diff --git a/CHANGELOG.md b/CHANGELOG.md
index a01899630..502c45e84 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,6 +1,25 @@
# Change Log
All notable changes to this project will be documented in this file.
+## 2.14.2
+- [java-security]
+ - Fixes NPE when accessing `XsuaaToken.getPrincipal()` and `grantType` is null (#1261)
+- [token-client]
+ - fixes JWKs fetch from identity service issue when `app_tid` is not present in the token - the `X-app_tid` and `X-client_id` headers are only added when both values are available.
+ - `DefaultOAuth2TokenService`
+ - fixes issue when in case of unsuccessful token fetch `OAuth2ServiceException.withHeaders()` headers field were filled with only one entry containing all headers as a string
+ - `DefaultOAuth2TokenKeyService` and `SpringOAuth2TokenKeyService`
+ - improved error handling
+ - `OAuth2ServiceException` that's thrown status code != 200 case doesn't get swallowed
+ - fixes `OAuth2ServiceException.withHeaders()` semantically incorrect behavior when headers were filled with request headers instead of response headers
+ - `OAuth2ServiceException` generated by unsuccessful JWKs fetch contains request headers as well
+ - `OAuth2ServiceException` updated header message - contains now `Response Headers` instead of `Headers`
+
+#### Dependency upgrades
+- Bump spring.security.version from 5.8.5 to 5.8.6
+- Bump spring.boot.version from 2.7.14 to 2.7.15
+- Bump reactor-core from 3.4.31 to 3.4.32
+
## 2.14.1
- [token-client]
- `OAuth2ServiceException` has been extended with getter method `getHeaders()` that gives the access to failed request's response headers
diff --git a/api/README.md b/api/README.md
index 42f6e7f0a..04918a3f0 100644
--- a/api/README.md
+++ b/api/README.md
@@ -5,6 +5,6 @@
com.sap.cloud.security.xsuaa
api
- 2.14.1
+ 2.14.2
```
diff --git a/api/pom.xml b/api/pom.xml
index c005c3cbb..03a58f5aa 100644
--- a/api/pom.xml
+++ b/api/pom.xml
@@ -11,7 +11,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
jar
diff --git a/bom/pom.xml b/bom/pom.xml
index fa0dd5a01..df3fdb28c 100644
--- a/bom/pom.xml
+++ b/bom/pom.xml
@@ -8,7 +8,7 @@
com.sap.cloud.security
java-bom
- 2.14.1
+ 2.14.2
pom
java-bom
diff --git a/env/pom.xml b/env/pom.xml
index fb03c267c..943a42a87 100644
--- a/env/pom.xml
+++ b/env/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
com.sap.cloud.security
diff --git a/java-api/README.md b/java-api/README.md
index 62b0be620..cb0401f7b 100644
--- a/java-api/README.md
+++ b/java-api/README.md
@@ -5,6 +5,6 @@
com.sap.cloud.security
java-api
- 2.14.1
+ 2.14.2
```
diff --git a/java-api/pom.xml b/java-api/pom.xml
index 8713410c4..63348ed00 100644
--- a/java-api/pom.xml
+++ b/java-api/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
com.sap.cloud.security
diff --git a/java-security-it/pom.xml b/java-security-it/pom.xml
index 8c3c583e9..d675cb44d 100644
--- a/java-security-it/pom.xml
+++ b/java-security-it/pom.xml
@@ -9,7 +9,7 @@
parent
com.sap.cloud.security.xsuaa
- 2.14.1
+ 2.14.2
java-security-it
diff --git a/java-security-test/README.md b/java-security-test/README.md
index a1994e85a..de4c1e2b1 100644
--- a/java-security-test/README.md
+++ b/java-security-test/README.md
@@ -22,7 +22,7 @@ It includes for example a `JwtGenerator` that generates JSON Web Tokens (JWT) th
com.sap.cloud.security
java-security-test
- 2.14.1
+ 2.14.2
test
```
diff --git a/java-security-test/pom.xml b/java-security-test/pom.xml
index dfa5f430c..4379342bc 100644
--- a/java-security-test/pom.xml
+++ b/java-security-test/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
com.sap.cloud.security
diff --git a/java-security/Migration_SpringSecurityProjects.md b/java-security/Migration_SpringSecurityProjects.md
index e773bd5fe..77e28070b 100644
--- a/java-security/Migration_SpringSecurityProjects.md
+++ b/java-security/Migration_SpringSecurityProjects.md
@@ -37,19 +37,19 @@ First make sure you have the following dependencies defined in your pom.xml:
com.sap.cloud.security.xsuaa
api
- 2.14.1
+ 2.14.2
com.sap.cloud.security
java-security
- 2.14.1
+ 2.14.2
com.sap.cloud.security
java-security-test
- 2.14.1
+ 2.14.2
test
```
diff --git a/java-security/README.md b/java-security/README.md
index 7e81f7464..d40623657 100644
--- a/java-security/README.md
+++ b/java-security/README.md
@@ -47,7 +47,7 @@ In case of XSUAA does the JWT provide a valid `jku` token header parameter that
com.sap.cloud.security
java-security
- 2.14.1
+ 2.14.2
org.apache.httpcomponents
diff --git a/java-security/pom.xml b/java-security/pom.xml
index 8a4e2c607..aea975152 100644
--- a/java-security/pom.xml
+++ b/java-security/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
com.sap.cloud.security
diff --git a/pom.xml b/pom.xml
index 9e4d14a8d..0366b87be 100644
--- a/pom.xml
+++ b/pom.xml
@@ -7,7 +7,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
pom
parent
diff --git a/samples/java-security-usage-ias/pom.xml b/samples/java-security-usage-ias/pom.xml
index 507d18155..e1639d7c5 100755
--- a/samples/java-security-usage-ias/pom.xml
+++ b/samples/java-security-usage-ias/pom.xml
@@ -6,7 +6,7 @@
4.0.0
com.sap.cloud.security.xssec.samples
java-security-usage-ias
- 2.14.1
+ 2.14.2
war
org.springframework.boot
diff --git a/spring-xsuaa-mock/pom.xml b/spring-xsuaa-mock/pom.xml
index 4aa7895e4..ac37cad18 100644
--- a/spring-xsuaa-mock/pom.xml
+++ b/spring-xsuaa-mock/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
spring-xsuaa-mock
diff --git a/spring-xsuaa-starter/pom.xml b/spring-xsuaa-starter/pom.xml
index 95f54d326..656ae0e6f 100644
--- a/spring-xsuaa-starter/pom.xml
+++ b/spring-xsuaa-starter/pom.xml
@@ -16,7 +16,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
xsuaa-spring-boot-starter
diff --git a/spring-xsuaa-test/README.md b/spring-xsuaa-test/README.md
index 65ae2c1df..cf080a443 100644
--- a/spring-xsuaa-test/README.md
+++ b/spring-xsuaa-test/README.md
@@ -31,7 +31,7 @@ This includes for example a `JwtGenerator` that generates JSON Web Tokens (JWT)
com.sap.cloud.security.xsuaa
spring-xsuaa-test
- 2.14.1
+ 2.14.2
test
diff --git a/spring-xsuaa-test/pom.xml b/spring-xsuaa-test/pom.xml
index fc89ac2cd..b44f9a68c 100644
--- a/spring-xsuaa-test/pom.xml
+++ b/spring-xsuaa-test/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
spring-xsuaa-test
diff --git a/spring-xsuaa/README.md b/spring-xsuaa/README.md
index 44bec0b44..6fff8beab 100644
--- a/spring-xsuaa/README.md
+++ b/spring-xsuaa/README.md
@@ -41,7 +41,7 @@ These (spring) dependencies needs to be provided:
com.sap.cloud.security.xsuaa
spring-xsuaa
- 2.14.1
+ 2.14.2
org.apache.logging.log4j
@@ -55,7 +55,7 @@ These (spring) dependencies needs to be provided:
com.sap.cloud.security.xsuaa
xsuaa-spring-boot-starter
- 2.14.1
+ 2.14.2
```
diff --git a/spring-xsuaa/pom.xml b/spring-xsuaa/pom.xml
index 49fe941b4..46f06861a 100644
--- a/spring-xsuaa/pom.xml
+++ b/spring-xsuaa/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
spring-xsuaa
diff --git a/token-client/README.md b/token-client/README.md
index 279507ff9..ec4f919cc 100644
--- a/token-client/README.md
+++ b/token-client/README.md
@@ -23,7 +23,7 @@ The Resource owner password credentials (i.e., username and password) can be use
com.sap.cloud.security.xsuaa
token-client
- 2.14.1
+ 2.14.2
org.apache.httpcomponents
@@ -80,7 +80,7 @@ tokenService.clearCache();
com.sap.cloud.security.xsuaa
token-client
- 2.14.1
+ 2.14.2
org.springframework
@@ -130,7 +130,7 @@ In context of a Spring Boot application you may like to leverage autoconfigurati
com.sap.cloud.security.xsuaa
xsuaa-spring-boot-starter
- 2.14.1
+ 2.14.2
org.apache.httpcomponents
diff --git a/token-client/pom.xml b/token-client/pom.xml
index b4b7e7159..9f870177a 100644
--- a/token-client/pom.xml
+++ b/token-client/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 2.14.1
+ 2.14.2
token-client