Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,663 Commits 33 Branches 337 Tags
Commit Graph

7663 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Josh Cummings
1ed9e3a1c6
Resource Server AuthenticationManager 
Making the authentication manager for jwt() and opaqueToken()
configurable.

Fixes: gh-6832
Fixes: gh-6849
 2019-05-07 17:04:51 -06:00
Josh Cummings
7200fa2dce
Copy Token Introspection Attributes Map 
Dereference Map passed into constructor for
OAuth2IntrospectionAuthenticationToken.

Fixes: gh-6843
 2019-05-07 13:19:02 -06:00
Rob Winch
ead28a3cee
Add create issue for features 2019-05-07 13:34:08 -05:00
Eleftheria Stein
c4b6cdea3f Fix OAuth2 multitenancy sample 
Allowing requests with valid tokens, and fixed documentation.

Fixes: gh-6834
 2019-05-03 15:37:26 -06:00
Joe Grandja
5aa50500cf oauth2Login does not auto-redirect for XHR request 
Fixes gh-6812
 2019-05-02 16:04:09 -04:00
Tadaya Tsuyukubo
aef3f514fe Set "rolePrefix" in ReactiveMethodSecurityConfiguration 
Currently, `GrantedAuthorityDefaults` is not considered in
`ReactiveMethodSecurityConfiguration`.
This commit updates the configuration to be aware of
`GrantedAuthorityDefaults` and update `rolePrefix` when the bean is
available.

Also, use the same instance of `DefaultMethodSecurityExpressionHandler`
when constructing `ExpressionBasedAnnotationAttributeFactory`.
 2019-05-02 10:46:27 -05:00
Rob Winch
342ef6c287 Update to nohttp 0.0.1.RELEASE 
Issue gh-6819
 2019-05-01 20:12:35 -05:00
Sharad Alury
2850b273ea Reactive JwkSource Builder Parameter Type 
Changed the parameter type from JWT to SignedJWT

Fixes: gh-6771
 2019-05-01 09:10:17 -06:00
Wessel Nieboer
6f5fa1b610 Make AccountStatusUserDetailsChecker implement MessageSourceAware 
Fixes: gh-3980
 2019-05-01 08:57:25 -05:00
httpain
98a8467e4c Fix javadoc typo 2019-04-30 10:42:25 -06:00
Elena Felder
e6ac9759e2 Extract bearer token from arbitrary header. 2019-04-30 10:41:20 -06:00
Josh Cummings
cf0c5f9026
Various NamespaceHttp*Tests groovy->java 
Issue: gh-4939
 2019-04-29 23:36:06 -06:00
Josh Cummings
b1195e7789 Opaque Token Intermediate Type 
Introducing OAuth2TokenIntrospectionClient and also
ReactiveOAuth2TokenIntrospectionClient as configuration points.

The DSL looks in the application context for these types in the same
way it looks for JwtDecoder and ReactiveJwtDecoder, and exposes
similar configuration methods.

Fixes: gh-6632
 2019-04-29 13:39:53 -06:00
Maksim Vinogradov
59acda04cf Fix NPE ExpressionBasedPreInvocationAdviceTests 
Getting NPE if @PreFilter argument filterType is not provided
and method accept more then one argument.

Add related exception message.

fixes gh-6803
 2019-04-26 14:40:19 -06:00
Rob Winch
82ce9aa6f8 Add nohttp 
Closes gh-6819
 2019-04-26 15:34:45 -05:00
Alexey Nesterov
0aa4805be8 Add documentation on Reactive x509 security 
[gh #5038]
 2019-04-26 12:15:18 -05:00
Alexey Nesterov
a21fa1494a Add an example and basic integration test for x509 authentication 
[gh #5038]
 2019-04-26 12:15:18 -05:00
Alexey Nesterov
9a67441507 Add x509 support for Reactive Security 
[gh #5038]
 2019-04-26 12:15:18 -05:00
Tadaya Tsuyukubo
0957ecb1e9 Align webclient section level in documentation 
Make "WebClient for Servlet Environments" section level align with
other documents in "additional-topics".
 2019-04-25 14:48:54 -06:00
Joe Grandja
5aacd0c955 Expose bean setters in @Configuration used by @EnableWebFluxSecurity 
Fixes gh-6624
 2019-04-23 11:46:09 -04:00
MD Sayem Ahmed
2c136f7b6c Add Reactive Clear-Site-Data Support 
1. A new implementation of ServerHttpHeadersWriter has been created to
   add Clear-Site-Data header support.
2. A new implementation of ServerLogoutHandler has been created which
   can be configured to write response headers during logout.
3. Added unit tests for both implementations.

Fixes gh-6743
 2019-04-19 17:46:37 -06:00
JokerSun
19e823f8d3 AuthorityUtils Null Check 
Fixes: gh-6773
 2019-04-18 16:13:31 -06:00
Joe Grandja
c3b4a5d4c2 Next Development Version 2019-04-15 13:16:02 -04:00
Joe Grandja
e66e52d08c Release 5.2.0.M2 5.2.0.M2 2019-04-15 12:59:05 -04:00
Joe Grandja
8b77cce1b6 Update to net.sourceforge.htmlunit:neko-htmlunit 2.34.0 
Fixes gh-6793
 2019-04-15 12:39:24 -04:00
Joe Grandja
bb909f1dbd Update to net.sourceforge.htmlunit:htmlunit 2.34.1 
Fixes gh-6792
 2019-04-15 12:39:24 -04:00
Joe Grandja
029e832e65 Update to org.apache.httpcomponents:httpclient 4.5.8 
Fixes gh-6791
 2019-04-15 12:39:24 -04:00
Joe Grandja
87ccd6283a Update to hibernate-entitymanager 5.4.2.Final 
Fixes gh-6789
 2019-04-15 12:39:24 -04:00
Joe Grandja
b6822bbdad Update to bcprov-jdk15on:1.61 
Fixes gh-6788
 2019-04-15 12:39:24 -04:00
Joe Grandja
9e549df1e6 Update to bcpkix-jdk15on 1.61 
Fixes gh-6787
 2019-04-15 12:39:24 -04:00
Joe Grandja
2cd52fb648 Update to org.aspectj:* to 1.9.3 
Fixes gh-6785
 2019-04-15 12:02:24 -04:00
Joe Grandja
164c18b753 Update to commons-codec 1.12 
Fixes gh-6784
 2019-04-15 11:59:01 -04:00
Joe Grandja
1112c79848 Update to com.squareup.okhttp3 3.14.1 
Fixes gh-6783
 2019-04-15 11:57:20 -04:00
Joe Grandja
84550d1a51 Update to oauth2-oidc-sdk 6.8 
Fixes gh-6782
 2019-04-15 11:53:57 -04:00
Joe Grandja
ebaab0f987 Update to nimbus-jose-jwt 7.0.1 
Fixes gh-6781
 2019-04-15 11:51:32 -04:00
Kyle Anderson
4a6e91531a Fix Broken Documentation Link 
Fixes: gh-6553
 2019-04-13 20:58:03 -06:00
Josh Cummings
20a7bc4785
Improved DigestAuthenticationFilter Test Coverage 
Issue: gh-5462
 2019-04-13 20:27:08 -06:00
Thomas Vitale
d88c2c19f0
Throw exception that was created but not thrown 
Fixes gh-5462
 2019-04-13 20:27:07 -06:00
Josh Cummings
b252371de7 Resource Server Static Sample Uses @Value For Key 
Issue: gh-6494
 2019-04-13 19:39:11 -06:00
Josh Cummings
1c25fe26c9 Introduce Support for Reading RSA Keys 
Fixes: gh-6494
 2019-04-13 19:39:11 -06:00
Dan Zheng
22c8f63390 review phase2 2019-04-13 19:22:44 -06:00
Dan Zheng
570eb01733 review phase1 2019-04-13 19:22:44 -06:00
Dan Zheng
678e0b19e0 Introduce @CurrentSecurityContext for method arguments 2019-04-13 19:22:44 -06:00
Denis Babochenko
4a286be2b9 Update samples documentation 2019-04-13 19:21:10 -06:00
Denis Babochenko
21f7148e7a Update filters documentation 
Fixes: gh-5553
 2019-04-13 19:21:10 -06:00
Joe Grandja
bed3371b80 Support symmetric key for JwtDecoder 
Fixes gh-5465
 2019-04-12 13:21:50 -04:00
Josh Cummings
fc6b66fdb3
Add JDK 12 to Jenkins Build 
Fixes: gh-6774
 2019-04-12 10:29:59 -06:00
Joe Grandja
a6cbc909b6 SecurityEvaluationContextExtension implements latest EvaluationContextExtension 
Fixes gh-6766
 2019-04-11 10:04:57 -04:00
Joe Grandja
f977a2594d Update to Spring Boot 2.2.0.M1 
Fixes gh-6770
 2019-04-11 10:00:57 -04:00
Joe Grandja
308bbf680e Update to Spring Data Moore-M3 
Fixes gh-6769
 2019-04-11 09:56:49 -04:00