92dc)
• TMID-42: add UserCookieService interface and implementation (f94694e)
• TMID-45: add AuthController, (80613bb)
• TMID-45: add clientservice impl (c37ca2a)
• TMID-45: add created updated date generation (53b8e72)
• TMID-45: Check via isPresent. (ca0a7a1)
• TMID-45: created TokenModel. (c3a9c65)
• TMID-45: fix client id as client_id (99003d9)
• TMID-45: Fixed naming conventions. (65fac4a)
• TMID-46: add AuthorizeRequest class (d25a947)
• TMID-46: add AuthorizeRequest class (6d45f04)
• TMID-46: clean UriUtils.isValidUrl (10ea12a)
• TMID-46: fix url validator remove unnecessary conditions (ce96ace)
• TMID-47-38: add CookieServiceTest, CookieFixture (05435ef)
• TMID-47-38: add unit test case for empty cookie result in shouldNotGetUserCookieByKey (67b96d5)
• TMID-47-38: add UserCookieService interface and implementation (78bb8df)
• TMID-47-38: fix sonar warnings (c5441f9)
• TMID-49: add ClientRepository (1681ce0)
• TMID-49: fix client repository, client repository test (8bce765)
• TMID-80: added healthcheck endpoint. (d272be8)
• TMID-81: remove sample components (e029a42)
• TMID-83: add BaseTokenGrantProvider.validate, BaseTokenGrantProvider.generateToken (f65bae4)
• TMID-83: add TokenGrantProviderFactory (032cf8e)
• TMID-83: add TokenGrantProviderFactory (6ad5c77)
• TMID-83: changed error message. (f32107a)
• TMID-84: added @Setter. (263b76f)
• TMID-84: created TokenRequestModel class. (8de4445)
• TMID-95: add ClientService.decodeClientCredentials and unit tests (3ddc938)
• TMID-96: added new grant_types. (133fcce)
• TMID-96: converted Validator to BaseValidator. (01bd458)
• TMID-96: refactored ClientValidator. (b86adad)
• TMID-96: refactored ClientValidator. (2c7e741)
• TMID-97: add TokenGrantProviderFactory (135ee13)
• TMID-98: add TokenGrantProviderAuthorizationCode and unit tests (6744b64)
• TMID-98: fix AuthorizationCodeServiceTest complexity (0b758d2)
• TMID-98: fix AuthorizationCodeServiceTest warning (94449eb)
• TMID-98: fix TokenGrantProvider.validate return (98fac15)
• TMID-99: fix TokenGrantProviderClientCredentials and unit tests (9998562)
• TMID-9: add AuthorizeTypeProviderAuthorizationCode (f2e53a8)
• TMID:104: implemented signToken. (3ea3d7c)
• TMID:104: refactored with sonar warnings. (ccbe68e)
• updated RefreshToken entity. (5395629)

Bug Fixes

• add test for Application.main (48b3d4b)
• fix ClientValidatorTest invalid clientredirect case (6e44ab6)
• MOB-110: fix StringUtils.generateSecureRandomString (abd70d7)
• refactor get client from ClientFixture (bed3aba)
• removed @Data annotation from entities. (9ae5169)
• TMID-106: add RefreshTokenService.revokeRefreshToken (579bdb7)
• TMID-106: fix RefreshTokenServiceImpl use active refresh tokens via db view (1b88a40)
• TMID-108: add RefreshTokenService.createRefreshToken (3f6be59)
• TMID-110: add invalid request test for auth/token (e582920)
• TMID-110: cleanup, add error test cases (974f9e5)
• TMID-110: remove null argument for TokenService.generateToken (98bf2c8)
• TMID-32: add ClientServiceTest (27bbfcb)
• TMID-35: fix service factory MissingServiceException case (3b09530)
• TMID-36: fix package name authorizeType to authorizetype (28b2bd1)
• TMID-36: fix package name authorizeType to authorizetype (a6d80fb)
• TMID-36: remove incorrent provider interface (4a8e9ff)
• TMID-45: add integration test for authorize endpoint (686e2cb)
• TMID-45: add integrationt est UnsupportedServiceTypeException case (2d4a554)
• TMID-45: add isValidUrl method unit tests (f3a78fe)
• TMID-45: add post request with integration tests (2e7d05a)
• TMID-45: add slf4j logger to ClientServiceImpl (2354c8a)
• TMID-45: add unit test for no client exception in AuthorizationCodeService.createAuthorizationCode (2e9c41a)
• TMID-45: convert all response status as FOUND redirect (93f1a87)
• TMID-45: fix AuthorizationCode save. (907ed45)
• TMID-45: fix clientMapper (3911f75)
• TMID-45: fix regex as sonar suggests (d79c8ef)
• TMID-45: fix regex as sonar suggests (36a85d2)
• TMID-45: fix unit tests namings (34d2a0e)
• TMID-45: fix url validation (9887d9c)
• TMID-45: pull request cleanup (702f181)
• TMID-45: remove @Data add @Getter @Setter to resolve jpa nested query conflict (d8c64a3)
• TMID-45: remove unnecessary exception (ddc388c)
• TMID-45: resolve integration test data from sql file to fixture generated. (1f72b9a)
• TMID-45: revert Jacoco version downgrade (c6e4e18)
• TMID-46: rename AuthorizeRequest model (7815d30)
• TMID-83: fix BaseTokenGrantProvider.validate (e636a9a)
• TMID-83: fix BaseTokenGrantProvider.validate (14fd949)
• TMID-83: fix return model of BaseTokenGrantProvider.generateToken (8e2b408)
• TMID-83: fix return model of BaseTokenGrantProvider.generateToken (d5db1d0)
• TMID-83: fix TokenGrantProviderRefreshToken (57f3197)
• TMID-9: fix module names for regex rules sonar code smells (4af0b54)
• update spring-boot-starter-parent (94736c1)

1.1.0 (2023-03-08)

Features

• TMID-39: fix test folder and package names (0fa3a5d)
• TMID-8: Added EnableAutoConfiguration. (74fcf3f)
• TMID-8: Removed spring.config.import. (85c244a)

Bug Fixes

• TMID-40: remove unnecessary jwt service (21816ff)
• TMID-41: add AuthorizationCodeService interface (3daa00f)
• TMID-41: fix service method names as camel case (cf98ff2)

1.0.0 (2023-03-06)

Features

• TMID-3,TMID-5,TMID-7: add JwtService, TokenService, GenerateRandomTokenString (6cf5ecf)
• TMID-4: Added db tables. (1085fa0)
• TMID-6: Created project. (1d2c558)
• TMID-8: Added Dockerfile. (0714b57)
• TMID-8: Added release script. (bd48fec)
• TMID-8: Installed standard-version. (05491e5)
• TMID-8: Updated relaese action. (61a8a9c)

Bug Fixes

• TMID-3,TMID-5,TMID-7: remove unnecessary throws (e1a3b37)