Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-08-01 15:13:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
18,597 Commits 39 Branches 351 Tags
Commit Graph

1468 Commits

Author SHA1 Message Date
Evgeniy Cheban
092bbfc8e7 ReactiveAuthorizationManager replace deprecated #check calls with #authorize 
Closes gh-16936

Signed-off-by: Evgeniy Cheban <mister.cheban@gmail.com>
 2025-06-12 11:11:49 -06:00
Evgeniy Cheban
b0cecb37d2 Replace deprecated #check calls with #authorize 
Closes gh-16936

Signed-off-by: Evgeniy Cheban <mister.cheban@gmail.com>
 2025-06-12 11:11:49 -06:00
dae won
8612e952fe Make AuthorizationProxyFactory#proxy Generic 
Closes gh-16706

Signed-off-by: dae won <eodnjs01477@gmail.com>
 2025-05-23 14:48:11 -06:00
Tran Ngoc Nhan
8e2067bb3e Remove deprecated MemberCategory#DECLARED_FIELDS 
Issue gh-16889

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-05-23 14:36:54 -06:00
Tran Ngoc Nhan
88369cd252 Polish 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-05-23 14:36:54 -06:00
Junhyeok Lee
e30dc42d1e Update JdbcUserDetailsManager Javadoc and author 
Signed-off-by: Junhyeok Lee <jhl221123@naver.com>
 2025-05-14 13:41:02 -05:00
Junhyeok Lee
0722c2dc41 Implement UserDetailsPasswordService in JdbcUserDetailsManager 
Signed-off-by: Junhyeok Lee <jhl221123@naver.com>
 2025-05-14 13:41:02 -05:00
huhdy32
817938fa49 Add NullReturningMethodAuthorizationDeniedHandler 
This implementation of MethodAuthorizationDeniedHandler returns null
when authorization is denied.

Closes gh-16705

Signed-off-by: huhdy32 <mong3268@gmail.com>
 2025-05-14 11:45:48 -05:00
Shenker93
de622d1082 Improve JdbcUserDetailsManager.userExists method 2025-05-07 10:50:03 -05:00
Josh Cummings
34a9f57aa6
Merge branch '6.4.x' 2025-05-05 15:29:44 -06:00
Josh Cummings
c3c2bcd6b7
Ignore Serialization in Test Components 
Since we don't need to ensure the serializability of test components
across versions, we can ignore missing version UIDs when those
test components aren't about testing Java serialization.

Issue gh-17038
 2025-05-05 15:09:50 -06:00
Josh Cummings
40b84d3e44
Merge branch '6.4.x' 2025-03-27 16:34:39 -06:00
Josh Cummings
6c5b6d1c51
Merge branch '6.3.x' into 6.4.x 
Closes gh-16837
 2025-03-27 16:32:12 -06:00
Josh Cummings
456604ab45 Sort Default Advisors and Added Advisors 
This commit ensures that the default advisors and added advisors
are sorted in the event that this component is not being published
as a Spring bean.

Issue gh-16819
 2025-03-27 16:18:00 -06:00
Josh Cummings
56e757a2a1 Provide Authentication to AuthenticationExceptions 
Issue gh-16444
 2025-03-21 21:54:32 -06:00
Josh Cummings
7f22a3459f Polish Tests 
Issue gh-16444
 2025-03-21 21:54:32 -06:00
DingHao
10ed5009e6 Method Security templates support use deep non-aliased attributes 
Closes gh-16498

Signed-off-by: DingHao <dh.hiekn@gmail.com>
 2025-03-21 15:05:33 -06:00
DingHao
96b9820e19 Annotation parameter scan finds first-level conflicts 
Closes PR-16312
 2025-03-18 14:23:53 -06:00
Josh Cummings
3468b7f85f
Merge branch '6.4.x' 2025-03-17 11:02:47 -06:00
Josh Cummings
dc2e1af2da
Align Method Traversal with MergedAnnotations 
Closes gh-16751
 2025-03-17 10:11:46 -06:00
Josh Cummings
6ce8307885
Merge branch '6.4.x' 2025-03-17 09:50:07 -06:00
Josh Cummings
4993fa863a
Merge branch '6.3.x' into 6.4.x 2025-03-17 09:49:01 -06:00
Josh Cummings
36ea1b11a7
Fix Compilation Error 
Issue gh-16697
 2025-03-17 09:43:21 -06:00
Steve Riesenberg
0938ca01a4
Add support for automatic context-propagation with Micrometer 
Closes gh-16665
 2025-03-13 15:29:08 -05:00
Max Batischev
58a665e5aa Add Support SingleResultAuthorizationManager 
Closes gh-16590

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-03-07 13:46:23 -07:00
Josh Cummings
39a80497c2
Merge branch '6.4.x' 2025-03-04 09:53:06 -07:00
Josh Cummings
4ae0965b1c
Merge branch '6.3.x' into 6.4.x 2025-03-04 09:52:31 -07:00
Josh Cummings
46cd94b5f4
SpEL Propagates Authorization Exceptions 
Closes gh-16697
 2025-03-04 09:51:55 -07:00
Josh Cummings
ae2894ab25
Update Copyright 
Issue gh-16600
 2025-02-24 15:09:04 -07:00
dae won
45b51fe3c8 Add grantedAuthorityMapper as a class member 
- Add unit tests for setGrantedAuthorityMapper method

Signed-off-by: dae won <eodnjs01477@gmail.com>
 2025-02-24 15:05:55 -07:00
dae won
cb07031259 Add unit tests for setUserDetailsMapper method 
Signed-off-by: dae won <eodnjs01477@gmail.com>
 2025-02-24 15:05:55 -07:00
Max Batischev
08f71461b4 Add Support BadCredentialsException to OneTimeTokenAuthenticationProvider 
Closes gh-16494

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-02-20 13:26:11 -07:00
Josh Cummings
9a3bbf8d00
Merge branch '6.4.x' 2025-01-17 14:17:16 -07:00
Josh Cummings
45da5c94b6
Support Serialization in Test Classes 
Issue gh-16276
 2025-01-17 14:15:30 -07:00
github-actions[bot]
95ec49a21d Support Meta-Annotation Parameters on Parameter Annotations 
Closes gh-16248
 2024-12-19 15:14:22 -07:00
Josh Cummings
69cbe12a7b
Register Authorization Proxied Type 
Closes gh-16106
 2024-11-15 15:07:37 -07:00
Josh Cummings
981fbd5c2c Polish Tests 
Closes gh-14768
 2024-10-24 20:51:34 -07:00
Steve Riesenberg
af2b84246b
Fix flaky test 
Issue gh-15735
 2024-10-18 12:22:08 -05:00
Josh Cummings
9ce5a76e8c Polish AuthorizationManager#authorize 
Issue gh-14843
 2024-10-14 11:48:57 -07:00
Max Batischev
e7644925f8 Add AuthorizationResult support for AuthorizationManager 
Closes gh-14843
 2024-10-14 11:48:57 -07:00
Josh Cummings
702538ebce AuthorizationEventPublisher Accepts AuthorizationResult 
Closes gh-15915

Co-authored-by: Max Batischev <mblancer@mail.ru>
 2024-10-14 11:48:57 -07:00
Max Batischev
2ca2e56383 Add Reactive One-Time Token Login support 
Closes gh-15699
 2024-10-07 16:39:54 -07:00
Rob Winch
1dd79c379b Add JdbcOneTimeTokenService 
Closes gh-15735
 2024-10-02 14:42:13 -05:00
Rob Winch
c4b60cd080 Reduce visibility for JdbcOneTimeTokenServiceTests 
Issue gh-15735
 2024-10-02 14:24:23 -05:00
Rob Winch
e8c71df899 Use private Inner JdbcOneTimeTokenService classes 
Issue gh-15735
 2024-10-02 14:24:23 -05:00
Rob Winch
612b15abcc JdbcOneTimeTokenService.setCleanupCron 
Spring Security uses setter methods for optional member variables. Allows
for a null cleanupCron to disable the cleanup.

In a clustered environment it is likely that users do not want all nodes
to be performing a cleanup because it will cause contention on the ott
table.

Another example is if a user wants to invoke cleanUpExpiredTokens with a
different strategy all together, they might want to disable the cron job.

Issue gh-15735
 2024-10-02 14:22:25 -05:00
Rob Winch
4787ac254d cleanUpExpiredTokens->cleanupExpiredTokens 
Issue gh-15735
 2024-10-02 10:59:26 -05:00
Rob Winch
4f328c9503 destroy() shuts down the taskScheduler 
Issue gh-15735
 2024-10-02 10:59:21 -05:00
Max Batischev
0c216f0b59 Add public to setClock method in InMemoryOneTimeTokenService 
Closes gh-15863
 2024-09-30 15:33:33 -05:00
Max Batischev
50cc36d53e Add support JdbcOneTimeTokenService 
Closes gh-15735
 2024-09-29 00:06:10 +03:00