1301 Commits

Author SHA1 Message Date
Josh Cummings
8bb5875595 Expose OidcBackChannelLogoutHandler
This component already uses by default a URI that doesn't require
a CSRF token and aalready allows for configuring a cookie name.

So, by making it public and configurable in the DSL, both
of these tickets quite naturally close.

Closes gh-13841
Closes gh-14904
2024-09-15 21:30:55 -07:00
Steve Riesenberg
a939c100fc
Merge branch '6.2.x' into 6.3.x
Closes gh-15808
2024-09-13 16:08:33 -05:00
Steve Riesenberg
1782f17e7f
Merge branch '5.8.x' into 6.2.x
Closes gh-15807
2024-09-13 16:08:04 -05:00
Steve Riesenberg
0a4eb0f09a
Update credential erasure examples
Closes gh-15683
2024-09-13 16:07:47 -05:00
Steve Riesenberg
243f0f87cd
Update credential erasure examples
Closes gh-15683
2024-09-13 16:06:01 -05:00
Steve Riesenberg
f8a78f1864
Update What's New 2024-09-13 15:55:47 -05:00
Steve Riesenberg
8bab9bcce8
Polish whats-new.adoc 2024-09-13 11:28:39 -05:00
Marcus Hert Da Coregio
0618d4e03f Provide Runtime Hints for Beans used in Pre/PostAuthorize Expressions
Closes gh-14652
2024-09-13 08:42:14 -03:00
Josh Cummings
fc3de5e41a Rework Method Security Reactive Docs 2024-09-10 12:01:29 -07:00
Josh Cummings
784e074a48 Document Programmatic Authorization in Reactive 2024-09-10 12:01:29 -07:00
DingHao
ef8b0addbb Support custom MethodSecurityExpressionHandler
Closes gh-15715
2024-09-10 12:01:29 -07:00
Josh Cummings
fd5d03d384 Add AuthorizeReturnObject Hints
Closes gh-15709
2024-09-10 11:57:31 -07:00
Josh Cummings
9b6ac637c9
Merge branch '6.3.x' 2024-09-10 12:51:08 -06:00
Josh Cummings
01eb41cac4
Merge branch '6.2.x' into 6.3.x 2024-09-10 12:50:48 -06:00
Tran Ngoc Nhan
b9f051d15b docs: update 2024-09-10 11:50:11 -07:00
Xi Minghui
64920c12de Correct Title in logout.adoc 2024-09-06 11:29:43 -07:00
Marcus Hert Da Coregio
6417eb7159 Document how to customize OneTimeTokenService
Closes gh-15743
2024-09-06 09:39:25 -03:00
Max Batischev
81e4c7273a Add One-Time Token Login support to Kotlin DSL
Closes gh-15698
2024-09-04 09:13:38 -03:00
Xi Minghui
0b98eb4139 Correct ObservationRegistry Type Reference 2024-09-03 14:28:00 -07:00
Tran Ngoc Nhan
febe5e6ddf docs: update 2024-09-03 13:51:47 -07:00
Xi Minghui
d23f283598 Corrected AuthenticationEventPublisher Type 2024-09-03 13:24:09 -07:00
Marcus Hert Da Coregio
00e4a8fb54 Add support for One-Time Token Login
Closes gh-15114
2024-09-03 10:07:56 -03:00
Josh Cummings
add5c56136
Update AuthorizeReturnObject Jackson Docs
Now instructs to use MethodAuthorizationDeniedHandler

Issue gh-14601
2024-08-30 11:43:47 -06:00
DingHao
fd05c5ad76 Remove Advised Methods from Authorization Proxy Objects
Closes gh-15561
2024-08-30 10:40:25 -07:00
Xi Minghui
e39b39dada Corrected Reference to HttpServletRequest#authenticate 2024-08-26 15:35:13 -07:00
Josh Cummings
d2e8c19789
Merge branch '6.3.x' 2024-08-26 16:33:04 -06:00
Josh Cummings
279cb89eac
Merge branch '6.2.x' into 6.3.x 2024-08-26 16:32:58 -06:00
Hero Wanders
2ba9b6821a Fix OIDC Logout Code Snippets 2024-08-26 15:32:35 -07:00
Hero Wanders
f372f5cf52 Replace OidcSessionStrategy References with OidcSessionRegistry 2024-08-26 15:32:35 -07:00
Josh Cummings
f0f04e490e
Merge branch '6.3.x' 2024-08-26 16:25:27 -06:00
Josh Cummings
6ea33ceaea
Merge branch '6.2.x' into 6.3.x 2024-08-26 16:25:12 -06:00
Junhyunny
47723f6d39 Fix code format in OIDC Logout docs 2024-08-26 15:14:02 -07:00
Steve Riesenberg
8318a42959
Update What's New for 6.4
Issue gh-15437
2024-08-22 13:12:33 -05:00
Josh Cummings
06febf7857
Update What's New 2024-08-21 18:19:18 -06:00
Steve Riesenberg
e3c19ba86c Add RestClient interceptor
Closes gh-13588
2024-08-16 17:15:18 -05:00
Robert Danczak
12a9f9240c Fix: Adjusted code formatting to remaining code examples. 2024-08-12 12:59:36 -03:00
Josh Cummings
e40c98e6d7 Deprecate PrePostTemplateDefaults
Since there is nothing specific to configuring pre/post
annotations, there is no need for the extra class.

If a need like this does arise in the future,
either AnnotationTemplateExpressionDefaults can be sub-
classed, or it can have introduced a Map field holding
custom properties.

Issue gh-15286
2024-08-10 11:46:51 -06:00
Josh Cummings
f4d9d0d54f Document @AuthenticationPrincipal meta-annotations
Issue gh-15286
2024-08-10 11:46:51 -06:00
Josh Cummings
96682a1d5c
Document OpenSAML 4 vs OpenSAML 5 Support
Closes gh-11658
2024-08-06 18:14:12 -06:00
Josh Cummings
1da383b360
Add OpenSAML 5 Support
Issue gh-11658
2024-08-06 18:14:11 -06:00
Josh Cummings
1be596bb2f
Use OpenSAML API for registration
Issue gh-11658
2024-08-06 18:14:11 -06:00
Josh Cummings
51fc05630d
Use OpenSAML API for web.authentication.logout
Issue gh-11658
2024-08-06 18:14:10 -06:00
Josh Cummings
ef35c4a64a
Merge branch '6.3.x' 2024-07-29 15:10:50 -06:00
Josh Cummings
97a49e18b9
Merge branch '6.2.x' into 6.3.x 2024-07-29 15:10:32 -06:00
Josh Cummings
e51507e32d Polish Inline Code Formatting 2024-07-29 14:08:01 -07:00
Junhyunny
bfee6927c2 Correct Explanation for HttpSessionCsrfTokenRepository 2024-07-29 14:08:01 -07:00
Josh Cummings
e0be46ea84
Merge branch '6.3.x' 2024-07-29 13:40:27 -06:00
Taha Körkem
da65830569
Use Correct Meta-Annotation in Kotlin Sample 2024-07-29 13:39:34 -06:00
Marcus Hert Da Coregio
8231b8a03b Merge branch '6.3.x' 2024-07-29 14:56:16 -03:00
Marcus Hert Da Coregio
c1b3b329af Merge branch '6.2.x' into 6.3.x 2024-07-29 14:56:09 -03:00