Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-21 22:05:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
13,645 Commits 33 Branches 337 Tags
Commit Graph

13645 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Marcus Hert Da Coregio
602a991971 Merge branch '5.8.x' into 6.0.x 2023-10-30 08:29:51 -03:00
Marcus Hert Da Coregio
47969ec7c9 Fix verifyDependenciesVersions not working with s101 
Issue gh-14047
 2023-10-30 08:28:15 -03:00
Marcus Da Coregio
094e3b8a1d Merge branch '5.8.x' into 6.0.x 2023-10-27 09:47:18 -03:00
Marcus Da Coregio
6654479649 Polish VerifyDependenciesVersionsPlugin 
Issue gh-14047
 2023-10-27 09:45:19 -03:00
Steve Riesenberg
017e8d9eb8
Merge branch '5.8.x' into 6.0.x 2023-10-25 15:51:18 -05:00
Steve Riesenberg
bfc31bacab
Polish Username/Password Authentication page 
Issue gh-11926

(cherry picked from commit 781d575921da42bb0523deda844bdd1c33889077)
 2023-10-25 15:50:53 -05:00
Marcus Da Coregio
28dcceae2e Merge branch '5.8.x' into 6.0.x 
Closes gh-14048
 2023-10-25 13:46:32 -03:00
Marcus Da Coregio
ad2bea3350 Fail build if nimbus-jose-jwt version is not aligned 
Closes gh-14047
 2023-10-25 13:44:23 -03:00
Steve Riesenberg
bb732e9d35
Merge branch '5.8.x' into 6.0.x 
Closes gh-14040
 2023-10-19 16:40:34 -05:00
Steve Riesenberg
5161712c35
Polish gh-13976 
Closes gh-13757
 2023-10-19 16:40:23 -05:00
Veli Döngelci
a6b872dcf3
Fix caching error state in ReactiveRemoteJWKSource 2023-10-19 16:40:13 -05:00
Marcus Da Coregio
9b2b7e58b5 Merge branch '5.8.x' into 6.0.x 
Closes gh-14037
 2023-10-19 10:03:33 -03:00
Marcus Da Coregio
70ad3bf749 relay_state should not be included in signing calculation when it is null 
Closes gh-13913
 2023-10-19 09:58:47 -03:00
Marcus Da Coregio
758496f646 Merge branch '5.8.x' into 6.0.x 2023-10-19 09:51:06 -03:00
Scott Shidlovsky
19c4e427ee Update OpenSamlAuthenticationRequestResolverTests from Junit 4 to Junit 5 
(cherry picked from commit 508f7d7b8a42a3be34c7919d03d85b64c35d0794)
 2023-10-19 09:50:28 -03:00
Marcus Da Coregio
fb28ce6aa2 Merge branch '5.8.x' into 6.0.x 
Closes gh-14033
 2023-10-18 14:26:28 -03:00
Marcus Da Coregio
736f1c27cd Remove updateDependencies plugin 
Closes gh-13966
 2023-10-18 14:12:25 -03:00
Marcus Da Coregio
aa04ee1f71 Merge branch '5.8.x' into 6.0.x 2023-10-16 14:06:44 -03:00
github-actions[bot]
ec58bf0b28 Next development version 2023-10-16 16:06:01 +00:00
github-actions[bot]
61215faa8d Next development version 2023-10-16 15:55:34 +00:00
github-actions[bot]
e4e31f2c90 Release 5.8.8 5.8.8 2023-10-16 15:21:39 +00:00
github-actions[bot]
5ead751a25 Release 6.0.8 6.0.8 2023-10-16 15:21:23 +00:00
dependabot[bot]
904aaeaef4 Bump org.springframework.data:spring-data-bom 
Bumps [org.springframework.data:spring-data-bom](https://github.com/spring-projects/spring-data-bom) from 2022.0.10 to 2022.0.11.
- [Release notes](https://github.com/spring-projects/spring-data-bom/releases)
- [Commits](https://github.com/spring-projects/spring-data-bom/compare/2022.0.10...2022.0.11)

---
updated-dependencies:
- dependency-name: org.springframework.data:spring-data-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-16 07:49:24 -03:00
Marcus Da Coregio
6014af9b28 Merge branch '5.8.x' into 6.0.x 2023-10-16 07:48:35 -03:00
dependabot[bot]
49cd8ae217 Bump org.springframework.data:spring-data-bom 
Bumps [org.springframework.data:spring-data-bom](https://github.com/spring-projects/spring-data-bom) from 2021.2.16 to 2021.2.17.
- [Release notes](https://github.com/spring-projects/spring-data-bom/releases)
- [Commits](https://github.com/spring-projects/spring-data-bom/compare/2021.2.16...2021.2.17)

---
updated-dependencies:
- dependency-name: org.springframework.data:spring-data-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-16 07:48:24 -03:00
Steve Riesenberg
c7461d1a95
Merge branch '5.8.x' into 6.0.x 
Closes gh-14014
 2023-10-13 18:16:37 -05:00
Steve Riesenberg
81d91063a5
Document how to publish an AuthenticationManager 
Closes gh-11926
 2023-10-13 18:15:09 -05:00
dependabot[bot]
7f346ff151 Bump org.springframework.ldap:spring-ldap-core from 3.0.5 to 3.0.6 
Bumps [org.springframework.ldap:spring-ldap-core](https://github.com/spring-projects/spring-ldap) from 3.0.5 to 3.0.6.
- [Release notes](https://github.com/spring-projects/spring-ldap/releases)
- [Changelog](https://github.com/spring-projects/spring-ldap/blob/main/changelog.txt)
- [Commits](https://github.com/spring-projects/spring-ldap/compare/3.0.5...3.0.6)

---
updated-dependencies:
- dependency-name: org.springframework.ldap:spring-ldap-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-13 10:50:47 -05:00
dependabot[bot]
b7094f9696 Bump org.springframework:spring-framework-bom from 6.0.12 to 6.0.13 
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.0.12 to 6.0.13.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.0.12...v6.0.13)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-13 10:50:18 -05:00
dependabot[bot]
0fd5cdf4be Bump io.projectreactor.netty:reactor-netty from 1.1.11 to 1.1.12 
Bumps [io.projectreactor.netty:reactor-netty](https://github.com/reactor/reactor-netty) from 1.1.11 to 1.1.12.
- [Release notes](https://github.com/reactor/reactor-netty/releases)
- [Commits](https://github.com/reactor/reactor-netty/compare/v1.1.11...v1.1.12)

---
updated-dependencies:
- dependency-name: io.projectreactor.netty:reactor-netty
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 08:01:13 -03:00
dependabot[bot]
3b5b236f2e Bump io.micrometer:micrometer-observation from 1.10.11 to 1.10.12 
Bumps [io.micrometer:micrometer-observation](https://github.com/micrometer-metrics/micrometer) from 1.10.11 to 1.10.12.
- [Release notes](https://github.com/micrometer-metrics/micrometer/releases)
- [Commits](https://github.com/micrometer-metrics/micrometer/compare/v1.10.11...v1.10.12)

---
updated-dependencies:
- dependency-name: io.micrometer:micrometer-observation
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 08:00:02 -03:00
dependabot[bot]
efd133aa9b Bump org-eclipse-jetty from 11.0.16 to 11.0.17 
Bumps `org-eclipse-jetty` from 11.0.16 to 11.0.17.

Updates `org.eclipse.jetty:jetty-server` from 11.0.16 to 11.0.17
- [Release notes](https://github.com/eclipse/jetty.project/releases)
- [Commits](https://github.com/eclipse/jetty.project/compare/jetty-11.0.16...jetty-11.0.17)

Updates `org.eclipse.jetty:jetty-servlet` from 11.0.16 to 11.0.17
- [Release notes](https://github.com/eclipse/jetty.project/releases)
- [Commits](https://github.com/eclipse/jetty.project/compare/jetty-11.0.16...jetty-11.0.17)

---
updated-dependencies:
- dependency-name: org.eclipse.jetty:jetty-server
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.eclipse.jetty:jetty-servlet
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 07:59:37 -03:00
dependabot[bot]
fb846aaadd Bump io.projectreactor:reactor-bom from 2022.0.10 to 2022.0.12 
Bumps [io.projectreactor:reactor-bom](https://github.com/reactor/reactor) from 2022.0.10 to 2022.0.12.
- [Release notes](https://github.com/reactor/reactor/releases)
- [Commits](https://github.com/reactor/reactor/compare/2022.0.10...2022.0.12)

---
updated-dependencies:
- dependency-name: io.projectreactor:reactor-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 07:59:22 -03:00
Marcus Da Coregio
3ad1d2bf81 Merge branch '5.8.x' into 6.0.x 2023-10-11 07:58:33 -03:00
dependabot[bot]
7f50bb5db1 Bump io.projectreactor.netty:reactor-netty from 1.0.36 to 1.0.38 
Bumps [io.projectreactor.netty:reactor-netty](https://github.com/reactor/reactor-netty) from 1.0.36 to 1.0.38.
- [Release notes](https://github.com/reactor/reactor-netty/releases)
- [Commits](https://github.com/reactor/reactor-netty/compare/v1.0.36...v1.0.38)

---
updated-dependencies:
- dependency-name: io.projectreactor.netty:reactor-netty
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 07:58:11 -03:00
dependabot[bot]
7556df6ea7 Bump io.projectreactor:reactor-bom from 2020.0.36 to 2020.0.37 
Bumps [io.projectreactor:reactor-bom](https://github.com/reactor/reactor) from 2020.0.36 to 2020.0.37.
- [Release notes](https://github.com/reactor/reactor/releases)
- [Commits](https://github.com/reactor/reactor/compare/2020.0.36...2020.0.37)

---
updated-dependencies:
- dependency-name: io.projectreactor:reactor-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 07:56:17 -03:00
dependabot[bot]
71ceb5b80b Bump org-eclipse-jetty from 9.4.52.v20230823 to 9.4.53.v20231009 
Bumps `org-eclipse-jetty` from 9.4.52.v20230823 to 9.4.53.v20231009.

Updates `org.eclipse.jetty:jetty-server` from 9.4.52.v20230823 to 9.4.53.v20231009
- [Release notes](https://github.com/eclipse/jetty.project/releases)
- [Commits](https://github.com/eclipse/jetty.project/compare/jetty-9.4.52.v20230823...jetty-9.4.53.v20231009)

Updates `org.eclipse.jetty:jetty-servlet` from 9.4.52.v20230823 to 9.4.53.v20231009
- [Release notes](https://github.com/eclipse/jetty.project/releases)
- [Commits](https://github.com/eclipse/jetty.project/compare/jetty-9.4.52.v20230823...jetty-9.4.53.v20231009)

---
updated-dependencies:
- dependency-name: org.eclipse.jetty:jetty-server
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.eclipse.jetty:jetty-servlet
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-11 07:56:06 -03:00
Steve Riesenberg
c4b0d468a8
Add nohttp exclusions 
(cherry picked from commit ac7fbea248bc9c58a8035a85d1da072328d0e212)

Issue gh-13910
 2023-10-10 11:40:05 -05:00
Marcus Da Coregio
d0ce8a412f Remove calls to setCanBeResolved(true) in IntegrationTestPuglin 
Issue gh-13864
 2023-10-10 13:08:21 -03:00
Steve Riesenberg
7d5a541a7b
Backport "Revisit CSRF page" to 6.0.x 
(cherry picked from commit e7fa34008b01b2ec56b08bb94c131d4bfbd313a1)

Closes gh-13910
 2023-10-10 10:43:14 -05:00
dependabot[bot]
60e950598e Bump com.github.spullara.mustache.java:compiler from 0.9.10 to 0.9.11 
Bumps [com.github.spullara.mustache.java:compiler](https://github.com/spullara/mustache.java) from 0.9.10 to 0.9.11.
- [Commits](https://github.com/spullara/mustache.java/compare/0.9.10...mustache.java-0.9.11)

---
updated-dependencies:
- dependency-name: com.github.spullara.mustache.java:compiler
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-10 08:22:29 -03:00
dependabot[bot]
38f7361c15 Bump io.freefair.gradle:aspectj-plugin from 6.6-rc1 to 6.6.3 
Bumps [io.freefair.gradle:aspectj-plugin](https://github.com/freefair/gradle-plugins) from 6.6-rc1 to 6.6.3.
- [Release notes](https://github.com/freefair/gradle-plugins/releases)
- [Commits](https://github.com/freefair/gradle-plugins/commits/6.6.3)

---
updated-dependencies:
- dependency-name: io.freefair.gradle:aspectj-plugin
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-10 08:22:13 -03:00
dependabot[bot]
45883290a6 Bump org-aspectj from 1.9.20 to 1.9.20.1 
Bumps `org-aspectj` from 1.9.20 to 1.9.20.1.

Updates `org.aspectj:aspectjrt` from 1.9.20 to 1.9.20.1
- [Release notes](https://github.com/eclipse/org.aspectj/releases)
- [Commits](https://github.com/eclipse/org.aspectj/commits)

Updates `org.aspectj:aspectjweaver` from 1.9.20 to 1.9.20.1
- [Release notes](https://github.com/eclipse/org.aspectj/releases)
- [Commits](https://github.com/eclipse/org.aspectj/commits)

---
updated-dependencies:
- dependency-name: org.aspectj:aspectjrt
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.aspectj:aspectjweaver
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-10 08:21:56 -03:00
dependabot[bot]
de0a484367 Bump org.springframework:spring-framework-bom from 6.0.11 to 6.0.12 
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.0.11 to 6.0.12.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.0.11...v6.0.12)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-10 08:21:36 -03:00
Marcus Da Coregio
a576f19b41 Merge branch '5.8.x' into 6.0.x 2023-10-10 08:20:30 -03:00
dependabot[bot]
bd9643af44 Bump com.github.spullara.mustache.java:compiler from 0.9.10 to 0.9.11 
Bumps [com.github.spullara.mustache.java:compiler](https://github.com/spullara/mustache.java) from 0.9.10 to 0.9.11.
- [Commits](https://github.com/spullara/mustache.java/compare/0.9.10...mustache.java-0.9.11)

---
updated-dependencies:
- dependency-name: com.github.spullara.mustache.java:compiler
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-10 08:20:03 -03:00
github-actions[bot]
4e71110b68 Bump Gradle Wrapper from 8.3 to 8.4 2023-10-10 08:16:18 -03:00
dependabot[bot]
1fc9e5b734 Bump org.jfrog.buildinfo:build-info-extractor-gradle 
Bumps [org.jfrog.buildinfo:build-info-extractor-gradle](https://github.com/jfrog/build-info) from 4.29.0 to 4.29.4.
- [Release notes](https://github.com/jfrog/build-info/releases)
- [Changelog](https://github.com/jfrog/build-info/blob/master/RELEASE.md)
- [Commits](https://github.com/jfrog/build-info/compare/build-info-gradle-extractor-4.29.0...build-info-gradle-extractor-4.29.4)

---
updated-dependencies:
- dependency-name: org.jfrog.buildinfo:build-info-extractor-gradle
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-09 07:32:34 -03:00
dependabot[bot]
5cff186b9b Bump com.gradle.enterprise from 3.11.1 to 3.11.4 
Bumps com.gradle.enterprise from 3.11.1 to 3.11.4.

---
updated-dependencies:
- dependency-name: com.gradle.enterprise
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-09 07:32:22 -03:00
dependabot[bot]
3eea54cbf9 Bump io.projectreactor.netty:reactor-netty from 1.1.10 to 1.1.11 
Bumps [io.projectreactor.netty:reactor-netty](https://github.com/reactor/reactor-netty) from 1.1.10 to 1.1.11.
- [Release notes](https://github.com/reactor/reactor-netty/releases)
- [Commits](https://github.com/reactor/reactor-netty/compare/v1.1.10...v1.1.11)

---
updated-dependencies:
- dependency-name: io.projectreactor.netty:reactor-netty
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-10-09 07:32:06 -03:00