apache · digithuman · Jan 2, 2023 · Jan 2, 2023
diff --git a/demos/client-demo/pom.xml b/demos/client-demo/pom.xml
@@ -34,7 +34,7 @@
     <oltu.oauth2.jwt.version>1.0.4-SNAPSHOT</oltu.oauth2.jwt.version>
     <oltu.oidc.version>0.0.1-SNAPSHOT</oltu.oidc.version>
     <org.springframework.version>3.2.18.RELEASE</org.springframework.version>
-    <servlet-api.version>2.5</servlet-api.version>
+    <servlet-api.version>6.0.0</servlet-api.version>
     <slf4j.version>1.7.25</slf4j.version>
   </properties>
 
@@ -125,19 +125,19 @@
     </dependency>
 
     <!-- URL Rewrite -->
-    <!--  URL Rewrite -->
     <dependency>
       <groupId>org.tuckey</groupId>
       <artifactId>urlrewritefilter</artifactId>
       <version>3.1.0</version>
       <scope>runtime</scope>
     </dependency>
 
+    <!-- Jakarta Servlet 6.0  -->
     <dependency>
-      <groupId>javax.servlet</groupId>
-      <artifactId>servlet-api</artifactId>
-      <version>${servlet-api.version}</version>
-      <scope>provided</scope>
+        <groupId>jakarta.servlet</groupId>
+        <artifactId>jakarta.servlet-api</artifactId>
+         <version>${servlet-api.version}</version>
+        <scope>provided</scope>
     </dependency>
 
     <!--

diff --git a/demos/client-demo/src/main/java/org/apache/oltu/oauth2/client/demo/Utils.java b/demos/client-demo/src/main/java/org/apache/oltu/oauth2/client/demo/Utils.java
@@ -21,17 +21,17 @@
 
 package org.apache.oltu.oauth2.client.demo;
 
+import jakarta.servlet.ServletContext;
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+
 import org.apache.oltu.oauth2.client.demo.exception.ApplicationException;
 import org.apache.oltu.oauth2.client.demo.model.OAuthParams;
 import org.apache.oltu.oauth2.client.demo.model.OAuthRegParams;
 import org.apache.oltu.oauth2.common.OAuthProviderType;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
-import javax.servlet.ServletContext;
-import javax.servlet.http.Cookie;
-import javax.servlet.http.HttpServletRequest;
-
 @Component
 public final class Utils {
 

diff --git a/...ent-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/AuthzController.java b/...ent-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/AuthzController.java
@@ -20,6 +20,12 @@
  */
 package org.apache.oltu.oauth2.client.demo.controller;
 
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+
+import java.io.IOException;
+
 import org.apache.oltu.oauth2.client.demo.Utils;
 import org.apache.oltu.oauth2.client.demo.exception.ApplicationException;
 import org.apache.oltu.oauth2.client.demo.model.OAuthParams;
@@ -35,11 +41,6 @@
 import org.springframework.web.servlet.ModelAndView;
 import org.springframework.web.servlet.view.RedirectView;
 
-import javax.servlet.http.Cookie;
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.io.IOException;
-
 /**
  * Handles requests for the application welcome page.
  */

diff --git a/...-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/RedirectController.java b/...-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/RedirectController.java
@@ -21,6 +21,10 @@
 
 package org.apache.oltu.oauth2.client.demo.controller;
 
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+
 import org.apache.oltu.oauth2.client.demo.Utils;
 import org.apache.oltu.oauth2.client.demo.model.OAuthParams;
 import org.apache.oltu.oauth2.client.response.OAuthAuthzResponse;
@@ -33,10 +37,6 @@
 import org.springframework.web.bind.annotation.RequestMethod;
 import org.springframework.web.servlet.ModelAndView;
 
-import javax.servlet.http.Cookie;
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
 @Controller
 public class RedirectController {
     private Logger logger = LoggerFactory.getLogger(RedirectController.class);

diff --git a/...o/src/main/java/org/apache/oltu/oauth2/client/demo/controller/RegistrationController.java b/...o/src/main/java/org/apache/oltu/oauth2/client/demo/controller/RegistrationController.java
@@ -21,6 +21,10 @@
 
 package org.apache.oltu.oauth2.client.demo.controller;
 
+import jakarta.servlet.http.HttpServletRequest;
+
+import java.io.IOException;
+
 import org.apache.oltu.oauth2.client.URLConnectionClient;
 import org.apache.oltu.oauth2.client.demo.Utils;
 import org.apache.oltu.oauth2.client.demo.exception.ApplicationException;
@@ -41,9 +45,6 @@
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.servlet.ModelAndView;
 
-import javax.servlet.http.HttpServletRequest;
-import java.io.IOException;
-
 @Controller
 public class RegistrationController {
 

diff --git a/...-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/ResourceController.java b/...-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/ResourceController.java
@@ -21,6 +21,8 @@
 
 package org.apache.oltu.oauth2.client.demo.controller;
 
+import jakarta.servlet.http.HttpServletRequest;
+
 import org.apache.oltu.oauth2.client.OAuthClient;
 import org.apache.oltu.oauth2.client.URLConnectionClient;
 import org.apache.oltu.oauth2.client.demo.Utils;
@@ -37,8 +39,6 @@
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.servlet.ModelAndView;
 
-import javax.servlet.http.HttpServletRequest;
-
 @Controller
 public class ResourceController {
 

diff --git a/...ent-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/TokenController.java b/...ent-demo/src/main/java/org/apache/oltu/oauth2/client/demo/controller/TokenController.java
@@ -21,6 +21,11 @@
 
 package org.apache.oltu.oauth2.client.demo.controller;
 
+import jakarta.servlet.http.HttpServletRequest;
+
+import java.io.IOException;
+import java.net.URI;
+
 import org.apache.oltu.oauth2.client.OAuthClient;
 import org.apache.oltu.oauth2.client.URLConnectionClient;
 import org.apache.oltu.oauth2.client.demo.Utils;
@@ -45,10 +50,6 @@
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.servlet.ModelAndView;
 
-import javax.servlet.http.HttpServletRequest;
-import java.io.IOException;
-import java.net.URI;
-
 @Controller
 public class TokenController {
     private Logger logger = LoggerFactory.getLogger(TokenController.class);

diff --git a/...uthzserver/src/main/java/org/apache/oltu/oauth2/as/request/AbstractOAuthTokenRequest.java b/...uthzserver/src/main/java/org/apache/oltu/oauth2/as/request/AbstractOAuthTokenRequest.java
@@ -17,7 +17,7 @@
 
 package org.apache.oltu.oauth2.as.request;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.exception.OAuthProblemException;

diff --git a/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthAuthzRequest.java b/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthAuthzRequest.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.request;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.as.validator.CodeValidator;
 import org.apache.oltu.oauth2.as.validator.TokenValidator;

diff --git a/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthRequest.java b/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthRequest.java
@@ -21,12 +21,12 @@
 
 package org.apache.oltu.oauth2.as.request;
 
+import jakarta.servlet.http.HttpServletRequest;
+
 import java.util.HashMap;
 import java.util.Map;
 import java.util.Set;
 
-import javax.servlet.http.HttpServletRequest;
-
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.exception.OAuthProblemException;
 import org.apache.oltu.oauth2.common.exception.OAuthSystemException;

diff --git a/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthTokenRequest.java b/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthTokenRequest.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.request;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.as.validator.AuthorizationCodeValidator;
 import org.apache.oltu.oauth2.as.validator.ClientCredentialValidator;

diff --git a/...ver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthUnauthenticatedTokenRequest.java b/...ver/src/main/java/org/apache/oltu/oauth2/as/request/OAuthUnauthenticatedTokenRequest.java
@@ -17,17 +17,14 @@
 
 package org.apache.oltu.oauth2.as.request;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
-import org.apache.oltu.oauth2.as.validator.PasswordValidator;
 import org.apache.oltu.oauth2.as.validator.UnauthenticatedAuthorizationCodeValidator;
 import org.apache.oltu.oauth2.as.validator.UnauthenticatedPasswordValidator;
 import org.apache.oltu.oauth2.as.validator.UnauthenticatedRefreshTokenValidator;
-import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.exception.OAuthProblemException;
 import org.apache.oltu.oauth2.common.exception.OAuthSystemException;
 import org.apache.oltu.oauth2.common.message.types.GrantType;
-import org.apache.oltu.oauth2.common.utils.OAuthUtils;
 import org.apache.oltu.oauth2.common.validators.OAuthValidator;
 
 /**

diff --git a/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/response/OAuthASResponse.java b/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/response/OAuthASResponse.java
@@ -22,7 +22,7 @@
 package org.apache.oltu.oauth2.as.response;
 
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.message.OAuthResponse;

diff --git a/...zserver/src/main/java/org/apache/oltu/oauth2/as/validator/AuthorizationCodeValidator.java b/...zserver/src/main/java/org/apache/oltu/oauth2/as/validator/AuthorizationCodeValidator.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.validators.AbstractValidator;

diff --git a/...hzserver/src/main/java/org/apache/oltu/oauth2/as/validator/ClientCredentialValidator.java b/...hzserver/src/main/java/org/apache/oltu/oauth2/as/validator/ClientCredentialValidator.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.validators.AbstractValidator;

diff --git a/...2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/CodeTokenValidator.java b/...2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/CodeTokenValidator.java
@@ -22,7 +22,7 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.error.OAuthError;

diff --git a/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/CodeValidator.java b/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/CodeValidator.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.error.OAuthError;

diff --git a/...-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/PasswordValidator.java b/...-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/PasswordValidator.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.validators.AbstractValidator;

diff --git a/.../authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/RefreshTokenValidator.java b/.../authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/RefreshTokenValidator.java
@@ -22,7 +22,7 @@
 package org.apache.oltu.oauth2.as.validator;
 
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.validators.AbstractValidator;

diff --git a/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/TokenValidator.java b/oauth-2.0/authzserver/src/main/java/org/apache/oltu/oauth2/as/validator/TokenValidator.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.error.OAuthError;

diff --git a/...n/java/org/apache/oltu/oauth2/as/validator/UnauthenticatedAuthorizationCodeValidator.java b/...n/java/org/apache/oltu/oauth2/as/validator/UnauthenticatedAuthorizationCodeValidator.java
@@ -17,11 +17,11 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
+import jakarta.servlet.http.HttpServletRequest;
+
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.validators.AbstractValidator;
 
-import javax.servlet.http.HttpServletRequest;
-
 /**
  * Validator that checks for the required fields for an OAuth Token request with the Authorization Code grant type.
  * This validator does NOT enforce client authentication.

diff --git a/...r/src/main/java/org/apache/oltu/oauth2/as/validator/UnauthenticatedPasswordValidator.java b/...r/src/main/java/org/apache/oltu/oauth2/as/validator/UnauthenticatedPasswordValidator.java
@@ -21,7 +21,7 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
-import javax.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletRequest;
 
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.validators.AbstractValidator;

diff --git a/...c/main/java/org/apache/oltu/oauth2/as/validator/UnauthenticatedRefreshTokenValidator.java b/...c/main/java/org/apache/oltu/oauth2/as/validator/UnauthenticatedRefreshTokenValidator.java
@@ -17,11 +17,11 @@
 
 package org.apache.oltu.oauth2.as.validator;
 
+import jakarta.servlet.http.HttpServletRequest;
+
 import org.apache.oltu.oauth2.common.OAuth;
 import org.apache.oltu.oauth2.common.validators.AbstractValidator;
 
-import javax.servlet.http.HttpServletRequest;
-
 /**
  * Validator that checks for the required fields in an OAuth Token request with the Refresh token grant type.
  * This validator does NOT enforce client authentication.

diff --git a/oauth-2.0/authzserver/src/test/java/org/apache/oltu/oauth2/as/MD5GeneratorTest.java b/oauth-2.0/authzserver/src/test/java/org/apache/oltu/oauth2/as/MD5GeneratorTest.java
@@ -21,13 +21,13 @@
 
 package org.apache.oltu.oauth2.as;
 
+import static org.junit.Assert.assertNotNull;
+
 import org.apache.oltu.oauth2.as.issuer.MD5Generator;
 import org.apache.oltu.oauth2.as.issuer.ValueGenerator;
 import org.apache.oltu.oauth2.common.exception.OAuthSystemException;
 import org.junit.Test;
 
-import static org.junit.Assert.assertNotNull;
-
 public class MD5GeneratorTest {
 
     private final ValueGenerator g = new MD5Generator();

diff --git a/oauth-2.0/authzserver/src/test/java/org/apache/oltu/oauth2/as/OAuthIssuerImplTest.java b/oauth-2.0/authzserver/src/test/java/org/apache/oltu/oauth2/as/OAuthIssuerImplTest.java
@@ -21,13 +21,13 @@
 
 package org.apache.oltu.oauth2.as;
 
+import static org.junit.Assert.assertNotNull;
+
 import org.apache.oltu.oauth2.as.issuer.MD5Generator;
 import org.apache.oltu.oauth2.as.issuer.OAuthIssuer;
 import org.apache.oltu.oauth2.as.issuer.OAuthIssuerImpl;
 import org.junit.Test;
 
-import static org.junit.Assert.assertNotNull;
-
 public class OAuthIssuerImplTest {
     private OAuthIssuer issuer = new OAuthIssuerImpl(new MD5Generator());
 

diff --git a/oauth-2.0/authzserver/src/test/java/org/apache/oltu/oauth2/as/OAuthRequestTest.java b/oauth-2.0/authzserver/src/test/java/org/apache/oltu/oauth2/as/OAuthRequestTest.java
@@ -21,6 +21,16 @@
 
 package org.apache.oltu.oauth2.as;
 
+import static org.easymock.EasyMock.replay;
+import static org.easymock.EasyMock.verify;
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertTrue;
+import static org.junit.Assert.fail;
+
+import jakarta.servlet.http.HttpServletRequest;
+
+import java.util.Set;
+
 import org.apache.commons.codec.binary.Base64;
 import org.apache.oltu.oauth2.as.request.OAuthAuthzRequest;
 import org.apache.oltu.oauth2.as.request.OAuthRequest;
@@ -34,13 +44,6 @@
 import org.apache.oltu.oauth2.common.utils.OAuthUtils;
 import org.junit.Test;
 
-import javax.servlet.http.HttpServletRequest;
-import java.util.Set;
-
-import static org.easymock.EasyMock.replay;
-import static org.easymock.EasyMock.verify;
-import static org.junit.Assert.*;
-
 
 public class OAuthRequestTest {
     public static final String REDIRECT_URI = "http://www.example.com/callback";