Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-07 12:42:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,562 Commits 51 Branches 345 Tags
Commit Graph

1097 Commits

Author SHA1 Message Date
Josh Cummings
fbfb28456a
Merge branch '6.3.x' into 6.4.x 2025-05-21 14:43:44 -06:00
Gurunathan
a4cd6f4278
Advise Overriding equals() and hashCode() in UserDetails Implementations 
This commit adds a documentation note explaining the importance of
overriding equals() and hashCode() in custom UserDetails implementations.

The default SessionRegistryImpl in Spring Security uses an in-memory
ConcurrentMap<Object, Set<String>>, Map<String,SessionInformation> to
associate principals with sessions. If a custom UserDetails class does
not properly override equals() and hashCode(), user sessions may not
be tracked or matched correctly.

I believe this helps developers avoid subtle session management issues
when implementing custom authentication logic.

Signed-off-by: Gurunathan <129361658+Gurunathan16@users.noreply.github.com>
 2025-05-21 12:41:44 -06:00
Josh Cummings
70c940fd4f
Merge branch '6.3.x' into 6.4.x 2025-05-15 18:16:44 -06:00
Josh Cummings
eb30fd7f59
Add Missing Header 
Issue gh-11161
 2025-05-15 18:16:36 -06:00
Josh Cummings
fbdf4a88a0
Merge branch '6.3.x' into 6.4.x 2025-05-15 17:19:55 -06:00
snowykte0426
260d298cc5 Add Migration Guide from Spring Security SAML Extension 
This adds a dedicated migration guide for users moving from the Spring Security SAML Extension to the built-in SAML 2.0 support.

Includes:
- Content migrated from the project wiki
- xref links for `saml2Login`, `saml2Logout`, and `saml2Metadata`
- Metadata example moved to Examples Matrix
- Cleanup and naming per review feedback

Closes gh-11161

Signed-off-by: snowykte0426 <snowykte0426@naver.com>
 2025-05-15 17:17:43 -06:00
Josh Cummings
5ba4ab5e11
Merge branch '6.3.x' into 6.4.x 2025-05-13 11:18:02 -06:00
Danilo Piazzalunga
27319e3f9b Add missing registration property in YAML listing 
Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>
 2025-05-13 11:17:35 -06:00
Danilo Piazzalunga
ec462e8bc5 Update assertingparty property usage in YAML snippets 
Spring Boot 2.7 renamed spring.security.saml2.relyingparty.registration.*.identityprovider.*
to spring.security.saml2.relyingparty.registration.*.assertingparty.*.

Closes gh-12810.

Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>
 2025-05-13 11:17:35 -06:00
Rob Winch
63d79a97db
Merge branch '6.3.x' into 6.4.x 
- Correct method name in logout.adoc

Closes gh-17048
 2025-05-06 10:23:58 -05:00
Tran Ngoc Nhan
505fe3abed
Correct method name 
Closes gh-17031

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-05-06 10:17:29 -05:00
Josh Cummings
92160fa26f
Merge branch '6.3.x' into 6.4.x 
Closes gh-17034
 2025-05-02 15:58:58 -06:00
Josh Cummings
51239359ed
Fix ClearSiteData Code Snippet 
Closes gh-16948
 2025-05-02 15:57:31 -06:00
Josh Cummings
c4a0dfe838 Merge remote-tracking branch 'origin/6.3.x' into 6.4.x 2025-05-01 12:03:05 -06:00
Soumik Sarker
bcef6ed74f Reformatted lines in x509 overview documentation 
Signed-off-by: Soumik Sarker <ronodhirsoumik@gmail.com>
 2025-05-01 12:02:45 -06:00
Josh Cummings
d76ccc6856
Merge branch '6.3.x' into 6.4.x 2025-04-29 13:38:41 -06:00
Yanming Zhou
9c76ab69f0 Use proper configuration key 
the getter method is `getOpaquetoken()` not `getOpaqueToken()`

See c6045c3111/spring-boot-project/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/security/oauth2/resource/OAuth2ResourceServerProperties.java (L51)

Signed-off-by: Yanming Zhou <zhouyanming@gmail.com>
 2025-04-29 13:37:51 -06:00
Rob Winch
c032b20178
Merge branch '6.3.x' into 6.4.x 2025-03-21 15:59:51 -05:00
Rob Winch
58e7ba4a4b
https docs download 2025-03-21 15:59:39 -05:00
Josh Cummings
db8b6322e2
Merge branch '6.3.x' into 6.4.x 2025-03-21 14:47:24 -06:00
Bragolgirith
72554f7f36 Update authorize-http-requests.adoc 
Fix patterns in the Security Matchers documentation

Signed-off-by: Bragolgirith <6455473+Bragolgirith@users.noreply.github.com>
 2025-03-21 14:46:53 -06:00
Rob Winch
af8786150e
Merge branch '6.3.x' into 6.4.x 
Closes gh-16799
 2025-03-21 15:11:18 -05:00
Rob Winch
65e83f8e7a
Add link to docs zip 
Closes gh-16798
 2025-03-21 15:10:52 -05:00
Steve Riesenberg
96cfbd1e6c
Merge branch '6.3.x' into 6.4.x 
Closes gh-16782
Closes gh-16783
Closes gh-16784
Closes gh-16785
Closes gh-16786
 2025-03-20 14:46:18 -05:00
Tran Ngoc Nhan
af40d7e35a
Fix typo 
Closes gh-16776

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-03-20 14:38:09 -05:00
Tran Ngoc Nhan
daf8cfe8d2
Fix Spring Framework reference link 
Closes gh-16699

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-03-20 14:38:08 -05:00
Tran Ngoc Nhan
75b537f99a
Fix WebFlux authentication reference link 
Closes gh-16702

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-03-20 14:38:07 -05:00
Olivier
71e12bb42e Fix @PostResult example in method-security 
Replace @PreFilter with @Postfilter in example

Signed-off-by: Olivier <Kuba15@users.noreply.github.com>
 2025-02-24 12:54:05 -07:00
Josh Cummings
d607364b50
Merge branch '6.3.x' into 6.4.x 2025-02-24 12:49:42 -07:00
Tran Ngoc Nhan
a0cfb2777c Fix typo 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-02-24 12:49:18 -07:00
Yoshikazu Nojima
ee1ede8b2d Update document regarding PublicKeyCredentialCreationOptions.attestation value 
Follow up for #16252
 2024-12-12 09:02:42 -06:00
Josh Cummings
55ea78d441 Update GA Release Guidance 2024-12-10 20:08:19 -07:00
Josh Cummings
a731af103e Polish 
Issue gh-16228
 2024-12-10 20:08:19 -07:00
Harpreet Singh
d1a4fac520 Use Tabs for Maven and Gradle Snippets 
Closes gh-16228
 2024-12-10 20:08:19 -07:00
Tran Ngoc Nhan
40f8ac642a Fix Documentation Typos 2024-12-09 17:56:00 -07:00
Josh Cummings
a18475c6cc
Merge branch '6.3.x' 2024-12-09 15:26:20 -07:00
Josh Cummings
7873ab8601
Merge branch '6.2.x' into 6.3.x 2024-12-09 15:26:04 -07:00
Josh Cummings
348f064df1
Merge branch '5.8.x' into 6.2.x 2024-12-09 15:25:50 -07:00
Josh Cummings
8b9fe13c88
Document Messaging SpEL Migration 
Issue gh-12650
 2024-12-09 15:25:33 -07:00
Mohammed Fadhil
a4469686c7 Fix phrasing for clarity in the docs. 2024-12-05 17:38:21 -07:00
Mohammed Fadhil
05ffdcafff Fix phrasing for clarity in the docs. 2024-12-05 17:38:21 -07:00
Harpreet Singh
cc2506b0c1 Fix: Correct OpenSAML 5.x Documentation 
- Fixed invalid XML tags in dependency examples.
- Corrected typo in `<artifactId>` ("opensaml-saml-imple" -> "opensaml-saml-impl").
- Excluded all OpenSAML 4.x dependencies.
- Removed redundant dependencies (`opensaml-core-api` and `opensaml-core-impl`) as they are transitively included in `opensaml-saml-api` and `opensaml-saml-impl`.

Closes gh-16191
 2024-12-04 13:42:03 -07:00
Harpreet Singh
c97edf2bd0 Fix typo in documentation: change 'select the write' to 'select the right. Closes gh-16178 2024-12-02 11:01:36 -06:00
Harpreet Singh Bhullar
f5eccf7cd3
Fix OAuth2 documentation: Corrected OAuth2ClientHttpRequestInterceptor usage 
Closes gh-16165
 2024-11-26 12:18:19 -06:00
Steve Riesenberg
14be74051e
Merge branch '6.3.x' 
Closes gh-16176
 2024-11-26 12:12:49 -06:00
Steve Riesenberg
21ac1022ef
Merge branch '6.2.x' into 6.3.x 
Closes gh-16175
 2024-11-26 12:12:18 -06:00
Harpreet Singh
68d91916e2 Polish Dark Mode for CSRF and Method Security diagrams 
Closes gh-16151
 2024-11-26 01:53:56 +05:30
James Howe
aa635b02a8 Another spelling issue 2024-11-22 17:18:46 -07:00
James Howe
d1e6806464 Spelling error in opensaml.adoc 2024-11-22 17:18:46 -07:00
Martin Tarjányi
24ccac3555 Fix typo in documentation 2024-11-21 15:18:01 -07:00