Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
9,878 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

9878 Commits

Author SHA1 Message Date
Khaled Hamlaoui 00fafd878c Allow custom OAuth2ErrorHttpMessageConverter with OAuth2ErrorResponseErrorHandler 
Closes gh-10425
 2021-11-16 15:27:48 -06:00
Rob Winch 96a6fef820 Prevent Save @Transient Authentication with existing HttpSession 
Previously, @Transient Authentication would get saved if an existing
HttpSession existed but it shouldn't.

This commit always prevents @Transient Authentication from being saved.

Closes gh-9992
 2021-11-16 14:44:49 -06:00
« Christophe 4318a51971 Fix CsrfConfigurer default AccessDeniedHandler consistency 
Fix when AccessDeniedHandler is specified per RequestMatcher on
ExceptionHandlingConfigurer.

This introduces evolutions on :
- CsrfConfigurer#getDefaultAccessDeniedHandler,
to retrieve an AccessDeniedHandler similar to the one used by
ExceptionHandlingConfigurer.
- OAuth2ResourceServerConfigurer#accessDeniedHandler, to continue to
handle CsrfException with the default AccessDeniedHandler implementation

Fixes: gh-6511
 2021-11-16 14:22:35 -06:00
Stephane Nicoll 61ee4e5a76 Avoid using SpEL to change the meaning of the injection point 
This commit removes the use of SpEL expression and replaces it with an
explicit call to the underlying method.
 2021-11-16 13:53:00 -06:00
Onur Kagan Ozcan aa0f788f59 Add RedirectStrategy customization to ChannelSecurityConfigurer for RetryWith classes 2021-11-16 13:44:18 -06:00
Rob Winch 0c201565fc Fix format DelegatingPasswordEncoder 2021-11-16 13:32:15 -06:00
Rob Winch 582629c087 Rename prefix/suffix in DelegatingPasswordEncoder 
Issue gh-10273
 2021-11-16 13:16:37 -06:00
heowc 399cf2e59d Support for changing prefix and suffix in `DelegatingPasswordEncoder` 
Closes gh-10273
 2021-11-16 13:16:37 -06:00
Lars Grefer ec8912aa47 Update aspectj-plugin to 6.3.0 
Version 6.3.0 aligns with the used Gradle 7.3
 2021-11-16 12:52:42 -06:00
Josh Cummings 7b15098570 Update Spring Security to 5.7 
Closes gh-10509
 2021-11-15 17:10:00 -07:00
Josh Cummings 6b6f473a1b Added authorizeHttpRequests Docs 
Closes gh-10442
 2021-11-15 16:23:18 -07:00
Rob Winch 29a4b2bc9b Next Development Version 2021-11-15 16:13:45 -06:00
Rob Winch fa628f7491 Release 5.6.0 2021-11-15 16:13:12 -06:00
Rob Winch f100877c58 Update to spring-data-bom:2021.1.0 
Closes gh-10503
 2021-11-15 10:27:17 -06:00
Joe Grandja 4f185724a3 Polish gh-10479 2021-11-12 15:09:50 -05:00
Rob Winch f0da370b1a Update org.springframework to 5.3.13 
Closes gh-10497
 2021-11-11 16:56:24 -06:00
Rob Winch 6959456cab Update hsqldb to 2.6.1 
Closes gh-10496
 2021-11-11 16:56:24 -06:00
Rob Winch a5b1d68350 Update hibernate-entitymanager to 5.6.1.Final 
Closes gh-10495
 2021-11-11 16:56:24 -06:00
Rob Winch 4b23949ebd Update io.projectreactor to 2020.0.13 
Closes gh-10493
 2021-11-11 16:56:24 -06:00
Rob Winch 98a88ffdf8 Update com.nimbusds to 9.19 
Closes gh-10491
 2021-11-11 16:55:46 -06:00
Rob Winch 23e5177624 Update logback-classic to 1.2.7 
Closes gh-10490
 2021-11-11 16:55:44 -06:00
Steve Riesenberg 0bdaa21867 Update What's New for 5.6 2021-11-11 14:51:40 -06:00
Steve Riesenberg 0e6722800d Polish gh-10479 2021-11-11 14:24:30 -06:00
Steve Riesenberg 73e1506e5e Consistency update for servlet docs 2021-11-11 14:24:29 -06:00
Steve Riesenberg 7d806b668f Separate OAuth 2.0 Client Reactive Docs 
Related gh-10367
 2021-11-11 14:24:29 -06:00
Steve Riesenberg 1246d5839d Revamp OAuth 2.0 Login Reactive documentation 
Related gh-8174
 2021-11-11 14:24:29 -06:00
Rob Winch 08dc83c781 Fix Antora Versions 2021-11-11 13:35:34 -06:00
Rob Winch 127e10e607 Antora Playbook 2021-11-11 13:34:54 -06:00
Josh Cummings 538541bf40 Don't Cache ReactiveJwtDecoders Errors 
Closes gh-10444
 2021-11-10 17:35:53 -07:00
Josh Cummings 310a50587c Port Missing Integration Docs 
Closes gh-10465
 2021-11-10 16:09:50 -07:00
Josh Cummings b60020a40c Use authorizeHttpRequests in Docs 
Issue gh-8900
 2021-11-10 16:09:50 -07:00
Josh Cummings f4ddb4e3f4 Update What's New Links 2021-11-10 16:09:50 -07:00
Marcus Da Coregio aabb116a07 Update to Gradle 7.3 
Closes gh-10480
 2021-11-10 11:35:49 -03:00
Steve Riesenberg 076c01daef Add missing @since 5.6 2021-11-09 14:07:05 -06:00
Josh Cummings 4a9637483a Separate OAuth 2.0 Client Reactive Docs 
Issue gh-10367
 2021-11-05 12:45:46 -06:00
Josh Cummings 7708418fae Separate OAuth 2.0 Login Servlet Docs 
Issue gh-10367
 2021-11-05 12:45:46 -06:00
Josh Cummings 82696918ae Separate OAuth 2.0 Client Servlet Docs 
Issue gh-10367
 2021-11-05 12:45:46 -06:00
Steve Riesenberg e350c8a852 Document parameters converter in oauth2 client servlet docs 
Closes gh-10467
 2021-11-05 12:45:46 -06:00
Steve Riesenberg efa2fab061 Document authentication helper method in WebClient integration 
Closes gh-10120
 2021-11-05 12:45:46 -06:00
Josh Cummings 76ebbb84f7 Separate Namespace Servlet Docs 
Issue gh-10367
 2021-11-05 12:45:46 -06:00
Josh Cummings 48c8532a21 Restructure LDAP Logs 
Issue gh-6311
 2021-11-05 11:27:38 -06:00
Rob Winch 46c5b91500 Put nav in generated docs 2021-11-01 10:28:08 -05:00
Rob Winch c7a50c40ae Use explicit version from antora.yml 2021-11-01 09:56:58 -05:00
Josh Cummings 11aa02c6fb Separate SAML 2.0 Login Docs 
Issue gh-10367
 2021-10-29 15:06:54 -06:00
Josh Cummings 6d2d3b9a69 Separate Resource Server Reactive Docs 
Issue gh-10367
 2021-10-29 13:06:38 -06:00
Josh Cummings f02a7d2b28 Separate Testing Servlet Docs 
Issue gh-10367
 2021-10-29 12:34:29 -06:00
Josh Cummings f39d272a86 Separate SAML Docs 
Issue gh-10367
 2021-10-29 11:30:41 -06:00
Marcus Da Coregio caad3d57e2 Improve log message when no CSRF token found 
Closes gh-10436
 2021-10-29 14:06:17 -03:00
Vladimir Surcov 7330ec41e4 Adding keyInfo section to LogoutRequest from RP side 
Issue gh-10438
 2021-10-29 11:00:19 -06:00
Josh Cummings b4ffe154d7 Separate Testing Reactive Docs 
Issue gh-10367
 2021-10-29 10:09:04 -06:00