Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 15:20:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,685 Commits 33 Branches 337 Tags
Commit Graph

7685 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Eleftheria Stein
16b0d782f4 Migrate HeadersConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 11:57:01 -06:00
Eleftheria Stein
7806ac21aa Migrate RequestMatcherConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 11:48:34 -06:00
Daniel Meier
56f1991240 Update AssertJ to version 3.12.2 
Update the AssertJ dependency to version 3.12.2. Additionally fix
some tests not compiling due to API changes of AssertJ.

Fixes gh-6786
 2019-05-31 11:45:20 -06:00
Clement Ng
e66369f6c6 Added null checks and tests to constructors 
RequestKey, JaasGrantedAuthority, and SwitchUserGrantedAuthority
assume certain final members are non-null.

Issue: gh-6892
 2019-05-29 16:10:36 -06:00
Florian Aumeier
9fe8949883 Add @transient to OAuth2IntrospectionAuthenticationToken 
fixes gh-6829
 2019-05-29 08:42:09 -06:00
Eleftheria Stein
e15922322e Migrate LogoutConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-27 22:53:51 -06:00
Josh Cummings
af3c6d4972
JwtAuthenticationTokenTests Polish 
Using Jwt.Builder to clean up some of this test's config.

Issue: gh-6893
 2019-05-23 11:24:40 -06:00
Josh Cummings
936d28d328
JwtAuthenticationToken Polish 
Aligned JavaDoc and added tests to better assess getName's
functionality.

Issue: gh-6893
 2019-05-23 10:59:45 -06:00
HaydenMeloche
f84ab3a255
Added constructors to support custom principal name 
closes #6893
 2019-05-23 10:59:44 -06:00
Eleftheria Stein
d660084538 Migrate HttpBasicConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-23 09:24:58 -06:00
Josh Cummings
d0f5b42884
Mock Jwt Test Support and Jwt.Builder Polish 
Simplified the initial support to introduce fewer classes and only the
features described in the ticket.

Changed tests to align with existing patterns in the repository.

Added JavaDoc to remaining public methods introduced for this feature.

Issue: gh-6634
Issue: gh-6851
 2019-05-22 14:23:02 -06:00
Jérôme Wacongne
e59d8a529b
Mock Jwt Test Support and Jwt.Builder 
Fixes: gh-6634
Fixes: gh-6851
 2019-05-22 14:23:02 -06:00
Kirill Gavrilov
f6998547b8 Remove '.html' from interface name 2019-05-20 16:25:30 -05:00
Kirill Gavrilov
9078885a1a Remove redundant for 2019-05-20 16:25:30 -05:00
Eleftheria Stein
f5f965b6aa Fix JavaDoc for defaultSuccessUrl 
Fixes gh-3337
 2019-05-17 10:50:30 -05:00
Eleftheria Stein
e7f93f221d Update to Spring 5.2.0.M2 
Fixes gh-6864
 2019-05-14 09:45:30 -05:00
Josh Cummings
5840e25732 Polish OAuth2TokenIntrospectionClient 
Placed URI.create in constructor so that the code doesn't do that
processing on each request. Also moved the construction helper methods
up by the constructor for added readability.

Issue: gh-6798
 2019-05-14 07:50:16 -06:00
MD Sayem Ahmed
0bc60dca69 Add custom parameters to token introspection requests 
Added support for providing custom parameters to an OAuth 2.0 token
introspection request. This is done by explicitly instantiating a
NimbusOAuth2TokenIntrospectionClient instance and then setting a custom
Converter implementation.

Fixes gh-6798
 2019-05-14 07:48:07 -06:00
Eleftheria Stein
69e4e3ed88 Update to Reactor Dysprosium-M1 
Fixes gh-6867
 2019-05-13 14:10:55 -06:00
Jérôme Wacongne
b04f55830f Git ignore .attach_pid* files 2019-05-13 14:42:55 -05:00
Akane Shimamuko
59a9feda7d Add messages_ja.properties 2019-05-13 11:43:32 -05:00
Josh Cummings
047bd16b51
Propagate Exception in NimbusReactiveJwtDecoder 
Fixes: gh-6823
 2019-05-08 17:25:02 -06:00
Josh Cummings
1ed9e3a1c6
Resource Server AuthenticationManager 
Making the authentication manager for jwt() and opaqueToken()
configurable.

Fixes: gh-6832
Fixes: gh-6849
 2019-05-07 17:04:51 -06:00
Josh Cummings
7200fa2dce
Copy Token Introspection Attributes Map 
Dereference Map passed into constructor for
OAuth2IntrospectionAuthenticationToken.

Fixes: gh-6843
 2019-05-07 13:19:02 -06:00
Rob Winch
ead28a3cee
Add create issue for features 2019-05-07 13:34:08 -05:00
Eleftheria Stein
c4b6cdea3f Fix OAuth2 multitenancy sample 
Allowing requests with valid tokens, and fixed documentation.

Fixes: gh-6834
 2019-05-03 15:37:26 -06:00
Joe Grandja
5aa50500cf oauth2Login does not auto-redirect for XHR request 
Fixes gh-6812
 2019-05-02 16:04:09 -04:00
Tadaya Tsuyukubo
aef3f514fe Set "rolePrefix" in ReactiveMethodSecurityConfiguration 
Currently, `GrantedAuthorityDefaults` is not considered in
`ReactiveMethodSecurityConfiguration`.
This commit updates the configuration to be aware of
`GrantedAuthorityDefaults` and update `rolePrefix` when the bean is
available.

Also, use the same instance of `DefaultMethodSecurityExpressionHandler`
when constructing `ExpressionBasedAnnotationAttributeFactory`.
 2019-05-02 10:46:27 -05:00
Rob Winch
342ef6c287 Update to nohttp 0.0.1.RELEASE 
Issue gh-6819
 2019-05-01 20:12:35 -05:00
Sharad Alury
2850b273ea Reactive JwkSource Builder Parameter Type 
Changed the parameter type from JWT to SignedJWT

Fixes: gh-6771
 2019-05-01 09:10:17 -06:00
Wessel Nieboer
6f5fa1b610 Make AccountStatusUserDetailsChecker implement MessageSourceAware 
Fixes: gh-3980
 2019-05-01 08:57:25 -05:00
httpain
98a8467e4c Fix javadoc typo 2019-04-30 10:42:25 -06:00
Elena Felder
e6ac9759e2 Extract bearer token from arbitrary header. 2019-04-30 10:41:20 -06:00
Josh Cummings
cf0c5f9026
Various NamespaceHttp*Tests groovy->java 
Issue: gh-4939
 2019-04-29 23:36:06 -06:00
Josh Cummings
b1195e7789 Opaque Token Intermediate Type 
Introducing OAuth2TokenIntrospectionClient and also
ReactiveOAuth2TokenIntrospectionClient as configuration points.

The DSL looks in the application context for these types in the same
way it looks for JwtDecoder and ReactiveJwtDecoder, and exposes
similar configuration methods.

Fixes: gh-6632
 2019-04-29 13:39:53 -06:00
Maksim Vinogradov
59acda04cf Fix NPE ExpressionBasedPreInvocationAdviceTests 
Getting NPE if @PreFilter argument filterType is not provided
and method accept more then one argument.

Add related exception message.

fixes gh-6803
 2019-04-26 14:40:19 -06:00
Rob Winch
82ce9aa6f8 Add nohttp 
Closes gh-6819
 2019-04-26 15:34:45 -05:00
Alexey Nesterov
0aa4805be8 Add documentation on Reactive x509 security 
[gh #5038]
 2019-04-26 12:15:18 -05:00
Alexey Nesterov
a21fa1494a Add an example and basic integration test for x509 authentication 
[gh #5038]
 2019-04-26 12:15:18 -05:00
Alexey Nesterov
9a67441507 Add x509 support for Reactive Security 
[gh #5038]
 2019-04-26 12:15:18 -05:00
Tadaya Tsuyukubo
0957ecb1e9 Align webclient section level in documentation 
Make "WebClient for Servlet Environments" section level align with
other documents in "additional-topics".
 2019-04-25 14:48:54 -06:00
Joe Grandja
5aacd0c955 Expose bean setters in @Configuration used by @EnableWebFluxSecurity 
Fixes gh-6624
 2019-04-23 11:46:09 -04:00
MD Sayem Ahmed
2c136f7b6c Add Reactive Clear-Site-Data Support 
1. A new implementation of ServerHttpHeadersWriter has been created to
   add Clear-Site-Data header support.
2. A new implementation of ServerLogoutHandler has been created which
   can be configured to write response headers during logout.
3. Added unit tests for both implementations.

Fixes gh-6743
 2019-04-19 17:46:37 -06:00
JokerSun
19e823f8d3 AuthorityUtils Null Check 
Fixes: gh-6773
 2019-04-18 16:13:31 -06:00
Joe Grandja
c3b4a5d4c2 Next Development Version 2019-04-15 13:16:02 -04:00
Joe Grandja
e66e52d08c Release 5.2.0.M2 5.2.0.M2 2019-04-15 12:59:05 -04:00
Joe Grandja
8b77cce1b6 Update to net.sourceforge.htmlunit:neko-htmlunit 2.34.0 
Fixes gh-6793
 2019-04-15 12:39:24 -04:00
Joe Grandja
bb909f1dbd Update to net.sourceforge.htmlunit:htmlunit 2.34.1 
Fixes gh-6792
 2019-04-15 12:39:24 -04:00
Joe Grandja
029e832e65 Update to org.apache.httpcomponents:httpclient 4.5.8 
Fixes gh-6791
 2019-04-15 12:39:24 -04:00
Joe Grandja
87ccd6283a Update to hibernate-entitymanager 5.4.2.Final 
Fixes gh-6789
 2019-04-15 12:39:24 -04:00