05076db53a
Merge branch '6.3.x' into 6.4.x
2024-12-19 08:55:35 -07:00
a9f8a23e50
Merge branch '6.2.x' into 6.3.x
2024-12-19 08:55:25 -07:00
643a3f1206
Test Setting logoutRequestRepository
...
Issue gh-16093
2024-12-19 08:55:18 -07:00
7aafe2ed5a
Set Saml2RelyingPartyInitiatedLogoutSuccessHandler#logoutRequestRepository
...
Closes gh-16093
2024-12-19 08:53:02 -07:00
27c2a8ad11
Add Serializable Compatibility to Web Authentication Exceptions
...
Issue gh-16276
2024-12-17 13:05:23 -07:00
841c03fe3b
Add Serializable Compatilibity to Saml 2.0 Exceptions
...
Issue gh-16276
2024-12-17 09:36:29 -07:00
5ee1586a5a
Remove Unexposed Inner Classes from Serialization Test
...
The following inner classes are used only internally by a non-Serializable component
Issue gh-16276
2024-12-13 18:18:09 -07:00
018e1ae1a4
Added Serialization Values
...
Issue gh-16276
2024-12-13 16:41:32 -07:00
b9911fd522
Add serialVersionUID to Authentication classes
...
Issue gh-16276
2024-12-13 16:41:32 -07:00
e3cd4339b2
Add Serial Version
...
Closes gh-16163
2024-12-13 11:53:15 -07:00
fb954063bf
Fix WebAuthnWebdriverTests
...
Closes gh-16279
2024-12-13 10:08:27 -06:00
2a76a09552
Disable Flaky WebAuthnWebDriverTests
2024-12-12 22:21:36 -06:00
7592483654
Add Test to Report Missing serialVersionUID
...
Issue gh-16276
2024-12-12 18:12:11 -07:00
f7b9b7228f
Include Classes Listed in Generator Map
...
This allows testing of classes that are serializable,
but do not use Security's serialVersionUID.
Issue gh-16276
2024-12-12 18:07:53 -07:00
82cc3ad5ec
Arrange Class Generators by Module
...
Issue gh-16276
2024-12-12 18:07:52 -07:00
47b5ab400a
Add 6.4.x Serialization Files
...
Closes gh-16274
2024-12-12 18:07:52 -07:00
99cc65d74c
webauthn: add webdriver test
...
- These tests verify the full end-to-end flow, including the javascript
code bundled in the default login and logout pages. They require a full
web browser, with support for Virtual Authenticators for automated testing.
At this point in time, only Chrome supports virutal authenticators.
2024-12-11 16:53:38 -06:00
4cbaabb239
Added Testing
...
Issue gh-16177
2024-12-10 14:09:46 -07:00
aa85ebc65f
Remove Extraneous Field
...
Issue gh-15678
2024-12-09 08:00:22 -07:00
4dd00fe146
Merge branch '6.3.x'
2024-12-06 15:19:19 -07:00
dd8ee38194
Merge branch '6.2.x' into 6.3.x
...
Closes gh-16229
2024-12-06 15:18:42 -07:00
87de6cea1b
Use Reactive JSON Encoder
...
Closes gh-16177
2024-12-06 15:14:07 -07:00
3d1e4b5f18
Polish Tests
...
Confirm that responses are a valid JSON map
Issue gh-16177
2024-12-06 15:14:07 -07:00
3e20f7b5b5
Polish Error Messages
...
- aligned the grammar
- formatted using gradlew format
- updated copyright year
Issue gh-16193
2024-12-05 17:37:46 -07:00
32e1d4c990
Improve AuthorizationManager configuration error messages
...
Closes gh-16193
2024-12-05 17:37:46 -07:00
39cd8d9faf
Update copyright headers
2024-12-05 14:52:59 -07:00
96b3c77ce0
Merge branch '6.3.x'
2024-12-05 12:30:37 -07:00
ef7b11ac01
Delay initialization UserDetailsService in Global Authentication
2024-12-05 12:26:04 -07:00
5966baf9bf
Update copyright headers
2024-12-04 16:51:05 -07:00
2ed1cafed8
Restore Deprecated ObjectPostProcessor Usage
...
Closes gh-16174
2024-12-04 16:51:05 -07:00
8c0ea3e630
Add Deprecated ObjectPostProcessor constructor
...
Issue gh-16174
2024-12-04 16:51:05 -07:00
2b5a2eef82
Address Observation Bean Name Collisions
...
Closes gh-16161
2024-11-25 13:26:52 -07:00
a55021539a
Add RSocket and WebFlux Observation Tests
...
Issue gh-11989
Issue gh-11990
2024-11-25 13:26:52 -07:00
315aafd464
Merge remote-tracking branch 'origin/6.3.x'
2024-11-22 17:23:43 -07:00
e8ba039a61
Delay initialization AuthenticationProvider in Global Authentication
2024-11-22 17:22:14 -07:00
b896a74669
Resolve Observation Bean Name Collisions
...
Closes gh-16011
2024-11-20 13:28:06 -07:00
91832bfc8e
Add EnableWebSecurity + EnableWebSocketSecurity Test
...
Issue gh-16011
2024-11-20 13:28:06 -07:00
c2cfe92a02
Merge branch '6.3.x'
2024-11-18 05:16:16 -05:00
709103e38c
Merge branch '6.2.x' into 6.3.x
2024-11-18 04:45:38 -05:00
a8c4d6cead
Require Locale argument for toLower/toUpperCase usage
2024-11-18 04:22:26 -05:00
2639ac6545
webauthn: introduce WebAuthnConfigurer#disableDefaultRegistrationPage
2024-11-14 12:11:43 -06:00
de7c452e42
webauthn: use DefaultResourcesFilter#webauthn
...
- Unconditionally use the DefaultResourcesFilter, because the javascript file is required by the
DefaultWebAythnPageGeneratingFilter, which is always registered.
2024-11-14 12:11:43 -06:00
5a95952c95
Merge branch '6.3.x'
...
Closes gh-16063
2024-11-11 15:17:02 -06:00
e1ad989d38
Merge branch '6.2.x' into 6.3.x
...
Closes gh-16062
2024-11-11 14:58:39 -06:00
81e74e65d4
Support ServerExchangeRejectedHandler @Bean
...
Closes gh-16061
2024-11-11 14:58:00 -06:00
f46e56de78
Improve Error Message for Conflicting Filter Chains
...
Closes gh-15874
2024-11-07 13:01:16 -07:00
8a6e1297a1
Add Warning Message for Missing Leading Slashes
...
Closes gh-16020
2024-10-31 12:22:17 -06:00
d9d77bed82
Allow logout+jwt JWT type for reactive
...
The OIDC back-channel spec recommends using a logout token typ `logout+jwt`
(see [here](https://openid.net/specs/openid-connect-backchannel-1_0-final.html#LogoutToken ).
Support of this type was recently added [on the servlet side]([on the Servlet side](9101bf1f7d
2024-10-28 14:21:48 -07:00
27294b2e11
Allow RelyingPartyRegistration Placeholder Resolution in XML
...
Closes gh-14645
2024-10-25 16:12:27 -06:00
689a4141df
Remove unused import
2024-10-25 13:42:33 -07:00
Josh Cummings
Steven Williams
Daniel Garnier-Moiroux
Rob Winch
Dmitry Spikhalsky
Tran Ngoc Nhan
DingHao
Joe Grandja
Josh Cummings
Cedric Montfort