1a6a295a07
Document Update to 5.8 in Migration
...
Closes gh-12196
2022-11-10 21:45:41 -06:00
ef8c4d85bc
Document Configure Default SessionAuthenticationStrategy
...
Closes gh-12192
2022-11-10 14:11:10 -06:00
7b28df8ebe
Document deprecation in SecurityContextRepository
...
Issue gh-12023
2022-11-09 14:49:45 -06:00
63cf954e07
Document SecurityContextRepository default
...
Closes gh-12049
2022-11-09 14:49:15 -06:00
aefc157953
Add important note for SecurityContextRepository
...
Issue gh-12049
2022-11-09 14:47:50 -06:00
1a3be83084
Merge branch '5.8.x'
...
Closes gh-12185
2022-11-09 12:28:37 -06:00
ea8fb1f159
Document SecurityContextRepository default
...
Issue gh-12049
2022-11-09 12:19:44 -06:00
2e41e1cbac
Document deprecation in SecurityContextRepository
...
Issue gh-12023
2022-11-09 12:19:44 -06:00
9071f10759
Document DelegatingSecurityContextRepository
...
Closes gh-12069
2022-11-09 12:19:43 -06:00
3366792d3b
Adjust SAML What's New
...
Issue gh-11077
2022-11-08 14:15:38 -07:00
079bb45d94
Add Encryptors Preparation Steps
...
Issue gh-8980
2022-11-08 14:13:44 -07:00
8af3b5afe4
Fix documentation part of Multiple HttpSecurity Instances
...
`http.antMatcher()` is not longer available and was replaced with
`http.securityMatcher()`, so use this in the Java Config Multiple
HttpSecurity Instances example, too
2022-11-08 13:51:05 -03:00
1103e68fc9
Polish Use new requestMatchers method migration
...
Issue gh-12100
2022-11-08 10:31:49 -03:00
89423b38b6
Add requestMatchers and securityMatchers migration steps
...
Issue gh-12100
2022-11-08 08:31:03 -03:00
693bfb66b2
Document how to use the new requestMatchers and securityMatchers
...
Closes gh-12100
2022-11-08 08:27:31 -03:00
6043cee699
Add OpenSaml4AuthenticationProvider Preparation Steps
...
Issue gh-11077
2022-11-07 17:40:19 -07:00
095faffd70
Add RelyingPartyRegistration Preparation Steps
...
Issue gh-11077
2022-11-07 13:37:44 -07:00
33ce3b59b8
Add Saml2AuthenticationToken Preparation Steps
...
Issue gh-11077
2022-11-03 13:57:54 -06:00
2f87309cda
Fix Typo
...
Closes gh-11077
2022-11-03 13:37:13 -06:00
c7b9b33cd1
Merge branch '5.8.x'
2022-11-03 08:23:50 -03:00
4d646a2978
Merge branch '5.7.x' into 5.8.x
2022-11-03 08:23:26 -03:00
067fc1678c
Merge branch '5.6.x' into 5.7.x
2022-11-03 08:22:09 -03:00
01a37dd678
Fix typo
...
(cherry picked from commit 20e89e3eca0823bfa329b5de80448bac1f5e0f30)
2022-11-03 08:21:48 -03:00
aad01447c3
docs: fix realm typo
2022-11-03 08:21:26 -03:00
bb43293469
Expand SAML Deprecations What's New
...
Issue gh-11077
2022-11-02 18:03:13 -06:00
5760b6dedf
Add AuthenticationServiceException Reactive Migration Steps
...
Issue gh-9429
Issue gh-12132
2022-11-02 18:02:53 -06:00
953c9294d0
Initial SAML Deprecation Preparation Steps
...
- Stop using Converter constructors
- Replace Saml2AuthenticationRequestContextResolver and
Saml2AuthenticationRequestFactory with
Saml2AuthenticationRequestResolver
Issue gh-11077
2022-11-02 18:01:03 -06:00
ba8f344ccb
Add AuthenticationServiceException Reactive Preparation Steps
...
Issue gh-9429
Issue gh-12132
2022-11-02 15:48:04 -06:00
cca999c57d
Merge remote-tracking branch 'origin/5.8.x'
2022-11-01 13:46:08 -06:00
d29ab8bcae
Merge branch '5.7.x' into 5.8.x
2022-11-01 13:43:40 -06:00
c94e33b6c8
Merge branch '5.6.x' into 5.7.x
2022-11-01 13:42:35 -06:00
63fb14f8c8
Add Remember Me SHA-256 migration steps
...
Issue gh-12097
2022-11-01 15:42:21 -03:00
8315545144
Update RP-Initiated Logout target URLs.
...
The URLs we're using are not actually pointing to the OIDC RP-Initiated Logout Specs.
Fixes: gh-12081
2022-11-01 12:35:39 -06:00
990ee8b8a5
Merge branch '5.8.x'
...
Closes gh-12119
2022-11-01 15:35:12 -03:00
7cbb9e82f9
Document how to opt-in for SHA256 in RememberMe
...
Closes gh-12097
2022-11-01 15:33:45 -03:00
d701946089
Merge branch '5.8.x'
2022-11-01 08:18:30 -03:00
6a4b279145
Merge branch '5.7.x' into 5.8.x
2022-11-01 08:17:50 -03:00
752e943492
Merge branch '5.6.x' into 5.7.x
2022-11-01 08:17:03 -03:00
e9db852d6e
update generateAntora task to keep prerelease segment other than -SNAPSHOT in docs version
2022-11-01 08:13:43 -03:00
2a2f7a197c
Add AuthenticationEntryPointFailureHandler Migration Steps
...
Issue gh-9429
2022-10-31 16:40:21 -06:00
39f4fcd5f2
Add AuthenticationEntryPointFailureHandler Preparation Steps
...
Issue gh-9429
2022-10-31 16:33:25 -06:00
ac7f726a24
Add RunAsManager Preparation Steps
...
Closes gh-11337
2022-10-31 15:46:19 -06:00
c5badbc631
Add AccessDecisionManager Preparation Steps
...
Issue gh-11337
2022-10-31 15:25:05 -06:00
86c9d5cfbe
Remove Stray Horizontal Rules
...
Issue gh-11337
2022-10-31 15:24:59 -06:00
4112adf6a0
Document Configure Default CsrfTOken BREACH Protection
...
Closes gh-12107
2022-10-28 15:57:25 -05:00
96d7c78b67
Polish Document Defer load CsrfToken
...
Issue gh-12105
2022-10-28 15:51:28 -05:00
d860775b45
Document Defer load CsrfToken
...
Closes gh-12105
2022-10-28 15:41:25 -05:00
4938c394e4
Move Opt-out Steps
...
Closes gh-12104
2022-10-28 13:52:02 -06:00
4f5372a3a7
Add Request Security Migration Steps
...
Issue gh-11337
2022-10-28 12:25:44 -06:00
8da916fa1c
Add Request Security Preparation Steps
...
Issue gh-11337
2022-10-28 11:48:21 -06:00
56482e25de
Polish Method Security Migration Steps
...
- Revert steps removed since implicitly included in preparation guide
Issue gh-11337
2022-10-28 09:51:02 -06:00
e900ca3a86
Polish Method Security Preparation Steps
...
- Add instruction to declare 5.8 defaults
Issue gh-11337
2022-10-28 09:46:48 -06:00
b4974bbce9
Polish Message Security Preparation Steps
...
- Added step to declare the 5.8 default in case later preparation steps
cannot be taken yet
Issue gh-11337
2022-10-28 09:26:04 -06:00
f2fc2f9a2b
Add Message Security Cleanup Steps
...
Issue gh-11337
2022-10-28 09:17:58 -06:00
31a1486b88
Add Message Security Preparation Steps
...
Issue gh-11337
2022-10-27 20:08:13 -06:00
855d6b6326
Merge branch '5.8.x'
2022-10-27 15:39:23 -05:00
3da0d1bf27
Merge branch '5.8.x'
2022-10-27 15:39:03 -05:00
5721b0351e
Polish RequestCache continue Kolin Configuration
...
Issue gh-12089
2022-10-27 15:13:50 -05:00
aac1261f0c
Document Migration to SecurityContextHolderFilter
...
Closes gh-12098
2022-10-27 15:12:45 -05:00
1dd13e69a4
Standardize Preparation Guide Layout
...
Closes gh-12096
2022-10-27 10:34:20 -06:00
cc8a93e5ec
Restore Missing Links to Migration Guide
2022-10-26 16:19:44 -06:00
f29d1da0a5
Add Link to 5.8 Preparation Guide
...
Closes gh-12093
2022-10-26 16:19:31 -06:00
2a95a24390
Add Link to 6.0 Migration Guide
...
Issue gh-12093
2022-10-26 16:15:36 -06:00
d40ed58118
Merge branch '5.8.x'
...
Closes gh-12091
Closes gh-12092
2022-10-26 14:56:02 -05:00
2b50aa3ae0
Polish Method Security Migration Steps
...
Removed checkboxes when there is only one step
2022-10-26 13:47:16 -06:00
24cc7ff178
Document Saved Requests Migration
...
Closes gh-12089
2022-10-26 14:24:00 -05:00
c17e258a6f
Document Saved Requests
...
Closes gh-12088
2022-10-26 14:22:30 -05:00
d076ddb26c
Polish Method Security Migration Steps
2022-10-26 13:18:07 -06:00
f6731e89db
Polish Method Security Preparation Steps
2022-10-26 12:37:54 -06:00
4528561326
Add Method Security Migration Steps
2022-10-25 15:04:59 -06:00
7adc000c6b
Merge remote-tracking branch 'origin/5.8.x'
2022-10-25 14:42:32 -06:00
04fa5af794
Add Missing Doc Header
...
The EnableMethodSecurity section
2022-10-25 14:41:11 -06:00
e505bc3af4
Add Method Security Preparation Steps
2022-10-25 14:41:10 -06:00
f2ddeaface
Merge remote-tracking branch 'origin/5.8.x'
2022-10-17 15:01:30 -06:00
cfb7c87dfd
Merge remote-tracking branch 'origin/5.7.x' into 5.8.x
2022-10-17 15:00:40 -06:00
6b25307339
Merge remote-tracking branch 'origin/5.6.x' into 5.7.x
2022-10-17 14:57:39 -06:00
89c815032c
Fix Index Out of Bounds
2022-10-17 14:52:03 -06:00
4ba8f8bfe0
Update What's New
...
Closes gh-12024
2022-10-13 20:08:31 -06:00
f4cc27c375
Change Default for (Server)AuthenticationEntryPointFailureHandler
...
Closes gh-9429
2022-10-13 20:03:03 -06:00
d6356415f9
Polish whats-new.adoc
2022-10-13 13:42:04 -05:00
74e0616451
Update What's New for 6.0
2022-10-13 13:42:04 -05:00
5a55987d6e
Add links to reference in What's New for 5.8
...
Issue gh-4001
Issue gh-11959
2022-10-13 12:52:01 -05:00
59c4538798
Update What's New
...
Closes gh-12021
2022-10-13 10:13:20 -06:00
fe96a62dfc
Document Observability Support
...
Issue gh-10964
2022-10-12 20:32:25 -06:00
bf1e622751
Update What's New in 6.0 for PasswordEncoders
...
Issue gh-11985
2022-10-12 08:27:46 -04:00
716aa6df5c
Merge branch '5.8.x'
2022-10-12 07:43:26 -04:00
ffbcaca24a
Update reference for PasswordEncoders
...
Issue gh-10506
2022-10-12 07:32:30 -04:00
c5e35bf32e
Merge branch '5.8.x'
...
Closes gh-11978
2022-10-10 09:24:50 -03:00
4b6fed0667
Add static factory method to AntPathRequestMather and RegexRequestMatcher
...
Closes gh-11938
2022-10-10 09:24:15 -03:00
27059ced87
Default X-Xss-Protection header value to "0"
...
Closes gh-9631
2022-10-07 17:42:55 -05:00
6753f9745e
Merge branch '5.8.x'
...
# Conflicts:
# config/src/test/kotlin/org/springframework/security/config/web/server/ServerCsrfDslTests.kt
# docs/modules/ROOT/pages/reactive/exploits/csrf.adoc
2022-10-07 17:29:07 -05:00
f462134e87
Add reactive support for BREACH
...
Closes gh-11959
2022-10-07 16:34:17 -05:00
398f5dee7f
Remove deprecated RequestMatcher methods from Java Configuration
...
Closes gh-11939
2022-10-07 15:26:46 -03:00
9fd195d419
Default to shouldFilterAllDispatcherTypes=true in XML
...
Closes gh-11970
2022-10-07 11:46:20 -03:00
146d3269bc
Merge branch '5.8.x'
...
Closes gh-11971
2022-10-07 10:28:14 -03:00
f3321c256c
Add XML support for shouldFilterAllDispatcherTypes
...
Closes gh-11492
2022-10-07 10:20:32 -03:00
12b9f2e196
use-authorization-manager defaults to true
...
Closes gh-11929
2022-10-06 08:12:46 -06:00
c4d23f2b49
Use MvcRequestMatcher by default if Spring MVC is present
...
Closes gh-11899
2022-10-06 09:12:04 -03:00
8b490de08d
Merge branch '5.8.x'
...
# Conflicts:
# docs/modules/ROOT/pages/servlet/exploits/csrf.adoc
2022-10-05 14:46:15 -05:00
dce1c30522
Add support for BREACH
...
Closes gh-4001
2022-10-05 14:21:13 -05:00
Rob Winch
Steve Riesenberg
Josh Cummings
Johannes Graf
Marcus Da Coregio
Rivaldi
Márk Kővári
Ger Roza
Dan Allen
Joe Grandja
Daniel Garnier-Moiroux