442faccb5f
Avoid NPE in FilterInvocation
...
Handle unknown headers in dummy request wrapper.
Closes gh-12998
2023-04-11 17:01:59 -06:00
e25117856e
Add static imports to code snippets
...
Closes gh-6597
2023-04-11 09:56:19 -03:00
c69df9fba0
Fix javadoc typo in ReactiveAuthorizationManager
...
Closes gh-12978
2023-04-10 11:24:49 -05:00
39cee36065
Use SingletonSupplier
...
Issue gh-9991
2023-04-04 13:25:31 -06:00
a106188add
Add nameIdFormat processing to OpenSamlAuthenticationRequestResolver
...
Closes gh-12825
2023-03-27 16:33:11 -06:00
5eefe9dcff
Fix typo in SessionManagementConfigurer javadoc
2023-03-22 10:07:44 -03:00
98321b769a
Fixed Broken Support Link
...
Closes gh-12759
2023-03-20 16:59:04 -06:00
3d7e22a4e9
Add test to SimpleUrlAuthenticationSuccessHandlerTests
2023-03-20 16:20:30 -06:00
84cca81edf
Use HttpSessionSecurityContextRepository by default in SwitchUserFilter
...
Closes gh-12834
2023-03-07 13:27:18 -03:00
094bf1b527
Validate hasRole Input
...
There are no check for role prefix in AuthorizeHttpRequestsConfigurer#XXXrole
methods. This PR adds check for the same. Now the configuration
will fail if role/s start with prefix for hasRole and hasAnyRole methods.
Closes #12581
2023-03-03 15:00:34 -07:00
66665344c5
Formatting
...
Issue gh-12664
2023-03-01 11:23:45 -07:00
6c7703789a
Ignore SPSSODescriptor elements
...
Closes gh-12664
2023-03-01 11:23:45 -07:00
fabf7f649c
Fix path of copied schema files
...
Issue gh-12804
2023-03-01 11:49:36 -06:00
7b88ab289d
Add nohttp exclusion
...
Issue gh-12804
2023-02-28 16:52:19 -06:00
26566af431
Copy spring-security-oauth schemas on deploy
...
Closes gh-12804
2023-02-28 16:16:08 -06:00
5257e36ffc
Update SaganApi to work with Contentful backend
...
Also fixed an issue with incorrect referenceDocUrl for Antora
with SNAPSHOT versions.
Closes gh-12575
2023-02-28 14:09:51 -06:00
0421e25cba
Document Common SAML URI Endpoints
...
Issue gh-12764
2023-02-28 12:45:48 -07:00
1c885cf3a3
Document Federation Usecase
...
Closes gh-12764
2023-02-28 12:35:04 -07:00
1c3ce1e401
Fix entity-id ignored in RelyingPartyRegistration XML config
...
Closes gh-11898
2023-02-23 15:16:40 -03:00
b851a8bf6d
Next development version
2023-02-21 15:20:58 +00:00
faadadf71a
Release 5.7.7
2023-02-21 14:41:42 +00:00
2fcf48a11b
Update org.springframework.data to 2021.2.8
...
Closes gh-12738
2023-02-17 15:53:49 -07:00
0398d86f39
Update org.springframework to 5.3.25
...
Closes gh-12737
2023-02-17 15:53:40 -07:00
c9112dfaab
Update hibernate-entitymanager to 5.6.15.Final
...
Closes gh-12736
2023-02-17 15:53:32 -07:00
4156766fe0
Update org.aspectj to 1.9.19
...
Closes gh-12735
2023-02-17 15:53:24 -07:00
f125785328
Update io.spring.nohttp to 0.0.11
...
Closes gh-12734
2023-02-17 15:53:16 -07:00
4643c0d999
Update blockhound to 1.0.7.RELEASE
...
Closes gh-12733
2023-02-17 15:53:08 -07:00
d2d82b5e94
Update io.projectreactor to 2020.0.28
...
Closes gh-12732
2023-02-17 15:52:54 -07:00
d4d03ea146
Update jackson-bom to 2.13.5
...
Closes gh-12731
2023-02-17 15:52:32 -07:00
2db4430dcd
Preserve OpenSamlAssertingPartyDetails Instance
...
Closes gh-12667
2023-02-17 10:02:17 -07:00
000b4bc495
Fix NPE in HttpSecurity#addFilterBefore, HttpSecurity#addFilterAfter
...
Before the fix, these methods would throw a NPE in case when the filter class passed as the second parameter, is not registered yet.
In particular, this exception can occur when mixing standard and custom DSL to register filters.
The fix doesn't change the situation that standard DSL for registration of filters cannot refer to filters that are registered via custom DSL even though those calls were done earlier.
It just provides more user-friendly error handling for this and most likely other scenarios of calls of HttpSecurity#addFilterBefore, HttpSecurity#addFilterAfter.
The error handling is implemented similarly to HttpSecurity#addFilter.
Closes gh-12637
2023-02-16 14:54:44 -07:00
aad3e61f4d
chore: Use cache in continuous-integration-workflow.yml
...
Signed-off-by: jongwooo <jongwooo.han@gmail.com>
2023-02-01 14:26:25 -07:00
51d5fb9c03
upgrade the Gradle Antora Plugin to 1.0.0
2023-01-30 16:04:40 -06:00
7db357d36a
Use io.spring.antora.generate-antora-yml
2023-01-17 17:05:55 -06:00
f5bc6ce665
fix unclosed block in docs
2023-01-17 15:02:30 -06:00
4cbb057b97
enable fetch option in Antora unless Gradle is running in offline mode
2023-01-17 14:42:54 -03:00
c0f7cecc6d
Merge branch '5.6.x' into 5.7.x
2023-01-17 09:46:41 -03:00
22ffa833ca
upgrade Antora plugin and configure playbook provider to support local build
2023-01-17 09:46:24 -03:00
f41b77a4db
Fix Diagram to Say SecurityContextHolderFilter
...
Closes gh-11800
2023-01-11 12:47:07 -07:00
2028507bf8
Fix Typo in Sample
...
Closes gh-11095
2023-01-10 10:38:28 -07:00
ffdb397830
Save the SecurityContext when switching user
...
Closes gh-12504
2023-01-10 09:27:56 -03:00
225dc593a8
Polish NimbusJwtDecoderTests
...
- Add missing mock
Closes gh-12238
2023-01-06 12:53:36 -07:00
3cfaf0d11d
Avoid LinkedMultiValueMap in Serializable Object
...
Closes gh-11785
2022-12-23 15:54:00 -07:00
fbfa13bd47
Fix OAuth 2.0 testing docs
2022-12-19 16:52:25 -03:00
0c6b427132
Merge branch '5.6.x' into 5.7.x
2022-12-19 15:03:50 -03:00
0f7d17bae6
Next development version
2022-12-19 15:59:53 +00:00
c11248b589
Next development version
2022-12-19 15:57:16 +00:00
972075677f
Release 5.6.10
2022-12-19 15:23:12 +00:00
11614edcfe
Release 5.7.6
2022-12-19 15:22:32 +00:00
2461d00f4d
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12407
2022-12-15 15:52:02 -06:00
Christian Marck
Marcus Da Coregio
Yuanhang Guo
Josh Cummings
Tatiana Slednikova
Martin Tarjányi
Siva Kumar Edupuganti
twosom
bist
stnor
Steve Riesenberg
github-actions[bot]
Leonid Rozenblyum
jongwooo
Dan Allen
Rob Winch
Jon Kjennbakken
Eleftheria Stein-Kousathana