Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-25 00:35:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
9,599 Commits 34 Branches 337 Tags
Commit Graph

9599 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Eleftheria Stein
ebef8c1425 Remove non-existent class from RSocket reference docs 
Closes gh-9949
 2021-06-18 14:15:45 +02:00
Eleftheria Stein
8bf970c805 Fix typos in WebFlux test docs 2021-06-18 13:12:10 +02:00
Eleftheria Stein
dfd0047f0b Disable default logout page when logout disabled 
Closes gh-9475
 2021-06-17 16:38:23 +02:00
Eleftheria Stein
ba8a5b1d20 Fix typo in WebFlux reference docs 2021-06-17 16:38:23 +02:00
Josh Cummings
d4c3cea0e6
Update Copyright 
Issue gh-9901
 2021-06-17 08:34:31 -06:00
Arnaud Mergey
1d606ccedb fix typo preventing full exception to be displayed in log 
closes gh-9901
 2021-06-17 08:33:32 -06:00
Steve Riesenberg
807ce30948 Support additional client authentication methods 
Closes gh-9780
 2021-06-16 15:48:03 -05:00
Steve Riesenberg
0cba0874f3 Handle missing authorization endpoint uri 
Closes gh-9795
 2021-06-16 15:38:53 -05:00
Steve Riesenberg
9b05afdee8 Remove validation for unsupported grant types 
Closes gh-9828
 2021-06-16 14:54:33 -05:00
Christian Frommeyer
8de631d5c6 Replace StringUtils from oauth2-oidc-sdk 
SecurityMockServerConfigurers.java previously used the StringUtils from
the optional oauth2-oidc-sdk dependency. Replacing this with the
StringUtils from the spring framework this should not force adding the
dependency in cases where it is not actually used.

Closes gh-9923
 2021-06-16 12:18:28 -06:00
Joe Grandja
eb6ed283e0 Jwt client authentication converter detects new key 
Closes gh-9814
 2021-06-16 12:55:12 -04:00
Eleftheria Stein
56fd50fa2f Add remaining servlet Kotlin examples 
Issue gh-8172
 2021-06-16 10:34:21 +02:00
Eleftheria Stein
1b72e9d4e0 Fix typos in FAQ docs 2021-06-16 10:34:21 +02:00
Eleftheria Stein
e89db9fd69 Fix typos in Mock MVC docs 2021-06-16 10:34:21 +02:00
Thomas Vitale
b44d0fb319 Load ReactiveJwtAuthenticationConverter bean in OAuth2 Resource Server config 
When a bean of type ReactiveJwtAuthenticationConverter is defined,
the OAuth2 Resource Server configuration will use it automatically
when no other converter is defined through the DSL.

Closes gh-9698
 2021-06-15 14:22:15 -06:00
Josh Cummings
98326dfae4
Use stack-workflow-status Action 
Closes gh-9792
 2021-06-15 13:41:11 -06:00
Steve Riesenberg
aed993f3e5
Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
 2021-06-15 11:03:30 -05:00
Steve Riesenberg
3bb8e1d200 Remove redundant translations in spring-security-web 2021-06-15 09:18:13 -05:00
Ruben Suarez Alvarez
7cd344acab
Add spanish translation of insufficient authentication and cookie stolen 2021-06-15 09:11:53 -05:00
YBCoding
25fa187406 Add insufficient authentication message for French 
Partially fix gh-9315
 2021-06-15 09:08:59 -05:00
Eleftheria Stein
aeed286e8a Add AuthenticationManager to saml2Login Kotlin DSL 
Closes gh-9905
 2021-06-15 09:53:53 +02:00
Eleftheria Stein
cf9071b0b2 Fix typos in SAML 2 docs 2021-06-15 09:53:53 +02:00
pxzxj
20577c39c1 Add insufficient authentication message for Simplified Chinese and Traditional Chinese 
Partially fix gh-9315
 2021-06-14 16:00:29 -05:00
Marcus Hert da Coregio
9d2db89838 Fix Adding Filter Relative to Custom Filter 
Closes gh-9787
 2021-06-14 14:37:21 -03:00
Josh Cummings
65239e93f9
Update Copyright Header 
Issue gh-9845
 2021-06-09 11:33:48 -06:00
Josh Cummings
5b49433ed1
Add GlobalMethodSecurityConfiguration Test 
Issue gh-9845
 2021-06-09 09:29:52 -06:00
Kay-Uwe Janssen
7a233c41f0 Some infrastructure beans are not marked properly 
Added missing infrastructure role to methodSecurityMetadataSource bean
and move the post processing of the defaultMethodExpressionHandler to
the end of afterSingletonsInstantiated.

Closes gh-9845
 2021-06-09 09:28:55 -06:00
Josh Cummings
c294050738
Anonymous Authentication Argument Resolution Docs 
Closes gh-3338
 2021-06-08 16:11:18 -06:00
Josh Cummings
60d1af879a
Fix Getting Started Link 
Closes gh-6502
 2021-06-08 13:40:03 -06:00
Eleftheria Stein
36805c7192 Revert "Use strict equality for timestamp comparison in JDBC tests" 
This reverts commit 09a0670cb68032beacb399e0abe6d671967f3702.

This appears to still be an issue in Windows

Issue gh-8782
 2021-06-08 10:13:53 +03:00
Eleftheria Stein
09a0670cb6 Use strict equality for timestamp comparison in JDBC tests 
This is possible because of the update to HSQLDB 2.6.0
This reverts commit eb7b27695d3f9fce869eb3fb1c0ec56c32a9cb2b.

Closes gh-8782
 2021-06-08 09:31:55 +03:00
Josh Cummings
7ed38f1a26
Adjust Test Names 
Issue gh-9514
 2021-06-07 14:31:05 -06:00
Josh Cummings
e1e31939a3
Add @since 
Issue gh-9514
 2021-06-07 14:26:29 -06:00
Giacomo Baso
80743a267c
Add SecurityContext to delegating TaskScheduler 
Wrap DelegatingSecurityContextTaskScheduler's Runnable tasks in
DelegatingSecurityContextRunnables, allowing to specify a
SecurityContext to use for tasks execution.

- Renamed private variable taskScheduler to delegate
- Removed unused local variable in unit test
- Add SecurityContext tests for delegating TaskScheduler

Closes gh-9514
 2021-06-07 13:54:24 -06:00
Josh Cummings
8e0a91d12f
Rebase OpenSamlSigningUtils and Tests 
Issue gh-9865
 2021-06-07 12:38:56 -06:00
Filip Hanik
adad2da964
Provide KeyInfo in Signature for AuthnRequests 
Closes gh-9856
 2021-06-07 12:38:55 -06:00
theexiile1305
3074ad4136 Migrate Kotlin tests from java Mockito to Mockk 
Closes gh-9785
 2021-06-07 13:13:31 +02:00
Josh Cummings
ca76c54471
Polish CsrfWebFilterTests 
Issue gh-9113
 2021-06-04 16:41:08 -06:00
Tomoki Tsubaki
0c8b6df82a
Cache Mono that generate the CSRF token 
Closes gh-9113
 2021-06-04 16:41:08 -06:00
Josh Cummings
52b8202268
Format PayloadInterceptorRSocket 
Issue gh-9345
 2021-06-04 11:54:47 -06:00
Josh Cummings
d5330a070f
PayloadInterceptorRSocket retains all payloads 
Flux#skip discards its corresponding elements, meaning that they
aren't intended for reuse. When using RSocket's ByteBufPayloads,
this means that the bytes are releaseed back into RSocket's pool.

Since the downstream request may still need the skipped payload,
we should construct the publisher in a different way so as to
avoid the preemptive release.

Deferring Spring JavaFormat to clarify what changed.

Closes gh-9345
 2021-06-04 11:54:47 -06:00
AlexeyAnufriev
baac9e0cf2 Properly clean cookies with context path after logout 
Closes gh-8846
 2021-06-04 15:42:33 +02:00
Eleftheria Stein
204a32aba8 Replace < and > with &lt and &gt in Javadoc 
Closes gh-9847
 2021-06-04 12:26:07 +03:00
Eleftheria Stein
20751d2063 Remove hard dependency on Kotlin 
Closes gh-9811
 2021-06-03 17:18:45 +02:00
Eleftheria Stein
e3416640a7 Fix Resource Server clock skew default value in docs 
Closes gh-6611
 2021-06-02 12:19:36 +03:00
Steve Riesenberg
10de63ce89 Access Token Response supports any data type 
Changed the converter used to convert a map into an OAuth2AccessTokenResponse to
support any object as the value, including json numbers and nested objects. Also
deprecated old classes/setters and added new classes/setters.

Closes gh-9685
 2021-06-01 14:38:14 -05:00
Steve Riesenberg
ac9b137cad URL encode client credentials 
Closes gh-9610
 2021-06-01 12:57:06 -05:00
Rob Winch
68f91edbb8 Make XsdDocumentedTests Parsing More Lenient 
Closes gh-9830
 2021-05-27 18:37:14 -05:00
Rob Winch
8400b841e9 Improve XsdDocumentedTests Error Message 
This makes it easier to compare the expected and actual values.

Closes gh-9829
 2021-05-27 18:37:02 -05:00
Josh Cummings
65ecaa0c28
Polish postLogoutRedirectUri encoding 
Issue gh-9511
 2021-05-26 12:31:41 -06:00