5858public class SecurityConfiguration {
5959
6060 // Overview of the security configuration:
61- // 1. SamlSecurity (@Order(1)) — Secures the SAML guest IdP endpoint (eduID guest login).
62- // 2. InternalSecurityConfigurationAdapter (@Order default) — Secures the Mijn eduID and Service Desk portals via OAuth2/OIDC login against OpenConext.
61+ // 1. SamlSecurity (@Order(1)) — Secures the SAML guest IdP endpoint (myconext guest login).
62+ // 2. InternalSecurityConfigurationAdapter (@Order default) — Secures the myconext and Service Desk portals via OAuth2/OIDC login against OpenConext.
6363 // 3. AppSecurity (@Order(2)) — Secures system-to-system OpenConext APIs with HTTP Basic auth.
64- // 4. JWTSecurityConfig (@Order(3)) — Secures mobile app and eduID APIs via OAuth2 opaque token introspection.
65-
64+ // 4. JWTSecurityConfig (@Order(3)) — Secures mobile app and myconext APIs via OAuth2 opaque token introspection.
65+
6666 private static final Log LOG = LogFactory .getLog (SecurityConfiguration .class );
6767
6868 @ Bean
@@ -86,7 +86,7 @@ public void addCorsMappings(CorsRegistry registry) {
8686 }
8787 }
8888
89- //1. SamlSecurity (@Order(1)) — Secures the SAML guest IdP endpoint (eduID guest login).
89+ //1. SamlSecurity (@Order(1)) — Secures the SAML guest IdP endpoint (myconext guest login).
9090 @ Configuration
9191 @ Order (1 )
9292 @ EnableConfigurationProperties (IdentityProviderMetaData .class )
@@ -229,7 +229,7 @@ private String read(Resource resource) throws IOException {
229229 }
230230 }
231231
232- //2. InternalSecurityConfigurationAdapter (@Order default) — Secures the Mijn eduID and Service Desk portals via OAuth2/OIDC login against OpenConext.
232+ //2. InternalSecurityConfigurationAdapter (@Order default) — Secures the myconext and Service Desk portals via OAuth2/OIDC login against OpenConext.
233233 @ Order
234234 @ Configuration
235235 public static class InternalSecurityConfigurationAdapter {
@@ -238,11 +238,11 @@ public static class InternalSecurityConfigurationAdapter {
238238
239239 public static final String ROLE_GUEST = "ROLE_GUEST" ;
240240 public static final String SERVICE_DESK = "SERVICE_DESK" ;
241- public static final String REGISTRATION_ID_MIIN_EDUID = "mijn_eduid " ;
241+ public static final String REGISTRATION_ID_MY_CONEXT = "my_conext " ;
242242 public static final String REGISTRATION_ID_SERVICE_DESK = "service_desk" ;
243243
244244 private static final Set <String > ALLOWED_REGISTRATION_IDS =
245- Set .of (REGISTRATION_ID_MIIN_EDUID , REGISTRATION_ID_SERVICE_DESK );
245+ Set .of (REGISTRATION_ID_MY_CONEXT , REGISTRATION_ID_SERVICE_DESK );
246246
247247 public InternalSecurityConfigurationAdapter (AppAwareAuthorizationRequestResolver authorizationRequestResolver ) {
248248 this .authorizationRequestResolver = authorizationRequestResolver ;
@@ -315,7 +315,7 @@ private AuthenticationEntryPoint appAwareAuthenticationEntryPoint() {
315315 return (request , response , authException ) -> {
316316 String registrationId = request .getParameter ("registration_id" );
317317 if (!ALLOWED_REGISTRATION_IDS .contains (registrationId )) {
318- registrationId = "mijn_eduid" ;
318+ registrationId = REGISTRATION_ID_MY_CONEXT ;
319319 }
320320 response .sendRedirect (request .getContextPath () + "/oauth2/authorization/" + registrationId );
321321 };
@@ -363,7 +363,7 @@ private DaoAuthenticationProvider inMemoryAuthenticationProvider() {
363363
364364 }
365365
366- //4. JWTSecurityConfig (@Order(3)) — Secures mobile app and eduID APIs via OAuth2 opaque token introspection.
366+ //4. JWTSecurityConfig (@Order(3)) — Secures mobile app and myconext APIs via OAuth2 opaque token introspection.
367367 @ Configuration
368368 @ Order (3 )
369369 public static class JWTSecurityConfig {
0 commit comments