96a9cf0d2d
Restore Previous Behavior for Servlet 5
...
Closes gh-16173
2024-12-05 09:52:06 -07:00
a8c4d6cead
Require Locale argument for toLower/toUpperCase usage
2024-11-18 04:22:26 -05:00
addc7c53b2
Merge branch '5.8.x' into 6.2.x
...
Closes gh-15985
2024-10-24 11:56:16 -06:00
1399a82ea9
Return Null Request When Cookie Is Malformed
...
Closes gh-15905
2024-10-24 10:55:36 -07:00
0e257b56ce
Add Firewall for WebFlux
...
Closes gh-15967
2024-10-21 09:42:24 -05:00
542071b1f8
Merge Add Firewall for WebFlux
...
Closes gh-15967
2024-10-21 08:56:42 -05:00
4ce7cde155
Add Firewall for WebFlux
...
Closes gh-15967
2024-10-21 08:46:13 -05:00
3fc7b6e921
Merge branch '5.8.x' into 6.2.x
...
Closes gh-15185
2024-05-31 18:34:14 -05:00
dcb8c563e8
Fix ArrayIndexOutOfBoundsException
...
Issue gh-13310
Closes gh-15184
2024-05-31 18:12:21 -05:00
47ad405063
Merge branch '5.8.x' into 6.2.x
...
Closes gh-15148
2024-05-23 14:04:35 -03:00
c7b739eb3f
Fix broken link to jaspan article
...
Closes gh-14358
2024-05-23 14:04:10 -03:00
08f11f06ab
Revert unnecessary commits from main
...
Issue gh-15016
2024-05-08 13:49:18 -03:00
36cd48474d
Merge branch '6.2.x'
2024-04-17 17:01:24 -06:00
3887f33f81
Merge branch '6.1.x' into 6.2.x
2024-04-17 17:01:03 -06:00
61df8e493d
Merge branch '5.8.x' into 6.1.x
2024-04-17 17:00:24 -06:00
470e2c5c97
Address Build Issues
...
Issue gh-14837
2024-04-17 16:59:40 -06:00
ff473313df
Merge branch '6.2.x'
2024-04-17 16:45:47 -06:00
f16a434f0c
Merge branch '6.1.x' into 6.2.x
...
Closes gh-14922
2024-04-17 16:45:30 -06:00
ade45771b2
Merge branch '5.8.x' into 6.1.x
...
Closes gh-14921
2024-04-17 16:44:50 -06:00
657760af5b
Improve Logging
...
Closes gh-14837
2024-04-17 16:43:29 -06:00
61eba00654
Move HaveIBeenPwnedRestApiPasswordChecker to spring-security-web
...
Prior to this commit, the implementation was placed in spring-security-core, however we do not want to introduce a dependency on spring-web and spring-webflux for that module.
Issue gh-7395
2024-04-10 14:58:01 -03:00
f689f3c3fc
Fix continueOnError default value in java doc
...
Closes gh-14870
2024-04-10 13:28:06 -03:00
7faae83ebb
docs: fix typo
2024-04-08 14:44:12 -03:00
c439cfef0f
Merge branch '6.1.x' into 6.2.x
2024-03-21 17:24:34 -06:00
ce9f1821b1
Improve logging in AuthenticationWebFilter
...
Closes #14091
2024-03-21 17:24:10 -06:00
091976fffb
Improve logging in AuthenticationWebFilter
...
Closes #14091
2024-03-21 17:22:35 -06:00
c0928bf198
Add DelegatingAuthenticationConverter
...
Closes gh-14644
2024-03-13 14:33:45 -06:00
8885707674
Add DelegatingServerAuthenticationConverter
...
Closes gh-14644
2024-03-05 08:21:59 -07:00
bd345fb2a8
Polish gh-11758
2024-02-29 12:15:30 -06:00
5c5503924b
Add SwitchUserGrantedAuthorityMixIn
...
Closes gh-11775
2024-02-29 11:07:21 -06:00
f8ff056eb6
Update Max Sessions on WebFlux
...
Delete WebSessionStoreReactiveSessionRegistry.java and gives the responsibility to remove the sessions from the WebSessionStore to the handler
Issue gh-6192
2024-02-28 10:06:45 -03:00
a5ce8ae87f
Polish Max Sessions on WebFlux
...
This commit changes the PreventLoginServerMaximumSessionsExceededHandler to invalidate the WebSession in addition to throwing the error, this is needed otherwise the session would still be saved with the security context. It also changes the SessionRegistryWebSession to first perform the operation on the delegate and then invoke the needed method on the ReactiveSessionRegistry
Issue gh-6192
2024-02-27 11:12:50 -03:00
4d039e515f
Merge branch '6.2.x'
2024-02-22 13:21:22 -07:00
9c48546883
Merge branch '6.1.x' into 6.2.x
2024-02-22 13:21:14 -07:00
7f106f0419
Merge branch '5.8.x' into 6.1.x
2024-02-22 13:20:29 -07:00
5f80468de3
Updated copyright date
2024-02-22 13:19:05 -07:00
2f762fefe1
Allow tab in HTTP header values.
...
Closes gh-14573
2024-02-22 13:19:05 -07:00
21580fd27d
Merge branch '6.2.x'
2024-02-16 13:31:20 -03:00
15306c1007
Merge branch '6.1.x' into 6.2.x
2024-02-16 13:21:15 -03:00
750cb30ce4
Add AuthenticationTrustResolver.isAuthenticated
2024-02-16 13:08:29 -03:00
aa8178af65
Merge branch '6.2.x'
2024-02-07 08:53:16 -07:00
0cadabfa89
Merge branch '6.1.x' into 6.2.x
...
Closes gh-14568
2024-02-07 08:52:47 -07:00
75fdcd10f7
Use synchronized
...
Closes gh-14445
2024-02-07 08:48:49 -07:00
915d68e216
Remove includeExpiredSessions parameter
...
The reactive implementation of max sessions does not keep track of expired sessions, therefore we do not need such parameter
Issue gh-6192
2024-02-06 10:43:00 -03:00
c1adeef0da
Add validation IpAddressMatcher
...
Closes gh-13621
2024-01-30 17:16:18 -07:00
6e1bcfed11
Add argument resolver for SecurityContext
...
Closes gh-13425
2024-01-29 17:30:38 -07:00
a808c139ad
Enhance IpAddressMatcher performance
...
Closes gh-14493
Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
2024-01-29 17:28:19 -07:00
6df9ef5ba6
Fix wrong class name in JavaDoc
...
In the `ServerWebExchangeDelegatingReactiveAuthenticationManagerResolver.Builder` class the JavaDoc comments mention the wrong class name. This commit fixes this.
2024-01-19 09:29:07 -07:00
06278157fa
Merge branch '6.2.x'
...
Closes gh-14471
2024-01-17 16:16:40 -03:00
148e0b41d2
Merge branch '6.1.x' into 6.2.x
...
Closes gh-14470
2024-01-17 16:16:27 -03:00
Josh Cummings
Joe Grandja
Josh Cummings
DingHao
Rob Winch
Steve Riesenberg
Marcus Hert Da Coregio
erie0210
Thomas Hagelberg
ruabtmh
Markus Heiden
Christian Becker
Rob Winch
Federico Herrera
Nermin Karapandzic
ahmd-nabil
sonallux