spring-security

mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-01 08:12:14 +00:00

Author	SHA1	Message	Date
Max Batischev	47630ca354	Fix JdbcUserCredentialRepository Save Closes gh-16620 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-03-07 13:57:41 -07:00
Max Batischev	58a665e5aa	Add Support SingleResultAuthorizationManager Closes gh-16590 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-03-07 13:46:23 -07:00
yelm-212	cfefccad1f	Update Http403ForbiddenEntryPoint to Use HttpStatus Closes gh-16615 Signed-off-by: yelm-212 <21yrshin@naver.com>	2025-03-07 12:17:14 -05:00
Josh Cummings	ab52fd858a	Deprecate ChannelDecisionManager Closes gh-16681	2025-02-28 12:35:21 -07:00
Josh Cummings	2d96fba5cf	Add HttpsRedirectFilter Closes gh-16678	2025-02-28 09:30:53 -07:00
Josh Cummings	e569c7a39e	Fix Tests Issue gh-16517	2025-02-27 14:07:49 -07:00
topiam	85f0f3f34a	Support Custom RequestMatchers for WebAuthn Closes gh-16517 Signed-off-by: topiam <support@topiam.cn>	2025-02-27 14:07:49 -07:00
Rob Winch	9417f02790	Deprecate PortResolver Closes gh-15972	2025-02-26 16:13:10 -06:00
Rob Winch	5f5427bd03	PortResolver.NO_OP Closes gh-16666	2025-02-26 16:13:10 -06:00
Josh Cummings	588220a020	Add PathPatterRequestMatcher Closes gh-16429 Clsoes gh-16430	2025-02-21 13:40:23 -07:00
Steve Riesenberg	7fc5d50adf	Polish gh-16551	2025-02-19 13:53:30 -06:00
Max Batischev	0ccbd20f0a	Add Support ServerFormPostRedirectStrategy Closes gh-16542 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-02-19 13:53:30 -06:00
Borghi	0bc9313fdd	Fix bug PublicKeyCredentialUserEntityRepository saves anonymousUser Issue gh-16385 Signed-off-by: Borghi <137845283+Borghii@users.noreply.github.com>	2025-02-16 22:50:34 -03:00
tejas-teju	c4b223266c	Return Invalid Credentials message on login error Closes gh-16484 Signed-off-by: tejas-teju <tejas8196@gmail.com>	2025-02-14 16:01:22 -07:00
Josh Cummings	e42865b926	Merge branch '6.4.x'	2025-02-14 13:08:17 -07:00
Josh Cummings	946812691e	Make AuthenticatorAttestation Serializable Issue gh-16481	2025-02-14 13:07:56 -07:00
Max Batischev	b5a4218a0b	Make WebAuthnAuthenticationRequestToken Serializable Closes gh-16481 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-02-14 11:51:46 -07:00
Max Batischev	879b44f9a1	Make PublicKeyCredentialRequestOptions Serializable Closes gh-16432 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-02-13 17:17:16 -07:00
ying.li	6494ea9b18	fix for typo	2025-02-10 12:22:57 -06:00
Daniel Garnier-Moiroux	238f47ce5e	One Time Token login registers the default login page closes gh-16414 Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	2025-02-10 09:55:51 -06:00
Daniel Garnier-Moiroux	5ee6b83953	Introduce OneTimeTokenAuthenticationFilter closes gh-16539 Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	2025-02-10 09:55:51 -06:00
Max Batischev	be81377235	Add Support ServerGenerateOneTimeTokenRequestResolver Closes gh-16488 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-02-05 14:14:16 -07:00
Steve Riesenberg	54a6a19e05	Polish gh-16214 This commit applies the following changes: * Added local Content-Security-Policy with script-src nonce directive * Removed form-redirect.js and associated changes * Renamed to FormPostRedirectStrategy * Removed HtmlUtils usage * Moved to same package as DefaultRedirectStrategy	2025-02-03 14:52:30 -06:00
Craig Andrews	58534e7f60	Add FormRedirectStrategy to enable POST OIDC Logout FormRedirectStrategy redirects using an autosubmitting HTML form using the POST method versus DefaultRedirectStrategy which redirects using the GET method. Can be used to implement POST binding for relying party initiated OIDC logout by setting FormRedirectStrategy as the redirection strategy on OidcClientInitiatedLogoutSuccessHandler. Closes gh-13002 Signed-off-by: Craig Andrews <candrews@integralblue.com>	2025-02-03 14:52:30 -06:00
Max Batischev	61d92e9db9	Fix assertion message in DefaultGenerateOneTimeTokenRequestResolver Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-02-03 12:15:20 -07:00
Josh Cummings	0f8e1936ff	Merge branch '6.4.x'	2025-02-03 10:19:31 -07:00
NeoTraveler	e31f04bebc	`withValue` used incorrectly Closes gh-16525 Closes gh-16527 Signed-off-by: NeoTraveler <55753029+NeoTraveler@users.noreply.github.com>	2025-02-03 10:18:33 -07:00
Steve Riesenberg	b32f4f1afc	Polish gh-16502	2025-02-03 09:21:53 -06:00
earlgrey02	1fa1848f9f	Add HttpStatusAccessDeniedHandler Signed-off-by: earlgrey02 <san06036@naver.com>	2025-02-03 09:21:53 -06:00
Max Batischev	c7bc4c98db	Make PublicKeyCredentialRequestOptions Serializable Closes gh-16432 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-01-23 20:13:10 -06:00
Josh Cummings	e1a42db845	Merge branch '6.4.x'	2025-01-23 17:03:53 -07:00
Josh Cummings	d043884e32	Support Serialization Issue gh-16276	2025-01-23 16:44:45 -07:00
Rob Winch	177ce59a4b	Merge branch '6.4.x' Implement Serializable for WebAuthnAuthentication Closes gh-16474	2025-01-23 14:12:30 -06:00
Tran Ngoc Nhan	e557c7227b	Implement Serializable for WebAuthnAuthentication Closes gh-16273 Closes gh-16285 Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	2025-01-23 13:53:26 -06:00
Max Batischev	474b5e151a	Add Support GenerateOneTimeTokenRequestResolver Closes gh-16291 Signed-off-by: Max Batischev <mblancer@mail.ru>	2025-01-22 17:09:55 -06:00
Rob Winch	dddab8e356	Merge branch '6.4.x' Closes gh-16465	2025-01-22 16:04:19 -06:00
Daniel Garnier-Moiroux	bb8e757c4b	Fix GenerateOneTimeTokenWebFilter double publish of chain.filter(...) closes gh-16458 Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	2025-01-22 16:00:59 -06:00
Rob Winch	081dee042e	Merge branch '6.4.x' Add TestBytes Closes gh-16462	2025-01-21 15:12:49 -06:00
Rob Winch	3209930cca	Add TestBytes Closes gh-16461	2025-01-21 15:12:31 -06:00
Max Batischev	80e8e14500	Add GenerateOneTimeTokenFilterTests	2025-01-21 10:59:57 -06:00
DingHao	f4491f388e	Set PublicKeyCredentialCreationOptionsRepository by DSL or Bean Closes gh-16369 Signed-off-by: DingHao <dh.hiekn@gmail.com>	2025-01-17 18:57:08 -06:00
DingHao	8181cec06c	Set HttpMessageConverter by DSL Closes gh-16369 Signed-off-by: DingHao <dh.hiekn@gmail.com>	2025-01-17 18:29:23 -06:00
Josh Cummings	c2a5709e0f	Merge branch '6.4.x'	2025-01-17 16:09:01 -07:00
Josh Cummings	bbe4f87641	Mark Serialization Support for Events Issue gh-16276	2025-01-17 16:08:31 -07:00
DingHao	45f22a46e3	Use spring.security prefix instead of security.security Closes gh-16422 Signed-off-by: DingHao <dh.hiekn@gmail.com>	2025-01-16 14:29:25 -07:00
Josh Cummings	443af32314	Move Servlet Mocks to Web Issue gh-13551	2025-01-15 17:32:58 -07:00
Josh Cummings	6019803064	Merge branch '6.4.x'	2025-01-14 18:38:14 -07:00
Josh Cummings	244fd2eb51	Support Serialization in Exceptions Issue gh-16276	2025-01-14 18:37:53 -07:00
Josh Cummings	acd1bb1777	Merge branch '6.4.x'	2025-01-14 17:35:45 -07:00
Josh Cummings	8e59fa1719	Don't Support Serialization for Jackson (De)serializers Issue gh-16276	2025-01-14 17:35:33 -07:00

1 2 3 4 5 ...

1983 Commits