Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-24 07:37:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,597 Commits 34 Branches 337 Tags
Commit Graph

8597 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Eleftheria Stein
523cdba8ae Update to org.slf4j 1.7.32 
Closes gh-10168
 2021-08-12 16:19:27 +02:00
Eleftheria Stein
e4165c4c80 Update to Jetty 9.4.43.v20210629 
Closes gh-10167
 2021-08-12 16:19:03 +02:00
Eleftheria Stein
7c622dba33 Update to embedded Apache Tomcat 9.0.52 
Closes gh-10166
 2021-08-12 16:18:36 +02:00
Eleftheria Stein
fb8672a31b Update to jaxb-impl 2.3.5 
Closes gh-10165
 2021-08-12 16:18:00 +02:00
Eleftheria Stein
7d92b7bda7 Update to Spring Framework 5.2.16.RELEASE 
Closes gh-10164
 2021-08-12 16:17:11 +02:00
Eleftheria Stein
410c891f75 Update to Reactor Dysprosium-SR22 
Closes gh-10163
 2021-08-12 16:16:43 +02:00
Eleftheria Stein
6bcf499884 Update to org.aspectj 1.9.7 
Closes gh-10169
 2021-08-12 16:16:13 +02:00
Steve Riesenberg
e1b6a7ba29 Revert "URL encode client credentials" 
This reverts commit c0200512a7bd05faf5de5bc504a400b5eb2f998f.

Issue gh-9610 gh-9863
Closes gh-10018
 2021-07-20 14:06:46 -05:00
Rob Winch
8bb69c4514 Update to use s01.oss.sonatype.org Maven Publishing 
Closes gh-10024
 2021-06-30 10:40:42 -05:00
Rob Winch
a752919cc9 Update to spring-build-conventions:0.0.23.2.RELEASE 
Closes gh-10029
 2021-06-30 10:27:53 -05:00
/usr/local/ΕΨΗΕΛΩΝ
2c1126c5aa Improve AuthenticationManagerBeanDefinitionParser XML parsing 
Closes gh-7282
 2021-06-28 13:42:02 +02:00
Marcus Da Coregio
a840aa7531 Next development version 2021-06-21 14:45:35 -03:00
Marcus Da Coregio
560fb35dc5 Relase 5.2.11.RELEASE 5.2.11.RELEASE 2021-06-21 08:45:10 -03:00
Eleftheria Stein
6753e1da68 Update to Spring LDAP Core 2.3.4.RELEASE 
Closes gh-9968
 2021-06-21 11:27:47 +02:00
Eleftheria Stein
703f1f1e04 Update to org.slf4j 1.7.31 
Closes gh-9967
 2021-06-21 11:26:11 +02:00
Eleftheria Stein
f0d208667b Update to HSQLDB 2.5.2 
Closes gh-9966
 2021-06-21 11:25:05 +02:00
Eleftheria Stein
dc7387075c Update to hibernate-entitymanager 5.4.32.Final 
Closes gh-9965
 2021-06-21 11:21:40 +02:00
Eleftheria Stein
c193a06ac5 Update to Jetty 9.4.42.v20210604 
Closes gh-9964
 2021-06-21 11:19:18 +02:00
Eleftheria Stein
3e27f6aece Update to embedded Apache Tomcat 9.0.48 
Closes gh-9963
 2021-06-21 11:17:18 +02:00
Eleftheria Stein
4314c335c8 Update to embedded Tomcat websocket 8.5.68 
Closes gh-9962
 2021-06-21 11:15:38 +02:00
Eleftheria Stein
c87c5eb888 Update ehcache to 2.10.9.2 
Closes gh-9961
 2021-06-21 11:13:54 +02:00
Eleftheria Stein
613ec13e95 Update to jaxb-impl 2.3.4 
Closes gh-9960
 2021-06-21 11:12:47 +02:00
Eleftheria Stein
dabe2bacb0 Update to RSocket 1.0.5 
Closes gh-9959
 2021-06-21 11:12:22 +02:00
Eleftheria Stein
6afe47f164 Update to Spring Framework 5.2.15.RELEASE 
Closes gh-9958
 2021-06-21 11:08:49 +02:00
Eleftheria Stein
766a48c16e Update to Reactor Dysprosium-SR20 
Closes gh-9957
 2021-06-21 11:07:18 +02:00
Eleftheria Stein
c2473ed979 Update to nohttp 0.0.8 
Closes gh-9956
 2021-06-21 11:05:39 +02:00
Eleftheria Stein
f91608dcba Disable default logout page when logout disabled 
Closes gh-9475
 2021-06-18 10:52:00 +02:00
Steve Riesenberg
67a18f564a Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
 2021-06-15 12:14:37 -05:00
Marcus Hert da Coregio
5a4cfe1226 Fix Adding Filter Relative to Custom Filter 
Closes gh-9787
 2021-06-14 17:36:52 -03:00
Josh Cummings
08f7a97ae7
Anonymous Authentication Argument Resolution Docs 
Closes gh-3338
 2021-06-08 16:31:08 -06:00
Josh Cummings
c41aeed6cb
Fix Getting Started Link 
Closes gh-6502
 2021-06-08 13:54:02 -06:00
Steve Riesenberg
c0200512a7 URL encode client credentials 
Closes gh-9610
 2021-06-08 08:27:20 -05:00
Josh Cummings
d5062bb828
PayloadInterceptorRSocket retains all payloads 
Flux#skip discards its corresponding elements, meaning that they
aren't intended for reuse. When using RSocket's ByteBufPayloads,
this means that the bytes are releaseed back into RSocket's pool.

Since the downstream request may still need the skipped payload,
we should construct the publisher in a different way so as to
avoid the preemptive release.

Deferring Spring JavaFormat to clarify what changed.

Closes gh-9345
 2021-06-04 13:47:48 -06:00
Eleftheria Stein
898bdeb0fd Fix Resource Server clock skew default value in docs 
Closes gh-6611
 2021-06-02 13:19:30 +03:00
Steve Riesenberg
c79cb8eff6 Handle encoded spaces in the root dn 
Fixes an issue where provider URLs passed to the constructor of the
DefaultSpringSecurityContextSource can be URL encoded, resulting in
an invalid base dn. Additionally adds support for list constructor
to support spaces in base dn.

Closes gh-9742

# Conflicts:
#	ldap/src/integration-test/java/org/springframework/security/ldap/DefaultSpringSecurityContextSourceTests.java
#	ldap/src/main/java/org/springframework/security/ldap/DefaultSpringSecurityContextSource.java
 2021-05-26 12:57:48 -05:00
Steve Riesenberg
d3a3c36ad3 Handle custom status codes in error handler 
Fixes an issue where custom status codes in the error response cause an
IllegalArgumentException to be thrown when resolving an HttpStatus.

Closes gh-9741
 2021-05-25 16:14:35 -05:00
Rob Winch
c9a8419e22 Additional HttpSessionOAuth2AuthorizationRequestRepository tests 
Issue gh-5145
 2021-05-13 20:12:15 -04:00
Craig Andrews
ecb4a5749a HttpSessionOAuth2AuthorizationRequestRepository: store one request by default 
Add setAllowMultipleAuthorizationRequests allowing applications to
revert to the previous functionality should they need to do so.

Closes gh-5145
Intentionally regresses gh-5110
 2021-05-13 20:12:00 -04:00
Rob Winch
362855b8b8 docs.af.pivotal.io->docs-ip.spring.io 
The build conventions plugin does not support a property, so we must
override the configuration for docs.host to docs-ip.spring.io

Closes gh-9686
 2021-04-27 10:26:51 -05:00
Rob Winch
0a56dc4ef5 docs.af.pivotal.io->docs-ip.spring.io 
Closes gh-9686
 2021-04-27 09:54:05 -05:00
Joe Grandja
99db0ca2c5 WebFlux httpBasic() matches on XHR requests 
Closes gh-9660
 2021-04-20 10:05:06 -04:00
Craig Andrews
ab34c0308c
Add guard around logger.debug statement 
The log message involves string concatenation, the cost of which
should only be incurred if debug logging is enabled

Issue gh-9648
 2021-04-16 10:57:53 -06:00
Rob Winch
adf3e94c9f Fix HttpSecurity.addFilter* Ordering 
Closes gh-9633
 2021-04-14 21:18:51 -05:00
Denis Washington
521706d496 Limit oauth2Login() links to redirect-based flows 
This prevents the generated login page from showing links for
authorization grant types like "client_credentials" which are
not redirect-based, and thus not meant for interactive use in
the browser.

Closes gh-9457
 2021-04-14 06:41:52 -04:00
Eleftheria Stein
ea19b31133 Next development version 2021-04-12 19:00:02 +02:00
Eleftheria Stein
46fdb250dc Release 5.2.10.RELEASE 5.2.10.RELEASE 2021-04-12 18:17:48 +02:00
Eleftheria Stein
b500b3ea69 Update to OpenSAML 3.4.6 
Closes gh-9607
 2021-04-12 10:55:05 +02:00
Eleftheria Stein
59171434d5 Update to hibernate-entitymanager 5.4.30.Final 
Closes gh-9606
 2021-04-12 10:54:38 +02:00
Eleftheria Stein
5d18dd6d7d Update to Groovy 2.4.21 
Closes gh-9605
 2021-04-12 10:54:17 +02:00
Eleftheria Stein
41b0e51dbb Update to embedded Apache Tomcat 9.0.45 
Closes gh-9604
 2021-04-12 10:53:38 +02:00