Skip to content

Apply JWT decoder timeout properties for AAD and B2C resource servers#49329

Open
rujche wants to merge 5 commits into
mainfrom
rujche/main/add-timeout-for-JwtDecoder
Open

Apply JWT decoder timeout properties for AAD and B2C resource servers#49329
rujche wants to merge 5 commits into
mainfrom
rujche/main/add-timeout-for-JwtDecoder

Conversation

@rujche
Copy link
Copy Markdown
Member

@rujche rujche commented Jun 1, 2026
edited
Loading

Description

  • Apply jwtConnectTimeout/jwtReadTimeout properties to RestTemplate used by JWT decoder in AadResourceServerConfiguration and AadB2cResourceServerAutoConfiguration
  • Remove incorrect @deprecated annotation from timeout properties in AadAuthenticationProperties and AadB2cProperties (the deprecation was based on a RestOperations bean mechanism from PR [FEATURE REQ] Connecting to Azure-AD via proxy #26493 #30456 that was later removed, making the deprecation guidance invalid)
  • Fix javadoc: correct default value description from '500s' to '500ms'
  • Add tests for default and custom timeout property values

All SDK Contribution checklist:

  • The pull request does not introduce [breaking changes]
  • CHANGELOG is updated for new features, bug fixes or other significant changes.
  • I have read the contribution guidelines.

General Guidelines and Best Practices

  • Title of the pull request is clear and informative.
  • There are a small number of commits, each of which have an informative message. This means that previously merged commits do not appear in the history of the PR. For more information on cleaning up the commits in your PR, see this page.

Testing Guidelines

  • Pull request includes test coverage for the included changes.

@rujche
Apply JWT decoder timeout properties for AAD and B2C resource servers
1f08465 
- Apply jwtConnectTimeout/jwtReadTimeout properties to RestTemplate used
  by JWT decoder in AadResourceServerConfiguration and
  AadB2cResourceServerAutoConfiguration
- Remove incorrect @deprecated annotation from timeout properties in
  AadAuthenticationProperties and AadB2cProperties (the deprecation was
  based on a RestOperations bean mechanism from PR #30456 that was later
  removed, making the deprecation guidance invalid)
- Fix javadoc: correct default value description from '500s' to '500ms'
- Add tests for default and custom timeout property values
Copilot AI review requested due to automatic review settings June 1, 2026 06:23
@rujche rujche requested review from a team, Netyyyy, moarychan and saragluna as code owners June 1, 2026 06:23
@github-actions github-actions Bot added the azure-spring All azure-spring related issues label Jun 1, 2026
@rujche rujche self-assigned this Jun 1, 2026
@rujche rujche moved this from Todo to In Progress in Spring Cloud Azure Jun 1, 2026
@rujche rujche added this to the 2026-06 milestone Jun 1, 2026
@rujche rujche mentioned this pull request Jun 1, 2026
Closed
6 tasks
@rujche rujche added azure-spring-aad Spring active directory related issues. azure-spring-aad-b2c Spring active directory b2c related issues. bug This issue requires a change to an existing behavior in the product in order to be resolved. labels Jun 1, 2026
Copilot AI reviewed Jun 1, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates Spring Cloud Azure (autoconfigure) resource-server support so the jwtConnectTimeout / jwtReadTimeout properties are actually applied to the HTTP client used for JWK retrieval, and cleans up related property metadata and tests.

Changes:

  • Apply configured JWT connect/read timeouts to the RestTemplate/RestTemplateBuilder used by AAD and B2C JWT decoding/JWK retrieval.
  • Remove incorrect @Deprecated markers on JWT timeout/size-limit properties and fix the documented default timeout unit.
  • Add unit tests for default/custom timeout property binding.

Reviewed changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated 24 comments.

Show a summary per file
File Description
sdk/spring/spring-cloud-azure-autoconfigure/src/main/java/com/azure/spring/cloud/autoconfigure/implementation/aadb2c/configuration/AadB2cResourceServerAutoConfiguration.java Applies B2C timeout properties to the RestTemplateBuilder used for JWK retrieval.
sdk/spring/spring-cloud-azure-autoconfigure/src/main/java/com/azure/spring/cloud/autoconfigure/implementation/aad/configuration/AadResourceServerConfiguration.java Applies AAD timeout properties to the RestTemplate passed into NimbusJwtDecoder.
sdk/spring/spring-cloud-azure-autoconfigure/src/main/java/com/azure/spring/cloud/autoconfigure/implementation/aadb2c/configuration/properties/AadB2cProperties.java Removes deprecations and updates Javadoc defaults for JWT timeout/size-limit properties.
sdk/spring/spring-cloud-azure-autoconfigure/src/main/java/com/azure/spring/cloud/autoconfigure/implementation/aad/configuration/properties/AadAuthenticationProperties.java Removes deprecations and updates Javadoc defaults for JWT timeout/size-limit properties.
sdk/spring/spring-cloud-azure-autoconfigure/src/test/java/com/azure/spring/cloud/autoconfigure/implementation/aadb2c/configuration/AadB2cResourceServerAutoConfigurationTests.java Adds tests for default/custom B2C timeout property values.
sdk/spring/spring-cloud-azure-autoconfigure/src/test/java/com/azure/spring/cloud/autoconfigure/implementation/aad/configuration/AadResourceServerConfigurationTests.java Adds tests for default/custom AAD timeout property values.

Comment thread ...d/autoconfigure/implementation/aad/configuration/properties/AadAuthenticationProperties.java
Comment thread ...d/autoconfigure/implementation/aad/configuration/properties/AadAuthenticationProperties.java
Comment thread ...d/autoconfigure/implementation/aad/configuration/properties/AadAuthenticationProperties.java Outdated
Comment thread ...ing/cloud/autoconfigure/implementation/aadb2c/configuration/properties/AadB2cProperties.java
Comment thread ...ing/cloud/autoconfigure/implementation/aadb2c/configuration/properties/AadB2cProperties.java
Comment thread ...ing/cloud/autoconfigure/implementation/aadb2c/configuration/properties/AadB2cProperties.java
Comment thread ...ing/cloud/autoconfigure/implementation/aadb2c/configuration/properties/AadB2cProperties.java
Comment thread ...ing/cloud/autoconfigure/implementation/aadb2c/configuration/properties/AadB2cProperties.java Outdated
Comment thread ...onfigure/implementation/aadb2c/configuration/AadB2cResourceServerAutoConfigurationTests.java
Comment thread ...loud/autoconfigure/implementation/aad/configuration/AadResourceServerConfigurationTests.java
@rujche rujche requested a review from Copilot June 1, 2026 07:06
Copilot AI reviewed Jun 1, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 7 out of 7 changed files in this pull request and generated 2 comments.

Comment thread ...loud/autoconfigure/implementation/aad/configuration/AadResourceServerConfigurationTests.java Outdated
Comment thread ...onfigure/implementation/aadb2c/configuration/AadB2cResourceServerAutoConfigurationTests.java Outdated
@rujche rujche requested a review from Copilot June 1, 2026 07:19
Copilot AI reviewed Jun 1, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 7 out of 7 changed files in this pull request and generated no new comments.

@rujche rujche requested a review from Copilot June 1, 2026 07:33
Copilot AI reviewed Jun 1, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 7 out of 7 changed files in this pull request and generated no new comments.

@rujche
Copy link
Copy Markdown
Member Author

rujche commented Jun 1, 2026

/azp run java - spring - tests

@azure-pipelines
Copy link
Copy Markdown

azure-pipelines Bot commented Jun 1, 2026

Azure Pipelines successfully started running 1 pipeline(s).

@abjugard
Copy link
Copy Markdown

abjugard commented Jun 1, 2026

What's a rough timeframe for this to make it to a release of com.azure.spring spring-cloud-azure-dependencies?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@moarychan moarychan Awaiting requested review from moarychan moarychan is a code owner

@Netyyyy Netyyyy Awaiting requested review from Netyyyy Netyyyy is a code owner

@saragluna saragluna Awaiting requested review from saragluna saragluna is a code owner

+1 more reviewer

@bigdaddykane18 bigdaddykane18 bigdaddykane18 approved these changes

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

@rujche rujche

Labels

azure-spring All azure-spring related issues azure-spring-aad Spring active directory related issues. azure-spring-aad-b2c Spring active directory b2c related issues. bug This issue requires a change to an existing behavior in the product in order to be resolved.

Projects

Spring Cloud Azure
Status: In Progress

Milestone

2026-06

Development

Successfully merging this pull request may close these issues.

4 participants

@rujche @abjugard @bigdaddykane18