Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-08 19:42:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,627 Commits 38 Branches 348 Tags
Commit Graph

11627 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Joe Grandja
01269e239d Release 5.2.13.RELEASE 5.2.13.RELEASE 2021-10-18 12:23:34 -04:00
Josh Cummings
21f0ccd088 Restructure SwitchUserFilter Logs 
Issue gh-6311
 2021-10-18 12:01:43 -04:00
Joe Grandja
823c1ebca5 Next development version 2021-10-18 10:50:44 -04:00
Joe Grandja
5c8cd23a2d Revert "Lock dependencies" 
This reverts commit fc53f81d2ef873b319f02cfc30a3c0f15f5cc24e.
 2021-10-18 10:48:23 -04:00
Joe Grandja
8605350ed6 Release 5.3.12.RELEASE 5.3.12.RELEASE 2021-10-18 10:31:23 -04:00
Josh Cummings
9481122e02 Restructure SwitchUserFilter Logs 
Issue gh-6311
 2021-10-18 09:59:42 -04:00
Steve Riesenberg
47087ba9c5 Revamp OAuth 2.0 Client reactive documentation 
Related gh-8174
 2021-10-14 14:35:25 -05:00
Steve Riesenberg
a487ef2d74 Add JwtEncoder to What's New in 5.6 2021-10-14 14:26:48 -05:00
Marcus Da Coregio
7fa39c8807 Deprecate EhCache2 support 
Since EhCache 3 is fully JSR-107 compliant, we should remove EhCache2 support and provide JCache implementations

Closes gh-10362
 2021-10-14 14:51:27 -03:00
Dávid Kováč
64e9ac995a getClaimAsBoolean() should not be falsy 
Closes gh-10148
 2021-10-14 11:28:09 -05:00
Marcus Da Coregio
00084cf986 Add saml2.ValidIssuers parameter 
Adds the saml2.ValidIssuers parameter into SAML 2.0 Assertion Validators

Closes gh-10335
 2021-10-14 09:21:43 -06:00
Eleftheria Stein
fc53f81d2e Lock dependencies 2021-10-14 15:44:09 +02:00
Eleftheria Stein
b1588c3d73 Upgrade Spring Framework to 5.2.18.RELEASE 
Close gh-10375
 2021-10-14 15:07:50 +02:00
Marcus Da Coregio
c82722c412 Update What's New in 5.6 2021-10-14 09:27:39 -03:00
Marcus Da Coregio
faec20bc69 Update DefaultWebInvocationPrivilegeEvaluator to use current ServletContext 
Closes gh-10208
 2021-10-14 09:27:02 -03:00
Eleftheria Stein
9f895708f7 Update to Google App Engine 1.9.88 
Closes gh-10381
 2021-10-14 12:02:59 +02:00
Eleftheria Stein
9f07593256 Update to nohttp 0.0.10 
Closes gh-10380
 2021-10-14 12:02:32 +02:00
Eleftheria Stein
e74ae71382 Update to Jetty 9.4.44.v20210927 
Closes gh-10378
 2021-10-14 10:55:36 +02:00
Eleftheria Stein
302da19708 Update to embedded Tomcat websocket 8.5.72 
Closes gh-10379
 2021-10-14 10:55:13 +02:00
Eleftheria Stein
30fbc269b9 Upgrade Reactor to Dysprosium-SR24 
Closes gh-10374
 2021-10-14 10:54:49 +02:00
Eleftheria Stein
27866fb767 Update to nohttp 0.0.10 
Closes gh-10377
 2021-10-14 10:54:23 +02:00
Eleftheria Stein
006fa5ed70 Upgrade to embedded Apache Tomcat 9.0.54 
Closes gh-10376
 2021-10-14 10:33:56 +02:00
Philipp Neuschwander
6db58cbf8a Conditionally resolve bearer token from request parameters 
Before this commit, the DefaultBearerTokenResolver unconditionally
resolved the request parameters to check whether multiple tokens
are present in the request and reject those requests as invalid.

This commit changes this behaviour to resolve the request parameters
only if parameter token is supported for the specific request
according to spec (RFC 6750).

Closes gh-10326
 2021-10-13 17:10:50 -05:00
Emil Sierżęga
37ccf3c18c Fixed link in .editorconfig 2021-10-13 15:38:01 -06:00
Emil Sierżęga
1a3e80506c Fixed link in .editorconfig 2021-10-13 15:37:32 -06:00
Emil Sierżęga
88c64b3b7b Fixed link in .editorconfig 2021-10-13 15:36:10 -06:00
Dávid Kováč
eb0597154d Update JavaDoc according to implementation 
Update ClaimAccessor#getClaimAsMap and ClaimAccessor#getClaimAsStringList
JavaDoc according to the current implementation

Closes gh-10117
 2021-10-13 13:13:44 -06:00
Dávid Kováč
0299808b05 Add ClaimAccessor tests 
Add tests for ClaimAccessor#getClaimAsMap and ClaimAccessor#getClaimAsStringList

Issue gh-10117
 2021-10-13 12:53:40 -06:00
Dávid Kováč
125d33e3cf Update JavaDoc according to implementation 
Update ClaimAccessor#getClaimAsMap and ClaimAccessor#getClaimAsStringList
JavaDoc according to the current implementation

Closes gh-10117
 2021-10-13 12:53:40 -06:00
Joe Grandja
e3abaf7999 Add OAuth2ErrorCodes.INVALID_REDIRECT_URI 
Closes gh-10370
 2021-10-13 14:12:44 -04:00
Gaurav Tiwari
33708e61fb Add postProcess support to Saml2LogoutConfigurer 
Closes gh-10311
 2021-10-13 12:05:48 -06:00
Josh Cummings
fbb7691be4 Polish SecurityNamespaceHandler Tests 
Issue gh-8974
 2021-10-13 11:50:14 -06:00
Emil Sierżęga
8daa6ec1fd SecurityNamespaceHandler: update schema version to 5.6 
Closes gh-8974
 2021-10-13 11:49:57 -06:00
Josh Cummings
97dfabe92e Polish SecurityNamespaceHandler Tests 
Issue gh-8974
 2021-10-13 11:37:06 -06:00
Emil Sierżęga
944463e19a SecurityNamespaceHandler: update schema version to 5.5 
Closes gh-8974
 2021-10-13 11:35:25 -06:00
Steve Riesenberg
00f466a431 Update What's New in 5.6 2021-10-13 12:06:47 -05:00
Eleftheria Stein
ba8844a67e Deprecate Kotlin methods that don't use reified types 
Closes gh-10365
 2021-10-13 10:16:37 +02:00
Josh Cummings
7b98c2ea95 Restructure SwitchUserFilter Logs 
Issue gh-6311
 2021-10-12 13:32:29 -06:00
Marcus Da Coregio
77399ee2b0 Deprecate remoting technologies support 
Closes gh-10361
 2021-10-12 14:59:37 -03:00
Marcus Da Coregio
86c24da38b Improve Method Security logging 
Closes gh-10247
 2021-10-08 14:22:09 -03:00
Marcus Da Coregio
ef01124eb9 Add reasons to AuthorizationDecisions 
Closes gh-9287
 2021-10-08 14:22:09 -03:00
Marcus Da Coregio
570092c467 Remove trace logs for PrePostAnnotationSecurityMetadataSource 
Those logs were producing too much noise on the console without adding much value.

Issue gh-10247
 2021-10-08 14:22:09 -03:00
Steve Riesenberg
3b564b2026 Add parameters converter support to AbstractWebClientReactiveOAuth2AccessTokenResponseClient 
This adds support for configuring NimbusJwtClientAuthenticationParametersConverter to any AbstractWebClientReactiveOAuth2AccessTokenResponseClient as an additional parameters converter, which in turns adds reactive support for jwt client authentication.

Closes gh-10146
 2021-10-06 13:09:33 -05:00
Alexander Schwartz
f561499683 Fix Antora cross-references that lead to other pages. 
Also using AsciiDoc style listings instead of Markdown style listings, and using explicit section IDs on all cross-references.
 2021-10-06 09:53:15 -06:00
Steve Riesenberg
9b24f66f1c Implement reactive support for JWT as an Authorization Grant 
Closes gh-10147
 2021-10-05 16:09:24 -05:00
Marcus Da Coregio
f45b990b4b Allow SAML 2.0 loginProcessingURL without registrationId 
Closes gh-10176
 2021-10-05 13:30:20 -03:00
Marcus Da Coregio
816e847af2 Allow SAML 2.0 loginProcessingURL without registrationId 
Closes gh-10176
 2021-10-05 12:54:39 -03:00
Marcus Da Coregio
02b2fcc6f0 Restore ManagementConfigurationPlugin 
Issue gh-9615
 2021-10-05 11:23:29 -03:00
Marcus Da Coregio
e2e93887af Update JFrog Build Info plugin 
Issue gh-9615
 2021-10-04 16:01:40 -03:00
Marcus Da Coregio
d2e5f2ae0d Update Gradle to 7.2 
Closes gh-9615
 2021-10-04 15:19:40 -03:00