spring-projects
diff --git a/‎config/src/test/java/org/springframework/security/config/annotation/web/configurers/oauth2/server/resource/OAuth2ResourceServerConfigurerTests.java
Lines changed: 3 additions & 3 deletions b/‎config/src/test/java/org/springframework/security/config/annotation/web/configurers/oauth2/server/resource/OAuth2ResourceServerConfigurerTests.java
Lines changed: 3 additions & 3 deletions
diff --git a/‎config/src/test/java/org/springframework/security/config/http/OAuth2ResourceServerBeanDefinitionParserTests.java
Lines changed: 2 additions & 2 deletions b/‎config/src/test/java/org/springframework/security/config/http/OAuth2ResourceServerBeanDefinitionParserTests.java
Lines changed: 2 additions & 2 deletions
diff --git a/‎config/src/test/kotlin/org/springframework/security/config/annotation/web/oauth2/resourceserver/OpaqueTokenDslTests.kt
Lines changed: 12 additions & 12 deletions b/‎config/src/test/kotlin/org/springframework/security/config/annotation/web/oauth2/resourceserver/OpaqueTokenDslTests.kt
Lines changed: 12 additions & 12 deletions
diff --git a/‎config/src/test/kotlin/org/springframework/security/config/web/server/ServerOpaqueTokenDslTests.kt
Lines changed: 4 additions & 4 deletions b/‎config/src/test/kotlin/org/springframework/security/config/web/server/ServerOpaqueTokenDslTests.kt
Lines changed: 4 additions & 4 deletions
@@ -121,9 +121,9 @@
 import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationConverter;
 import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationToken;
 import org.springframework.security.oauth2.server.resource.authentication.JwtIssuerAuthenticationManagerResolver;
-import org.springframework.security.oauth2.server.resource.introspection.NimbusOpaqueTokenIntrospector;
 import org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenAuthenticationConverter;
 import org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector;
+import org.springframework.security.oauth2.server.resource.introspection.SpringOpaqueTokenIntrospector;
 import org.springframework.security.oauth2.server.resource.web.BearerTokenAuthenticationEntryPoint;
 import org.springframework.security.oauth2.server.resource.web.BearerTokenResolver;
 import org.springframework.security.oauth2.server.resource.web.DefaultBearerTokenResolver;
@@ -2729,8 +2729,8 @@ NimbusJwtDecoder jwtDecoder() {
 		}
 
 		@Bean
-		NimbusOpaqueTokenIntrospector tokenIntrospectionClient() {
-			return new NimbusOpaqueTokenIntrospector("https://example.org/introspect", this.rest);
+		OpaqueTokenIntrospector tokenIntrospectionClient() {
+			return new SpringOpaqueTokenIntrospector("https://example.org/introspect", this.rest);
 		}
 
 	}
 
@@ -84,9 +84,9 @@
 import org.springframework.security.oauth2.jwt.TestJwts;
 import org.springframework.security.oauth2.server.resource.authentication.BearerTokenAuthenticationToken;
 import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationToken;
-import org.springframework.security.oauth2.server.resource.introspection.NimbusOpaqueTokenIntrospector;
 import org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenAuthenticationConverter;
 import org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector;
+import org.springframework.security.oauth2.server.resource.introspection.SpringOpaqueTokenIntrospector;
 import org.springframework.security.oauth2.server.resource.web.BearerTokenResolver;
 import org.springframework.security.test.context.annotation.SecurityTestExecutionListeners;
 import org.springframework.security.web.authentication.AuthenticationConverter;
@@ -1047,7 +1047,7 @@ static class OpaqueTokenIntrospectorFactoryBean implements FactoryBean<OpaqueTok
 
 		@Override
 		public OpaqueTokenIntrospector getObject() throws Exception {
-			return new NimbusOpaqueTokenIntrospector("https://idp.example.org", this.rest);
+			return new SpringOpaqueTokenIntrospector("https://idp.example.org", this.rest);
 		}
 
 		@Override
 
@@ -1,5 +1,5 @@
 /*
- * Copyright 2002-2022 the original author or authors.
+ * Copyright 2002-2025 the original author or authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -24,6 +24,7 @@ import org.junit.jupiter.api.extension.ExtendWith
 import org.springframework.beans.factory.annotation.Autowired
 import org.springframework.context.annotation.Bean
 import org.springframework.context.annotation.Configuration
+import org.springframework.core.ParameterizedTypeReference
 import org.springframework.http.HttpHeaders
 import org.springframework.http.HttpStatus
 import org.springframework.http.MediaType
@@ -41,7 +42,6 @@ import org.springframework.security.oauth2.core.DefaultOAuth2AuthenticatedPrinci
 import org.springframework.security.oauth2.core.TestOAuth2AccessTokens
 import org.springframework.security.oauth2.jwt.JwtClaimNames
 import org.springframework.security.oauth2.server.resource.authentication.BearerTokenAuthentication
-import org.springframework.security.oauth2.server.resource.introspection.NimbusOpaqueTokenIntrospector
 import org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector
 import org.springframework.security.oauth2.server.resource.introspection.SpringOpaqueTokenIntrospector
 import org.springframework.security.web.SecurityFilterChain
@@ -84,15 +84,15 @@ class OpaqueTokenDslTests {
         val headers = HttpHeaders().apply {
             contentType = MediaType.APPLICATION_JSON
         }
-        val entity = ResponseEntity("{\n" +
-                "  \"active\" : true,\n" +
-                "  \"sub\": \"test-subject\",\n" +
-                "  \"scope\": \"message:read\",\n" +
-                "  \"exp\": 4683883211\n" +
-                "}", headers, HttpStatus.OK)
+        val responseBody: Map<String, Any> = mapOf(
+            "active" to true,
+            "sub" to "test-subject",
+            "scope" to "message:read",
+            "exp" to 4683883211
+        )
         every {
-            DefaultOpaqueConfig.REST.exchange(any(), eq(String::class.java))
-        } returns entity
+            DefaultOpaqueConfig.REST.exchange(any(), any<ParameterizedTypeReference<Map<String, Any>>>())
+        } returns ResponseEntity(responseBody, headers, HttpStatus.OK)
 
         this.mockMvc.get("/authenticated") {
             header("Authorization", "Bearer token")
@@ -127,8 +127,8 @@ class OpaqueTokenDslTests {
         open fun rest(): RestOperations = REST
 
         @Bean
-        open fun tokenIntrospectionClient(): NimbusOpaqueTokenIntrospector {
-            return NimbusOpaqueTokenIntrospector("https://example.org/introspect", REST)
+        open fun tokenIntrospectionClient(): OpaqueTokenIntrospector {
+            return SpringOpaqueTokenIntrospector("https://example.org/introspect", REST)
         }
     }
 
 
@@ -1,5 +1,5 @@
 /*
- * Copyright 2002-2020 the original author or authors.
+ * Copyright 2002-2025 the original author or authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -28,8 +28,8 @@ import org.springframework.http.HttpHeaders
 import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity
 import org.springframework.security.config.test.SpringTestContext
 import org.springframework.security.config.test.SpringTestContextExtension
-import org.springframework.security.oauth2.server.resource.introspection.NimbusReactiveOpaqueTokenIntrospector
 import org.springframework.security.oauth2.server.resource.introspection.ReactiveOpaqueTokenIntrospector
+import org.springframework.security.oauth2.server.resource.introspection.SpringReactiveOpaqueTokenIntrospector
 import org.springframework.security.web.server.SecurityWebFilterChain
 import org.springframework.test.web.reactive.server.WebTestClient
 import org.springframework.web.reactive.config.EnableWebFlux
@@ -103,7 +103,7 @@ class ServerOpaqueTokenDslTests {
 
         @Bean
         open fun tokenIntrospectionClient(): ReactiveOpaqueTokenIntrospector {
-            return NimbusReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspect").toString(), "client", "secret")
+            return SpringReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspect").toString(), "client", "secret")
         }
     }
 
@@ -138,7 +138,7 @@ class ServerOpaqueTokenDslTests {
                 }
                 oauth2ResourceServer {
                     opaqueToken {
-                        introspector = NimbusReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspector").toString(), "client", "secret")
+                        introspector = SpringReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspector").toString(), "client", "secret")
                     }
                 }
             }
Original file line number	Diff line number	Diff line change
`@@ -121,9 +121,9 @@`
`121`	`121`	`import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationConverter;`
`122`	`122`	`import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationToken;`
`123`	`123`	`import org.springframework.security.oauth2.server.resource.authentication.JwtIssuerAuthenticationManagerResolver;`
`124`		`-import org.springframework.security.oauth2.server.resource.introspection.NimbusOpaqueTokenIntrospector;`
`125`	`124`	`import org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenAuthenticationConverter;`
`126`	`125`	`import org.springframework.security.oauth2.server.resource.introspection.OpaqueTokenIntrospector;`
	`126`	`+import org.springframework.security.oauth2.server.resource.introspection.SpringOpaqueTokenIntrospector;`
`127`	`127`	`import org.springframework.security.oauth2.server.resource.web.BearerTokenAuthenticationEntryPoint;`
`128`	`128`	`import org.springframework.security.oauth2.server.resource.web.BearerTokenResolver;`
`129`	`129`	`import org.springframework.security.oauth2.server.resource.web.DefaultBearerTokenResolver;`
`@@ -2729,8 +2729,8 @@ NimbusJwtDecoder jwtDecoder() {`
`2729`	`2729`	`}`
`2730`	`2730`
`2731`	`2731`	`@Bean`
`2732`		`- NimbusOpaqueTokenIntrospector tokenIntrospectionClient() {`
`2733`		`- return new NimbusOpaqueTokenIntrospector("https://example.org/introspect", this.rest);`
	`2732`	`+ OpaqueTokenIntrospector tokenIntrospectionClient() {`
	`2733`	`+ return new SpringOpaqueTokenIntrospector("https://example.org/introspect", this.rest);`
`2734`	`2734`	`}`
`2735`	`2735`
`2736`	`2736`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,5 @@`
`1`	`1`	`/*`
`2`		`- * Copyright 2002-2020 the original author or authors.`
	`2`	`+ * Copyright 2002-2025 the original author or authors.`
`3`	`3`	`*`
`4`	`4`	`* Licensed under the Apache License, Version 2.0 (the "License");`
`5`	`5`	`* you may not use this file except in compliance with the License.`
`@@ -28,8 +28,8 @@ import org.springframework.http.HttpHeaders`
`28`	`28`	`import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity`
`29`	`29`	`import org.springframework.security.config.test.SpringTestContext`
`30`	`30`	`import org.springframework.security.config.test.SpringTestContextExtension`
`31`		`-import org.springframework.security.oauth2.server.resource.introspection.NimbusReactiveOpaqueTokenIntrospector`
`32`	`31`	`import org.springframework.security.oauth2.server.resource.introspection.ReactiveOpaqueTokenIntrospector`
	`32`	`+import org.springframework.security.oauth2.server.resource.introspection.SpringReactiveOpaqueTokenIntrospector`
`33`	`33`	`import org.springframework.security.web.server.SecurityWebFilterChain`
`34`	`34`	`import org.springframework.test.web.reactive.server.WebTestClient`
`35`	`35`	`import org.springframework.web.reactive.config.EnableWebFlux`
`@@ -103,7 +103,7 @@ class ServerOpaqueTokenDslTests {`
`103`	`103`
`104`	`104`	`@Bean`
`105`	`105`	`open fun tokenIntrospectionClient(): ReactiveOpaqueTokenIntrospector {`
`106`		`- return NimbusReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspect").toString(), "client", "secret")`
	`106`	`+ return SpringReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspect").toString(), "client", "secret")`
`107`	`107`	`}`
`108`	`108`	`}`
`109`	`109`
`@@ -138,7 +138,7 @@ class ServerOpaqueTokenDslTests {`
`138`	`138`	`}`
`139`	`139`	`oauth2ResourceServer {`
`140`	`140`	`opaqueToken {`
`141`		`- introspector = NimbusReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspector").toString(), "client", "secret")`
	`141`	`+ introspector = SpringReactiveOpaqueTokenIntrospector(mockWebServer().url("/introspector").toString(), "client", "secret")`
`142`	`142`	`}`
`143`	`143`	`}`
`144`	`144`	`}`