[midPoint-git] [Evolveum/connector-scimrest] 8b816c: Add configurable OAuth2 client credentials authori...

[johnstone3]

  Branch: refs/heads/feature/basic-oauth2-authorization
  Home:   https://github.com/Evolveum/connector-scimrest
  Commit: 8b816c37f1b7bd547ff7c49ff90c199ac4528cb9
      https://github.com/Evolveum/connector-scimrest/commit/8b816c37f1b7bd547ff7c49ff90c199ac4528cb9
  Author: Jan Kamenicky <jan.kamenicky at evolveum.com>
  Date:   2026-04-21 (Tue, 21 Apr 2026)

  Changed paths:
    M common/src/main/java/com/evolveum/polygon/scimrest/config/RestClientConfiguration.java
    M common/src/main/java/com/evolveum/polygon/scimrest/groovy/AuthorizationCustomizationBuilderImpl.java
    M common/src/main/java/com/evolveum/polygon/scimrest/groovy/impl/ReadOnlyConfiguration.java
    A common/src/main/java/com/evolveum/polygon/scimrest/impl/rest/OAuth2Context.java
    A common/src/main/java/com/evolveum/polygon/scimrest/impl/rest/OAuth2TokenManager.java
    M common/src/main/java/com/evolveum/polygon/scimrest/impl/rest/RestContext.java
    A common/src/test/java/com/evolveum/polygon/scimrest/exception/OAuth2AuthenticationTests.java
    M connector/generic/src/main/resources/Messages.properties

  Log Message:
  -----------
  Add configurable OAuth2 client credentials authorization support

Implements OAuth2 token lifecycle driven entirely by configuration:
- client_credentials flow with token caching and expiry buffer
- automatic refresh_token renewal when server provides one
- fallback to client_credentials when refresh token is invalidated
- client_secret_post and client_secret_basic auth methods
- configurable scope, grant type, and additional parameters
- WireMock tests covering token fetch, reuse, expiry, and refresh flows



To unsubscribe from these emails, change your notification settings at https://github.com/Evolveum/connector-scimrest/settings/notifications