c4b6cdea3f
Fix OAuth2 multitenancy sample
...
Allowing requests with valid tokens, and fixed documentation.
Fixes: gh-6834
2019-05-03 15:37:26 -06:00
5aa50500cf
oauth2Login does not auto-redirect for XHR request
...
Fixes gh-6812
2019-05-02 16:04:09 -04:00
aef3f514fe
Set "rolePrefix" in ReactiveMethodSecurityConfiguration
...
Currently, `GrantedAuthorityDefaults` is not considered in
`ReactiveMethodSecurityConfiguration`.
This commit updates the configuration to be aware of
`GrantedAuthorityDefaults` and update `rolePrefix` when the bean is
available.
Also, use the same instance of `DefaultMethodSecurityExpressionHandler`
when constructing `ExpressionBasedAnnotationAttributeFactory`.
2019-05-02 10:46:27 -05:00
342ef6c287
Update to nohttp 0.0.1.RELEASE
...
Issue gh-6819
2019-05-01 20:12:35 -05:00
2850b273ea
Reactive JwkSource Builder Parameter Type
...
Changed the parameter type from JWT to SignedJWT
Fixes: gh-6771
2019-05-01 09:10:17 -06:00
6f5fa1b610
Make AccountStatusUserDetailsChecker implement MessageSourceAware
...
Fixes: gh-3980
2019-05-01 08:57:25 -05:00
98a8467e4c
Fix javadoc typo
2019-04-30 10:42:25 -06:00
e6ac9759e2
Extract bearer token from arbitrary header.
2019-04-30 10:41:20 -06:00
cf0c5f9026
Various NamespaceHttp*Tests groovy->java
...
Issue: gh-4939
2019-04-29 23:36:06 -06:00
b1195e7789
Opaque Token Intermediate Type
...
Introducing OAuth2TokenIntrospectionClient and also
ReactiveOAuth2TokenIntrospectionClient as configuration points.
The DSL looks in the application context for these types in the same
way it looks for JwtDecoder and ReactiveJwtDecoder, and exposes
similar configuration methods.
Fixes: gh-6632
2019-04-29 13:39:53 -06:00
59acda04cf
Fix NPE ExpressionBasedPreInvocationAdviceTests
...
Getting NPE if @PreFilter argument filterType is not provided
and method accept more then one argument.
Add related exception message.
fixes gh-6803
2019-04-26 14:40:19 -06:00
82ce9aa6f8
Add nohttp
...
Closes gh-6819
2019-04-26 15:34:45 -05:00
0aa4805be8
Add documentation on Reactive x509 security
...
[gh #5038 ]
2019-04-26 12:15:18 -05:00
a21fa1494a
Add an example and basic integration test for x509 authentication
...
[gh #5038 ]
2019-04-26 12:15:18 -05:00
9a67441507
Add x509 support for Reactive Security
...
[gh #5038 ]
2019-04-26 12:15:18 -05:00
0957ecb1e9
Align webclient section level in documentation
...
Make "WebClient for Servlet Environments" section level align with
other documents in "additional-topics".
2019-04-25 14:48:54 -06:00
5aacd0c955
Expose bean setters in @Configuration used by @EnableWebFluxSecurity
...
Fixes gh-6624
2019-04-23 11:46:09 -04:00
2c136f7b6c
Add Reactive Clear-Site-Data Support
...
1. A new implementation of ServerHttpHeadersWriter has been created to
add Clear-Site-Data header support.
2. A new implementation of ServerLogoutHandler has been created which
can be configured to write response headers during logout.
3. Added unit tests for both implementations.
Fixes gh-6743
2019-04-19 17:46:37 -06:00
19e823f8d3
AuthorityUtils Null Check
...
Fixes: gh-6773
2019-04-18 16:13:31 -06:00
c3b4a5d4c2
Next Development Version
2019-04-15 13:16:02 -04:00
e66e52d08c
Release 5.2.0.M2
2019-04-15 12:59:05 -04:00
8b77cce1b6
Update to net.sourceforge.htmlunit:neko-htmlunit 2.34.0
...
Fixes gh-6793
2019-04-15 12:39:24 -04:00
bb909f1dbd
Update to net.sourceforge.htmlunit:htmlunit 2.34.1
...
Fixes gh-6792
2019-04-15 12:39:24 -04:00
029e832e65
Update to org.apache.httpcomponents:httpclient 4.5.8
...
Fixes gh-6791
2019-04-15 12:39:24 -04:00
87ccd6283a
Update to hibernate-entitymanager 5.4.2.Final
...
Fixes gh-6789
2019-04-15 12:39:24 -04:00
b6822bbdad
Update to bcprov-jdk15on:1.61
...
Fixes gh-6788
2019-04-15 12:39:24 -04:00
9e549df1e6
Update to bcpkix-jdk15on 1.61
...
Fixes gh-6787
2019-04-15 12:39:24 -04:00
2cd52fb648
Update to org.aspectj:* to 1.9.3
...
Fixes gh-6785
2019-04-15 12:02:24 -04:00
164c18b753
Update to commons-codec 1.12
...
Fixes gh-6784
2019-04-15 11:59:01 -04:00
1112c79848
Update to com.squareup.okhttp3 3.14.1
...
Fixes gh-6783
2019-04-15 11:57:20 -04:00
84550d1a51
Update to oauth2-oidc-sdk 6.8
...
Fixes gh-6782
2019-04-15 11:53:57 -04:00
ebaab0f987
Update to nimbus-jose-jwt 7.0.1
...
Fixes gh-6781
2019-04-15 11:51:32 -04:00
4a6e91531a
Fix Broken Documentation Link
...
Fixes: gh-6553
2019-04-13 20:58:03 -06:00
20a7bc4785
Improved DigestAuthenticationFilter Test Coverage
...
Issue: gh-5462
2019-04-13 20:27:08 -06:00
d88c2c19f0
Throw exception that was created but not thrown
...
Fixes gh-5462
2019-04-13 20:27:07 -06:00
b252371de7
Resource Server Static Sample Uses @Value For Key
...
Issue: gh-6494
2019-04-13 19:39:11 -06:00
1c25fe26c9
Introduce Support for Reading RSA Keys
...
Fixes: gh-6494
2019-04-13 19:39:11 -06:00
22c8f63390
review phase2
2019-04-13 19:22:44 -06:00
570eb01733
review phase1
2019-04-13 19:22:44 -06:00
678e0b19e0
Introduce @CurrentSecurityContext for method arguments
2019-04-13 19:22:44 -06:00
4a286be2b9
Update samples documentation
2019-04-13 19:21:10 -06:00
21f7148e7a
Update filters documentation
...
Fixes: gh-5553
2019-04-13 19:21:10 -06:00
bed3371b80
Support symmetric key for JwtDecoder
...
Fixes gh-5465
2019-04-12 13:21:50 -04:00
fc6b66fdb3
Add JDK 12 to Jenkins Build
...
Fixes: gh-6774
2019-04-12 10:29:59 -06:00
a6cbc909b6
SecurityEvaluationContextExtension implements latest EvaluationContextExtension
...
Fixes gh-6766
2019-04-11 10:04:57 -04:00
f977a2594d
Update to Spring Boot 2.2.0.M1
...
Fixes gh-6770
2019-04-11 10:00:57 -04:00
308bbf680e
Update to Spring Data Moore-M3
...
Fixes gh-6769
2019-04-11 09:56:49 -04:00
4108d00827
Update to Spring 5.2.0.M1
...
Fixes gh-6768
2019-04-11 09:53:58 -04:00
45891941b0
OidcIdTokenValidator ensures clockSkew is positive number
...
Fixes gh-6443
2019-04-10 15:17:59 -04:00
462b2ecdbb
Update Gradle version to 5.3.1
...
Fixes gh-6745
2019-04-08 14:02:54 -06:00
Eleftheria Stein
Joe Grandja
Tadaya Tsuyukubo
Rob Winch
Sharad Alury
Wessel Nieboer
httpain
Elena Felder
Josh Cummings
Maksim Vinogradov
Alexey Nesterov
Alexey Nesterov
MD Sayem Ahmed
JokerSun
Kyle Anderson
Thomas Vitale
Dan Zheng
Denis Babochenko
Vishal Raj