8ea37360ac
Add dependency exclusion rules
2022-06-20 10:03:29 -04:00
d32f74d19d
SecurityContextHolder Deferred SecurityContext
...
Closes gh-10913
2022-06-17 17:03:19 -05:00
b6d43e58c0
SecurityContextHolder Deferred SecurityContext
...
Closes gh-10913
2022-06-17 16:59:09 -05:00
d4a03dc2b1
Cache SecurityContextRepository.loadContext(HttpServletRequest) Result
...
Closes gh-11390
2022-06-17 15:28:57 -05:00
29db051f7a
Cache SecurityContextRepository.loadContext(HttpServletRequest) Result
...
Closes gh-11390
2022-06-17 14:52:35 -05:00
591d1edc7d
Cache SecurityContextRepository.loadContext(HttpServletRequest) Result
...
Closes gh-11390
2022-06-17 14:52:01 -05:00
150b81d008
Add SecurityContextHolderStrategy XML Configuration for Defaults
...
Issue gh-11061
2022-06-17 12:21:10 -06:00
ce218c78f9
Add SecurityContextHolderStrategy Java Configuration for Defaults
...
Issue gh-11061
2022-06-17 11:58:38 -06:00
a31a99b591
Add SecurityContextHolderStrategy to Default Components
...
Issue gh-11060
2022-06-17 11:58:36 -06:00
2a70707c35
Add SecurityContextHolderStrategy XML Configuration for Defaults
...
Issue gh-11061
2022-06-17 11:28:10 -06:00
2c09a300b6
Add SecurityContextHolderStrategy Java Configuration for Defaults
...
Issue gh-11061
2022-06-17 11:28:10 -06:00
31e25b115e
Add SecurityContextHolderStrategy to Default Components
...
Issue gh-11060
2022-06-17 11:28:10 -06:00
539a11d0a4
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:13:42 -06:00
f035c30edb
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:12:13 -06:00
01513ab17e
Add placeholders to reactive post_logout_redirect_uri
...
Now also supports baseScheme, baseHost, basePort, and basePath
Issue gh-11229
2022-06-16 16:10:26 -06:00
6f69d85fcb
Reactive OAuth 2.0 logout handler resolves registrationId
...
Closes gh-11378
2022-06-16 16:09:57 -06:00
3f30de388a
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 16:09:56 -06:00
e4505ed6c8
Add placeholders to post_logout_redirect_uri
...
Now supports baseScheme, baseHost, basePort, and basePath in addition
to extant baseUrl.
Closes gh-11229
2022-06-16 16:09:56 -06:00
a8ab432aea
Add placeholders to reactive post_logout_redirect_uri
...
Now also supports baseScheme, baseHost, basePort, and basePath
Issue gh-11229
2022-06-16 15:58:44 -06:00
ebb5746f6e
Reactive OAuth 2.0 logout handler resolves registrationId
...
Closes gh-11378
2022-06-16 15:58:44 -06:00
18f7cf5406
Encode postLogoutRedirectUri query params
...
Closes gh-11379
2022-06-16 15:58:43 -06:00
cb0ab49adc
Add placeholders to post_logout_redirect_uri
...
Now supports baseScheme, baseHost, basePort, and basePath in addition
to extant baseUrl.
Closes gh-11229
2022-06-16 15:58:35 -06:00
79c2b8709b
Allow form login when single OAuth2 Provider is configured
...
Closes gh-6802
2022-06-15 14:05:55 -05:00
a061191bd2
Allow form login when single OAuth2 Provider is configured
...
Closes gh-6802
2022-06-15 13:42:06 -05:00
d18291676f
Update copyright year
...
Issue gh-11372
2022-06-15 13:14:07 -05:00
c7df39a3e6
Fix tests using root cause for exception messages
...
Closes gh-11372
2022-06-14 17:12:15 -05:00
d98dab5917
Update java version to 17.0.3-tem
2022-06-14 14:43:34 -05:00
ac98e358a5
Add slack announcement when release is successful
...
Closes gh-11307
2022-06-14 14:10:09 -05:00
98fbc7a88f
Calculate release day from the first Monday
...
Fixes an issue where the first day of the month is (for example) a
Tuesday causing the 2nd Tuesday and 3rd Monday to be over a week apart.
Issue gh-10458
2022-06-09 15:30:37 -05:00
d22277ce36
Add missing KeyInfo
...
Closes gh-11354
2022-06-09 13:16:50 -06:00
bd60a0f8c9
Add OpenSamlSigningUtilsTests
...
Issue gh-11354
2022-06-09 13:16:49 -06:00
89fb075e2d
Add missing KeyInfo
...
Closes gh-11354
2022-06-09 13:14:19 -06:00
3a41567a18
Add OpenSamlSigningUtilsTests
...
Issue gh-11354
2022-06-09 13:14:13 -06:00
812bb0ead0
Add missing KeyInfo
...
Closes gh-11354
2022-06-09 13:12:52 -06:00
bb9c7d1b6e
Add OpenSamlSigningUtilsTests
...
Issue gh-11354
2022-06-09 13:12:33 -06:00
3ca4b06612
Support multiple SingleLogoutService bindings.
...
Closes gh-11286
2022-06-09 12:56:16 -06:00
89989722d0
Support multiple SingleLogoutService bindings.
...
Closes gh-11286
2022-06-09 12:50:33 -06:00
29ba67b6d7
Remove dependency on commons-codec by using java.util.Base64
...
Closes gh-11318
2022-06-09 06:50:01 -06:00
f3c96fa9cd
Remove dependency on commons-codec by using java.util.Base64
...
Closes gh-11318
2022-06-09 06:49:39 -06:00
d1cb236df5
Fix slack notifications in #spring-security-ci
...
This change can be reverted if upgrading to a new version of
Gamesight/slack-workflow-status with the fix available (> 1.1.0).
Closes gh-11346
2022-06-07 16:07:10 -05:00
e97c5a533b
Reverse content type check
...
When MultipartFormData is enabled currently the CsrfWebFilter compares
the content-type header against MULTIPART_FORM_DATA MediaType which
leads to NullPointerExecption when there is no content-type header.
This commit reverse the check to compare the MULTIPART_FORM_DATA
MediaType against the content-type which contains null check and avoids
the exception.
closes gh-11204
Closes gh-11205
2022-06-06 15:47:35 -05:00
d882bfcf2b
Reverse content type check
...
When MultipartFormData is enabled currently the CsrfWebFilter compares
the content-type header against MULTIPART_FORM_DATA MediaType which
leads to NullPointerExecption when there is no content-type header.
This commit reverse the check to compare the MULTIPART_FORM_DATA
MediaType against the content-type which contains null check and avoids
the exception.
closes gh-11204
Closes gh-11205
2022-06-06 15:47:14 -05:00
cf69cdf008
Reverse content type check
...
When MultipartFormData is enabled currently the CsrfWebFilter compares
the content-type header against MULTIPART_FORM_DATA MediaType which
leads to NullPointerExecption when there is no content-type header.
This commit reverse the check to compare the MULTIPART_FORM_DATA
MediaType against the content-type which contains null check and avoids
the exception.
closes gh-11204
Closes gh-11205
2022-06-06 15:46:28 -05:00
1483a57018
Reverse content type check
...
When MultipartFormData is enabled currently the CsrfWebFilter compares
the content-type header against MULTIPART_FORM_DATA MediaType which
leads to NullPointerExecption when there is no content-type header.
This commit reverse the check to compare the MULTIPART_FORM_DATA
MediaType against the content-type which contains null check and avoids
the exception.
closes gh-11204
2022-06-06 15:45:55 -05:00
e0fa644b08
Fix typo in BasicLookupStrategy Javadoc
...
Closes gh-11336
2022-06-06 14:16:28 -05:00
592db9180d
Enable BackportBot on 5.6.x
2022-06-06 14:16:28 -05:00
6c3f53ac0a
Fix typo in BasicLookupStrategy Javadoc
...
Issue gh-11336
2022-06-06 14:09:24 -05:00
f3590519c1
Fix typo in BasicLookupStrategy Javadoc
...
Closes gh-11336
2022-06-06 14:08:55 -05:00
c9a4ff75d9
Fix typo in BasicLookupStrategy Javadoc
...
Issue gh-11336
2022-06-06 14:07:55 -05:00
b274431c07
Fix typo in BasicLookupStrategy Javadoc
...
Closes gh-11336
2022-06-06 13:55:43 -05:00
Joe Grandja
Rob Winch
Josh Cummings
Michael
Steve Riesenberg
Eddú Meléndez
Jared Rufer
j3graham
Zhivko Delchev
shirohoo