spring-security/docs/modules/ROOT/pages/whats-new.adoc

[[new]]
= What's New in Spring Security 5.8

Spring Security 5.8 provides a number of new features.
Below are the highlights of the release.

* https://github.com/spring-projects/spring-security/pull/11638[gh-11638] - Refresh remote JWK when unknown KID error occurs
* https://github.com/spring-projects/spring-security/pull/11782[gh-11782] - @WithMockUser Supported as Merged Annotation
* https://github.com/spring-projects/spring-security/issues/11661[gh-11661] - Configurable authentication converter for resource-servers with token introspection
* https://github.com/spring-projects/spring-security/pull/11771[gh-11771] - `HttpSecurityDsl` should support `apply` method
* https://github.com/spring-projects/spring-security/pull/11232[gh-11232] - `ClientRegistrations#rest` defines 30s connect and read timeouts
* https://github.com/spring-projects/spring-security/pull/11464[gh-11464] - Remember Me supports SHA256 algorithm
* https://github.com/spring-projects/spring-security/pull/11908[gh-11908] - Make X-Xss-Protection header value configurable in ServerHttpSecurity
* https://github.com/spring-projects/spring-security/issues/11347[gh-11347] - Simplify Java Configuration `RequestMatcher` Usage
* https://github.com/spring-projects/spring-security/issues/9159[gh-9159] - Add `securityMatcher` as an alias on `requestMatcher` in `HttpSecurity`
Extract subsections for preface Issue: gh-2567 2018-03-05 17:56:47 -05:00			`[[new]]`
Prepare for Spring Security 5.8 2022-05-02 18:13:07 -04:00			`= What's New in Spring Security 5.8`
Extract subsections for preface Issue: gh-2567 2018-03-05 17:56:47 -05:00
Prepare for Spring Security 5.8 2022-05-02 18:13:07 -04:00			`Spring Security 5.8 provides a number of new features.`
Extract subsections for preface Issue: gh-2567 2018-03-05 17:56:47 -05:00			`Below are the highlights of the release.`
Add SecurityContextHolderFilter Closes gh-9635 2022-02-18 16:14:34 -05:00
Update What's New for 5.8 2022-09-14 15:58:48 -04:00			`* https://github.com/spring-projects/spring-security/pull/11638[gh-11638] - Refresh remote JWK when unknown KID error occurs`
Add What's New @WithMockUser Supported as Merged Annotation 2022-09-08 10:48:52 -04:00			`* https://github.com/spring-projects/spring-security/pull/11782[gh-11782] - @WithMockUser Supported as Merged Annotation`
Update What's New for 5.8 2022-09-14 15:58:48 -04:00			`* https://github.com/spring-projects/spring-security/issues/11661[gh-11661] - Configurable authentication converter for resource-servers with token introspection`
			* https://github.com/spring-projects/spring-security/pull/11771[gh-11771] - `HttpSecurityDsl` should support `apply` method
Update What's New for 5.8 2022-09-14 16:13:41 -04:00			* https://github.com/spring-projects/spring-security/pull/11232[gh-11232] - `ClientRegistrations#rest` defines 30s connect and read timeouts
Update What's New for 5.8 2022-09-20 07:33:38 -04:00			`* https://github.com/spring-projects/spring-security/pull/11464[gh-11464] - Remember Me supports SHA256 algorithm`
Update What's New for 5.8 2022-10-03 05:13:19 -04:00			`* https://github.com/spring-projects/spring-security/pull/11908[gh-11908] - Make X-Xss-Protection header value configurable in ServerHttpSecurity`
Simplify Java Configuration RequestMatcher Usage If Spring MVC is present in the classpath, use MvcRequestMatcher by default. This commit also adds a new securityMatcher method in HttpSecurity Closes gh-11347 Closes gh-9159 2022-09-21 09:09:35 -04:00			* https://github.com/spring-projects/spring-security/issues/11347[gh-11347] - Simplify Java Configuration `RequestMatcher` Usage
			* https://github.com/spring-projects/spring-security/issues/9159[gh-9159] - Add `securityMatcher` as an alias on `requestMatcher` in `HttpSecurity`