cb5c58eeaa
AbstractUserDetailsReactiveAuthenticationManager uses newParallel
...
It is recommended to use newParallel to avoid impacting the timed
operations which all use parallel()
Fixes gh-7456
2019-09-19 13:43:25 -05:00
eeb0f56bac
Add ref doc for password grant
...
Fixes gh-7397
2019-09-19 14:00:45 -04:00
00f8991fac
Merge Remove Redudant Throws
...
Fixes gh-7301
2019-09-19 11:04:53 -05:00
3425db6d16
Fix typo
2019-09-18 19:54:37 -04:00
e8d98a54b7
Add ref doc for refresh_token grant
...
Fixes gh-7398
2019-09-18 19:54:37 -04:00
034b5e9e93
Introduce LogoutSuccessEvent
...
LogoutSuccessEvent is a simple AbstractAuthenticationEvent implementation which indicates successful logout.
By default, LogoutConfigurer will add a new LogoutHandler called LogoutSuccessEventPublishingLogoutHandler to publish this event.
This PR will also fix ConcurrentSessionFilter's composite logoutHandler, now will get LogoutHandler instances from LogoutConfigurer for consistency.
Fixes gh-2900
2019-09-18 10:57:16 -05:00
7576dc44d7
AuthenticationFilter Session Fixation Protection
...
Fixes gh-7446
2019-09-17 08:17:09 -06:00
496a2cdc60
Make AuthenticationFilter methods private
...
Fixes gh-7447
2019-09-17 08:06:21 -06:00
05caf3d8fb
Use Jwt.Builder
...
Fixes gh-7443
2019-09-16 14:00:25 -06:00
40901fe072
Jwt.Builder#notBefore Value Is Instant
...
Fixes gh-7442
2019-09-16 14:00:25 -06:00
1176d0cfdb
Polish DefaultFilters,Issue55Tests
...
Formatted HttpSecurity and WebSecurity configuration stacks
Removed unnecessary code
Issue gh-4939
2019-09-16 13:56:17 -06:00
950e6422a1
Migrate DefaultFilters,Issue55Tests groovy->java
...
Issue gh-4939
2019-09-16 13:37:22 -06:00
5aa37722b9
Add ref doc for client_credentials grant
...
Fixes gh-6206
2019-09-16 15:14:34 -04:00
8aa55fe81b
Update auth_code ref doc for oauth2-client
2019-09-16 09:37:37 -04:00
338b637ab5
Document Mock Jwt Testing
...
Fixes gh-7242
2019-09-16 07:34:37 -06:00
bdaf530511
Remove Stray @MockBean
...
Issue gh-7170
2019-09-16 06:56:58 -06:00
a085a12c99
Fix wrong java runtime version mentioned in reference doc
...
The reference documentation still referred to Java 5.0 as minimum
runtime version which is wrong.
This commit changes this to the correct
Java 8 runtime version as required minimum version.
In addition it corrects a fuzzy wording regarding stripping down the
`spring-security-core` jar.
Fixes gh-7440
2019-09-16 13:09:57 +01:00
1c257afa79
Update ref doc for oauth2-client
2019-09-13 21:07:26 -04:00
b55b2914c2
Mock Jwt Disables CSRF
...
Fixes gh-7170
2019-09-13 19:04:05 +01:00
aa12748c9b
Add Request-level CSRF Skip
...
Fixes gh-7367
2019-09-13 19:04:05 +01:00
9920cb41d1
Update ref doc copyright year
2019-09-12 19:28:01 -04:00
88c749263b
Polish javadoc for OAuth2AuthorizedClientManager
2019-09-12 19:25:49 -04:00
33837d21be
Polish oauth2-client ref doc
2019-09-12 18:57:57 -04:00
cb5f9856fe
Reorganize ref doc sections for oauth2-client
...
Fixes gh-7428
2019-09-12 18:42:23 -04:00
810e4cbbef
Document OAuth2AuthorizedClientManager/Provider
...
Fixes gh-7403
2019-09-12 18:42:23 -04:00
7f1b8eef08
Document Resource Server User-Info Usage
...
Fixes gh-7431
2019-09-12 08:23:56 -06:00
55e2fe4522
Update the AspectJ Gradle Plugin to 4.0.2
2019-09-12 13:31:05 +01:00
7c30076b37
Update to Gradle 5.6.2
2019-09-12 13:29:25 +01:00
33fb93f0ea
Add NimbusJwtDecoder Documentation
...
Fixes gh-7408
2019-09-11 13:45:45 -06:00
101e0a21a8
Bearer WebClient Filter Authentication Propagation
...
Fixes: gh-7418
2019-09-11 16:27:21 +01:00
c85358915a
Add Opaque Token Documentation
...
Fixes gh-7420
2019-09-11 08:06:48 -06:00
dcdeab596d
DefaultReactiveOAuth2AuthorizedClientManager defaults ServerWebExchange
...
Fixes gh-7390
2019-09-10 11:40:28 -04:00
96d44cd4b7
Add Default RSocketSecurity
...
Fixes gh-7361
2019-09-09 16:10:55 -05:00
5d0815bc76
Allow RSocketMessageHandlerITests to timeout
...
Fixes gh-7415
2019-09-09 16:10:50 -05:00
6296e6e896
RSocketSecurity delegates to correct matcher
...
Fixes gh-7414
2019-09-09 16:09:23 -05:00
1b699a49fb
Polish RSocket packaging
...
Fixes gh-7413
2019-09-09 16:07:14 -05:00
9f0986a093
Fix javadoc typo for invalid session strategy
2019-09-09 16:51:14 -04:00
91bf1c782a
Make OAuth2User extends OAuth2AuthenticatedPrincipal
...
Fixes gh-7378
2019-09-09 14:36:35 +01:00
aa533c2565
Add missing javadoc to session fixation
2019-09-06 16:33:51 -04:00
316380e622
Allow Custom PayloadInterceptor to be Added
...
Fixes gh-7362
2019-09-06 14:52:47 -05:00
ee0d7f6a79
Merge pull request #7393 from fhanik/pr/upgrade_opensaml_3_4_3
...
Upgrade to OpenSAML 3.4.3
2019-09-06 10:00:41 -07:00
438ae215f8
Upgrade to OpenSAML 3.4.3
...
Fixes gh-7392
2019-09-06 08:04:15 -07:00
5a9c7f03be
Next Development Version
2019-09-06 07:47:36 -06:00
ecf00625ff
Release 5.2.0.RC1
2019-09-06 07:20:03 -06:00
572c16c7cb
Update Gretty to 2.3.1
...
Fixes gh-7389
2019-09-06 07:20:21 -06:00
c716b400a1
Update to OpenSaml 3.3.1
...
Fixes gh-7388
2019-09-06 07:20:13 -06:00
897c0eb596
Update cglib to 3.3.0
...
Fixes gh-7387
2019-09-06 07:20:03 -06:00
0473730f7f
Update to Spring Data Moore RC3
...
Fixes gh-7386
2019-09-06 06:25:57 -06:00
93cda94969
Add attributes Consumer to OAuth2AuthorizationContext
...
Fixes gh-7385
2019-09-06 08:01:59 -04:00
f7d03858f1
OAuth2AuthorizedClientManager implementation works outside of request
...
Fixes gh-6780
2019-09-06 06:10:36 -04:00
Rob Winch
Joe Grandja
Onur Kagan Ozcan
Josh Cummings
kostya05983
Andreas Falk
Lars Grefer
Eleftheria Stein
Eddú Meléndez
Filip Hanik