28be37238d
Merge branch '5.7.x' into 5.8.x
...
Closes gh-13004
2023-04-12 12:45:28 -06:00
c4e9fb885d
Delay JWSVerificationKeySelector Construction
...
Updating the NimbusReactiveJwtDecoder.JwkSetUriReactiveJwtDecoderBuilder processor to execute the ConfigurableJWTProcessor customizations before holding a reference to the JWSKeySelector.
Closes gh-12960
2023-04-12 12:45:00 -06:00
dad1fba1bf
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12999
2023-04-11 17:02:16 -06:00
442faccb5f
Avoid NPE in FilterInvocation
...
Handle unknown headers in dummy request wrapper.
Closes gh-12998
2023-04-11 17:01:59 -06:00
68fd755abc
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12991
2023-04-11 09:57:15 -03:00
e25117856e
Add static imports to code snippets
...
Closes gh-6597
2023-04-11 09:56:19 -03:00
16dcfd1cfe
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12982
2023-04-10 11:25:01 -05:00
c69df9fba0
Fix javadoc typo in ReactiveAuthorizationManager
...
Closes gh-12978
2023-04-10 11:24:49 -05:00
5ffebaf12b
Merge branch '5.7.x' into 5.8.x
2023-04-04 13:32:04 -06:00
39cee36065
Use SingletonSupplier
...
Issue gh-9991
2023-04-04 13:25:31 -06:00
d5603a944d
Avoid exception if PBKDF2WithHmacSHA256 is not available
...
Issue gh-12873
2023-04-04 09:33:12 -03:00
a513fc0f38
Fix SecurityWebApplicationInitializer.getSecurityDispatcherTypes example in doc #12939
2023-03-30 09:38:17 -03:00
eb58655fa9
Improve Docs by mentioning that Empty SecurityContext should be saved
...
Closes gh-12906
2023-03-28 15:21:30 -03:00
c15589ede1
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12935
2023-03-27 16:35:46 -06:00
a106188add
Add nameIdFormat processing to OpenSamlAuthenticationRequestResolver
...
Closes gh-12825
2023-03-27 16:33:11 -06:00
6bda1d2bf3
Document WebExpressionAuthorizationManager
...
Closes gh-12928
2023-03-27 14:38:09 -06:00
a708007536
fix ID of WebSocket Authorization section
...
Throughout this document there are 3 references to `<<websocket-authorization>>` but the section ID was actually named `[[websocket-configuration]]`
2023-03-22 10:33:10 -03:00
fd65dc6756
Merge branch '5.7.x' into 5.8.x
2023-03-22 10:08:17 -03:00
5eefe9dcff
Fix typo in SessionManagementConfigurer javadoc
2023-03-22 10:07:44 -03:00
c75ee25a6d
Fix documentation code block bug
...
Fixes #12850
2023-03-22 09:21:09 -03:00
8d664bc4c2
DelegatingSecurityContextRepository should call loadContext
...
Closes gh-12314
2023-03-22 08:53:19 -03:00
889fa55c9c
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12911
2023-03-20 16:59:23 -06:00
98321b769a
Fixed Broken Support Link
...
Closes gh-12759
2023-03-20 16:59:04 -06:00
a74008cc79
Merge branch '5.7.x' into 5.8.x
2023-03-20 16:20:46 -06:00
3d7e22a4e9
Add test to SimpleUrlAuthenticationSuccessHandlerTests
2023-03-20 16:20:30 -06:00
abd51f7b63
Polished DefaultLoginPageGeneratingFilterTests Validation
...
Closes gh-12694
2023-03-20 15:31:59 -06:00
4154ed543a
Fix .access(...) parameter
2023-03-20 15:23:40 -06:00
2e92dad761
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12835
2023-03-07 13:27:57 -03:00
84cca81edf
Use HttpSessionSecurityContextRepository by default in SwitchUserFilter
...
Closes gh-12834
2023-03-07 13:27:18 -03:00
ebabcaa51a
Merge branch '5.7.x' into 5.8.x
2023-03-03 15:02:07 -07:00
094bf1b527
Validate hasRole Input
...
There are no check for role prefix in AuthorizeHttpRequestsConfigurer#XXXrole
methods. This PR adds check for the same. Now the configuration
will fail if role/s start with prefix for hasRole and hasAnyRole methods.
Closes #12581
2023-03-03 15:00:34 -07:00
e7b14b3ca2
Merge branch '5.7.x' into 5.8.x
2023-03-01 11:24:17 -07:00
66665344c5
Formatting
...
Issue gh-12664
2023-03-01 11:23:45 -07:00
6c7703789a
Ignore SPSSODescriptor elements
...
Closes gh-12664
2023-03-01 11:23:45 -07:00
a6918f9e0c
Merge branch '5.7.x' into 5.8.x
2023-03-01 11:50:17 -06:00
fabf7f649c
Fix path of copied schema files
...
Issue gh-12804
2023-03-01 11:49:36 -06:00
b2240f376e
Merge branch '5.7.x' into 5.8.x
2023-02-28 16:53:14 -06:00
7b88ab289d
Add nohttp exclusion
...
Issue gh-12804
2023-02-28 16:52:19 -06:00
ad57c0567f
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12805
2023-02-28 16:19:54 -06:00
26566af431
Copy spring-security-oauth schemas on deploy
...
Closes gh-12804
2023-02-28 16:16:08 -06:00
86578ea9de
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12801
2023-02-28 14:13:07 -06:00
5257e36ffc
Update SaganApi to work with Contentful backend
...
Also fixed an issue with incorrect referenceDocUrl for Antora
with SNAPSHOT versions.
Closes gh-12575
2023-02-28 14:09:51 -06:00
383e0c2cf0
Merge branch '5.7.x' into 5.8.x
2023-02-28 12:47:06 -07:00
0421e25cba
Document Common SAML URI Endpoints
...
Issue gh-12764
2023-02-28 12:45:48 -07:00
1c885cf3a3
Document Federation Usecase
...
Closes gh-12764
2023-02-28 12:35:04 -07:00
97ba596ca3
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12776
2023-02-23 15:17:04 -03:00
1c3ce1e401
Fix entity-id ignored in RelyingPartyRegistration XML config
...
Closes gh-11898
2023-02-23 15:16:40 -03:00
79887fa213
Closes gh-12472
2023-02-22 10:21:46 -07:00
35cf52d3bd
Add DefaultMethodSecurityExpressionHandler
...
Closes gh-12356
2023-02-21 16:58:08 -07:00
6bf11181ef
Adjust AfterInvocationManager Migration Docs
...
The original documentation only addresses the post-authorize case.
Some implementations want also to modify the return type.
Issue gh-12620
2023-02-21 15:07:17 -07:00
Josh Cummings
Nick Meverden
Christian Marck
Marcus Da Coregio
Rob Winch
Yuanhang Guo
Brummolix
Tatiana Slednikova
slauth
Martin Tarjányi
Bishakh Ghosh
Siva Kumar Edupuganti
twosom
el-hopaness-romtic
bist
stnor
Steve Riesenberg
Dayan Kodippily