Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-09 03:52:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
12,401 Commits 38 Branches 348 Tags
Commit Graph

12401 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Eleftheria Stein
3f7041a8d9 Release 5.2.14.RELEASE 5.2.14.RELEASE 2021-12-20 13:28:54 +02:00
Eleftheria Stein
ed03fe8154 Update to GAE 1.9.93 
Closes gh-10628
 2021-12-20 13:25:41 +02:00
Eleftheria Stein
21c01084ab Upgrade jboss jandex to 2.0.5.Final 
Closes gh-10622
 2021-12-20 12:57:59 +02:00
Eleftheria Stein
8922103d12 Upgrade jboss logging to 3.3.3.Final 
Closes gh-10623
 2021-12-20 12:57:33 +02:00
Eleftheria Stein
c7727891e3 Update to hibernate-entitymanager 5.4.33 
Closes gh-10624
 2021-12-20 12:56:58 +02:00
Eleftheria Stein
ee4bb21f6a Upgrade httpmime to 4.5.13 
Closes gh-10627
 2021-12-20 12:56:13 +02:00
Eleftheria Stein
1739a4f339 Upgrade httpcore to 4.4.15 
Closes gh-10626
 2021-12-20 12:55:18 +02:00
Eleftheria Stein
9d9c8956e3 Upgrade attoparser to 2.0.5.RELEASE 
Closes gh-10625
 2021-12-20 12:54:53 +02:00
Eleftheria Stein
e11f90bb33 Upgrade Unbescape to 1.1.6.RELEASE 
Closes gh-10621
 2021-12-20 12:54:13 +02:00
Eleftheria Stein
0eb7ad597c Update to thymeleaf-spring5 3.0.14 
Closes gh-10620
 2021-12-20 12:40:53 +02:00
Eleftheria Stein
9c892c1c35 Update to embedded Tomcat websocket 8.5.73 
Closes gh-10619
 2021-12-20 12:37:39 +02:00
Eleftheria Stein
c92dd46378 Upgrade to embedded Apache Tomcat 9.0.56 
Closes gh-10618
 2021-12-20 12:35:51 +02:00
Eleftheria Stein
f3c28cca77 Upgrade Reactor to Dysprosium-SR25 
Closes gh-10617
 2021-12-20 12:33:19 +02:00
Eleftheria Stein
0f177a9964 Upgrade Spring Framework to 5.2.19.RELEASE 
Closes gh-10616
 2021-12-20 12:32:33 +02:00
Marcus Da Coregio
18427b6411 Configure WebInvocationPrivilegeEvaluator bean for multiple filter chains 
Closes gh-10554
 2021-12-13 08:57:30 -03:00
Marcus Da Coregio
7e17a00197 Add RequestMatcherEntry 2021-12-13 08:57:30 -03:00
Marcus Da Coregio
53b8cff26f Introduce AuthorizationManagerWebInvocationPrivilegeEvaluator 
Closes gh-10590
 2021-12-13 08:57:30 -03:00
Marcus Da Coregio
9c245865d7 Point to samples on 5.6.x branch 2021-12-10 14:38:24 -03:00
Josh Cummings
cd8983d4e5 Polish enableSessionUrlRewriting Clarification 
Closes gh-7644
 2021-12-09 12:14:40 -07:00
James Howe
5598688fa6 Clarify behaviour of enableSessionUrlRewriting 
See #3087
 2021-12-09 12:06:30 -07:00
Guirong Hu
86ed937a47 Fix the bug that the custom GrantedAuthority comparison fails 
Closes gh-10566
 2021-12-08 08:51:54 -03:00
Guirong Hu
22379e79e7 Fix the bug that the custom GrantedAuthority comparison fails 
Closes gh-10566
 2021-12-08 08:50:36 -03:00
Marcus Da Coregio
65426a40ec Add Cross Origin Policies headers 
Add DSL support for Cross-Origin-Opener-Policy, Cross-Origin-Embedder-Policy and Cross-Origin-Resource-Policy headers

Closes gh-9385, gh-10118
 2021-12-07 17:23:06 +01:00
Steve Riesenberg
32ec8c3ae4 Fix Reactive OAuth2 Kotlin DSL examples 
Closes gh-10580
 2021-12-07 13:58:24 +01:00
Steve Riesenberg
7ec3b55ab3 Fix Reactive OAuth2 Kotlin DSL examples 
Closes gh-10580
 2021-12-07 13:48:11 +01:00
Marcus Da Coregio
ed3b0fbaad Prevent using both authorizeRequests and authorizeHttpRequests 
Closes gh-10573
 2021-12-06 15:47:49 -03:00
Steve Riesenberg
62e8799a8d Use BDD in tests 2021-12-02 17:44:47 -06:00
Steve Riesenberg
df0f6f83af Polish gh-9597 2021-12-02 17:44:47 -06:00
Karl Tinawi
925d531cbe Set details on authentication token created by HttpServlet3RequestFactory 
Currently the login mechanism when triggered by executing HttpServlet3RequestFactory#login does not set any details on the underlying authentication token that is authenticated.

This change adds an AuthenticationDetailsSource on the HttpServlet3RequestFactory, which defaults to a WebAuthenticationDetailsSource.

Closes gh-9579
 2021-12-02 17:44:46 -06:00
Steve Riesenberg
074e38d565 Add missing since 
Issue gh-7765
 2021-12-02 12:09:57 -06:00
Steve Riesenberg
3af619d565 Add hasIpAddress to Reactive Kotlin DSL 
Closes gh-10571
 2021-12-02 12:01:11 -06:00
Steve Riesenberg
65b3584ac6 Update copyright year 
Issue gh-10557
 2021-12-01 17:38:23 -06:00
Steve Riesenberg
fa5b8c6090 Update copyright year 
Issue gh-10557
 2021-12-01 17:37:56 -06:00
Steve Riesenberg
0be66d2cc0 Update copyright year 
Issue gh-10557
 2021-12-01 17:37:17 -06:00
Steve Riesenberg
47b8860681 Update copyright year 
Issue gh-10557
 2021-12-01 17:36:52 -06:00
Steve Riesenberg
c7ffd2513a Update copyright year 
Issue gh-10557
 2021-12-01 17:36:19 -06:00
Steve Riesenberg
bb2d80fea3 Update copyright year 
Issue gh-10557
 2021-12-01 17:35:43 -06:00
Steve Riesenberg
1d814f95d5 Fix case sensitive headers comparison 
Closes gh-10557
 2021-12-01 17:03:18 -06:00
Steve Riesenberg
414e096ae4 Fix case sensitive headers comparison 
Closes gh-10557
 2021-12-01 16:05:23 -06:00
Steve Riesenberg
3aa2a60f97 Fix case sensitive headers comparison 
Closes gh-10557
 2021-12-01 16:04:22 -06:00
Steve Riesenberg
828cac8889 Fix case sensitive headers comparison 
Closes gh-10557
 2021-12-01 15:19:33 -06:00
Steve Riesenberg
f49c286050 Fix case sensitive headers comparison 
Closes gh-10557
 2021-12-01 15:05:13 -06:00
Steve Riesenberg
b3e0f167ff Fix case sensitive headers comparison 
Closes gh-10557
 2021-12-01 15:01:06 -06:00
Arnaud Mergey
dbe4d704f8 Add SP NameIDFormat Support 
closes gh-9115
 2021-12-01 13:23:30 -07:00
Josh Cummings
a68411566e Polish Memory Leak Mitigation 
Issue gh-9841
 2021-11-30 15:33:47 -07:00
Hiroshi Shirosaki
2bc643d6c8 Address SecurityContextHolder memory leak 
To get current context without creating a new context.
Creating a new context may cause ThreadLocal leak.

Closes gh-9841
 2021-11-30 15:33:39 -07:00
Josh Cummings
1251cde04c Add Missing Since 
Issue gh-10482
 2021-11-30 15:17:48 -07:00
Igor Pelesic
a3a9de1b9b PermitAllSupport supports AuthorizeHttpRequestsConfigurer 
PermitAllSupport supports either an ExpressionUrlAuthorizationConfigurer or an AuthorizeHttpRequestsConfigurer. If none or both are configured an error message is thrown.

Closes gh-10482
 2021-11-30 15:17:22 -07:00
Steve Riesenberg
f838b7cb1d Polish gh-10081 2021-11-30 15:44:41 -06:00
Jonas Dittrich
23e895f0b1 Add ObjectIdentityGenerator customization to JdbcAclService 
Providing the possibility to change, how ObjectIdentitys are created inside the BasicLookupStrategy,JdbcAclService

There was a problem with hard coded object identity creation inside the BasicLookupStrategy and the JdbcAclService. It was overkill to overwrite
these classes only for changing this, so introducing an ObjectIdentityGenerator seems the be the better solution here. At default, the standard
ObjectIdentityRetrievalStrategyImpl is used, but can be customized due to setters.

Closes gh-10079
 2021-11-30 15:43:11 -06:00