Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,183 Commits 32 Branches 333 Tags 109 MiB
Commit Graph

7183 Commits

Author SHA1 Message Date
Rob Winch 0dc80aed40 Flatten ServerHttpSecurity.oauth2() 
Fixes: gh-5712
 2018-08-21 15:48:41 -05:00
Josh Cummings 59cdfc7d6e ReactiveJwtDecoder via OIDC Provider Configuration 
A reactive static builder for constructing and configuring a
ReactiveJwtDecoder via an issuer that supports the OIDC Provider
Configuration spec.

Fixes: gh-5649
 2018-08-21 15:09:18 -05:00
Josh Cummings 01443e35b4 Reactive Jwt Validation 
This allows a user to customize the Jwt validation steps that
NimbusReactiveJwtDecoder will take for each Jwt.

Fixes: gh-5650
 2018-08-21 15:06:05 -05:00
Rob Winch 53652584b2 ResourceServerSpec->OAuth2ResourceServerSpec 
Fixes: gh-5713
 2018-08-21 14:51:22 -05:00
Joe Grandja c3e19e29b5 Remove authorizationEndpoint.baseUri in OAuth2ClientConfigurer 
Fixes gh-5661
 2018-08-21 15:33:58 -04:00
Josh Cummings b11e9ed317
Fix Javadoc Typo 
NimbusReactiveJwtDecoder incorrectly referred in its class-level doc
as being an implementation of JwtDecoder. This has been corrected to
say ReactiveJwtDecoder.

Fixes: gh-5711
 2018-08-21 12:21:23 -06:00
Rob Winch ec01657625 Polish ActiveDirectoryLdapAuthenticationProvider custom environment 
Fixes: gh-5674
 2018-08-21 12:14:43 -05:00
Yuri Konotopov 669b0ba583 ActiveDirectoryLdapAuthenticationProvider custom environment 
This change allows to inject custom environment properties for directory
context initialization.

Fixes: gh-2312
 2018-08-21 12:14:36 -05:00
Rob Winch f5701b5fe0 Fix OptimizeAntPathRequestMatcher 
Previously the logic for determining if the pathInfo should be appended
was inverted.

This correctly concatenates url + pathInfo if url is a non empty String.

Fixes: gh-5473
 2018-08-21 11:52:55 -05:00
Christoph Dreis 4ccd2f7ebd Optimize AntPathRequestMatcher.getRequestPath() 2018-08-21 11:46:37 -05:00
Rob Winch a08fa22b27 Update to oauth2-oidc-sdk:5.64.4 
Fixes: gh-5704
 2018-08-20 14:03:56 -05:00
Rob Winch f38c3bfc94 Next Developement Version 2018-08-20 13:21:25 -05:00
Rob Winch a5acf9b834 Release 5.1.0.RC2 2018-08-20 13:20:53 -05:00
Josh Cummings 3cd0ebedc9
Polish ClientRegistrations 
Class is now final

Issue: gh-5647
 2018-08-20 10:54:53 -06:00
Vedran Pavic f382b69507 Add reactive support for Referrer-Policy security header 2018-08-20 10:10:59 -05:00
Vedran Pavic 10621a0f2c Add reactive support for Content-Security-Policy security header 2018-08-20 10:03:42 -05:00
Vedran Pavic 29cfc3dd1d Add reactive support for Feature-Policy security header 
Closes gh-5672
 2018-08-20 09:02:12 -05:00
Rob Winch eecb01abb2 Update to Spring Data Lovelace RC2 
Fixes: gh-5700
 2018-08-20 06:30:18 -05:00
Rob Winch 7c5c274854 Add authcodegrant-webflux sample 
Issue: gh-5620
 2018-08-19 21:28:08 -05:00
Rob Winch 85d5d4083f Add ServerOAuth2AuthorizationRequestResolver 
Fixes: gh-5610
 2018-08-19 21:13:54 -05:00
Rob Winch b9ab4929b7 Add OAuth2AuthorizationCodeGrantWebFilter 
Issue: gh-5620
 2018-08-19 21:12:41 -05:00
Rob Winch d0ebe47cd5 OAuth2LoginReactiveAuthenticationManager uses OAuth2AuthorizationCodeReactiveAuthenticationManager 
Issue: gh-5620
 2018-08-19 21:12:32 -05:00
Rob Winch 8b67154e77 Add OAuth2AuthorizationCodeReactiveAuthenticationManager 
Issue: gh-5620
 2018-08-19 21:12:06 -05:00
Rob Winch f843da1942 Add OAuth2LoginAuthenticationWebFilter 
This is necessary so that the saving of the authorized client occurs
outside of the ReactiveAuthenticationManager. It will allow for
saving with the ServerWebExchange when ReactiveOAuth2AuthorizedClientRepository
is added.

Issue: gh-5621
 2018-08-19 21:11:43 -05:00
Rob Winch dd7925cb63 OAuth2AuthorizedClientArgumentResolver Uses ServerOAuth2AuthorizedClientRepository 
Issue: gh-5621
 2018-08-19 21:11:24 -05:00
Rob Winch 1d57a084aa Add ServerOAuth2AuthorizedClientRepository 
Fixes: gh-5621
 2018-08-19 21:10:15 -05:00
Rob Winch 3a7083c7e9 Add Test<DomainObject>s For OAuth2 
Fixes: gh-5699
 2018-08-19 21:08:28 -05:00
Rob Winch b02ce59188 TestClientRegistrations 
Fixes: gh-5651
 2018-08-19 21:08:02 -05:00
Rob Winch 5ddb25fff8 Consistent .server package for ServerWebExchange OAuth2 
Fixes: gh-5663
 2018-08-19 21:05:55 -05:00
Do Nhu Vy cbd28cfd1e Polish Reference Documentation 2018-08-18 20:39:18 -05:00
Do Nhu Vy 329bde0db1 Update database-schema.adoc 2018-08-18 20:21:35 -05:00
Do Nhu Vy b192bf54f7 Update database-schema.adoc 2018-08-18 20:21:35 -05:00
Do Nhu Vy 594cacb0d6 Add SQL for Oracle at section USERS and revise ACL 
I feel very painful when using SQL script for Oracle database. I set datatype, number(18), number(38) is too big, all character is uppercase (because Oracle database is case-insensitive). ACL's SQL script has script for Oracle database, but section USERS, AUTHORITIES has not SQL scrip for Oracle database, therefore I add more.
 2018-08-18 20:21:35 -05:00
Do Nhu Vy 7f04d8d893 Polish Reference Documentation 
- Improve emphasis
- Fix formatting
- Update to Spring Framework 5
- Bom -> BOM

Fixes: gh-5695
 2018-08-18 20:09:31 -05:00
Do Nhu Vy 1d8db1085a Polish Reference Documentation 
- Fix Broken Link
- Update docs to state Spring Security 5 instead of Spring Security 4

Fixes: gh-5694
 2018-08-18 20:05:44 -05:00
Rob Winch e3eaa99ad0 Polish ServerAuthenticationConverter 
Update changes for ServerAuthenticationConverter to be passive.

Issue: gh-5338
 2018-08-18 19:55:39 -05:00
Eric Deandrea b6afe66d32 Add ServerAuthenticationConverter interface 
- Adding an ServerAuthenticationConverter interface
- Retro-fitting ServerOAuth2LoginAuthenticationTokenConverter,
 ServerBearerTokenAuthentivationConverter, ServerFormLoginAuthenticationConverter,
 and ServerHttpBasicAuthenticationConverter to implement ServerAuthenticationConverter
- Deprecate existing AuthenticationWebFilter.setAuthenticationConverter
and add overloaded one which takes ServerAuthenticationConverter

Fixes gh-5338
 2018-08-18 19:55:39 -05:00
Rob Winch 34c8d66017 Update to hibernate-validator:6.0.12.Final 
Fixes: gh-5688
 2018-08-17 21:11:13 -05:00
Rob Winch 1f2e0d1667 Update to hibernate-entitymanager:5.3.5.Final 
Fixes: gh-5687
 2018-08-17 21:11:00 -05:00
Rob Winch 46f71cc232 Update to assertj 3.11.0 
Fixes: gh-5686
 2018-08-17 21:10:47 -05:00
Rob Winch 75bc2967a1 Update to HtmlUnit 2.32 
Fixes: gh-5685
 2018-08-17 21:10:37 -05:00
Rob Winch c453135178 Update to unboundid-ldapsdk:4.0.7 
Fixes: gh-5684
 2018-08-17 21:10:26 -05:00
Rob Winch fc19cd750f Update to oauth2-oidc-sdk:5.64.3 
Fixes: gh-5683
 2018-08-17 21:10:12 -05:00
Rob Winch 1c270bbf98 Update to nimbus-jose-jwt:6.0 
Fixes: gh-5682
 2018-08-17 21:10:01 -05:00
Rob Winch 85efba7aa3 Update to Spring 5.1.0.RC2 
Fixes: gh-5681
 2018-08-17 21:09:49 -05:00
Rob Winch 5a94ff2157 Update to Reactor Californium-M2 
Fixes: gh-5680
 2018-08-17 21:09:41 -05:00
Rob Winch 2c27e18eb3 GlobalMethodSecurityConfiguration uses BeanFactoryAware 
This works around an issue found when updating to
Spring 5.1.0.RC2

Issue: gh-5679
 2018-08-17 21:09:37 -05:00
Josh Cummings 2e620a26de Auto-configure JwtDecoder via OpenId Configuration 
Adding JwtDecoders#fromOidcIssuerLocation which takes an issuer
and derives from it the jwk set uri via a call to
.well-known/openid-configuration

Fixes: gh-5523
 2018-08-17 11:20:26 -05:00
Rob Winch ff8163f4c7 Run rnc generation after Feature-Policy Support 
After the Feature-Policy support changes the format of the xsd did not
align with the generator which meant running the build caused changes
for the commit.

This commit ran the xsd generation so that the formatting would be
consistent with the generator.

Issue: gh-5670
 2018-08-17 11:20:26 -05:00
Josh Cummings d610f31425 Jwt -> Authentication Conversion 
Exposes ability to specify a strategy for converting Jwt into an
Authentication, specifically in JwtAuthenticationProvider.

Fixes: gh-5629
 2018-08-17 11:04:27 -05:00