Expose public API dependencies as api scope and update versions

[jimmyjames]

Changes

Makes the following dependencies available to use through transitive dependencies, which are used by the public API of this library:

• com.auth0:java-jwt
• com.auth0:jwks-rsa
• org.springframework.security:spring-security-core
• org.springframework.security:spring-security-web
• org.springframework.security:spring-security-config

Also makes the following changes:

• Updates the dependency versions to the latest minor/patch releases available.
• Clarifies the targeted Spring versions for this library

Fixes #44 and #43

References

Gradle dependency scopes

Testing

• This change adds unit test coverage
• This change adds integration test coverage
• This change has been tested on the latest version of the platform/language or why not

Checklist

• I have read the Auth0 general contribution guidelines
• I have read the Auth0 Code of Conduct
• All existing and new tests complete without errors

[Jazzepi]

Looks good to me! Thanks for adding the note about spring boot 2 ;P

[jimmyjames]

Thanks for your engagement @Jazzepi! Will get this released this week and follow-up here when it's available 👍

[Jazzepi]

@jimmyjames I don't know what your company structure is like, but you may want to look at any project that's based off of gradle. My impression is that someone went through that committed changes to move from the old gradle dependency keywords to the new ones (api/implementation/compileOnly, etc) and mapped a few to api they shouldn't have. Probably while upgrading gradle.

Another project that has the new gradle keywords. https://github.com/auth0/auth0-java/blob/master/build.gradle But these look like it's probably okay that all of them are implementation, but I don't know what other gradle based libraries you guys have.

[maxkramer]

@jimmyjames when can we expect a new release to be cut?