Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
9,898 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

1152 Commits

Author SHA1 Message Date
Eleftheria Stein 019c27b0a0 Add servlet HTTP exploit samples 
Issue gh-8172
 2020-09-18 14:44:33 +02:00
Eleftheria Stein f26387a4b7 Add reactive HTTP exploit samples 
Issue gh-8172
 2020-09-18 14:44:10 +02:00
Eleftheria Stein 72acc2959e Add servlet CSRF Kotlin samples 
Issue gh-8172
 2020-09-18 14:14:32 +02:00
Joe Grandja 7b1f574769 Revert "Lock Dependency Versions for 5.4.0" 
This reverts commit 3d0e459182.
 2020-09-09 18:14:12 -04:00
Joe Grandja 3d0e459182 Lock Dependency Versions for 5.4.0 2020-09-09 13:45:03 -04:00
Josh Cummings 6222c5fe34 Add What's New in 5.4 
Closes gh-9001
 2020-09-09 13:27:22 -04:00
Eleftheria Stein 593a556991 Remove broken link from docs 
Closes gh-8986
 2020-09-07 14:07:42 +02:00
知一 58c7c21a6c Update abstract-authentication-processing-filter.adoc 2020-09-07 07:57:40 -04:00
Josh Cummings 0a4766f21e
Restructure SAML 2.0 Documentation 
- Add images
- Standardize terminology
- Add detail about working with OpenSAML
- Reorganize sections

Closes gh-8763
 2020-08-28 12:42:44 -06:00
Eleftheria Stein a9fe2cb377 Add servlet OAuth2 login Kotlin samples 
Issue gh-8172
 2020-08-28 18:15:59 +02:00
Eleftheria Stein 44399a5256 Add servlet OAuth2 resource server Kotlin samples 
Issue gh-8172
 2020-08-28 12:21:24 +02:00
Eleftheria Stein 7a5d9ce287 Fix typos in reference docs 2020-08-25 10:57:41 +02:00
Rob Winch 2abf59b695 Merge Formatting Changes 
Issue gh-8945
 2020-08-24 17:33:23 -05:00
Phillip Webb 8d80166aaf Update exception variable names 
Consistently use `ex` for caught exception and `cause` for Exception
constructor arguments.

Issue gh-8945
 2020-08-24 17:33:08 -05:00
Eleftheria Stein cf48f986f6 Fix typo in resource server documentation 2020-08-24 09:10:33 +02:00
Josh Cummings e6d1e2cf81
Restructure SAML 2.0 Documentation 
Issue gh-8763
 2020-08-19 14:59:26 -06:00
Eleftheria Stein 69e0552c30 Add servlet OAuth2 client Kotlin samples 
Issue gh-8172
 2020-08-11 14:25:27 +02:00
Eleftheria Stein 380a11566e Add registered OAuth2 authorized client Kotlin samples 
Issue gh-8172
 2020-08-11 10:24:21 +02:00
Eleftheria Stein 324d6795c9 Add WebClient samples to docs 
Issue gh-8172
 2020-08-11 08:33:46 +02:00
Eleftheria Stein 496fcbb102 Add OAuth2 resource server WebFlux samples 
Issue gh-8172
 2020-08-11 08:33:46 +02:00
Eleftheria Stein d839e4dd71 Fix typos in resource server docs 
- Use withJwkSetUri instead of fromJwkSetUri
- Use ES512 instead of EC512
- Use NimbusReactiveOpaqueTokenIntrospector instead of NimbusOpaqueTokenIntrospector in reactive
- User authorizeExchange instead of authorizeRequests
 2020-08-11 08:33:46 +02:00
Eleftheria Stein 12a8795c3d Fix typo in resource server docs 2020-08-06 14:11:13 +02:00
Joe Grandja 1d74d556c2 Revert "Lock Dependency Versions for 5.4.0-RC1" 
This reverts commit f3a1e5d40c.
 2020-08-05 14:59:11 -04:00
Joe Grandja f3a1e5d40c Lock Dependency Versions for 5.4.0-RC1 2020-08-05 13:46:11 -04:00
Jakub Kubrynski 8a355240bc
SAML 2.0 SP Metadata Endpoint Support 
Issue gh-8693
 2020-08-05 10:08:47 -06:00
Joe Grandja 8146b1fdda Deprecate CustomUserTypesOAuth2UserService 
Closes gh-8908
 2020-08-04 13:23:44 -04:00
Joe Grandja 0ed919f072 Deprecate ClientRegistration.redirectUriTemplate 
Closes gh-8906
 2020-08-04 11:03:29 -04:00
Eleftheria Stein-Kousathana 31d5b5068c Kotlin OAuth2 client WebFlux samples 
Issue gh-8172
 2020-07-27 09:34:37 +02:00
Jay Bryant 48aa5cceda
Wording changes 
Replacing some terms
 2020-07-15 10:22:49 -04:00
Eleftheria Stein 683cb49c9d Add Kotlin WebFlux header configuration to docs 
Issue gh-8172
 2020-07-14 16:34:30 +02:00
Eleftheria Stein 793926b977 Add Kotlin header configuration samples to docs 
Issue gh-8172
 2020-07-10 16:08:02 +02:00
Eleftheria Stein f479f0ea49 Add Kotlin expression-based authorization 
Issue gh-8172
 2020-07-06 13:13:57 +02:00
Eleftheria Stein 0bdf6859be Add Kotlin logout samples to docs 
Issue gh-8172
 2020-07-06 12:45:41 +02:00
Josh Cummings 146d0b6358
Revert "Lock Dependency Versions for 5.4.0-M2" 
This reverts commit 68538897c8.
 2020-07-01 13:11:50 -06:00
Josh Cummings 68538897c8
Lock Dependency Versions for 5.4.0-M2 2020-07-01 12:40:29 -06:00
Eleftheria Stein f5e0fe5907 Polish documentation formatting 
Issue gh-8199
 2020-06-29 18:16:59 +02:00
Heinz Wittig 08b69e77d2
Merge Project Modules and Dependencies Section of the docs 
Closes gh-8199
 2020-06-29 12:11:04 -04:00
Rob Winch ca1252be94 Replace whitelist with allowlist 
Issue gh-8676
 2020-06-10 11:49:21 -05:00
Rob Winch a907026eae Deprecate X-FRAME-OPTIONS ALLOW-FROM Directive 
Closes gh-8677
 2020-06-10 11:48:56 -05:00
Robin Dupret bb0fac66d6 Fix a few typos in the documentation 2020-06-09 14:40:39 -05:00
Dayan d8aa208a9f Fix broken link in spring security reference document 
Fixes:#8593
 2020-06-02 05:36:19 -06:00
Eleftheria Stein a63a0e3765 Add reactive CSRF samples to docs 
Issue gh-8172
 2020-05-28 13:16:35 -04:00
Josh Cummings da05543ef6
Update OAuth 2.0 Client Testing Docs 
Issue gh-8603
 2020-05-28 10:33:02 -06:00
Markus Engelbrecht 7463583c1b Fix typos in BCryptPasswordEncoder documentation 
Resolves gh-8585
 2020-05-27 10:35:49 -05:00
Mazharul Islam bf9e8295d6 mentioning the default strength of BCryptPasswordEncoder 2020-05-21 11:15:45 -05:00
Thomas Turrell-Croft 014df98ebb Polish 
* Correct documented default schema to match default schema exposed as classpath resource
* Fix Java example of adding users to JdbcUserDetailsManager
 2020-05-21 11:09:31 -05:00
Andreas Volkmann 16b0a268d9 Update index.adoc 2020-05-20 08:01:56 -05:00
Joe Grandja c1abc9b134 Polish gh-8501 2020-05-15 13:26:09 -04:00
Thomas Vitale 78fa859798 Add issuerUri to ClientRegistration.providerDetails 
- Add "issuerUri" attribute to ClientRegistration.providerDetails for OpenID Connect Discovery 1.0 or OAuth 2.0 Authorization Server Metadata.
- Validate OidcIdToken "iss" claim against the OpenID Provider "issuerUri" value.
- Update documentation for client registration: it includes issuer-uri property now.

Fixes gh-8326
 2020-05-14 17:13:07 -04:00
Rob Winch e5d2aaf6fe
Deprecate OpenID 2.0 support 
Deprecate OpenID 2.0 support
 2020-05-12 09:37:56 -05:00
Jean-Pierre Bergamin fbd3cfa40e
Fix code snippets to configure timeouts 
Issue: gh-8487
 2020-05-11 15:59:11 -04:00
Dávid Kovács f2a2b469c4 Deprecate openID 2.0 support 
This commit adds deprecation notice to xml schema, parser of the schema and removes fixme comments.

Fixes gh-7153
 2020-05-09 12:04:13 +02:00
Jean-Pierre Bergamin 6d5d883518 Use Opaquetoken properties to configure timeouts 
Improve the documentation to show how to re-use the Opaquetoken properties of `OAuth2ResourceServerProperties` to set up basic auth in the configured `RestTemplate`.
 2020-05-07 15:20:50 -04:00
Joe Grandja 86ca6b013c Unlock dependencies 
This reverts commit 206960cf44.
 2020-05-06 17:27:35 -04:00
Joe Grandja 206960cf44 Lock dependencies for 5.4.0-M1 2020-05-06 17:13:04 -04:00
Andrii Hrytsiuk 7748fb00ba Fix typos in documentation 2020-05-05 10:45:42 -05:00
Dávid Kovács 339d44b5a1 Deprecate openID 2.0 support 
This commit puts deprecation notice on docs, sample applications and configurations (java and xml)

Fixes gh-7153
 2020-05-02 10:18:31 +02:00
Eleftheria Stein 1ca47f5cd0 Fix typo in Java configuration docs 2020-05-01 14:24:40 -04:00
Dávid Kovács 70792a9072 Document description error 
Fixes gh-8119
 2020-04-21 09:17:01 -04:00
corneliouz Bett ebc6012ec7 Rename Preface to Introduction 
Closes gh-8188
 2020-04-20 11:44:13 -05:00
Philipp Gerhard b9b89035f6 Documented dependencies opaque Resource Server 
Extended the documentation for the opaque Resource Server in order to clearly state which dependencies are required in order for the minimal deployment to work. Replaced dead link for Contribute guidelines in README.adoc

Closes gh-8391
 2020-04-17 16:25:14 -05:00
Antonin Arquey 5cd1ec7bb3 Add AuthoritiesMapper setter for reactive OAuth2Login 
Allow the configuration of a custom GrantedAuthorityMapper for reactive OAuth2Login

- Add setter in OidcAuthorizationCodeReactiveAuthenticationManager
  and OAuth2LoginReactiveAuthenticationManager

- Use an available GrantedAuthorityMapper bean to configure the default ReactiveAuthenticationManager

Fixes gh-8324
 2020-04-17 16:55:05 -04:00
Souphorn 64a5bb053e Fix typo with correct capitalization 2020-04-17 10:22:37 -04:00
Josh Cummings 13b2b00093
Add JwtAuthenticationConverter docs 
Issue gh-8185
 2020-04-13 22:47:20 -06:00
Josh Cummings ad8c49acae
Add Docs 
Issue gh-8332
 2020-04-10 16:52:10 -06:00
Josh Cummings 419d7264f9
Add Docs for Custom Bearer Token Header 
Issue gh-8337
 2020-04-09 10:36:03 -06:00
Eleftheria Stein 5f1eb392ff Add WebFlux Kotlin samples to docs 
Issue: gh-8172
 2020-04-08 14:57:25 -04:00
Eleftheria Stein 681d2d68e7 Fix typos in FAQ reference docs 
Add missing space; use https in links
 2020-04-08 11:44:42 -04:00
Maksim Mednik b57c2f2821 Updating authorization docs to mention handling of Maps in @PreFilter and @PostFilter annotations 2020-04-06 18:36:32 -04:00
Joe Grandja 946de2a51e Revert "Fix links in oauth2 doc" 
This reverts commit ad5bfc868c.
 2020-03-30 13:31:08 -04:00
Eleftheria Stein 63c8072ebc Add crypto Kotlin samples to docs 
Issue gh-8172
 2020-03-30 11:32:43 -04:00
Eleftheria Stein 018cbfa93f Add preauth Kotlin samples to docs 
Issue gh-8172
 2020-03-30 11:31:59 -04:00
wassan128 ad5bfc868c Fix links in oauth2 doc 2020-03-27 16:56:13 -05:00
Josh Cummings 81ad2958bd
Clarify ServerBearerExchangeFilterFunction Docs 
Fixes gh-8220
 2020-03-27 13:23:57 -06:00
Eleftheria Stein 7c0023ecc9 Update Encryptors documentation 
Fixes gh-8208
 2020-03-27 09:50:46 -04:00
Eleftheria Stein 6d61b87213 Add security context holder Kotlin samples to docs 
Issue gh-8172
 2020-03-26 15:36:44 -04:00
Eleftheria Stein 8e5e0c4a9e Add delegating filter proxy Kotlin samples to docs 
Issue gh-8172
 2020-03-26 15:35:51 -04:00
Eleftheria Stein 5b4cb5b13d Add filter Kotlin samples to docs 
Issue gh-8172
 2020-03-26 15:10:42 -04:00
Josh Cummings e62b8a7585
Add Figures to Resource Server Docs 
Fixes gh-8182
 2020-03-25 16:30:48 -06:00
Josh Cummings dcacd06360
Polish Resource Server JWT Docs 
Issue gh-5935
 2020-03-24 15:35:57 -06:00
Josh Cummings 8872d8b7d0
Polish Resource Server Multi-tenancy Docs 
Issue gh-7532
 2020-03-24 15:24:43 -06:00
Josh Cummings 933104d2d6
Document JwtGrantedAuthoritiesConverter Features 
Fixes gh-8176
 2020-03-24 14:39:08 -06:00
Eleftheria Stein 2c103f34e3 Add password storage Kotlin samples to docs 
Issue gh-8172
 2020-03-24 10:29:11 -04:00
komuro.hiraku 10c66d282a Fix userNameAttribute property case style 
Fixes gh-8169
 2020-03-23 10:08:14 -04:00
Josh Cummings 0e9497de3c
Document SAML 2.0 Improvements 
Fixes gh-8079
Fixes gh-8078
 2020-03-20 17:08:01 -06:00
Joe Grandja d1dbd92903 Document OAuth2Authorization success and failure handlers 
Fixes gh-8073
 2020-03-20 16:30:05 -04:00
Joe Grandja 5bff741c31 Document AuthorizedClientServiceOAuth2AuthorizedClientManager 
Fixes gh-8152
 2020-03-19 20:15:34 -04:00
Joe Grandja 06fdb83fb8 Document Jackson serialization support for OAuth 2.0 Client 
Fixes gh-8075
 2020-03-18 17:05:56 -04:00
Joe Grandja 4da7235d9b Document OAuth2AuthorizationRequest customization improvements 
Fixes gh-8071
 2020-03-18 11:20:08 -04:00
Joe Grandja e00a030621 Document OAuth 2.0 Client XML Support 
Fixes gh-8074
 2020-03-17 13:27:29 -04:00
Joe Grandja 3d5a1522d6 Document OAuth 2.0 Login XML Support 
Fixes gh-8110
 2020-03-16 12:33:37 -04:00
Josh Cummings bfd36d9a54
Remove Redundant ConcurrentSessionFilter Refs 
Fixes gh-8105
 2020-03-13 16:27:30 -06:00
Josh Cummings 3b80c2e345
Document AuthenticationEventPublisher 
Fixes gh-8081
 2020-03-11 16:48:14 -06:00
Josh Cummings 5b1838fd73
Add Resource Server XML snippets 
Fixes gh-8077
 2020-03-09 18:49:49 -06:00
Josh Cummings 69e1034ddc
Document baseUrl Support for OIDC Logout 
Fixes gh-8072
 2020-03-06 23:06:25 -07:00
Josh Cummings 4ef37f289e
OAuth 2.0 Test Support Docs 
- Added WebTestClient documentation
- Updated MockMvc documentation to align

Fixes gh-8050
 2020-03-06 23:01:18 -07:00
Josh Cummings 93b8c656d8
Document JwtClaimValidator 
Fixes gh-8076
 2020-03-04 14:47:44 -07:00
Josh Cummings 6db921c95d
Fix broken links 
Fixes gh-8069
 2020-03-04 13:12:11 -07:00
Josh Cummings 6eadf7b140
Unlock dependencies for 5.3.0.RELEASE 
This reverts commit 147d7dadd7.
 2020-03-04 12:02:48 -07:00
Josh Cummings 747d8817cb
Specify Section Ids in What's New 
Issue gh-8062
 2020-03-04 11:01:59 -07:00
Josh Cummings 147d7dadd7
Lock dependencies for 5.3.0.RELEASE 2020-03-04 10:28:39 -07:00
Josh Cummings edb6665103
Update What's New Section 
Fixes gh-8062
 2020-03-04 09:04:45 -07:00
Joe Grandja b42f0f50ab Document JdbcOAuth2AuthorizedClientService 
Fixes gh-8061
 2020-03-04 10:14:16 -05:00
Hrushikesh Salunkhe 558924e88e Typo fix 
users passwords changed to users' passwords
 2020-03-04 06:41:04 -06:00
Eleftheria Stein 603eb1e647 Add OAuth2 Kotlin samples to docs 
Issue: gh-5558
 2020-03-03 22:24:14 -05:00
Josh Cummings b4cab71fd3
Fix broken doc links 
Issue gh-8050
 2020-03-03 17:26:15 -07:00
Josh Cummings 3766322f03
Added OAuth 2.0 MockMvc Test Support Docs 
Issue gh-8050
 2020-03-03 16:33:08 -07:00
Josh Cummings 80ee6627ba
Change Diagram Font to Sans-serif 
Fixes gh-8057
 2020-03-03 15:27:01 -07:00
Rob Winch 5c2074f01b Add SecurityFilterChain Figure 
Closes gh-8055
 2020-03-03 15:04:25 -06:00
Rob Winch 81e41f124b Add anchors to SAML 2.0 documentation 
Closes gh-8049
 2020-03-03 08:01:36 -06:00
Rob Winch 4f25641ee4 Polish Authentication 2020-03-02 22:46:22 -06:00
Eleftheria Stein 0bf59186a3 Add Kotlin Configuration section to docs 2020-03-02 14:51:39 -06:00
Joe Grandja c111099640 Polish client-registration xsd attributes 
Issue gh-4557
 2020-03-02 15:02:46 -05:00
Josh Cummings e97396b9c7 Add Resource Server XML Support 
Fixes gh-5185
 2020-03-02 11:51:40 -07:00
Rob Winch 0ba3ff6df2 Update UserDetailsService Docs 
Closes gh-8048
 2020-03-02 11:58:03 -06:00
Rob Winch 6bb056607f Fix Basic Figure Formating 
Issue gh-8039
 2020-03-01 19:23:31 -06:00
Rob Winch 57ac2207f2 Add Figures to Basic Authentication Docs 
Closes gh-8039
 2020-02-28 16:48:23 -06:00
Rob Winch bc16f1a526 Fix Link that is Code Styling 
Closes gh-8038
 2020-02-28 13:52:43 -06:00
Rob Winch 562c1d939e Remove Duplicated Docs 2020-02-28 12:19:40 -06:00
Rob Winch 4d8d95163f Polish Invalid === in Docs 2020-02-28 12:15:24 -06:00
Rob Winch 0cf9364d92 Fix DispatcherServlet Link 
Issue gh-8036
 2020-02-28 12:15:19 -06:00
Rob Winch c554a3fc41 Add Link to DispatcherServlet in Filter Review Doc 
Closes gh-8036
 2020-02-28 11:39:22 -06:00
Rob Winch 805ef55d9a Add Figures to Form Log In Docs 
Closes gh-8035
 2020-02-28 11:36:04 -06:00
Rob Winch ec61462566 Remove Duplicate Docs 2020-02-27 23:01:40 -06:00
Rob Winch f4d032a762 Polish Extract Doc Sections 2020-02-27 22:10:02 -06:00
Rob Winch ecc63f7c8c Extract Separate Sections of Docs 2020-02-27 22:04:20 -06:00
Rob Winch 5023aa6cf1 Add Request Credentials Figure 
Closes gh-8030
 2020-02-27 21:56:15 -06:00
Rob Winch b7091ff794 Switch palette to template 
Issue gh-8000
 2020-02-27 21:56:15 -06:00
Rob Winch d009a7b1de Add ProviderManager to Reference 
Closes gh-8029
 2020-02-27 21:56:15 -06:00
Eleftheria Stein bb72206eef Add Kotlin samples to docs 
Issue: gh-5558
 2020-02-26 10:11:24 -05:00
Eleftheria Stein 87ca71473e Fix typo in in-memory Kotlin example 2020-02-25 16:39:17 -05:00
Joe Grandja 204a612be1 Deprecate Implicit Grant 
Fixes gh-8013
 2020-02-23 19:34:52 -05:00
Rob Winch 7eb8a3daf5 Polish Authentication Docs Structure 2020-02-21 11:33:36 -06:00
Rob Winch 7d845447ec Extract AuthenticationManager Docs 
Closes gh-8006
 2020-02-21 10:52:52 -06:00
Rob Winch 21bd3d9a88 Polish Docs 
Issue gh-8005
 2020-02-21 10:52:52 -06:00
Rob Winch 42d79c684b Polish Docs 
Issue gh-8005
 2020-02-21 10:52:52 -06:00
Rob Winch 7adddb6b30 Remove old SecurityContextHolder Docs 
Issue gh-8005
 2020-02-21 10:52:51 -06:00
Rob Winch fbbb74c360 Extract GrantedAuthority Docs 
Closes gh-8005
 2020-02-21 10:52:51 -06:00
Rob Winch 1965446d6d Extract Authentication Docs 
Issue gh-8005
 2020-02-21 10:52:51 -06:00
Rob Winch 49fb6734dc Extract SecurityContext Docs 
Issue gh-8005
 2020-02-21 10:41:23 -06:00
Rob Winch 702cc1d2bb Extract SecurityContextHolder Docs 
Issue gh-8005
 2020-02-21 10:41:23 -06:00
Rob Winch 5e9c03aa83 Add AbstractAuthenticationProcessingFilter Docs 
Closes gh-8004
 2020-02-21 10:41:23 -06:00
Rob Winch 052e103aed Extract AuthenticationEntryPoint Docs 
Closes gh-8003
 2020-02-21 10:41:23 -06:00
Rob Winch 6b0891b081 Extract ExceptionTranslationFilter Docs 
Closes gh-8002
 2020-02-21 10:41:23 -06:00
Rob Winch 32ee30e8a1 Extract FilterSecurityInterceptor Docs 
Closes gh-8001
 2020-02-21 10:41:23 -06:00
Rob Winch b8d4f33004 Use Color Palette that is Accessible for Color Blind 
See https://venngage.com/blog/color-blind-friendly-palette for more
details on selecting color blind friendly palettes

Closes gh-8000
 2020-02-21 10:41:23 -06:00
Rob Winch ef8176a198 Add palette.odg 
Closes gh-7999
 2020-02-21 10:41:23 -06:00
Rob Winch c6d1d3ef61 Add numbers icons 
Closes gh-7998
 2020-02-21 10:41:23 -06:00
Joe Grandja 8a4ff4452b Add XML namespace support for oauth2-client 
Fixes gh-5184
 2020-02-20 20:05:48 -05:00
Joe Grandja c5cb6952ea Polish client-registrations namespace doc 
Issue gh-4557
 2020-02-20 05:34:57 -05:00
Joe Grandja ff8002eb2e Polish gh-4557 2020-02-12 15:47:57 -05:00
Ruby Hartono 71a5c9521c Add XML namespace support for oauth2-login 
Fixes gh-4557
 2020-02-12 15:26:17 -05:00
Joe Grandja 40c0a452d7 Define oauth2-login xsd elements 
Issue gh-4557
 2020-02-12 15:26:17 -05:00
Rob Winch f9b783bcee Remove Duplicate Runtime Environment From Docs 
Closes gh-7980
 2020-02-12 13:32:54 -06:00
Rob Winch 72a9c15278 Refactor Duplicate Security Filter Chain Doc 
This removes the duplicate Security Filter Chain Doc and moves the
HttpFirewall to exploits portion of the documentation.

Closes gh-7979
 2020-02-12 12:58:56 -06:00
Rob Winch eb7df6416a Fix asciidoctorPdf images 
We need to use png and disable interlaced mode.

Issue gh-7973
 2020-02-11 07:49:54 -06:00
Rob Winch b173877705 Fix missing asciidoctorPdf attributes 
Issue gh-7973
 2020-02-11 07:49:54 -06:00
Rob Winch 2909d46060 Fix Asciidoctor Warnings 
Closes gh-7973
 2020-02-10 13:30:52 -06:00
Josh Cummings 3e46dacb4b
NamespaceHttpAccessDaniedHandlerTests groovy->java 
Fixed broken link

Issue gh-4939
 2020-02-10 10:38:40 -07:00
Rob Winch cb695ae60f Add Dave Syer to Authors 
Much of the content from architecture is borrowed, with permission
from Dave.

Issueh gh-7955
 2020-02-07 15:54:32 -06:00
Rob Winch 55f42fc153 Add High Level Servlet Architecture 
- Review of Filters
- DelegatingFilterProxy
- FilterChainProxy
- Security Filters

Fixes gh-7955
 2020-02-07 14:25:31 -06:00
Josh Cummings a90e579350 Add JwtIssuerReactiveAuthenticationManagerResolver 
Fixes gh-7857
 2020-02-06 13:45:13 -07:00
Eleftheria Stein 84b8a5abd7 Unlock dependencies for next development version 
This reverts commit 064616f1ef.
 2020-02-05 15:53:04 +01:00
Eleftheria Stein 064616f1ef Lock dependencies for 5.3.0.RC1 2020-02-05 10:20:05 +01:00
Rob Winch 1d7208f8ef Add RSocket Authentication Extension Support 
Fixes gh-7935
 2020-02-04 23:36:47 -06:00
Eleftheria Stein a2fb2c91c2 Kotlin examples in documentation 
Issue: gh-5558
 2020-01-22 14:36:34 +01:00
Eleftheria Stein 57fba90c0e Fix LDIF file example in LDAP docs 
Fixes: gh-7832
 2020-01-20 10:24:20 +01:00
Rob Winch a769f6a0c4 Polish LDAP Authentication 
Issue gh-7628
 2020-01-16 09:38:40 -06:00
Rob Winch 841275e152 Polish Username Password Storage wording 
Issue gh-7801
 2020-01-13 16:40:12 -06:00
Rob Winch c4a0ed0db5 Fix indentation of user-details-service.adoc 
Issue gh-7801
 2020-01-13 16:40:05 -06:00
Rob Winch 2e2974fc13 Add Dependency Versions to Asciidoctor 
Add dependency versions to asciidoctor and
spring-version -> spring-core-version

Issue gh-7801
 2020-01-13 16:39:57 -06:00
Rob Winch ad7c44f7fd Add More role=primary/secondary 
Issue gh-7801
 2020-01-10 10:58:24 -06:00
Rob Winch 729da6463f Fix appendix-schema id 2020-01-10 10:58:24 -06:00
Eleftheria Stein 1e33627d87 Use standard lambda syntax in documentation 
Fixes: gh-7774
 2020-01-10 13:12:17 +01:00
Rob Winch 3fb87d10e9 Add role=primary/secondary example 
Issue gh-7801
 2020-01-09 12:05:20 -06:00
Rob Winch b85b4b8643 spring-build-conventions:0.0.28.BUILD-SNAPSHOT 
Fixes gh-7801
 2020-01-09 12:05:06 -06:00
Rob Winch 04b6096d19 Fix Asciidoctor Warnings 
Issue gh-7801
 2020-01-09 12:04:58 -06:00
Josh Cummings de87675f6d Add JwtIssuerAuthenticationManagerResolver 
Fixes gh-7724
 2020-01-07 23:30:42 -07:00
artmiar e306482a96 Fix description of PasswordEncoder 2020-01-07 06:17:39 -05:00
Rafael Renan Pacheco 96d82ecbf2 Fix docs that cause unchecked assignment and NPE 2020-01-02 11:29:05 -05:00
Eleftheria Stein f109388211 Use lambda DSL in all samples in documentation 
Issue: gh-7774
 2019-12-30 17:49:35 +01:00
Rafael Renan Pacheco 0295b51e78 Fix var typo and code readability 2019-12-27 15:25:04 +01:00
Josh Cummings 40d4dce329
Polish Documentation 
Changed indentation on saml2Login() snippets to align more closely
with surrounding documentation.

Also removed call to super.configure as this would enable formLogin as
well as httpBasic. Replaced with default endpoint authorization
statement.

Issue gh-7654
 2019-12-18 10:53:59 -07:00
Filip Hanik af415948b1 Allow configuration of AuthenticationManagerResolver in saml2Login() 
Fixes gh-7654

https://github.com/spring-projects/spring-security/issues/7654
 2019-12-17 13:34:27 -08:00
Rob Winch 83d796cf1a Docs ServerRSocketFactoryCustomizer->ServerRSocketFactoryProcessor 
The documentation incorrectly used ServerRSocketFactoryCustomizer which
was renamed to ServerRSocketFactoryProcessor. The docs now use the correct
class name

Fixes gh-7737
 2019-12-12 15:30:33 -06:00
Rob Winch 9c991a5430 Start Servlet Authentication Cleanup 
Issue gh-7628
 2019-12-06 10:52:38 -06:00
Eleftheria Stein 55f1c695e1 Include security configuration context in test sample 
Fixes: gh-7688
 2019-12-02 10:13:24 +01:00
Rob Winch e5932131a9 Next Development Version 2019-11-27 08:05:44 -06:00
David Eisner 56f5242595 Fix minor typo. 2019-11-27 09:43:41 +01:00
ryenus 42ab6736e1 typo fix: consecutive-word duplications (#7673) 
* fix typo: require require

* more typo fix: consecutive-word duplications

Following previously finding, I then used `rg` to find other similar
typos, with false positives manually excluded, using the following
command:

    rg -t asciidoc -Pp '\b(\w+)\s+\1\b'
 2019-11-26 18:35:28 +01:00
Rob Winch af47e730a0 Only Hello Spring Security Boot 
For those getting started, we really need to send the message of using
Spring Boot.

Fixes gh-7627
 2019-11-26 08:38:29 -06:00
Rob Winch b3d177fc7e Extract HTTPS Documentation 
Fixes gh-7626
 2019-11-25 15:49:51 -06:00
Josh Cummings 7cbd1665a6
Isolate Jwt Test Support 
Isolating Jwt test support inside JwtRequestPostProcessor and
JwtMutator.

Fixes gh-7641
 2019-11-22 15:07:05 -07:00
Rob Winch e1fad001d9 Extract HTTP Response Headers Documentation 
Fixes gh-7625
 2019-11-07 10:55:40 -06:00
Kristine Jetzke 97fd3d7c84 Clarify usage of hasAnyRole and hasAnyAuthority 2019-11-07 10:07:42 +01:00
Josh Cummings 63647e9546
Add Resource Server Multi-tenancy Docs 
Fixes: gh-7532
 2019-11-04 10:15:56 -07:00
Rob Winch badb0a08c6 Fix exploits indendation 
Issue gh-2567
 2019-10-28 16:00:51 -05:00
Rob Winch 2827af15e0 Document Reactive CSRF Support 
Fixes gh-6487
 2019-10-28 15:14:14 -05:00
Rob Winch 9b4c170af0 Create Exploits Section for Reactive 
Issue gh-2567
 2019-10-24 15:03:05 -05:00
Rob Winch bbda755a07 Fix Servlet exploits leveloffset 
Fixes gh-2567
 2019-10-24 14:14:02 -05:00
Rob Winch 08fb9c960b Fix invalid ids 
Issue gh-2567
 2019-10-24 14:06:23 -05:00
Rob Winch 55a98b9969 CSRF Documentation 
Issue gh-2567
 2019-10-24 13:24:44 -05:00
Rob Winch 02aaba37cd Documentation TOC on the left 
This better aligns with other documentation

Issue gh-2567
 2019-10-24 13:24:36 -05:00
Ramon Pires da Silva 0387723334 fix webflux samples documentation path 
The documentation of webflux integration sample projects was pointing to the `javaconfig` instead of `boot` folder.
 2019-10-16 10:52:08 -04:00
Filip Hanik 8bc3ad16ef SAML 2 Login - Documentation 
Fixes gh-7472
https://github.com/spring-projects/spring-security/issues/7472
 2019-09-30 13:03:05 -07:00
Rob Winch 03e2efacf4 Add Hello RSocket Sample 
Fixes gh-7504
 2019-09-30 13:58:03 -05:00
Rob Winch d83aa34dde Add RSocket Reference 
Fixes gh-7502
 2019-09-30 11:03:00 -05:00
Josh Cummings 71bbc9849e
URL Cleanup 
Issue gh-2567
 2019-09-30 07:43:35 -06:00
Josh Cummings 35797f9a74
Add Resource Server to Modules Section 
Fixes gh-7498
 2019-09-30 07:31:20 -06:00
Josh Cummings 8421594397
Replace Servlet Guides w/ Hello World Samples 
Issue gh-2567

Co-authored-by: Jay Bryant <jbryant@pivotal.io>
Co-authored-by: Rob Winch <rwinch@users.noreply.github.com>
 2019-09-30 07:17:06 -06:00
Josh Cummings 25b5f48884
Rewrite Preface 
Issue gh-2567

Co-authored-by: Jay Bryant <jbryant@pivotal.io>
Co-authored-by: Rob Winch <rwinch@users.noreply.github.com>
 2019-09-30 07:17:05 -06:00
Joe Grandja aecebeac69 Polish ref doc for oauth2Login 2019-09-29 21:04:32 -04:00
Joe Grandja 7754913a74 Document OidcClientInitiatedLogoutSuccessHandler 
Fixes gh-7401
 2019-09-29 20:27:35 -04:00
Josh Cummings 29ed728a70 Add Jwt.Builder Link 
Fixes gh-7407
 2019-09-28 19:27:05 -06:00
Josh Cummings f43996b99f Add OAuth2AuthenticatedPrincipal Link 
Fixes gh-7406
 2019-09-28 19:25:34 -06:00
Josh Cummings 5d0e80c85c Polish BearerTokenResolver Docs 
Issue gh-6254
 2019-09-28 19:11:59 -06:00
kostya05983 69a4848850 BearerTokenResolver Docs 
Fixes gh-6254
 2019-09-28 19:11:59 -06:00
Joe Grandja 2e2554a8c3 Document OidcIdTokenDecoderFactory 
Fixes gh-7399
 2019-09-28 21:09:41 -04:00
Joe Grandja 9b40ce6ccc Update What's New section 2019-09-27 20:45:32 -04:00
Joe Grandja 3670888616 Polish ref doc for oauth2Login 2019-09-27 14:24:45 -04:00
Joe Grandja 6fe96c643f Polish ClientRegistrations documentation 
Issue #7462
 2019-09-27 11:38:36 -04:00
Joe Grandja 9944037cc7 Polish ref doc for oauth2-client 2019-09-27 10:46:19 -04:00
Ivo Smid a11e61432e Document OAuth2 Client behind proxy and redirect_uri 
Fixes gh-7312
 2019-09-26 14:09:21 -04:00
Joe Grandja 345bfdd437 Polish gh-7279 2019-09-26 12:33:21 -04:00
Stephen Doxsee 7dc3c8a8de Add documentation for Public Client PKCE support 
Fixes gh-7279
 2019-09-26 12:21:22 -04:00
Josh Cummings 4fa1d08e20
Restructure Docs 
Issue gh-5935
 2019-09-22 01:16:55 -06:00
Joe Grandja c5fd646afc Update ref doc for OAuth2AuthorizationRequestResolver 
Fixes gh-7405
 2019-09-20 20:56:51 -04:00
Joe Grandja 324e066717 Polish ref doc for RegisteredOAuth2AuthorizedClient 2019-09-20 16:18:29 -04:00
Joe Grandja 076692ceef Polish ref doc for oauth2-client 2019-09-20 16:18:29 -04:00
Joe Grandja 52f0e5287b Update ref doc for oauth2-client WebClient integration 
Fixes gh-7404
 2019-09-20 16:18:29 -04:00
Josh Cummings 38e87568a6
Document Clear Site Data 
Fixes gh-7463
 2019-09-20 13:02:06 -06:00
Josh Cummings 124d9964d7
Document Bearer Token Propagation 
Fixes gh-7461
 2019-09-20 12:05:24 -06:00
Josh Cummings 3a9ee46719
Document RFC 8414 Support 
Fixes gh-7462
 2019-09-20 10:53:53 -06:00
Josh Cummings b91668a34d
Break Out Resource Server Documentation 
Issue gh-5935
 2019-09-20 09:52:29 -06:00
Josh Cummings f22fdf1bc0
Align OAuth Reactive/Servlet Resource Server Docs 
Fixes gh-7430
Fixes gh-7425
Fixes gh-7460
 2019-09-19 17:15:01 -06:00
Joe Grandja c1ae997adc Update ref doc for OAuth2AuthorizedClientManager 
Issue gh-7403
 2019-09-19 15:33:42 -04:00
Joe Grandja eeb0f56bac Add ref doc for password grant 
Fixes gh-7397
 2019-09-19 14:00:45 -04:00
Joe Grandja 3425db6d16 Fix typo 2019-09-18 19:54:37 -04:00
Joe Grandja e8d98a54b7 Add ref doc for refresh_token grant 
Fixes gh-7398
 2019-09-18 19:54:37 -04:00
Joe Grandja 5aa37722b9 Add ref doc for client_credentials grant 
Fixes gh-6206
 2019-09-16 15:14:34 -04:00
Joe Grandja 8aa55fe81b Update auth_code ref doc for oauth2-client 2019-09-16 09:37:37 -04:00
Josh Cummings 338b637ab5
Document Mock Jwt Testing 
Fixes gh-7242
 2019-09-16 07:34:37 -06:00
Andreas Falk a085a12c99 Fix wrong java runtime version mentioned in reference doc 
The reference documentation still referred to Java 5.0 as minimum
runtime version which is wrong.
This commit changes this to the correct
Java 8 runtime version as required minimum version.
In addition it corrects a fuzzy wording regarding stripping down the
`spring-security-core` jar.

Fixes gh-7440
 2019-09-16 13:09:57 +01:00
Joe Grandja 1c257afa79 Update ref doc for oauth2-client 2019-09-13 21:07:26 -04:00
Joe Grandja 9920cb41d1 Update ref doc copyright year 2019-09-12 19:28:01 -04:00
Joe Grandja 33837d21be Polish oauth2-client ref doc 2019-09-12 18:57:57 -04:00
Joe Grandja cb5f9856fe Reorganize ref doc sections for oauth2-client 
Fixes gh-7428
 2019-09-12 18:42:23 -04:00
Joe Grandja 810e4cbbef Document OAuth2AuthorizedClientManager/Provider 
Fixes gh-7403
 2019-09-12 18:42:23 -04:00
Josh Cummings 7f1b8eef08
Document Resource Server User-Info Usage 
Fixes gh-7431
 2019-09-12 08:23:56 -06:00
Josh Cummings 33fb93f0ea
Add NimbusJwtDecoder Documentation 
Fixes gh-7408
 2019-09-11 13:45:45 -06:00