Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-09 11:53:30 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,395 Commits 38 Branches 348 Tags
Commit Graph

11395 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeff Maxwell
32d79f3f4e Fix setJWTClaimSetJWSKeySelector Typo 
Closes gh-10504
 2021-11-16 15:33:42 -07:00
Jeff Maxwell
b7cc667d21 Fix setJWTClaimSetJWSKeySelector Typo 
Closes gh-10504
 2021-11-16 15:33:27 -07:00
Jeff Maxwell
879b2d089f Fix setJWTClaimSetJWSKeySelector Typo 
Closes gh-10504
 2021-11-16 15:29:23 -07:00
Jeff Maxwell
088a24cf59 Fix jwtDecoder Documentation Usage 
Closes gh-10505
 2021-11-16 15:18:42 -07:00
Jeff Maxwell
3fb1565cc0 Fix jwtDecoder Documentation Usage 
Closes gh-10505
 2021-11-16 15:17:37 -07:00
Khaled Hamlaoui
00fafd878c Allow custom OAuth2ErrorHttpMessageConverter with OAuth2ErrorResponseErrorHandler 
Closes gh-10425
 2021-11-16 15:27:48 -06:00
Jeff Maxwell
5913501e1a #10505 Fix jwtDecoder 
Fixed jwtDecoder(JWTProcessor jwtProcessor, OAuth2TokenValidator<Jwt> jwtValidator)
 2021-11-16 14:05:43 -07:00
Khaled Hamlaoui
498636e26b Allow custom OAuth2ErrorHttpMessageConverter with OAuth2ErrorResponseErrorHandler 
Closes gh-10425
 2021-11-16 14:52:08 -06:00
Rob Winch
bd34d70f97 Prevent Save @Transient Authentication with existing HttpSession 
Previously, @Transient Authentication would get saved if an existing
HttpSession existed but it shouldn't.

This commit always prevents @Transient Authentication from being saved.

Closes gh-9992
 2021-11-16 14:45:34 -06:00
Rob Winch
96a6fef820 Prevent Save @Transient Authentication with existing HttpSession 
Previously, @Transient Authentication would get saved if an existing
HttpSession existed but it shouldn't.

This commit always prevents @Transient Authentication from being saved.

Closes gh-9992
 2021-11-16 14:44:49 -06:00
« Christophe
e85958f65c Fix CsrfConfigurer default AccessDeniedHandler consistency 
Fix when AccessDeniedHandler is specified per RequestMatcher on
ExceptionHandlingConfigurer.

This introduces evolutions on :
- CsrfConfigurer#getDefaultAccessDeniedHandler,
to retrieve an AccessDeniedHandler similar to the one used by
ExceptionHandlingConfigurer.
- OAuth2ResourceServerConfigurer#accessDeniedHandler, to continue to
handle CsrfException with the default AccessDeniedHandler implementation

Fixes: gh-6511
 2021-11-16 14:25:03 -06:00
« Christophe
4318a51971 Fix CsrfConfigurer default AccessDeniedHandler consistency 
Fix when AccessDeniedHandler is specified per RequestMatcher on
ExceptionHandlingConfigurer.

This introduces evolutions on :
- CsrfConfigurer#getDefaultAccessDeniedHandler,
to retrieve an AccessDeniedHandler similar to the one used by
ExceptionHandlingConfigurer.
- OAuth2ResourceServerConfigurer#accessDeniedHandler, to continue to
handle CsrfException with the default AccessDeniedHandler implementation

Fixes: gh-6511
 2021-11-16 14:22:35 -06:00
Rob Winch
0aa75e04b7 Fix imports for ChannelSecurityConfigurerTests 
gh-7997
 2021-11-16 14:07:53 -06:00
Stephane Nicoll
2e4c6c3bf1 Avoid using SpEL to change the meaning of the injection point 
This commit removes the use of SpEL expression and replaces it with an
explicit call to the underlying method.
 2021-11-16 13:53:29 -06:00
Stephane Nicoll
61ee4e5a76 Avoid using SpEL to change the meaning of the injection point 
This commit removes the use of SpEL expression and replaces it with an
explicit call to the underlying method.
 2021-11-16 13:53:00 -06:00
Onur Kagan Ozcan
ef25304a30 Add RedirectStrategy customization to ChannelSecurityConfigurer for RetryWith classes 2021-11-16 13:44:34 -06:00
Onur Kagan Ozcan
aa0f788f59 Add RedirectStrategy customization to ChannelSecurityConfigurer for RetryWith classes 2021-11-16 13:44:18 -06:00
Rob Winch
0c201565fc Fix format DelegatingPasswordEncoder 2021-11-16 13:32:15 -06:00
Rob Winch
625c7d6473 Rename prefix/suffix in DelegatingPasswordEncoder 
Issue gh-10273
 2021-11-16 13:29:49 -06:00
heowc
912c762e12 Support for changing prefix and suffix in DelegatingPasswordEncoder 
Closes gh-10273
 2021-11-16 13:28:23 -06:00
Rob Winch
582629c087 Rename prefix/suffix in DelegatingPasswordEncoder 
Issue gh-10273
 2021-11-16 13:16:37 -06:00
heowc
399cf2e59d Support for changing prefix and suffix in DelegatingPasswordEncoder 
Closes gh-10273
 2021-11-16 13:16:37 -06:00
Lars Grefer
ec8912aa47 Update aspectj-plugin to 6.3.0 
Version 6.3.0 aligns with the used Gradle 7.3
 2021-11-16 12:52:42 -06:00
Lars Grefer
10ac6dc761 Update aspectj-plugin to 6.3.0 
Version 6.3.0 aligns with the used Gradle 7.3
 2021-11-16 12:52:07 -06:00
Josh Cummings
7b15098570 Update Spring Security to 5.7 
Closes gh-10509
 2021-11-15 17:10:00 -07:00
Josh Cummings
6b6f473a1b Added authorizeHttpRequests Docs 
Closes gh-10442
 2021-11-15 16:23:18 -07:00
Rob Winch
e398fbf2a7 Include 5.6.0 Release in docs 2021-11-15 16:37:47 -06:00
Josh Cummings
7236f2c5f2 Added authorizeHttpRequests Docs 
Closes gh-10442
 2021-11-15 15:35:23 -07:00
Rob Winch
29a4b2bc9b Next Development Version 2021-11-15 16:13:45 -06:00
Rob Winch
fa628f7491 Release 5.6.0 5.6.0 2021-11-15 16:13:12 -06:00
Rob Winch
f100877c58 Update to spring-data-bom:2021.1.0 
Closes gh-10503
 2021-11-15 10:27:17 -06:00
Joe Grandja
4f185724a3 Polish gh-10479 2021-11-12 15:09:50 -05:00
Joe Grandja
eceb9ed479 Polish gh-10479 2021-11-12 15:08:11 -05:00
Rob Winch
f0da370b1a Update org.springframework to 5.3.13 
Closes gh-10497
 2021-11-11 16:56:24 -06:00
Rob Winch
6959456cab Update hsqldb to 2.6.1 
Closes gh-10496
 2021-11-11 16:56:24 -06:00
Rob Winch
a5b1d68350 Update hibernate-entitymanager to 5.6.1.Final 
Closes gh-10495
 2021-11-11 16:56:24 -06:00
Rob Winch
4b23949ebd Update io.projectreactor to 2020.0.13 
Closes gh-10493
 2021-11-11 16:56:24 -06:00
Rob Winch
98a88ffdf8 Update com.nimbusds to 9.19 
Closes gh-10491
 2021-11-11 16:55:46 -06:00
Rob Winch
23e5177624 Update logback-classic to 1.2.7 
Closes gh-10490
 2021-11-11 16:55:44 -06:00
Rob Winch
939a5581f2 Antora remove unnecessary logging 2021-11-11 16:07:43 -06:00
Rob Winch
3c39761ca1 Add --stacktrace Antora argument 2021-11-11 16:01:17 -06:00
Rob Winch
0f0be0b326 Remove old local-antora-playbook.yml 2021-11-11 16:01:17 -06:00
Rob Winch
c93595969e Add Spring Security 5.6.0-RC1 2021-11-11 16:01:17 -06:00
Steve Riesenberg
a3e658872c Update What's New for 5.6 2021-11-11 15:20:19 -06:00
Steve Riesenberg
0bdaa21867 Update What's New for 5.6 2021-11-11 14:51:40 -06:00
Steve Riesenberg
0e6722800d Polish gh-10479 2021-11-11 14:24:30 -06:00
Steve Riesenberg
73e1506e5e Consistency update for servlet docs 2021-11-11 14:24:29 -06:00
Steve Riesenberg
7d806b668f Separate OAuth 2.0 Client Reactive Docs 
Related gh-10367
 2021-11-11 14:24:29 -06:00
Steve Riesenberg
1246d5839d Revamp OAuth 2.0 Login Reactive documentation 
Related gh-8174
 2021-11-11 14:24:29 -06:00
Steve Riesenberg
9887b282ce Polish gh-10479 2021-11-11 14:05:55 -06:00