před 2 roky · d197c188ba
--- a/oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/config/annotation/web/configurers/OidcClientRegistrationEndpointConfigurer.java
+++ b/oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/config/annotation/web/configurers/OidcClientRegistrationEndpointConfigurer.java
@@ -1,5 +1,5 @@
 
				 /*
			
 
				- * Copyright 2020-2022 the original author or authors.
			
 
				+ * Copyright 2020-2023 the original author or authors.
			
 
				  *
			
 
				  * Licensed under the Apache License, Version 2.0 (the "License");
			
 
				  * you may not use this file except in compliance with the License.
			
@@ -26,6 +26,7 @@ import org.springframework.security.authentication.AuthenticationManager;
 
				 import org.springframework.security.authentication.AuthenticationProvider;
			
 
				 import org.springframework.security.config.annotation.ObjectPostProcessor;
			
 
				 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
			
 
				+import org.springframework.security.crypto.password.PasswordEncoder;
			
 
				 import org.springframework.security.oauth2.core.OAuth2AuthenticationException;
			
 
				 import org.springframework.security.oauth2.core.OAuth2Error;
			
 
				 import org.springframework.security.oauth2.server.authorization.oidc.OidcClientRegistration;
			
@@ -221,6 +222,10 @@ public final class OidcClientRegistrationEndpointConfigurer extends AbstractOAut
 
				 						OAuth2ConfigurerUtils.getRegisteredClientRepository(httpSecurity),
			
 
				 						OAuth2ConfigurerUtils.getAuthorizationService(httpSecurity),
			
 
				 						OAuth2ConfigurerUtils.getTokenGenerator(httpSecurity));
			
 
				+		PasswordEncoder passwordEncoder = OAuth2ConfigurerUtils.getOptionalBean(httpSecurity, PasswordEncoder.class);
			
 
				+		if (passwordEncoder != null) {
			
 
				+			oidcClientRegistrationAuthenticationProvider.setPasswordEncoder(passwordEncoder);
			
 
				+		}
			
 
				 		authenticationProviders.add(oidcClientRegistrationAuthenticationProvider);
			
 
				 
			
 
				 		OidcClientConfigurationAuthenticationProvider oidcClientConfigurationAuthenticationProvider =
			
--- a/oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/oidc/authentication/OidcClientRegistrationAuthenticationProvider.java
+++ b/oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/oidc/authentication/OidcClientRegistrationAuthenticationProvider.java
@@ -30,7 +30,6 @@ import java.util.UUID;
 
				 import org.apache.commons.logging.Log;
			
 
				 import org.apache.commons.logging.LogFactory;
			
 
				 
			
 
				-import org.springframework.beans.factory.annotation.Autowired;
			
 
				 import org.springframework.core.convert.converter.Converter;
			
 
				 import org.springframework.security.authentication.AuthenticationProvider;
			
 
				 import org.springframework.security.core.Authentication;
			
@@ -173,9 +172,14 @@ public final class OidcClientRegistrationAuthenticationProvider implements Authe
 
				 		this.registeredClientConverter = registeredClientConverter;
			
 
				 	}
			
 
				 
			
 
				-	// gh-1056
			
 
				-	@Autowired(required = false)
			
 
				-	void setPasswordEncoder(PasswordEncoder passwordEncoder) {
			
 
				+	/**
			
 
				+	 * Sets the {@link PasswordEncoder} used to encode the {@link RegisteredClient#getClientSecret() client secret}.
			
 
				+	 * If not set, the client secret will be encoded using {@link PasswordEncoderFactories#createDelegatingPasswordEncoder()}.
			
 
				+	 *
			
 
				+	 * @param passwordEncoder the {@link PasswordEncoder} used to encode the client secret
			
 
				+	 * @since 1.1.0
			
 
				+	 */
			
 
				+	public void setPasswordEncoder(PasswordEncoder passwordEncoder) {
			
 
				 		Assert.notNull(passwordEncoder, "passwordEncoder cannot be null");
			
 
				 		this.passwordEncoder = passwordEncoder;
			
 
				 	}