983 Commits

Author	SHA1	Message	Date
Xi Minghui	0b98eb4139	Correct ObservationRegistry Type Reference	2024-09-03 14:28:00 -07:00
Tran Ngoc Nhan	febe5e6ddf	docs: update	2024-09-03 13:51:47 -07:00
Xi Minghui	d23f283598	Corrected AuthenticationEventPublisher Type	2024-09-03 13:24:09 -07:00
Marcus Hert Da Coregio	00e4a8fb54	Add support for One-Time Token Login ... Closes gh-15114	2024-09-03 10:07:56 -03:00
Josh Cummings	add5c56136	Update AuthorizeReturnObject Jackson Docs ... Now instructs to use MethodAuthorizationDeniedHandler Issue gh-14601	2024-08-30 11:43:47 -06:00
DingHao	fd05c5ad76	Remove Advised Methods from Authorization Proxy Objects ... Closes gh-15561	2024-08-30 10:40:25 -07:00
Xi Minghui	e39b39dada	Corrected Reference to HttpServletRequest#authenticate	2024-08-26 15:35:13 -07:00
Josh Cummings	d2e8c19789	Merge branch '6.3.x'	2024-08-26 16:33:04 -06:00
Josh Cummings	279cb89eac	Merge branch '6.2.x' into 6.3.x	2024-08-26 16:32:58 -06:00
Hero Wanders	2ba9b6821a	Fix OIDC Logout Code Snippets	2024-08-26 15:32:35 -07:00
Hero Wanders	f372f5cf52	Replace OidcSessionStrategy References with OidcSessionRegistry	2024-08-26 15:32:35 -07:00
Josh Cummings	f0f04e490e	Merge branch '6.3.x'	2024-08-26 16:25:27 -06:00
Josh Cummings	6ea33ceaea	Merge branch '6.2.x' into 6.3.x	2024-08-26 16:25:12 -06:00
Junhyunny	47723f6d39	Fix code format in OIDC Logout docs	2024-08-26 15:14:02 -07:00
Steve Riesenberg	8318a42959	Update What's New for 6.4 ... Issue gh-15437	2024-08-22 13:12:33 -05:00
Josh Cummings	06febf7857	Update What's New	2024-08-21 18:19:18 -06:00
Steve Riesenberg	e3c19ba86c	Add RestClient interceptor ... Closes gh-13588	2024-08-16 17:15:18 -05:00
Robert Danczak	12a9f9240c	Fix: Adjusted code formatting to remaining code examples.	2024-08-12 12:59:36 -03:00
Josh Cummings	e40c98e6d7	Deprecate PrePostTemplateDefaults ... Since there is nothing specific to configuring pre/post annotations, there is no need for the extra class. If a need like this does arise in the future, either AnnotationTemplateExpressionDefaults can be sub- classed, or it can have introduced a Map field holding custom properties. Issue gh-15286	2024-08-10 11:46:51 -06:00
Josh Cummings	f4d9d0d54f	Document @AuthenticationPrincipal meta-annotations ... Issue gh-15286	2024-08-10 11:46:51 -06:00
Josh Cummings	96682a1d5c	Document OpenSAML 4 vs OpenSAML 5 Support ... Closes gh-11658	2024-08-06 18:14:12 -06:00
Josh Cummings	1da383b360	Add OpenSAML 5 Support ... Issue gh-11658	2024-08-06 18:14:11 -06:00
Josh Cummings	1be596bb2f	Use OpenSAML API for registration ... Issue gh-11658	2024-08-06 18:14:11 -06:00
Josh Cummings	51fc05630d	Use OpenSAML API for web.authentication.logout ... Issue gh-11658	2024-08-06 18:14:10 -06:00
Josh Cummings	ef35c4a64a	Merge branch '6.3.x'	2024-07-29 15:10:50 -06:00
Josh Cummings	97a49e18b9	Merge branch '6.2.x' into 6.3.x	2024-07-29 15:10:32 -06:00
Josh Cummings	e51507e32d	Polish Inline Code Formatting	2024-07-29 14:08:01 -07:00
Junhyunny	bfee6927c2	Correct Explanation for HttpSessionCsrfTokenRepository	2024-07-29 14:08:01 -07:00
Josh Cummings	e0be46ea84	Merge branch '6.3.x'	2024-07-29 13:40:27 -06:00
Taha Körkem	da65830569	Use Correct Meta-Annotation in Kotlin Sample	2024-07-29 13:39:34 -06:00
Marcus Hert Da Coregio	8231b8a03b	Merge branch '6.3.x'	2024-07-29 14:56:16 -03:00
Marcus Hert Da Coregio	c1b3b329af	Merge branch '6.2.x' into 6.3.x	2024-07-29 14:56:09 -03:00
baezzys	3d4bcf1b44	fix: Restrict automatic CORS configuration to UrlBasedCorsConfigurationSource ... - Update CORS configuration logic to automatically enable .cors() only if a UrlBasedCorsConfigurationSource bean is present. - Modify applyCorsIfAvailable method to check for UrlBasedCorsConfigurationSource instances.	2024-07-29 14:55:55 -03:00
Josh Cummings	9d8888c5f0	Use AssertingPartyMetadata ... Issue gh-15394	2024-07-19 18:48:23 -07:00
Josh Cummings	e6dfb63bdf	Add OpenSamlAssertingPartyMetadataRepository ... Closes gh-12116 Closes gh-15395	2024-07-19 18:48:23 -07:00
Josh Cummings	796e4d6b6c	Add query parameter support for authn requests ... Closes gh-15017	2024-07-13 23:57:57 -06:00
Rob Winch	5bd4db1a13	Use javadoc macro ... Closes gh-15386	2024-07-09 22:35:01 -05:00
Antoine Rey	f184d13096	Update the OAuth2 jwt and opaque resource server documentation with the Lambda DSL ... The OAuth2ResourceServerConfigurer::opaqueToken() and ::jwt() methods are deprecated since Spring Security 6.1	2024-07-09 07:25:13 -07:00
Josh Cummings	290cee238d	Merge branch '6.2.x' into 6.3.x ... Closes gh-15380	2024-07-08 20:52:46 -06:00
Seungrae	f4cbaaa2dd	Fix typos and formatting in documentation ... Closes gh-15353	2024-07-08 20:52:06 -06:00
Seungrae	148e7843bf	Fix typos and formatting in documentation	2024-07-08 19:51:06 -07:00
Josh Cummings	7b39800606	Add CachingRelyingPartyRegistrationRepository ... Closes gh-15341	2024-07-01 19:43:09 -06:00
Josh Cummings	f532807836	Merge branch '6.3.x'	2024-07-01 17:20:52 -06:00
Josh Cummings	4975254124	Merge branch '6.2.x' into 6.3.x ... Closes gh-15340	2024-07-01 17:19:51 -06:00
Antoine Rey	99cda31579	Update prerequisites documentation ... Raises the minimum version of the Java runtime for Spring Security from 8 to 17 Closes gh-15323	2024-07-01 17:19:22 -06:00
Dumitru Boldureanu	48826201b1	Update architecture.adoc ... The list of filters is printed at DEBUG level on the application startup and not INFO level, see DefaultSecurityFilterChain	2024-07-01 15:19:50 -06:00
Stefan Ganzer	ceb278c908	Update events.adoc ... Changes GenericAuthenticationFailureEvent to AbstractAuthenticationFailureEvent The class GenericAuthenticationFailureEvent does not exist.	2024-07-01 15:19:00 -06:00
Stefan Ganzer	e7212b37f7	Update events.adoc ... Changes type to DefaultAuthenticationEventPublisher Only DefaultAuthenticationEventPublisher has the method setDefaultAuthenticationFailureEvent, but not the interface AuthenticationEventPublisher.	2024-07-01 15:19:00 -06:00
Marcono1234	a9aefafb76	Fix malformed list in "Using Method Parameters" documentation	2024-07-01 15:18:17 -06:00
Marcus Hert Da Coregio	8572764583	Merge branch '6.3.x' ... Closes gh-15322	2024-06-28 15:34:28 -03:00