Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,474 Commits 33 Branches 337 Tags
Commit Graph

11474 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Steve Riesenberg
984355e637 Remove references to WebSecurityConfigurerAdapter 
* AbstractAuthenticationFilterConfigurer
* DefaultLoginPageConfigurer
* EnableGlobalAuthentication
* FormLoginConfigurer
* HeadersConfigurer
* HttpSecurity
* OpenIDLoginConfigurer
* RememberMeConfigurer
* WebSecurity
* WebSecurityConfiguration
* WebSecurityConfigurer
* X509Configurer

Closes gh-11288
 2022-07-29 17:43:00 -05:00
Steve Riesenberg
09173c95d6 Remove references to WebSecurityConfigurerAdapter in EnableWebSecurity 
Closes gh-11277
 2022-07-29 17:43:00 -05:00
Steve Riesenberg
02459919cc
Skip workflows on forks of spring-security 2022-07-28 15:13:56 -05:00
Steve Riesenberg
57d212ddca
Use cache and user.name system property on Windows 2022-07-28 15:13:55 -05:00
Steve Riesenberg
539b17f6da
Only run prerequisites job if on upstream repo 2022-07-28 15:13:54 -05:00
Steve Riesenberg
37e1ad27fe
Simplify dependency graph 2022-07-28 15:13:53 -05:00
Steve Riesenberg
043fdd6f03
Use Spring Gradle Build Action 
Closes gh-11630
 2022-07-28 15:13:52 -05:00
Steve Riesenberg
3234e05085
Polish gh-11367 2022-07-28 15:13:51 -05:00
naveen
f957e3c051
Set permissions for GitHub actions 
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.

- Included permissions for the action.

https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

Closes gh-11367
 2022-07-28 15:13:51 -05:00
Steve Riesenberg
24033be046
Skip workflows on forks of spring-security 2022-07-28 15:11:09 -05:00
Steve Riesenberg
47a5665767
Use cache and user.name system property on Windows 2022-07-28 15:11:08 -05:00
Steve Riesenberg
aad60cc6af
Only run prerequisites job if on upstream repo 2022-07-28 15:11:07 -05:00
Steve Riesenberg
13e94935ae
Simplify dependency graph 2022-07-28 15:11:06 -05:00
Steve Riesenberg
6c29007fac
Use Spring Gradle Build Action 
Closes gh-11630
 2022-07-28 15:11:05 -05:00
Steve Riesenberg
6ad567f0fa
Polish gh-11367 2022-07-28 15:11:05 -05:00
naveen
8c634f8a9d
Set permissions for GitHub actions 
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.

- Included permissions for the action.

https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

Closes gh-11367
 2022-07-28 15:11:04 -05:00
Marcus Da Coregio
a996dfc55b Add Deprecated annotation to WebSecurity#securityInterceptor 
Closes gh-11634
 2022-07-27 14:38:50 -03:00
Marcus Da Coregio
d66ad22652 Add Deprecated annotation to WebSecurity#securityInterceptor 
Closes gh-11634
 2022-07-27 14:32:44 -03:00
Rob Winch
7a860e1568 Fix Snapshot Sources/Javadoc 
This commit merges a workaround to an issue in JFrog's Gradle plugin
which causes SNAPSHOT javadoc and sources to become out of sync and thus
prevents users from being able to download either.

Closes gh-10602
 2022-07-26 16:26:31 -05:00
Rob Winch
ad9e737bf2 Fix Snapshot Sources/Javadoc 
This commit merges a workaround to an issue in JFrog's Gradle plugin
which causes SNAPSHOT javadoc and sources to become out of sync and thus
prevents users from being able to download either.

Closes gh-10602
 2022-07-26 16:25:52 -05:00
Desmond Silveira
0d3c3c676d
"Well-Know" should be "Well-Known" 2022-07-26 15:45:27 -05:00
Desmond Silveira
06aa3362dd
"Well-Know" should be "Well-Known" 2022-07-26 15:44:41 -05:00
Yuriy Savchenko
0f64d4c091 Add Kotlin example for WebTestClient setup docs 
Closes gh-9998
 2022-07-22 14:04:16 -03:00
Yuriy Savchenko
7c7751635d Add Kotlin example for WebTestClient setup docs 
Closes gh-9998
 2022-07-22 13:56:41 -03:00
Josh Cummings
56a6133b20
Merge Same-named Attribute Elements 
Closes gh-11042
 2022-07-20 18:43:25 -06:00
Josh Cummings
bced37f6a7
Merge Same-named Attribute Elements 
Closes gh-11042
 2022-07-20 18:41:55 -06:00
Steve Riesenberg
aaf20e7b61
Build only on branches 
Issue gh-11480
 2022-07-18 11:47:25 -05:00
Steve Riesenberg
fbc5839890
Build only on branches 
Issue gh-11480
 2022-07-18 11:46:47 -05:00
Steve Riesenberg
148756076c
Backport release automation and github actions 
Closes gh-11501
 2022-07-13 15:51:25 -05:00
Steve Riesenberg
6f321a27c4
Fix inconsistency in hasProperty check 2022-07-13 15:51:25 -05:00
Steve Riesenberg
539443b4be
Add GitHubReleasePlugin with createGitHubRelease task 
Issue gh-10456
Issue gh-10457
 2022-07-13 15:51:24 -05:00
Steve Riesenberg
d76c321f8c
Backport release automation and github actions 
Closes gh-11500
 2022-07-13 15:17:03 -05:00
Josh Cummings
b0b4612609
Correct input validation for 31 rounds 
Closes gh-11470
 2022-07-11 14:52:20 -06:00
Josh Cummings
28424f8ae5
Correct input validation for 31 rounds 
Closes gh-11470
 2022-07-11 14:51:51 -06:00
Josh Cummings
37d856dca4
Correct input validation for 31 rounds 
Closes gh-11470
 2022-07-11 14:38:04 -06:00
Rob Winch
a7d21f1b34 Document sagan Release tasks require read:org scope 
Closes gh-11423
 2022-06-21 14:49:38 -05:00
Rob Winch
c57853e5fa Document sagan Release tasks require read:org scope 
Closes gh-11423
 2022-06-21 14:49:06 -05:00
Joe Grandja
d3a024786b Next Development Version 2022-06-20 15:05:30 -04:00
Joe Grandja
fa4c5449e7 Release 5.6.6 5.6.6 2022-06-20 14:50:24 -04:00
Joe Grandja
2a3845a7ed Update org.opensaml:opensaml-core4 to 4.1.1 
Closes gh-11420
 2022-06-20 14:50:24 -04:00
Joe Grandja
ff96a7b5ad Update spring-ldap-core to 2.3.8.RELEASE 
Closes gh-11419
 2022-06-20 14:41:13 -04:00
Joe Grandja
c37ff42234 Update org.springframework.data to 2021.1.5 
Closes gh-11418
 2022-06-20 14:41:10 -04:00
Joe Grandja
0a00d84838 Update org.springframework to 5.3.21 
Closes gh-11417
 2022-06-20 14:41:08 -04:00
Joe Grandja
96c6751a1d Update hibernate-entitymanager to 5.6.9.Final 
Closes gh-11416
 2022-06-20 14:41:05 -04:00
Joe Grandja
8ee9c32788 Update io.projectreactor to 2020.0.20 
Closes gh-11414
 2022-06-20 14:41:00 -04:00
Joe Grandja
7a5fb9eaf7 Update jackson-bom to 2.13.3 
Closes gh-11411
 2022-06-20 14:40:53 -04:00
Joe Grandja
8cbb972cef Add dependency update exclusion for spring-javaformat-checkstyle 2022-06-20 14:27:40 -04:00
Joe Grandja
6f275deb55 Next Development Version 2022-06-20 12:37:13 -04:00
Joe Grandja
c40f65f5a2 Release 5.7.2 5.7.2 2022-06-20 12:17:25 -04:00
Joe Grandja
bca43af9bb Update org.opensaml:opensaml-core4 to 4.1.1 
Closes gh-11410
 2022-06-20 12:08:07 -04:00