Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-09-08 20:51:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
19,337 Commits 43 Branches 354 Tags
Commit Graph

2633 Commits

Author SHA1 Message Date
Josh Cummings
0e39685b9c Merge branch '6.5.x' 2025-08-22 12:40:41 -06:00
Josh Cummings
9d64880ea9 Merge branch '6.4.x' into 6.5.x 2025-08-22 12:40:12 -06:00
Josh Cummings
8b2a453301 Advise Favoring PostAuthorize on Reads 
Closes gh-17797
 2025-08-22 12:39:51 -06:00
Rob Winch
d9210c6596
Fix Nullability 2025-08-21 13:41:02 -05:00
Rob Winch
9bbf837c7c
Merge branch '6.5.x' 2025-08-21 12:44:42 -05:00
Rob Winch
0404996f87 import Assertions.assertThat 
This adds a static import for assertThat in the Kotlin docs code
 2025-08-21 12:35:13 -05:00
Rob Winch
0f63d98c84 Use @EnableMethodSecurity in docs tests 
Previously parameters were passed in unnecessarily. This removes
the unnecessary paramaters.
 2025-08-21 12:35:13 -05:00
Rob Winch
fbfbb1e571 Use 2004-present for Copyright 
Spring Security migrated the copyright to use -present to simplify
the headers. This commit aligns the header.
 2025-08-21 12:35:13 -05:00
Joe Kuhel
d002e68231 Update servlet test method docs to use include-code 
References gh-16226

Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>
 2025-08-21 12:35:13 -05:00
Rob Winch
f82fe9c8c6
Remove stray modular from the documentation 
Issue gh-16258
 2025-08-20 12:24:33 -05:00
Rob Winch
a8f045eb50
Add Modular Spring Security Configuration 
Closes gh-16258
 2025-08-20 12:16:08 -05:00
Tran Ngoc Nhan
ef5c703010 Remove unused import 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-08-19 22:05:25 -05:00
Josh Cummings
4da98dde2b
Update What's New 
Issue gh-17707
 2025-08-18 15:31:03 -06:00
dependabot[bot]
39301574fa Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.9 in /docs 
Bumps [antora](https://gitlab.com/antora/antora) from 3.2.0-alpha.8 to 3.2.0-alpha.9.
- [Changelog](https://gitlab.com/antora/antora/blob/main/CHANGELOG.adoc)
- [Commits](https://gitlab.com/antora/antora/compare/v3.2.0-alpha.8...v3.2.0-alpha.9)

---
updated-dependencies:
- dependency-name: antora
  dependency-version: 3.2.0-alpha.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-15 13:33:47 -05:00
dependabot[bot]
4ae782cdd6 Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-version: 1.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-15 13:33:26 -05:00
Josh Cummings
d3b143dab6
Move SAML 2.0 Migration Step 
Issue gh-17099
 2025-08-14 18:03:44 -06:00
Josh Cummings
60c42e3f24
Update SAML 2.0 Documentation to use OpenSAML 5 
Closes gh-17707
 2025-08-14 18:01:34 -06:00
Josh Cummings
5506c487de
Remove OpenSaml4 Components 
Issue gh-17707
 2025-08-14 18:01:02 -06:00
Tran Ngoc Nhan
dfc8be0d48 Fix typo 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-08-04 09:40:20 -06:00
Tran Ngoc Nhan
371bee685f Polish User#withDefaultPasswordEncoder 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-08-04 09:40:20 -06:00
Marcin Lewandowski
f61a8deccc Update index.adoc 
Signed-off-by: Marcin Lewandowski <marcin@ravendb.net>
 2025-07-31 11:09:06 -06:00
Josh Cummings
1af665d6c8 Merge branch '6.5.x' 2025-07-31 10:21:50 -06:00
Josh Cummings
c966139338 Merge branch '6.4.x' into 6.5.x 2025-07-31 10:21:36 -06:00
Josh Cummings
a411fb7b8d Merge remote-tracking branch 'origin/6.3.x' into 6.4.x 2025-07-31 10:21:26 -06:00
Michał Sobkiewicz
c963f4250e Update Angular documentation links in csrf.adoc 
Replaced `angular.io` links with their corresponding `angular.dev` URLs.
This change ensures that users referencing CSRF documentation are
directed to the most current Angular resources.

Signed-off-by: Michał Sobkiewicz <perceptron8@users.noreply.github.com>
 2025-07-31 10:21:06 -06:00
dependabot[bot]
99f689eb52 Bump @springio/antora-extensions from 1.14.6 to 1.14.7 in /docs 
Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.6 to 1.14.7.
- [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc)
- [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.6...v1.14.7)

---
updated-dependencies:
- dependency-name: "@springio/antora-extensions"
  dependency-version: 1.14.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-30 11:50:42 -06:00
dependabot[bot]
de14fb8f77 Bump @springio/antora-extensions from 1.14.6 to 1.14.7 in /docs 
Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.6 to 1.14.7.
- [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc)
- [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.6...v1.14.7)

---
updated-dependencies:
- dependency-name: "@springio/antora-extensions"
  dependency-version: 1.14.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-30 11:50:19 -06:00
Rob Winch
f6cb0bd610
Merge Use 2004-present Copyright Header 
The original merge into main did not apply the changes. This fixes it.
Closes gh-17635
 2025-07-29 10:52:42 -05:00
Josh Cummings
4775fe41db Merge branch '6.5.x' 2025-07-29 09:28:20 -06:00
Josh Cummings
a9fcec8b46 Merge branch '6.4.x' into 6.5.x 2025-07-29 09:27:47 -06:00
Josh Cummings
452d311a9b Merge remote-tracking branch 'origin/6.3.x' into 6.4.x 2025-07-29 09:27:23 -06:00
Bernie Schelberg
edcb3b024e Update Shibboleth repository URL 
Signed-off-by: Bernie Schelberg <bernard.schelberg@invicara.com>
 2025-07-29 09:26:42 -06:00
Rob Winch
2fdca16c1a
Merge branch '6.4.x' into 6.5.x 
Closes gh-17634
 2025-07-29 09:47:52 -05:00
Josh Cummings
fca30e3d25
Update What's New in Spring Security 7 
Closes gh-17582
 2025-07-21 15:00:47 -06:00
dependabot[bot]
66ddfb43a0 Bump @springio/antora-extensions from 1.14.4 to 1.14.6 in /docs 
---
updated-dependencies:
- dependency-name: "@springio/antora-extensions"
  dependency-version: 1.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-18 09:15:29 -05:00
dependabot[bot]
759736672d
Bump @springio/antora-extensions from 1.14.4 to 1.14.6 in /docs 
Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.4 to 1.14.6.
- [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc)
- [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.4...v1.14.6)

---
updated-dependencies:
- dependency-name: "@springio/antora-extensions"
  dependency-version: 1.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-14 01:05:46 +00:00
Josh Cummings
0c42b61cc1
Restore legacy-websocket-configuration Link 
In this way, links to this section will still arrive at something
helpful.

Issue gh-17295
 2025-07-10 15:03:10 -06:00
Josh Cummings
7960d2803d
Add Migration Steps for PathMatcher Usage 
Issue gh-17509
 2025-07-10 14:53:39 -06:00
Josh Cummings
4b15b2b94e
Add Migration Steps for Messaging 
Closes gh-17509
 2025-07-10 13:19:42 -06:00
Josh Cummings
2c87270dbc
Use authorizeHttpRequests 
Issue gh-15174
 2025-07-09 17:33:11 -06:00
Josh Cummings
dadf10899c
Add WebExpressionAuthorizationManager.Builder 
Closes gh-17504
 2025-07-09 17:33:10 -06:00
Josh Cummings
c312d18191
Add Publishing Predicate 
Closes gh-17503
 2025-07-09 17:33:10 -06:00
Josh Cummings
901b386ca6
Merge branch '6.5.x' 2025-07-09 14:11:14 -06:00
Josh Cummings
9209a33678
Remove References to Deprecated OpenSaml Components 
Issue gh-11658
 2025-07-09 14:10:33 -06:00
Rob Winch
e48fdd5ed4
Use UserWebTestClientConfigurer 
Closes gh-17496
 2025-07-07 15:15:51 -05:00
Rob Winch
dbb3b7e1f5
Remove Unused import 2025-07-07 15:15:51 -05:00
Rob Winch
bfa2a3613c
Fix frameworkVersion 
Should not strip -SNAPSHOT
 2025-07-07 15:15:51 -05:00
Josh Cummings
02d69ec864 Keep EnableWebMvcSecurity Link 
So that links across the Internet that are pointed at
#mvc-enablewebmvcsecurity still arrive at a relevant place,
this commit re-adds the mvc-enablewebmvcsecurity link, even
though @EnableWebMvcSecurity itself is now removed.

Issue gh-17294
 2025-07-07 13:46:03 -06:00
Tran Ngoc Nhan
a439bc65d6 Remove EnableWebMvcSecurity 
Closes gh-17294

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-07-07 13:46:03 -06:00
Tran Ngoc Nhan
242956a63c Remove deprecated elements from DaoAuthenticationProvider 
Closes gh-17298

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-07-07 13:38:34 -06:00