Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
8,018 Commits 33 Branches 333 Tags 109 MiB
Commit Graph

8018 Commits

Author SHA1 Message Date
Eleftheria Stein 4b2539df10 Allow configuration of oauth2 resource server through nested builder 
Issue: gh-5557
 2019-07-09 16:11:26 -04:00
Eleftheria Stein 415760838f Allow configuration of oauth2 client through nested builder 
Issue: gh-5557
 2019-07-09 16:03:46 -04:00
Eleftheria Stein e47389e60b Allow configuration of oauth2 login through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein bf1bbd14e9 Allow configuration of openid login through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein c3dad06ea6 Allow configuration of request matchers through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 1ad9f15e19 Allow configuration of requires channel through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein ae8e12f049 Allow configuration of anonymous through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein a5943fbafb Allow configuration of servlet api through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 04e0dcfe61 Allow configuration of security context through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 81d3cf1e7b Allow configuration of authorize requests through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 1445d1b012 Allow configuration of request cache through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein fcb119b94e Allow configuration of remember me through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein ae9eb6f56b Allow configuration of x509 through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein bfc9538da1 Allow configuration of jee through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 86f0f84740 Allow configuration of port mapper through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 6fbea88e1e Allow configuration of session management through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 6fd515813c Allow configuration of cors through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein a9a1f8ee53 Allow configuration of form login through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein 758397f102 Allow configuration of headers through nested builder 
Issue: gh-5557
 2019-07-09 15:35:37 -04:00
Eleftheria Stein 6986cf3ef3 Allow configuration of csrf through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Eleftheria Stein 1a31376dda Allow configuration of exception handling through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Eleftheria Stein 92314b0956 Allow configuration of logout through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Lars Grefer 43737a56bd Use foreach where possible 2019-07-09 06:11:45 -06:00
Lars Grefer 7dc28ff376 Use contains() instead of indexOf() != -1 2019-07-09 06:07:42 -06:00
Joe Grandja e554547593 Revert Map constructor for InMemoryReactiveClientRegistrationRepository 
This commit reverts f6414e9a52 and
partial revert of e1b095df32.
NOTE: InMemoryReactiveClientRegistrationRepository should not expose a
Map constructor as it would allow the caller to pass in a 'distributed' (remote) Map,
which would result in a blocking I/O operation.
 2019-07-08 15:32:52 -04:00
Joe Grandja 23d61d43e5 Polish #5994 2019-07-08 14:50:38 -04:00
Vedran Pavic 9432670f1d Allow InMemoryOAuth2AuthorizedClientService to be constructed with a Map 
Fixes gh-5994
 2019-07-08 12:46:26 -04:00
Eleftheria Stein d66d895e60 Migrate ServletApiConfigurerTests groovy->java 
Issue: gh-4939
 2019-07-04 12:14:49 -04:00
Bruno Studer 8016a193b9
Optimize IpAddressMatcher 
Get rid of byte array allocation in matcher and small optimizations
 2019-07-03 23:27:12 -06:00
Édouard Hue 3c1472501f Fixed validation in ClientRegistration.Builder 
ClientRegistration.Builder defaulted to validating as an
authorization_code registration, though a custom grant type could be in
use. The actual grant_type is now verified for every case.
 - Fixed validation in ClientRegistration.Builder
 - New test that fails unless the issue is fixed.

Also made OAuth2AuthorizationGrantRequestEntityUtils public to help
implementing custom token response clients.

Fixes gh-7040
 2019-07-03 16:07:19 -05:00
Rob Winch e1f155ba89 Polish SCrypt Upgrade Support 
* Break up tests
* Rename test methods to follow conventions
* Fix checkstyle

Issue gh-7057
 2019-07-03 15:50:51 -05:00
Lars Grefer e95effc839 Allow upgrading between different SCrypt encodings 
Fixes gh-7057
 2019-07-03 15:48:42 -05:00
Rob Winch 742df2cd1d Polish BCrypt upgrade 
Issue gh-7042
 2019-07-03 14:08:21 -05:00
Lars Grefer d3d6a8743e Allow upgrading between different BCrypt encodings 
Fixes gh-7042
 2019-07-03 14:08:04 -05:00
Lars Grefer 4b0fb19fff Use MessageDigest.isEqual() where possible 
fixes #7058
 2019-07-03 05:40:20 -06:00
Clement Ng cd54808718 Update Opaque Token Sample and tests 
Issue: gh-6498
 2019-07-02 07:45:56 -06:00
Clement Ng 491da9db03 Added OAuth2TokenAttributes to wrap attributes 
To simplify access to OAuth 2.0 token attributes

Fixes gh-6498
 2019-07-02 07:45:56 -06:00
Josh Cummings ee8182dceb
NamespaceSessionManagementTests groovy->java 
Issue: gh-4939
 2019-07-02 07:34:36 -06:00
Josh Cummings 329999b54a
Update to nimbus-jose-jwt:7.3 
Fixes: gh-7061
 2019-07-01 07:22:13 -06:00
Thomas Vitale f9747e6591 BearerTokenAuthenticationFilter exposes AuthenticationFailureHandler 
Make BearerTokenAuthenticationFilter expose an AuthenticationFailureHandler which, by default, invokes the AuthenticationEntryPoint set in the filter.

Fixes gh-7009
 2019-07-01 05:24:29 -06:00
Josh Cummings ce79ef2634 Single-key Key Selector 
Fixes: gh-7049
Fixes: gh-7056
 2019-06-28 15:12:00 -06:00
Behrang 3b5a4189ef Minor fix 
These four items, not three items, constitute the auth process:

. A user is prompted to log in with a username and password.
. The system (successfully) verifies that the password is correct for the username.
. The context information for that user is obtained (their list of roles and so on).
. A security context is established for the user
 2019-06-28 11:41:55 -05:00
Tadaya Tsuyukubo 7782e29a58 Allow custom ReactiveAuthenticationManager for basic and form auth 
Prior to this change, "HttpBasicSpec#authenticationManager" and
"FormLoginSpec#authenticationManager" were always overridden by
"ServerHttpSecurity#authenticationManager".

This commit makes sure override only happens when custom authentication
manager was not specified.

Fixes: gh-5660
 2019-06-28 11:04:21 -05:00
Lars Grefer 400e0c83b0 Add missing nullability annotation 2019-06-27 14:54:14 -05:00
Eleftheria Stein 39ba1006ba Migrate FormLoginConfigurerSpec groovy->java 
Issue: gh-4939
 2019-06-27 11:53:32 -04:00
Josh Cummings f5da63118e Add MultiTenantAuthenticationManagerResolver 
A class with a number of handy request-based implementations of
AuthenticationManagerResolver targeted at common multi-tenancy
scenarios.

Fixes: gh-6976
 2019-06-25 17:21:38 -06:00
Josh Cummings ecb13aa8cc
Resource Server JWE Sample 
Issue: gh-4435
 2019-06-25 16:54:15 -06:00
Josh Cummings 37d108ccc2
Remove SignedJWT Check 
JWTProcessor already does sufficient checking to confirm that the JWT
is of the appropriate type.

Fixes: gh-7034
 2019-06-25 16:49:29 -06:00
Léon van der Kaap d2248d185b
Add extra salt length check for BCrypt 
If the salt length is 28 characters and the
version is 2{a,x,y}, an IndexOutOfBoundsException
is thrown. This commit adds an extra check that
the salt length should be at least 29 characters long
if the version is not equal to "2".

Fixes: gh-6907
 2019-06-24 14:11:30 -06:00
Josh Cummings 10a7af2d53
Add file extension to wait-for-done 2019-06-24 14:10:50 -06:00