IsyFact · dkurowski-materna · Jan 20, 2026 · Jan 19, 2026 · Jan 19, 2026 · Jan 19, 2026
diff --git a/.github/workflows/maven_build.yml b/.github/workflows/maven_build.yml
@@ -12,7 +12,7 @@ on:
       - bugfix/**
     paths:
       - .github/**
-      - src/**
+      - ../../isy-security/src/**
       - pom.xml
   workflow_dispatch:
 

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -10,6 +10,7 @@
 - `IFS-4785`: Hinzufügen einer Property für die Restlebensdauer gecachter OAuth2-Token
 - `IFS-4810`: Ausbau der Validierung des "aud"-Claims erstellter Tokens
 - `IFS-4583`: Wiedereinführung der Quality-Gates
+- `IFS-4579`: Wiederherstellung von isy-security-test
 
 ### BREAKING CHANGE
 - `IFS-4812`: Verwendung sicherer Hashfunktion mit SHA-512 für Caching

diff --git a/isy-security-doc/pom.xml b/isy-security-doc/pom.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0"
+         xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <parent>
+        <groupId>de.bund.bva.isyfact</groupId>
+        <artifactId>isy-security-parent</artifactId>
+        <version>${revision}</version>
+    </parent>
+
+    <artifactId>isy-security-doc</artifactId>
+
+    <name>IsyFact Security Dokumentation</name>
+    <description>Komponente mit der Dokumentation über die Security-Komponente.</description>
+
+    <properties>
+        <maven.compiler.source>25</maven.compiler.source>
+        <maven.compiler.target>25</maven.compiler.target>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+        <maven.build.timestamp.format>dd.MM.yyyy</maven.build.timestamp.format>
+    </properties>
+</project>
diff --git a/docs/LICENSE → isy-security-doc/src/LICENSE b/docs/LICENSE → isy-security-doc/src/LICENSE
diff --git a/docs/antora.yml → isy-security-doc/src/antora.yml b/docs/antora.yml → isy-security-doc/src/antora.yml
diff --git a/...ges/konzept/Client-Credential-Flow.dn.svg → ...ges/konzept/Client-Credential-Flow.dn.svg b/...ges/konzept/Client-Credential-Flow.dn.svg → ...ges/konzept/Client-Credential-Flow.dn.svg
diff --git a/...rce-Owner-Passwort-Credential-Flow.dn.svg → ...rce-Owner-Passwort-Credential-Flow.dn.svg b/...rce-Owner-Passwort-Credential-Flow.dn.svg → ...rce-Owner-Passwort-Credential-Flow.dn.svg
diff --git a/...t/Sequenzdiagramm_AbsicherungBatch.dn.svg → ...t/Sequenzdiagramm_AbsicherungBatch.dn.svg b/...t/Sequenzdiagramm_AbsicherungBatch.dn.svg → ...t/Sequenzdiagramm_AbsicherungBatch.dn.svg
diff --git a/...zdiagramm_AbsicherungBatch_Details.dn.svg → ...zdiagramm_AbsicherungBatch_Details.dn.svg b/...zdiagramm_AbsicherungBatch_Details.dn.svg → ...zdiagramm_AbsicherungBatch_Details.dn.svg
diff --git a/...pt/Sequenzdiagramm_AbsicherungTask.dn.svg → ...pt/Sequenzdiagramm_AbsicherungTask.dn.svg b/...pt/Sequenzdiagramm_AbsicherungTask.dn.svg → ...pt/Sequenzdiagramm_AbsicherungTask.dn.svg
diff --git a/...nzdiagramm_AbsicherungTask_Details.dn.svg → ...nzdiagramm_AbsicherungTask_Details.dn.svg b/...nzdiagramm_AbsicherungTask_Details.dn.svg → ...nzdiagramm_AbsicherungTask_Details.dn.svg
diff --git a/...t/ServiceGateway-Authentifizierung.dn.svg → ...t/ServiceGateway-Authentifizierung.dn.svg b/...t/ServiceGateway-Authentifizierung.dn.svg → ...t/ServiceGateway-Authentifizierung.dn.svg
diff --git a/...pt/ServiceGateway_plus_AuthGateway.dn.svg → ...pt/ServiceGateway_plus_AuthGateway.dn.svg b/...pt/ServiceGateway_plus_AuthGateway.dn.svg → ...pt/ServiceGateway_plus_AuthGateway.dn.svg
diff --git a/...mm_ServiceGateway_ohne_AuthGateway.dn.svg → ...mm_ServiceGateway_ohne_AuthGateway.dn.svg b/...mm_ServiceGateway_ohne_AuthGateway.dn.svg → ...mm_ServiceGateway_ohne_AuthGateway.dn.svg
diff --git a/...mm_ServiceGateway_plus_AuthGateway.dn.svg → ...mm_ServiceGateway_plus_AuthGateway.dn.svg b/...mm_ServiceGateway_plus_AuthGateway.dn.svg → ...mm_ServiceGateway_plus_AuthGateway.dn.svg
diff --git a/...ept/authorization-code-connections.dn.svg → ...ept/authorization-code-connections.dn.svg b/...ept/authorization-code-connections.dn.svg → ...ept/authorization-code-connections.dn.svg
diff --git a/...es/konzept/authorization-code-flow.dn.svg → ...es/konzept/authorization-code-flow.dn.svg b/...es/konzept/authorization-code-flow.dn.svg → ...es/konzept/authorization-code-flow.dn.svg
diff --git a/...ages/konzept/multi_tenancy_isyfact.dn.svg → ...ages/konzept/multi_tenancy_isyfact.dn.svg b/...ages/konzept/multi_tenancy_isyfact.dn.svg → ...ages/konzept/multi_tenancy_isyfact.dn.svg
diff --git a/...OOT/images/konzept/rollen-beziehungen.png → ...OOT/images/konzept/rollen-beziehungen.png b/...OOT/images/konzept/rollen-beziehungen.png → ...OOT/images/konzept/rollen-beziehungen.png
diff --git a/...ROOT/images/konzept/rollen-erstellung.png → ...ROOT/images/konzept/rollen-erstellung.png b/...ROOT/images/konzept/rollen-erstellung.png → ...ROOT/images/konzept/rollen-erstellung.png
diff --git a/...es/konzept/security-schnittstellen.dn.png → ...es/konzept/security-schnittstellen.dn.png b/...es/konzept/security-schnittstellen.dn.png → ...es/konzept/security-schnittstellen.dn.png
diff --git a/...rity_multi-tenancy_with_multi_iams.dn.svg → ...rity_multi-tenancy_with_multi_iams.dn.svg b/...rity_multi-tenancy_with_multi_iams.dn.svg → ...rity_multi-tenancy_with_multi_iams.dn.svg
diff --git a/...are-architektur-berechtigungspruefung.png → ...are-architektur-berechtigungspruefung.png b/...are-architektur-berechtigungspruefung.png → ...are-architektur-berechtigungspruefung.png
diff --git a/...onzept/unterschiedliche-issuerURIs.dn.svg → ...onzept/unterschiedliche-issuerURIs.dn.svg b/...onzept/unterschiedliche-issuerURIs.dn.svg → ...onzept/unterschiedliche-issuerURIs.dn.svg
diff --git a/docs/modules/ROOT/nav.adoc → isy-security-doc/src/modules/ROOT/nav.adoc b/docs/modules/ROOT/nav.adoc → isy-security-doc/src/modules/ROOT/nav.adoc
diff --git a/docs/modules/ROOT/pages/konzept.adoc → ...y-doc/src/modules/ROOT/pages/konzept.adoc b/docs/modules/ROOT/pages/konzept.adoc → ...y-doc/src/modules/ROOT/pages/konzept.adoc
diff --git a/.../modules/ROOT/pages/nutzungsvorgaben.adoc → .../modules/ROOT/pages/nutzungsvorgaben.adoc b/.../modules/ROOT/pages/nutzungsvorgaben.adoc → .../modules/ROOT/pages/nutzungsvorgaben.adoc
diff --git a/...s/ROOT/pages/nutzungsvorgaben/anhang.adoc → ...s/ROOT/pages/nutzungsvorgaben/anhang.adoc b/...s/ROOT/pages/nutzungsvorgaben/anhang.adoc → ...s/ROOT/pages/nutzungsvorgaben/anhang.adoc
diff --git a/docs/modules/ROOT/partials/library.adoc → ...oc/src/modules/ROOT/partials/library.adoc b/docs/modules/ROOT/partials/library.adoc → ...oc/src/modules/ROOT/partials/library.adoc
diff --git a/isy-security-test/CHANGELOG.md b/isy-security-test/CHANGELOG.md
@@ -0,0 +1,2 @@
+# X.X.X
+- keine
diff --git a/isy-security-test/pom.xml b/isy-security-test/pom.xml
@@ -0,0 +1,98 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
+    <modelVersion>4.0.0</modelVersion>
+
+    <parent>
+        <groupId>de.bund.bva.isyfact</groupId>
+        <artifactId>isy-security-parent</artifactId>
+        <version>${revision}</version>
+    </parent>
+
+    <artifactId>isy-security-test</artifactId>
+    <packaging>jar</packaging>
+
+    <name>IsyFact Security Test</name>
+    <description>Stellt Utility-Klassen für das Testen von Authentifizierung und Autorisierung bereit.</description>
+
+    <properties>
+        <maven.compiler.source>25</maven.compiler.source>
+        <maven.compiler.target>25</maven.compiler.target>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+    </properties>
+
+    <dependencyManagement>
+        <dependencies>
+            <dependency>
+                <groupId>de.bund.bva.isyfact</groupId>
+                <artifactId>isyfact-products-bom</artifactId>
+                <version>${project.parent.version}</version>
+                <type>pom</type>
+                <scope>import</scope>
+            </dependency>
+            <dependency>
+                <groupId>de.bund.bva.isyfact</groupId>
+                <artifactId>isyfact-standards-bom</artifactId>
+                <version>${project.parent.version}</version>
+                <type>pom</type>
+                <scope>import</scope>
+            </dependency>
+        </dependencies>
+    </dependencyManagement>
+    <dependencies>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-oauth2-jose</artifactId>
+            <exclusions>
+                <exclusion>
+                    <groupId>org.springframework</groupId>
+                    <artifactId>spring-context</artifactId>
+                </exclusion>
+                <exclusion>
+                    <groupId>org.springframework</groupId>
+                    <artifactId>spring-boot</artifactId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-oauth2-client</artifactId>
+            <exclusions>
+                <exclusion>
+                    <groupId>org.springframework</groupId>
+                    <artifactId>spring-context</artifactId>
+                </exclusion>
+            </exclusions>
+        </dependency>
+        <dependency>
+            <groupId>org.junit.jupiter</groupId>
+            <artifactId>junit-jupiter-api</artifactId>
+            <scope>compile</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.assertj</groupId>
+            <artifactId>assertj-core</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>org.wiremock</groupId>
+            <artifactId>wiremock-standalone</artifactId>
+            <version>${wiremock.version}</version>
+            <scope>compile</scope>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.core</groupId>
+            <artifactId>jackson-core</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.core</groupId>
+            <artifactId>jackson-databind</artifactId>
+            <scope>test</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.projectreactor.netty</groupId>
+            <artifactId>reactor-netty</artifactId>
+            <scope>test</scope>
+        </dependency>
+    </dependencies>
+</project>
diff --git a/...syfact/security/test/RsaKeyGenerator.java → ...syfact/security/test/RsaKeyGenerator.java b/...syfact/security/test/RsaKeyGenerator.java → ...syfact/security/test/RsaKeyGenerator.java
diff --git a/...idcprovider/EmbeddedOidcProviderMock.java → ...idcprovider/EmbeddedOidcProviderMock.java b/...idcprovider/EmbeddedOidcProviderMock.java → ...idcprovider/EmbeddedOidcProviderMock.java
diff --git a/...idcprovider/EmbeddedOidcProviderStub.java → ...idcprovider/EmbeddedOidcProviderStub.java b/...idcprovider/EmbeddedOidcProviderStub.java → ...idcprovider/EmbeddedOidcProviderStub.java
diff --git a/...st/oidcprovider/OidcProviderMockBase.java → ...st/oidcprovider/OidcProviderMockBase.java b/...st/oidcprovider/OidcProviderMockBase.java → ...st/oidcprovider/OidcProviderMockBase.java
@@ -156,6 +156,7 @@ private StubMapping setupJwksEndpoint() {
     /**
      * Set up error responses when no stub for the token endpoint (user or client) were found or the request contains invalid data.
      */
+    @SuppressWarnings("java:S2068")
     private Set<StubMapping> setupDefaultTokenEndpoints() {
         Set<StubMapping> stubMappings = new HashSet<>();
 

diff --git a/.../oidcprovider/RemoteOidcProviderMock.java → .../oidcprovider/RemoteOidcProviderMock.java b/.../oidcprovider/RemoteOidcProviderMock.java → .../oidcprovider/RemoteOidcProviderMock.java