Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,332 Commits 32 Branches 333 Tags 109 MiB
Commit Graph

15332 Commits

Author SHA1 Message Date
dependabot[bot] 45634c4e64 Bump io.micrometer:micrometer-observation from 1.12.3 to 1.12.4 
Bumps [io.micrometer:micrometer-observation](https://github.com/micrometer-metrics/micrometer) from 1.12.3 to 1.12.4.
- [Release notes](https://github.com/micrometer-metrics/micrometer/releases)
- [Commits](https://github.com/micrometer-metrics/micrometer/compare/v1.12.3...v1.12.4)

---
updated-dependencies:
- dependency-name: io.micrometer:micrometer-observation
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-12 03:49:55 +00:00
Steve Riesenberg 0c419176f2
Polish whats-new.adoc 2024-03-11 12:22:06 -05:00
Steve Riesenberg 0c2b6f3e2f
Update What's New for 6.3 2024-03-11 12:21:44 -05:00
Marcus Hert Da Coregio 61b9b306f9 Merge branch '6.2.x' 2024-03-11 09:27:16 -03:00
Marcus Hert Da Coregio a759ede749 Merge branch '6.1.x' into 6.2.x 2024-03-11 09:26:26 -03:00
Marcus Hert Da Coregio a4a4c813d4 Merge branch '5.8.x' into 6.1.x 2024-03-11 09:26:11 -03:00
Marcus Hert Da Coregio 5dae6da15a Remove branch filter 
Issue gh-14535
 2024-03-11 09:25:58 -03:00
github-actions[bot] 7d72e40cae Merge branch '6.2.x' 2024-03-08 10:41:41 +00:00
github-actions[bot] f3ef54b11b Merge branch '6.1.x' into 6.2.x 2024-03-08 10:41:41 +00:00
dependabot[bot] 14ee5d6f93 Bump org.jetbrains.kotlin:kotlin-bom from 1.9.22 to 1.9.23 
Bumps [org.jetbrains.kotlin:kotlin-bom](https://github.com/JetBrains/kotlin) from 1.9.22 to 1.9.23.
- [Release notes](https://github.com/JetBrains/kotlin/releases)
- [Changelog](https://github.com/JetBrains/kotlin/blob/v1.9.23/ChangeLog.md)
- [Commits](https://github.com/JetBrains/kotlin/compare/v1.9.22...v1.9.23)

---
updated-dependencies:
- dependency-name: org.jetbrains.kotlin:kotlin-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-08 05:13:08 +00:00
dependabot[bot] fb44e70fb0 Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.22 to 1.9.23 
Bumps [org.jetbrains.kotlin:kotlin-gradle-plugin](https://github.com/JetBrains/kotlin) from 1.9.22 to 1.9.23.
- [Release notes](https://github.com/JetBrains/kotlin/releases)
- [Changelog](https://github.com/JetBrains/kotlin/blob/v1.9.23/ChangeLog.md)
- [Commits](https://github.com/JetBrains/kotlin/compare/v1.9.22...v1.9.23)

---
updated-dependencies:
- dependency-name: org.jetbrains.kotlin:kotlin-gradle-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-08 05:10:24 +00:00
dependabot[bot] 441ff7e26f Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.1 to 4.0.2 
Bumps [jakarta.xml.bind:jakarta.xml.bind-api](https://github.com/jakartaee/jaxb-api) from 4.0.1 to 4.0.2.
- [Release notes](https://github.com/jakartaee/jaxb-api/releases)
- [Commits](https://github.com/jakartaee/jaxb-api/compare/4.0.1...4.0.2)

---
updated-dependencies:
- dependency-name: jakarta.xml.bind:jakarta.xml.bind-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-08 05:08:30 +00:00
dependabot[bot] 3a9b7a8a29 Bump org.jetbrains.kotlin:kotlin-bom from 1.9.22 to 1.9.23 
Bumps [org.jetbrains.kotlin:kotlin-bom](https://github.com/JetBrains/kotlin) from 1.9.22 to 1.9.23.
- [Release notes](https://github.com/JetBrains/kotlin/releases)
- [Changelog](https://github.com/JetBrains/kotlin/blob/v1.9.23/ChangeLog.md)
- [Commits](https://github.com/JetBrains/kotlin/compare/v1.9.22...v1.9.23)

---
updated-dependencies:
- dependency-name: org.jetbrains.kotlin:kotlin-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-08 03:53:08 +00:00
dependabot[bot] 7db696b176 Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.22 to 1.9.23 
Bumps [org.jetbrains.kotlin:kotlin-gradle-plugin](https://github.com/JetBrains/kotlin) from 1.9.22 to 1.9.23.
- [Release notes](https://github.com/JetBrains/kotlin/releases)
- [Changelog](https://github.com/JetBrains/kotlin/blob/v1.9.23/ChangeLog.md)
- [Commits](https://github.com/JetBrains/kotlin/compare/v1.9.22...v1.9.23)

---
updated-dependencies:
- dependency-name: org.jetbrains.kotlin:kotlin-gradle-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-08 03:52:10 +00:00
dependabot[bot] 375326c639 Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.1 to 4.0.2 
Bumps [jakarta.xml.bind:jakarta.xml.bind-api](https://github.com/jakartaee/jaxb-api) from 4.0.1 to 4.0.2.
- [Release notes](https://github.com/jakartaee/jaxb-api/releases)
- [Commits](https://github.com/jakartaee/jaxb-api/compare/4.0.1...4.0.2)

---
updated-dependencies:
- dependency-name: jakarta.xml.bind:jakarta.xml.bind-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-08 03:51:47 +00:00
dependabot[bot] 6955c7aaea Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.1 to 4.0.2 
Bumps [jakarta.xml.bind:jakarta.xml.bind-api](https://github.com/jakartaee/jaxb-api) from 4.0.1 to 4.0.2.
- [Release notes](https://github.com/jakartaee/jaxb-api/releases)
- [Commits](https://github.com/jakartaee/jaxb-api/compare/4.0.1...4.0.2)

---
updated-dependencies:
- dependency-name: jakarta.xml.bind:jakarta.xml.bind-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-03-08 03:17:54 +00:00
Steve Riesenberg 9751636735
Polish gh-12281 2024-03-07 16:26:26 -06:00
Daniel Shuy 488901dd4e
Fix Delegation-based Strategy examples 
Fix examples not copying userNameAttributeName

Issue gh-12275
Issue gh-12282
Issue gh-14672
 2024-03-07 16:26:24 -06:00
Steve Riesenberg e52dd81d03
Customize mapping the OidcUser 
Closes gh-14672
 2024-03-07 15:45:39 -06:00
Steve Riesenberg d6382b83dc
Configure token-exchange via a bean 
Issue gh-5199
Issue gh-11783
Closes gh-14701
 2024-03-07 11:03:10 -06:00
Steve Riesenberg 85c3d0ab13 Add reactive support for OAuth 2.0 Token Exchange Grant 
Issue gh-5199
 2024-03-06 16:02:58 -06:00
Steve Riesenberg d2fe9094a9 Add servlet support for OAuth 2.0 Token Exchange Grant 
Issue gh-5199
 2024-03-06 16:02:58 -06:00
Marcus Hert Da Coregio 8cdd50a7d6 Bump com.nimbusds:oauth2-oidc-sdk from 9.43.3 to 9.43.4 
This also updates nimbus-jose-jwt to 9.37.3 since this is the version used by oauth2-oidc-sdk

Closes gh-14695
 2024-03-06 13:41:51 -03:00
DingHao 8885707674 Add DelegatingServerAuthenticationConverter 
Closes gh-14644
 2024-03-05 08:21:59 -07:00
Josh Cummings 69527f9a9c
Merge branch '6.2.x' 2024-03-04 15:43:07 -07:00
Josh Cummings 386e0a7b46
Merge branch '6.1.x' into 6.2.x 
Closes gh-14682
 2024-03-04 15:42:48 -07:00
Josh Cummings 0ab9ad774d
Merge branch '5.8.x' into 6.1.x 
Closes gh-14681
 2024-03-04 15:42:35 -07:00
Josh Cummings e1c4177cd8
Fix ServerLogoutHandler Order in Docs 
Closes gh-14379
 2024-03-04 15:42:09 -07:00
Josh Cummings bade66e588
Fix Circular Dependency 
Closes gh-14674
 2024-03-01 14:21:13 -07:00
greg.lee 07ac0b616b
Introduce Customizable AuthorizationFailureHandler 
Closes gh-13793
 2024-03-01 13:11:46 -06:00
Steve Riesenberg bd345fb2a8
Polish gh-11758 2024-02-29 12:15:30 -06:00
Markus Heiden 5c5503924b
Add SwitchUserGrantedAuthorityMixIn 
Closes gh-11775
 2024-02-29 11:07:21 -06:00
Marcus Hert Da Coregio 832066945c Merge branch '6.2.x' 2024-02-29 10:53:32 -03:00
Marcus Hert Da Coregio e0a5712474 Merge branch '6.1.x' into 6.2.x 2024-02-29 10:53:26 -03:00
Marcus Hert Da Coregio 7f34ef7951 Merge branch '5.8.x' into 6.1.x 2024-02-29 10:53:20 -03:00
Marcus Hert Da Coregio c2e97d7661 Ignore dependabot branches on trigger auto merge 2024-02-29 10:52:44 -03:00
github-actions[bot] a06b19f54e Merge branch '6.2.x' 2024-02-29 13:48:49 +00:00
github-actions[bot] 55e7517414 Merge branch '6.1.x' into 6.2.x 2024-02-29 13:48:49 +00:00
dependabot[bot] e74ac27b8f Bump io.mockk:mockk from 1.13.9 to 1.13.10 
Bumps [io.mockk:mockk](https://github.com/mockk/mockk) from 1.13.9 to 1.13.10.
- [Release notes](https://github.com/mockk/mockk/releases)
- [Commits](https://github.com/mockk/mockk/compare/1.13.9...1.13.10)

---
updated-dependencies:
- dependency-name: io.mockk:mockk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-29 03:58:38 +00:00
dependabot[bot] 7e9f421a77 Bump io.mockk:mockk from 1.13.9 to 1.13.10 
Bumps [io.mockk:mockk](https://github.com/mockk/mockk) from 1.13.9 to 1.13.10.
- [Release notes](https://github.com/mockk/mockk/releases)
- [Commits](https://github.com/mockk/mockk/compare/1.13.9...1.13.10)

---
updated-dependencies:
- dependency-name: io.mockk:mockk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-29 03:46:49 +00:00
dependabot[bot] 8ebd64557b Bump io.mockk:mockk from 1.13.9 to 1.13.10 
Bumps [io.mockk:mockk](https://github.com/mockk/mockk) from 1.13.9 to 1.13.10.
- [Release notes](https://github.com/mockk/mockk/releases)
- [Commits](https://github.com/mockk/mockk/compare/1.13.9...1.13.10)

---
updated-dependencies:
- dependency-name: io.mockk:mockk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-29 03:42:32 +00:00
Josh Cummings 92da6b143f
Restore Acegi Copyright 
Issue gh-2083
 2024-02-28 17:00:13 -07:00
Roman Zabaluev 1509a987eb Impl custom rolePrefix in LdapUserDetailsManager 
Closes gh-2083
 2024-02-28 16:55:58 -07:00
Marcus Hert Da Coregio f8ff056eb6 Update Max Sessions on WebFlux 
Delete WebSessionStoreReactiveSessionRegistry.java and gives the responsibility to remove the sessions from the WebSessionStore to the handler

Issue gh-6192
 2024-02-28 10:06:45 -03:00
Marcus Hert Da Coregio f3bcf7ed5d Revert "Update max sessions docs" 
This reverts commit c86fd99c8f.
 2024-02-28 08:30:05 -03:00
Marcus Hert Da Coregio c86fd99c8f Update max sessions docs 
Add WebSessionStore constructor parameter to the handler

Issue gh-6192
 2024-02-27 13:36:43 -03:00
Marcus Hert Da Coregio a5ce8ae87f Polish Max Sessions on WebFlux 
This commit changes the PreventLoginServerMaximumSessionsExceededHandler to invalidate the WebSession in addition to throwing the error, this is needed otherwise the session would still be saved with the security context. It also changes the SessionRegistryWebSession to first perform the operation on the delegate and then invoke the needed method on the ReactiveSessionRegistry

Issue gh-6192
 2024-02-27 11:12:50 -03:00
Josh Cummings c639d0a514
Add AOP Integration Test 
Closes gh-14637
 2024-02-26 13:56:56 -07:00
Josh Cummings 16155537a5
Merge branch '6.2.x' 2024-02-26 11:10:49 -07:00
Josh Cummings aedffa7919
Merge branch '6.1.x' into 6.2.x 
Closes gh-14653
 2024-02-26 11:10:38 -07:00