Tags: cloudfoundry/uaa
Tags
build(deps): bump versions.tomcatCargoVersion from 9.0.104 to 9.0.105 (… …#3462) Bumps `versions.tomcatCargoVersion` from 9.0.104 to 9.0.105. Updates `org.apache.tomcat.embed:tomcat-embed-el` from 9.0.104 to 9.0.105 Updates `org.apache.tomcat.embed:tomcat-embed-core` from 9.0.104 to 9.0.105 Updates `org.apache.tomcat.embed:tomcat-embed-jasper` from 9.0.104 to 9.0.105 Updates `org.apache.tomcat:tomcat-jdbc` from 9.0.104 to 9.0.105 --- updated-dependencies: - dependency-name: org.apache.tomcat.embed:tomcat-embed-el dependency-version: 9.0.105 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.apache.tomcat.embed:tomcat-embed-core dependency-version: 9.0.105 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.apache.tomcat.embed:tomcat-embed-jasper dependency-version: 9.0.105 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.apache.tomcat:tomcat-jdbc dependency-version: 9.0.105 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
build(deps): bump jasmine from 5.7.0 to 5.7.1 in /uaa (#3438) Bumps [jasmine](https://github.com/jasmine/jasmine-npm) from 5.7.0 to 5.7.1. - [Release notes](https://github.com/jasmine/jasmine-npm/releases) - [Changelog](https://github.com/jasmine/jasmine-npm/blob/main/RELEASE.md) - [Commits](jasmine/jasmine-npm@v5.7.0...v5.7.1) --- updated-dependencies: - dependency-name: jasmine dependency-version: 5.7.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
build(deps): bump versions.guavaVersion from 33.4.7-jre to 33.4.8-jre (… …#3405) Bumps `versions.guavaVersion` from 33.4.7-jre to 33.4.8-jre. Updates `com.google.guava:guava` from 33.4.7-jre to 33.4.8-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) Updates `com.google.guava:guava-testlib` from 33.4.7-jre to 33.4.8-jre - [Release notes](https://github.com/google/guava/releases) - [Commits](https://github.com/google/guava/commits) --- updated-dependencies: - dependency-name: com.google.guava:guava dependency-version: 33.4.8-jre dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: com.google.guava:guava-testlib dependency-version: 33.4.8-jre dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
fix federated credential administration (#3377) * fix federated credential administration * Update model/src/main/java/org/cloudfoundry/identity/uaa/oauth/client/ClientJwtCredential.java Co-authored-by: Adrian Hölzl <102049638+adrianhoelzl-sap@users.noreply.github.com> * build(deps): bump joda-time:joda-time from 2.13.1 to 2.14.0 (#3378) Bumps [joda-time:joda-time](https://github.com/JodaOrg/joda-time) from 2.13.1 to 2.14.0. - [Release notes](https://github.com/JodaOrg/joda-time/releases) - [Changelog](https://github.com/JodaOrg/joda-time/blob/main/RELEASE-NOTES.txt) - [Commits](JodaOrg/joda-time@v2.13.1...v2.14.0) --- updated-dependencies: - dependency-name: joda-time:joda-time dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * review * review --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Adrian Hölzl <102049638+adrianhoelzl-sap@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
feature test: JWT bearer across zones (#3348) * fix: Jwt Bearer should be able to return id_token I think it was simply forgotten to allow it, but in documentation there is response_type with "token id_token", but the flow is not allowed to return it. Fix this * feature test: Test JWT bearer across zones The test uses 3 zones in UAA to represent 3 identity zones. This PR needs #3344 because jwt bearer should / must return an id_token if the client is configured with openid, similar to password grant. * setup proxy test
Fix the client_auth_method check (#3243) * Test to ensure client credentials auth check * Fix the client_auth_method check Ensure for client_credentials that either secret or private_key_jwt is used If value from claim client_auth_method is none or empty we have to reject token requests * Fix test Wanted is bad request (cherry picked from commit e7a9334)
PreviousNext