Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2026-01-26 16:27:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,905 Commits 51 Branches 370 Tags
Commit Graph

520 Commits

Author SHA1 Message Date
Josh Cummings
a283700ef8
Add CacheSaml2AuthenticationRequestRepository 
Closes gh-14793
 2025-04-03 17:43:48 -06:00
Josh Cummings
67c21de1cf
Support Continue Filter Chain When No Relying Party 
Closes gh-16000
 2025-04-03 15:32:23 -06:00
Josh Cummings
5436fd5574
Remove Unecessary Code 2025-04-03 14:28:54 -06:00
Josh Cummings
91b0936189
Add AssertionValidator 
- Ships with support for customizing the OpenSAML validators to use
- Or, you can supply your own instance of SAML20AssertionValidator

Closes gh-15578
 2025-04-02 17:44:40 -06:00
Josh Cummings
99345537d6
Add RequestMatcher Migration Path for AbstractAuthenticationProcessingFilter 
Issue gh-16417
 2025-03-26 16:38:39 -06:00
Josh Cummings
de07b1108f
Use PathPatternRequestMatcher in Web Components 
This commit changes filters and resolvers that were using AntPathRequestMatcher as their
default to using PathPatternRequestMatcher.

Issue gh-16632
 2025-03-26 13:28:58 -06:00
Josh Cummings
50ad378a29
Polish MockHttpServletRequest Usage 
This commit makes so that the requestURI is set to a value that makes
sense with the other properties being mocked.

Issue gh-16632
 2025-03-26 13:27:17 -06:00
Filip Hrisafov
cd9d6ce5c9 Fix typos Open SAML 5 Javadoc referencing Open SAML 4 
Signed-off-by: Filip Hrisafov <filip.hrisafov@gmail.com>
 2025-03-19 18:06:26 -06:00
Rob Winch
c8fea962a0
Merge branch '6.4.x' 
- 04f530b opensamlFiveTest.extendsFrom testRuntimeOnly

Issue gh-16757
 2025-03-17 15:41:13 -05:00
Rob Winch
04f530bc1b
opensamlFiveTest.extendsFrom testRuntimeOnly 
Issue gh-16756
 2025-03-17 15:41:07 -05:00
Rob Winch
e6223dede3
Merge branch '6.4.x' 
- adb303e Add testRuntimeOnly junit-platform-launcher

Closes gh-16757
 2025-03-17 14:34:18 -05:00
Rob Winch
05116eabbd
Merge branch '6.3.x' into 6.4.x 
- adb303e Add testRuntimeOnly junit-platform-launcher

Closes gh-16756
 2025-03-17 14:18:49 -05:00
Rob Winch
adb303e152
Add testRuntimeOnly junit-platform-launcher 
Closes gh-16755
 2025-03-17 14:16:44 -05:00
Josh Cummings
f2d78a01c3
Fix JavaDoc Typos 2025-02-26 11:31:02 -07:00
Tran Ngoc Nhan
51e9f073dd Fix format 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-02-13 16:18:28 -07:00
Tran Ngoc Nhan
3cf1686c0b Revert Nullable annotation 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-02-13 16:18:28 -07:00
Tran Ngoc Nhan
5d089f680e Consistently NonNull annotation 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-02-13 16:18:28 -07:00
Josh Cummings
5ff87128b1
Make Saml2AuthenticationToken Serializable 
Issue gh-16286
 2025-02-03 10:13:14 -07:00
Tran Ngoc Nhan
bcc4b415b3
Make RelyingPartyRegistration Serializable 
Closes gh-16286
 2025-02-03 10:13:13 -07:00
Josh Cummings
4b5bacf71a
Make Saml2AuthenticationToken Serializable 
Issue gh-16286
 2025-01-30 18:05:17 -07:00
Tran Ngoc Nhan
e50415de85
Make RelyingPartyRegistration Serializable 
Closes gh-16286
 2025-01-30 17:45:41 -07:00
Josh Cummings
8735368d9e
Don't Support Serialization of Jackson Modules 
Issu gh-16276
 2025-01-14 17:04:36 -07:00
Josh Cummings
841c03fe3b
Add Serializable Compatilibity to Saml 2.0 Exceptions 
Issue gh-16276
 2024-12-17 09:36:29 -07:00
Josh Cummings
b9911fd522
Add serialVersionUID to Authentication classes 
Issue gh-16276
 2024-12-13 16:41:32 -07:00
Josh Cummings
e3cd4339b2
Add Serial Version 
Closes gh-16163
 2024-12-13 11:53:15 -07:00
Josh Cummings
7e83fd54aa
Add Test Saml 2.0 Test Objects 2024-12-12 18:12:11 -07:00
opensource
7b51eab9fe Initialize OpenSAML in OpenSamlAssertingPartyMetadataRepository 
Closes gh-16042

This commit adds a static initializer block to both OpenSaml4AssertingPartyMetadataRepository
and OpenSaml5AssertingPartyMetadataRepository. This ensures OpenSAML is initialized upon class
loading, preventing failures when methods like withMetadataLocation are invoked without prior
initialization.
 2024-11-11 16:52:47 -07:00
Josh Cummings
726ab52e1a
DefaultSaml2AuthenticatedPrincipal Can Be a Map Key 
Closes gh-15346
 2024-10-25 14:02:06 -06:00
Josh Cummings
ecf6cace82
Re-Enable Disabled OpenSAML Tests 
Issue gh-15395
 2024-08-30 10:21:32 -06:00
Josh Cummings
c9d083717f
Apply OpenSAML Test Fix to Remaining Test 
There was one test that wasn't converted and now it is.

Issue gh-15395
 2024-08-30 10:21:32 -06:00
Josh Cummings
b91f10825e
Disable Flaky Tests 
There was another flaky failure. While it seems clear what
needs to be done to repair it, this commit disables these
tests for now while the CI on a separate branch confirms
after a few days that the tests are stable again.

Issue gh-15395
 2024-08-26 08:58:38 -06:00
Josh Cummings
561c786726
Repair Flaky Tests 
The issue turned out to be that OpenSAML first sends two HEAD
requests before sending a GET to retrieve the metadata. The way
the MockWebServer dispatcher was configured, it would send back
the metadata on each request. This created a situation where sockets
were being closed by the client before the server had sent all the
response, resulting in a broken pipe.

The tests would succeed most of the time due to lucky timing between
the client closing the socket and the server having sent all of its
(unrequested) data.

This version sends an expected HEAD response when requested.

Issue gh-15395
 2024-08-23 15:55:56 -06:00
Marcus Hert Da Coregio
229a8d2fad Remove unused imports 2024-08-21 08:31:11 -03:00
Josh Cummings
d7138cdb67
Repair Flaky Tests 
The error between MockWebServer and OpenSAML still happens on
occasion. This commit uses MockWebServer's default queue dispatcher
to remove any customization that might be contributing to
the flakiness.

Issue gh-15395
 2024-08-20 17:58:56 -06:00
Josh Cummings
e52c6de39c
Repair Flaky Tests 
- Applying changes to OpenSaml4 tests that were already applied
to OpenSaml5 tests

Issue gh-15395
 2024-08-09 08:22:05 -06:00
Josh Cummings
f75cb17f35
Add Missing Delegate Call 
Issue gh-11658
 2024-08-06 18:14:12 -06:00
Josh Cummings
08d1be5774
Fix Build to Add Missing Tests 
Issue gh-11658
 2024-08-06 18:14:12 -06:00
Josh Cummings
1da383b360
Add OpenSAML 5 Support 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings
c6d6bfd74f
Move OpenSAML 4 Support to Separate Source Directory 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings
1be596bb2f
Use OpenSAML API for registration 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings
78a0173cc1
Use OpenSAML API for web 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings
bf5b334531
Use OpenSAML API for web.authentication 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings
51fc05630d
Use OpenSAML API for web.authentication.logout 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings
ff9a925e88
Use OpenSAML API for metadata 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings
80b31820cd
Use OpenSAML API in authentication 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings
416859e70e
Use OpenSAML API in authentication.logout 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings
94431d1650
Add Internal OpenSAML API 
This will be useful for exposing OpenSAML functionality at
a higher level. Each OpenSAML major version release should
provide a new implementation.

Issue gh-11658
 2024-08-06 18:14:09 -06:00
Josh Cummings
54a4792b7a
Remove Unneeded OpenSAML 4 References 
This will reduce the number of components that need to be
duplicated between the OpenSAML 4 and 5 support

Issue gh-11658
 2024-08-06 18:14:09 -06:00
Josh Cummings
ab842b74b9
Use OpenSAML ParserPool Defaults 
Originally, Spring Security turned off various features
XML parsing feature for the underlying DocumentBuilderFactory
that OpenSAML uses.

Both OpenSAML 4 and 5 set these values by default, so we
can safely accept the defaults at this point.

Issue gh-11658
 2024-08-06 18:14:09 -06:00
Josh Cummings
2f34824d0e Fix Formatting 2024-07-29 14:03:35 -07:00