Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-13 13:53:29 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,933 Commits 38 Branches 348 Tags
Commit Graph

5933 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Rob Winch
8129bf2ce0 Update .gitignore 
- ignore classes/
- ignore s101plugin.state
 2017-11-02 14:40:53 -05:00
Joris Portegies Zwart
d48079eb19 JavaDoc for Pbkdf2PasswordEncoder refer to constants 
Fix Javadoc so that it uses the actual values for default hash width and number of iterations

Fixes gh-4768
 2017-11-02 14:40:53 -05:00
Kyle Anderson
45f1179b52 Fix Typo in Reference Docs 
Fixes gh-4767
 2017-11-02 14:40:52 -05:00
Rob Winch
e11dfa7578 Lookup HandlerMappingIntrospector from Bean 2017-11-02 14:40:52 -05:00
Frank Pavageau
6cc0f6c054 Deserialize the principal in a neutral way 
When the principal of the Authentication is an object, it is not necessarily
an User: it could be another implementation of UserDetails, or even a
completely unrelated type. Since the type of the object is serialized as a
property and used by the deserialization anyway, there's no point in
enforcing a stricter type.
 2017-10-31 16:42:50 -05:00
Frank Pavageau
22ea835643 Map values directly from the JSON nodes 
Not only is it more efficient without converting to an intermediate String,
using JsonNode.toString() may not even produce valid JSON according to its
Javadoc (ObjectMapper.writeValueAsString() should be used).
 2017-10-31 16:42:50 -05:00
linzhaoming
9f51d68e92 Fix wrong doc of HttpServletRequest.authenticate() 
Should be HttpServletRequest.authenticate(HttpServletResponse response), should not include argument HttpServletRequest
 2017-10-30 01:01:44 -05:00
linzhaoming
32af1884f7 Fix wrong typo: DigestAuthenticatonEntryPoint to DigestAuthenticationEntryPoint 
Fix wrong type
 2017-10-30 01:01:44 -05:00
Chaouki Dhib
a88035196a Fix typo in the doc in 5.7 Multiple HttpSecurity 2017-10-12 07:43:55 -05:00
Spring Buildmaster
0db94b1d36 Next development version 2017-06-08 04:34:44 +00:00
Spring Buildmaster
9e8994a2b7 Release version 4.2.3.RELEASE 4.2.3.RELEASE 2017-06-08 04:34:34 +00:00
Rob Winch
8b2faff7ad Update to Spring 4.3.9.RELEASE 
Fixes gh-4375
 2017-06-07 22:52:58 -05:00
Rob Winch
469bc20e6d UrlUtils reuses ABSOLUTE_URL 
Fixes gh-4234
 2017-06-07 22:52:58 -05:00
Rob Winch
947d11f433 Update SecurityJackson2Modules 
Fixes gh-4370
 2017-06-07 22:52:58 -05:00
Rob Winch
b3a60a83f6 Force springIoTestRuntime assertj.version=2.2.0 2017-05-18 18:02:33 -05:00
Rob Winch
5bc7e4171c Fix DefaultSavedRequestMixinTests with Spring 5 
Previously DefaultSavedRequestMixinTests
serializeDefaultRequestBuildWithConstructorTest broke in Spring 5
because Spring 5's MockHttpServletRequest.setCookie now automatically adds
the Cookie header.

This commit ensures that the Cookie header is not added by overriding the
class we are writing.

Fixes gh-4272
 2017-05-18 17:57:18 -05:00
Rob Winch
80e96b0f7b Use Spring IO Brussels-SR1 2017-03-21 14:39:46 -05:00
borlafu
8a458eb9e1 Avoid multiple X-Frame-Options headers 
XFrameOptionsHeaderWriter should not *add*, but *set* the
X-Frame-Options header. According to
https://tools.ietf.org/html/rfc7034#section-2.1, having
multiple values for the header is disallowed:

"There are three different values for the header field.
These values are mutually exclusive; that is, the header
field MUST be set to exactly one of the three values."

With this change, only the latest XFrameOptionsHeaderWriter
will remain.
 2017-03-08 15:49:18 -06:00
Rob Winch
d2524eadfc Update poms to new to SNAPSHOT version 2017-03-02 09:20:34 -06:00
Spring Buildmaster
db08be05ee Next development version 2017-03-02 07:29:50 +00:00
Spring Buildmaster
081f0c4d94 Release version 4.2.2.RELEASE 4.2.2.RELEASE 2017-03-02 07:29:42 +00:00
Rob Winch
247f54dc41 Fix SwitchUserFilter.setSwitchFailureUrl assertion 
Fixes gh-4198
 2017-03-02 00:47:09 -06:00
Rob Winch
017e9834bd Fix NPE in UrlUtils with null url 
Fixes gh-4233
 2017-03-02 00:46:01 -06:00
Rob Winch
49719480a8 Fix configuration-source-ref doc 
Fixes gh-4200
 2017-03-02 00:25:51 -06:00
Rob Winch
f3edaa673a Fix SecurityNamespaceHandler Version Error Message 
Fixes gh-4210
 2017-03-02 00:25:51 -06:00
pkovacs
f99fe36e02 Refer to SimpleGrantedAuthority instead of GrantedAuthorityImpl 
GrantedAuthorityImpl has been replaced a couple of years ago with
SimpleGrantedAuthority and this commit fixes the documentation items
which weren’t updated to reflect this change.

Fixes gh-4163.
 2017-03-02 00:09:14 -06:00
Joris Kuipers
546d44d6e7 Fix NPE in WebSocketMessageBrokerSecurityBeanDefinitionParser 
Fixes gh-4112
Closes gh-4194
 2017-03-01 23:58:02 -06:00
stonio
901a4e183a Update SecurityContextHolder.java 
Use StringUtils.hasText
 2017-03-01 23:54:04 -06:00
Artyom Kosykh
72d08a2a5f Fix index.adoc typo 2017-03-01 23:45:50 -06:00
Kazuki Miyahara
2ac51c9c7f Fix class name in comment 2017-03-01 23:31:32 -06:00
Rob Winch
b64cdb5765 Fix RoleHiearchyUtilsTests on Windows 
Fixes gh-4228
 2017-03-01 23:27:11 -06:00
pkovacs
aa31f1f695 Update required JDK version to JDK8 
Fixes gh-4154.
 2017-03-01 23:18:50 -06:00
Eddú Meléndez
8353984733 Fix warning from spring-boot plugin 2017-03-01 23:13:56 -06:00
SendilKumar N
c31bdb6390 SCryptPasswordEncoder to take default keyLength value 
Fixes gh-4225
Closes gh-4231
 2017-03-01 23:11:52 -06:00
Rob Winch
168f4b8f70 Prevent Duplicate Cache Headers 
Fixes gh-4199
 2017-03-01 16:14:12 -06:00
Rob Winch
9c03571bbb Use message in all Assert 
This ensures compatibility with Spring 5.

Fixes gh-4193
 2017-01-30 19:58:24 -06:00
Rob Winch
4c79107e01 Force mockito-core version 2017-01-09 15:30:50 -06:00
Rob Winch
3f543d0fbd Use anyListOf 
Fixes compatability with Spring IO Cairo
 2017-01-09 13:08:45 -06:00
Rob Winch
08104eb06c Add eclipseConfiguration Gradle task 2017-01-05 11:43:33 -06:00
Rob Winch
b54d350e54 AspectJ fixes for Spring IO 2017-01-05 11:43:33 -06:00
Rob Winch
b5e0886bde update to spring-io-plugin:0.0.6 
- Update spring-io-plugin
- Update Spring Boot because spring-io-plugin now requires
  non passive dependency management plugin
 2017-01-05 11:42:48 -06:00
Kazuki Shimizu
38492a5794 Add since version in javadoc 
Issue: gh-4130
 2016-12-21 16:12:39 -06:00
Spring Buildmaster
b7541d56d0 Next development version 2016-12-21 17:23:37 +00:00
Spring Buildmaster
7a7ce11ebb Release version 4.2.1.RELEASE 4.2.1.RELEASE 2016-12-21 17:23:28 +00:00
Eddú Meléndez
028854b936 Add HttpSessionRequestCache sessionAttrName property 
This commit allows to customize the session attribute name. Default is
SPRING_SECURITY_SAVED_REQUEST.

Fixes gh-4130
 2016-12-21 10:22:09 -06:00
stonio
aa5df61eff Fix index.adoc typo 2016-12-21 10:19:51 -06:00
stonio
6df5b76f24 Fix test.adoc typo 2016-12-21 10:19:51 -06:00
stonio
c8ed130008 Fix websocket.adoc typo 2016-12-21 10:19:51 -06:00
Rob Winch
d39f3385b6 Polish DefaultHttpFirewallTests 
Issue gh-4169
 2016-12-21 09:29:23 -06:00
Rob Winch
6bec625e68 Update to Spring 4.3.5.RELEASE 
Fixes gh-4167
 2016-12-21 09:04:16 -06:00