Merge branch '3.5.x'

snicoll · snicoll · commit fad9a6e23eec · 2025-10-20T13:56:38.000+02:00
diff --git a/smoke-test/spring-boot-smoke-test-oauth2-authorization-server/src/test/java/smoketest/oauth2/server/SampleOAuth2AuthorizationServerApplicationTests.java b/smoke-test/spring-boot-smoke-test-oauth2-authorization-server/src/test/java/smoketest/oauth2/server/SampleOAuth2AuthorizationServerApplicationTests.java
@@ -72,10 +72,10 @@ void openidConfigurationShouldAllowAccess() {
 		assertThat(config.getTokenRevocationEndpoint()).hasToString("https://provider.com/revoke");
 		assertThat(config.getEndSessionEndpoint()).hasToString("https://provider.com/logout");
 		assertThat(config.getTokenIntrospectionEndpoint()).hasToString("https://provider.com/introspect");
-		assertThat(config.getPushedAuthorizationRequestEndpoint()).hasToString("https://provider.com/par");
 		assertThat(config.getUserInfoEndpoint()).hasToString("https://provider.com/user");
-		// OIDC Client Registration is disabled by default
+		// PAR endpoint and OIDC Client Registration are disabled by default
 		assertThat(config.getClientRegistrationEndpoint()).isNull();
+		assertThat(config.getPushedAuthorizationRequestEndpoint()).isNull();
 	}
 
 	@Test
@@ -91,9 +91,9 @@ void authServerMetadataShouldAllowAccess() {
 		assertThat(config.getJwkSetUrl()).hasToString("https://provider.com/jwks");
 		assertThat(config.getTokenRevocationEndpoint()).hasToString("https://provider.com/revoke");
 		assertThat(config.getTokenIntrospectionEndpoint()).hasToString("https://provider.com/introspect");
-		assertThat(config.getPushedAuthorizationRequestEndpoint()).hasToString("https://provider.com/par");
-		// OIDC Client Registration is disabled by default
+		// PAR endpoint and OIDC Client Registration are disabled by default
 		assertThat(config.getClientRegistrationEndpoint()).isNull();
+		assertThat(config.getPushedAuthorizationRequestEndpoint()).isNull();
 	}
 
 	@Test
