6686 Commits

Author SHA1 Message Date
Rob Winch
3cb06ec581 AroundMethodInterceptor groovy->java
Issue: gh-4939
2018-02-06 11:12:35 -06:00
Rob Winch
9df708dbba Add SpringTestRule.testConfigLocations
Fixes: gh-5000
2018-02-06 11:12:35 -06:00
Rob Winch
0d92adf1be PasswordEncoderConfigurerTests groovy->java
Issue: gh-4939
2018-02-05 17:13:21 -06:00
Rob Winch
886bfa3daa NamespacePasswordEncoderTests groovy->java
Issue: gh-4939
2018-02-05 16:46:42 -06:00
Rob Winch
70db508218 NamespaceJdbcUserServiceTests groovy->java
Issue: gh-4939
2018-02-05 15:27:28 -06:00
Rob Winch
a0918dd6d4 NamespaceAuthenticationProviderTests groovy->java
Issue: gh-4939
2018-02-05 14:53:50 -06:00
Rob Winch
6e5ae7ae63 Update to Gradle 4.5.1
Fixes: gh-4998
2018-02-05 11:50:56 -06:00
Rob Winch
959f689e4e NamespaceAuthenticationManagerTests groovy->java
Issue: gh-4939
2018-02-02 16:56:45 -06:00
Rob Winch
e1a8d250de Add authenticated().withAuthentication(Consumer<Authentication>)
This allows arbitrary assertions of the authenticated user

Fixes: gh-4996
2018-02-02 16:56:45 -06:00
Joe Grandja
1cb581a0c6 AbstractConfiguredSecurityBuilderTests, AbstractRequestMatcherRegistryTests -> .java
Issue gh-4939
2018-02-02 16:45:44 -05:00
Joe Grandja
7eb58ee7d9 DefaultOAuth2UserService -> assert UserInfo Uri is set
Fixes gh-4992
2018-02-02 13:01:18 -05:00
Rob Winch
48a5aad4a8 Polish Formatting of build.gradle
Issue: gh-4986
2018-02-02 11:55:47 -06:00
Lóránt Pintér
7b708bb4f5 Enable caching for Test tasks 2018-02-02 11:53:34 -06:00
Lóránt Pintér
f7beb537f0 Add included build to JAR
Instead of copying classes to the compile output, we now add them directly to the JAR.
This allows JavaCompile to be cached, since there are no overlapping outputs anymore.
2018-02-02 11:50:00 -06:00
Rob Winch
8b7f772761 Update to Jackson 2.9.4
Fixes: gh-4985
2018-02-01 13:45:06 -06:00
Rob Winch
994abb0d00 Document User.withDefaultPasswordEncoder unsafe for production
Fixes: gh-4793
2018-01-31 16:26:26 -06:00
Rob Winch
9945509e89 Update to Gradle 4.5
Fixes: gh-4984
2018-01-31 09:33:59 -06:00
Rob Winch
cd88c739e0 Add Guides to docsZip
Fixes: gh-4327
2018-01-30 15:35:30 -06:00
Alexander Münch
a622a92001 Fix: Typo in DelegatingPasswordEncoder's Javadoc 2018-01-30 10:07:49 -06:00
Rob Winch
87a216a6e6 AuthenticationManagerBuilderTests -> .java
Issue: gh-4939
2018-01-26 16:50:33 -06:00
Rob Winch
8d96e83767 Fix checkstyle 2018-01-26 15:31:24 -06:00
Rob Winch
e5d40c0599 AuthenticationConfigurationTests -> java
Issue: gh-4939
2018-01-26 15:14:34 -06:00
Rob Winch
f7e49ace9f Add TestAuthentication 2018-01-26 15:13:09 -06:00
Rob Winch
1c9f2c76e1 Next Development Version 2018-01-24 15:12:17 -06:00
Rob Winch
eb6d2b936e Release 5.0.1.RELEASE 5.0.1.RELEASE 2018-01-24 15:07:57 -06:00
Rob Winch
7bb3df2176 spring-build-conventions:0.0.10.RELEASE 2018-01-24 15:07:57 -06:00
Rob Winch
c5e6ee4563 Update Dependencies
Fixes: gh-4973
2018-01-24 13:48:14 -06:00
Michael J. Simons
1517e9b222 Migrate xml-contacts groovy->java
See #4939.
2018-01-24 11:06:08 -06:00
Michael J. Simons
4a3baad4f9 Migrate xml-ldap groovy->java
See #4939.
2018-01-24 11:06:08 -06:00
Michael J. Simons
8c6f965973 Migrate javaconfig-ldap groovy->java
See #4939.
2018-01-24 11:06:08 -06:00
Michael J. Simons
26f7b2f99f Migrate javaconfig-helloworld groovy->java
See #4939.
2018-01-24 11:06:08 -06:00
Michael J. Simons
2e2b22f87e Migrate xml-insecure groovy->java
See #4939.
2018-01-24 11:06:08 -06:00
Rob Winch
6ba225b62d Polish userNotFoundEncodedPassword
Ensure that if passwordEncoder is set that userNotFoundEncodedPassword
is encoded again if already set.

Issue: gh-4915
2018-01-24 11:06:08 -06:00
Phillip Webb
fd78d055aa Lazily initialize userNotFoundEncodedPassword
Update `DaoAuthenticationProvider` so that `userNotFoundEncodedPassword`
is lazily initialized on the first call to `retrieveUser`, rather than
in `doAfterPropertiesSet`.

Since some `PasswordEncoder` implementations can be slow, this change
can help to improve application startup times and the expense of some
delay with the first login.

Note that `userNotFoundEncodedPassword` creation occurs on the first
user retrieval, regardless of whether the user is ultimately found. This
ensures consistent processing times, regardless of the outcome.

First Call:
	Found      = encode(userNotFound) + decode(supplied)
	Not-Found  = encode(userNotFound) + decode(userNotFound)

Subsequent Call:
	Found      = decode(supplied)
	Not-Found  = decode(userNotFound)

Fixes gh-4915
2018-01-24 11:06:08 -06:00
Rob Winch
0eef5b4b42 Add StrictHttpFirewall 2018-01-24 11:06:08 -06:00
Joe Grandja
900ab1df81 Add javadoc for the OAuth 2.0 Security Configurer's
Fixes gh-4972
2018-01-24 06:18:08 -05:00
Joe Grandja
6b24aaf6f5 Add javadoc for spring-security-oauth2-jose
Fixes gh-4885
2018-01-23 21:27:47 -05:00
Joe Grandja
fe2ac00deb Add javadoc for spring-security-oauth2-client
Fixes gh-4884
2018-01-23 17:07:21 -05:00
Joe Grandja
84679a5d64 Polish #4904 Support GrantedAuthoritiesMapper @Bean for oauth2Login 2018-01-23 12:14:57 -05:00
Kazuki Shimizu
444e2dade3 Support GrantedAuthoritiesMapper @Bean for oauth2Login
Fixes gh-4880
2018-01-23 09:51:14 -05:00
Rob Winch
fe40952908 Revert "webflux-form sample uses Tomcat"
This reverts commit 67bb91bb76beb6d1d6e5118770217f66b4074c86.

We can use Netty again now that reactor/reactor-netty#248 has
been resolved.

Fixes: gh-4923
2018-01-23 08:31:41 -06:00
Rob Winch
6a0833165a AuthorizationWebFilter handles null Authentication
If the AuthorizationManager used the Authentication and the Authentication
was null the AuthorizationWebFilter would produce a NullPointerException

This commit fixes the test to ensure that Authentication is subscribed to
and ensures that the Authentication is not null

Fixes: gh-4966
2018-01-22 15:16:58 -06:00
Joe Grandja
e6cac604f3 Add javadoc for spring-security-oauth2-core
Fixes gh-4883
2018-01-18 16:00:26 -05:00
Rob Winch
91ef7ce1cf AuthenticationEventPublisher Bean used by Default
Fixes: gh-4940
2018-01-18 08:59:27 -06:00
Rob Winch
65c3862da9 Password Troubleshooting Reference Fix
Correct the package to NoOpPasswordEncoder within the reference

Fixes: gh-4965
2018-01-18 08:25:52 -06:00
Rob Winch
450600cbb8 Polish reference 2018-01-12 09:17:05 -06:00
Rob Winch
0991f31613 Document exchange password for short term credential
Fixes gh-4959
2018-01-12 09:15:35 -06:00
Joe Grandja
aa900065b8 Document OAuth2UserService delegation-based strategy for authorities mapping
Fixes gh-4909
2018-01-11 10:07:58 -05:00
Michael J. Simons
6c0b510c98 Remove hardcoded Spring versions from namespaces
This fixes #4945.
2018-01-10 16:47:20 -06:00
Michael J. Simons
b634b49f9f Migrate xml-jaas groovy->java 2018-01-10 16:44:59 -06:00