Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,802 Commits 32 Branches 333 Tags 112 MiB
Commit Graph

15802 Commits

Author SHA1 Message Date
Josh Cummings 664dfd9b45
Defer Anonymous Filter Construction 
By delaying when the AnonymousAuthenticationFilter is constructed,
it's now possible to call the principal and filter methods inside
of a custom DSL implementation.

This does not extend to setting the key or the authentication provider
though, as these must be set during the init phase.

Closes gh-14941
 2024-04-25 14:03:10 -06:00
dependabot[bot] 82ea0850ff Bump org.hibernate.orm:hibernate-core from 6.4.5.Final to 6.4.6.Final 
Bumps [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) from 6.4.5.Final to 6.4.6.Final.
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/6.4.6/changelog.txt)
- [Commits](https://github.com/hibernate/hibernate-orm/compare/6.4.5...6.4.6)

---
updated-dependencies:
- dependency-name: org.hibernate.orm:hibernate-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-24 20:47:43 -07:00
Josh Cummings 17df80fce5
Update to OpenSAML 4.3.2 
Closes gh-14947
 2024-04-24 11:11:22 -06:00
dependabot[bot] c9a5fb9bd1 Bump org.jfrog.buildinfo:build-info-extractor-gradle 
Bumps [org.jfrog.buildinfo:build-info-extractor-gradle](https://github.com/jfrog/build-info) from 4.33.13 to 4.33.15.
- [Release notes](https://github.com/jfrog/build-info/releases)
- [Changelog](https://github.com/jfrog/build-info/blob/master/RELEASE.md)
- [Commits](https://github.com/jfrog/build-info/compare/build-info-gradle-extractor-4.33.13...build-info-gradle-extractor-4.33.15)

---
updated-dependencies:
- dependency-name: org.jfrog.buildinfo:build-info-extractor-gradle
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-23 21:06:14 -07:00
dependabot[bot] c927291705 Bump org.hibernate.orm:hibernate-core from 6.4.4.Final to 6.4.5.Final 
Bumps [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) from 6.4.4.Final to 6.4.5.Final.
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/6.4.5/changelog.txt)
- [Commits](https://github.com/hibernate/hibernate-orm/compare/6.4.4...6.4.5)

---
updated-dependencies:
- dependency-name: org.hibernate.orm:hibernate-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-23 21:01:10 -07:00
Josh Cummings c33afcebd5
Merge branch '6.1.x' into 6.2.x 2024-04-23 08:32:20 -06:00
Josh Cummings 3f7d9e389d
Update to OAuth2 OIDC SDK 9.43.4 
Issue gh-14920
 2024-04-23 08:23:50 -06:00
Josh Cummings 992243fc8b
Update to Nimbus 9.37.3 
Closes gh-14836
 2024-04-23 08:23:27 -06:00
Josh Cummings 3d46fec27d
Update documentation policy 
Closes gh-12940
 2024-04-23 08:12:24 -06:00
Josh Cummings 8893f60157
Fix http Link 
Issue gh-14944
 2024-04-23 08:07:45 -06:00
Josh Cummings 74fb626f74
Revisit Saml2Logout Docs 
Issue gh-14944
 2024-04-22 11:12:45 -06:00
Josh Cummings 2bcbef1695
Add Saml2Logout DSL Support 
Closes gh-14935
 2024-04-22 11:12:45 -06:00
dependabot[bot] 3677c66aa2 Bump org-apache-maven-resolver from 1.9.18 to 1.9.19 
Bumps `org-apache-maven-resolver` from 1.9.18 to 1.9.19.

Updates `org.apache.maven.resolver:maven-resolver-connector-basic` from 1.9.18 to 1.9.19
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-1.9.18...maven-resolver-1.9.19)

Updates `org.apache.maven.resolver:maven-resolver-impl` from 1.9.18 to 1.9.19
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-1.9.18...maven-resolver-1.9.19)

Updates `org.apache.maven.resolver:maven-resolver-transport-http` from 1.9.18 to 1.9.19

---
updated-dependencies:
- dependency-name: org.apache.maven.resolver:maven-resolver-connector-basic
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-impl
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-transport-http
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-21 20:58:47 -07:00
github-actions[bot] 633b12b32e Merge branch '6.2.x' 2024-04-22 03:54:13 +00:00
dependabot[bot] 7007ce38e1 Bump org-apache-maven-resolver from 1.9.18 to 1.9.19 
Bumps `org-apache-maven-resolver` from 1.9.18 to 1.9.19.

Updates `org.apache.maven.resolver:maven-resolver-connector-basic` from 1.9.18 to 1.9.19
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-1.9.18...maven-resolver-1.9.19)

Updates `org.apache.maven.resolver:maven-resolver-impl` from 1.9.18 to 1.9.19
- [Release notes](https://github.com/apache/maven-resolver/releases)
- [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-1.9.18...maven-resolver-1.9.19)

Updates `org.apache.maven.resolver:maven-resolver-transport-http` from 1.9.18 to 1.9.19

---
updated-dependencies:
- dependency-name: org.apache.maven.resolver:maven-resolver-connector-basic
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-impl
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.maven.resolver:maven-resolver-transport-http
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-21 20:53:26 -07:00
github-actions[bot] d0341bf893 Merge branch '5.8.x' into 6.1.x 2024-04-22 01:13:08 +00:00
github-actions[bot] 48818d803c Merge branch '6.2.x' 2024-04-22 01:13:08 +00:00
github-actions[bot] 977e80a74a Merge branch '6.1.x' into 6.2.x 2024-04-22 01:13:08 +00:00
dependabot[bot] 8271258618 Bump slackapi/slack-github-action from 1.25.0 to 1.26.0 
Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action) from 1.25.0 to 1.26.0.
- [Release notes](https://github.com/slackapi/slack-github-action/releases)
- [Commits](https://github.com/slackapi/slack-github-action/compare/v1.25.0...v1.26.0)

---
updated-dependencies:
- dependency-name: slackapi/slack-github-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-21 18:12:20 -07:00
Rob Winch 499c920d83 Merge branch '6.2.x' 2024-04-19 14:27:37 -05:00
Rob Winch af54652ce4 Merge branch '6.1.x' into 6.2.x 2024-04-19 14:26:24 -05:00
Rob Winch 761fdd228d Merge branch '5.8.x' into 6.1.x 2024-04-19 14:24:58 -05:00
Rob Winch 1010d253a4 Merge branch '5.7.x' into 5.8.x 2024-04-19 14:20:16 -05:00
Rob Winch c8342fcfae Use antora-extensions 1.10.0 2024-04-19 14:16:02 -05:00
dependabot[bot] ce697fbcf5 Bump org-bouncycastle from 1.78 to 1.78.1 
Bumps `org-bouncycastle` from 1.78 to 1.78.1.

Updates `org.bouncycastle:bcpkix-jdk18on` from 1.78 to 1.78.1
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.bouncycastle:bcprov-jdk18on` from 1.78 to 1.78.1
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

---
updated-dependencies:
- dependency-name: org.bouncycastle:bcpkix-jdk18on
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.bouncycastle:bcprov-jdk18on
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-18 20:57:08 -07:00
Steve Riesenberg 8397dfe3b2
Polish whats-new.adoc 2024-04-18 16:51:46 -05:00
Steve Riesenberg 5f6df21ed4
Update What's New for 6.3 2024-04-18 16:51:46 -05:00
Steve Riesenberg 05d3beb6a8
Polish gh-13648 2024-04-18 16:17:49 -05:00
ch4mpy b69939c1e5
Getters for OAuth2AuthorizedClientId properties 
Expose getters for principalName and clientRegistrationId which compose an OAuth2AuthorizedClientId
 2024-04-18 16:10:39 -05:00
MrJovanovic13 1657296bb7 Replace "Spring Boot 2.x" with "Spring Boot" 
Closes gh-14917
 2024-04-18 16:01:54 -05:00
MrJovanovic13 24fd19b107 Add Default Timeout to JwtDecoders RestTemplate 
Closes gh-14269
 2024-04-18 14:40:18 -06:00
Josh Cummings a4dbf458ab
Add relying-party-registrations#id 
Closes gh-14487
 2024-04-18 12:56:56 -06:00
github-actions[bot] 671a240fea Merge branch '6.2.x' 2024-04-18 00:03:06 +00:00
github-actions[bot] 599cdb84bc Merge branch '6.1.x' into 6.2.x 2024-04-18 00:03:05 +00:00
github-actions[bot] c97f710747 Merge branch '5.8.x' into 6.1.x 2024-04-18 00:03:05 +00:00
dependabot[bot] d209e92dee Bump io.spring.gradle:spring-security-release-plugin from 1.0.2 to 1.0.3 
Bumps [io.spring.gradle:spring-security-release-plugin](https://github.com/spring-io/spring-security-release-tools) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/spring-io/spring-security-release-tools/releases)
- [Commits](https://github.com/spring-io/spring-security-release-tools/compare/v1.0.2...v1.0.3)

---
updated-dependencies:
- dependency-name: io.spring.gradle:spring-security-release-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-17 17:02:11 -07:00
dependabot[bot] 2287d67106 Bump io.projectreactor.tools:blockhound 
Bumps [io.projectreactor.tools:blockhound](https://github.com/reactor/BlockHound) from 1.0.8.RELEASE to 1.0.9.RELEASE.
- [Release notes](https://github.com/reactor/BlockHound/releases)
- [Commits](https://github.com/reactor/BlockHound/compare/1.0.8.RELEASE...1.0.9.RELEASE)

---
updated-dependencies:
- dependency-name: io.projectreactor.tools:blockhound
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-17 17:01:58 -07:00
github-actions[bot] b3401da4e6 Merge branch '6.1.x' into 6.2.x 2024-04-18 00:01:30 +00:00
github-actions[bot] 877be3f63e Merge branch '6.2.x' 2024-04-18 00:01:30 +00:00
dependabot[bot] da4af08362 Bump io.spring.gradle:spring-security-release-plugin from 1.0.2 to 1.0.3 
Bumps [io.spring.gradle:spring-security-release-plugin](https://github.com/spring-io/spring-security-release-tools) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/spring-io/spring-security-release-tools/releases)
- [Commits](https://github.com/spring-io/spring-security-release-tools/compare/v1.0.2...v1.0.3)

---
updated-dependencies:
- dependency-name: io.spring.gradle:spring-security-release-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-17 17:00:41 -07:00
github-actions[bot] ac12ddb04b Merge branch '6.2.x' 2024-04-18 00:00:41 +00:00
dependabot[bot] b49f8bff05 Bump io.spring.gradle:spring-security-release-plugin from 1.0.2 to 1.0.3 
Bumps [io.spring.gradle:spring-security-release-plugin](https://github.com/spring-io/spring-security-release-tools) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/spring-io/spring-security-release-tools/releases)
- [Commits](https://github.com/spring-io/spring-security-release-tools/compare/v1.0.2...v1.0.3)

---
updated-dependencies:
- dependency-name: io.spring.gradle:spring-security-release-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-17 16:59:48 -07:00
dependabot[bot] 10f892c7aa Bump ch.qos.logback:logback-classic from 1.5.5 to 1.5.6 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.5 to 1.5.6.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.5...v_1.5.6)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-17 16:58:43 -07:00
Marcus Hert Da Coregio 007fea5b74
Remove minor version dependency updates for main 2024-04-17 20:52:01 -03:00
Josh Cummings 36cd48474d
Merge branch '6.2.x' 2024-04-17 17:01:24 -06:00
Josh Cummings 3887f33f81
Merge branch '6.1.x' into 6.2.x 2024-04-17 17:01:03 -06:00
Josh Cummings 61df8e493d
Merge branch '5.8.x' into 6.1.x 2024-04-17 17:00:24 -06:00
Josh Cummings 470e2c5c97
Address Build Issues 
Issue gh-14837
 2024-04-17 16:59:40 -06:00
Josh Cummings ff473313df
Merge branch '6.2.x' 2024-04-17 16:45:47 -06:00
Josh Cummings f16a434f0c
Merge branch '6.1.x' into 6.2.x 
Closes gh-14922
 2024-04-17 16:45:30 -06:00