Commit Graph

10124 Commits

Author SHA1 Message Date
Steve Riesenberg 8584a82e4c Update io.spring.javaformat to 0.0.31
Closes gh-10989
2022-03-18 22:53:29 -05:00
Steve Riesenberg 99c4a95ded
Update spring-ldap-core to 2.3.6.RELEASE
Closes gh-10995
2022-03-18 19:06:48 -05:00
Steve Riesenberg 33d6dbe59d
Update org.slf4j to 1.7.36
Closes gh-10994
2022-03-18 19:06:48 -05:00
Steve Riesenberg d3111685d0
Update htmlunit-driver to 2.59.0
Closes gh-10993
2022-03-18 19:06:48 -05:00
Steve Riesenberg 0fba9ff136
Update hibernate-core-jakarta to 5.6.7.Final
Closes gh-10992
2022-03-18 19:06:47 -05:00
Steve Riesenberg 54de009c7a
Update org.eclipse.jetty to 11.0.8
Closes gh-10991
2022-03-18 19:06:47 -05:00
Steve Riesenberg f2a13aa446
Update htmlunit to 2.59.0
Closes gh-10990
2022-03-18 19:06:47 -05:00
Steve Riesenberg e81990c44e
Update io.r2dbc to 0.9.1.RELEASE
Closes gh-10988
2022-03-18 18:11:49 -05:00
Steve Riesenberg 3e8ed5ea06
Update io.projectreactor to 2020.0.17
Closes gh-10986
2022-03-18 18:11:44 -05:00
Steve Riesenberg dec5070909
Update mockk to 1.12.3
Closes gh-10985
2022-03-18 18:11:41 -05:00
Steve Riesenberg 02c61ad750
Update aspectj-plugin to 6.4.1
Closes gh-10984
2022-03-18 18:11:39 -05:00
Steve Riesenberg aebb3807b5
Update com.nimbusds to 9.30
Closes gh-10983
2022-03-18 18:11:37 -05:00
Steve Riesenberg 3abae62dee
Update jackson-bom to 2.13.2
Closes gh-10980
2022-03-18 18:11:30 -05:00
Steve Riesenberg 217a9e739e
Update logback-classic to 1.2.11
Closes gh-10979
2022-03-18 18:11:27 -05:00
Steve Riesenberg 155fe11815 Update release pipeline scheduled time to 5pm UTC
Issue gh-10455
2022-03-18 13:43:37 -05:00
Steve Riesenberg 43142a8137 Update CI pipeline to push next snapshot version after release
Issue gh-10461
2022-03-18 13:43:37 -05:00
Eleftheria Stein f12e5cab3c Add gradle task for updating to next development version
Issue gh-10461
2022-03-18 12:10:21 -05:00
Steve Riesenberg 946e24e1c2
Polish gh-10911 2022-03-17 12:34:16 -05:00
David Kirstein 2b6bc5dd0b
Use configurable charset in ServerHttpBasicAuthenticationConverter
Closes gh-10903
2022-03-17 12:34:16 -05:00
Steve Riesenberg 428216b322 Add support for customizing claims in JWT Client Assertion
Closes gh-9855
2022-03-17 09:50:25 -05:00
Joe Grandja 50a3bcf728 Remove unused code 2022-03-17 05:08:39 -04:00
Jánoky László Viktor a88b8bf980 ClientAuthenticationMethod equals and hashCode is consistent
Closes gh-10559
2022-03-17 05:05:47 -04:00
Joe Grandja 54b033078b Allow configuring PKCE for confidential clients
Closes gh-6548
2022-03-16 13:36:10 -04:00
Steve Riesenberg d7ac254b3d Do not run CI on tags
Issue gh-10457
2022-03-16 11:47:14 -05:00
ShinDongHun1 90fe1b3a69 Polish UsernamePasswordAuthenticationFilter method
Closes gh-10970
2022-03-16 16:41:03 +01:00
Simone Giannino 92a385ed05
OAuth 2.0 logout handler resolves uri placeholders
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri

Closes gh-7900
2022-03-15 14:05:26 -06:00
Josh Cummings 070514b9dd
Polish InResponseTo support
- Moved methods so methods are listed before the methods they call
- Adjusted exception handling so no exceptions are eaten
- Adjusted so that malformed_request_data is returned with request data is malformed
- Refactored methods to have only immutable method parameters
- Removed usage of Stream API
- Moved AuthnRequestUnmarshaller into static block so that only looked
up once

Issue gh-9174
2022-03-15 13:06:32 -06:00
Elias Lousseief 4aa9420047
Add support for validation of InResponseTo
Whenever an InResponseTo is present in the SAML2 response and / or any of its assertions, it will be validated against the stored SAML2 request. If the request is missing or the ID of the request does not match the InResponseTo, validation fails. If there is no InResponseTo, no validation of it is done (as opposed to checking whether there is a saved request or not and then failing based on that).

Closes gh-9174
2022-03-15 13:06:32 -06:00
Elias Lousseief a17cf9e814
Refactored OpenSaml4AuthenticationProviderTests
Factored out repeatedly used code for signing a request.
2022-03-15 13:06:31 -06:00
Rob Winch c49d47d9fa Fix docs SecurityContextHolder Diagram
Issue gh-9635
2022-03-12 13:44:12 -06:00
Rob Winch 972039e65c Add SecurityContextHolderFilter
Closes gh-9635
2022-03-12 13:31:04 -06:00
Rob Winch f9619cef68 Extract createSecurityContextRepository()
Extract out method in preparation for adding SecurityContextHolderFilter
configuration.

Issue gh-9635
2022-03-12 13:23:47 -06:00
Rob Winch cbba7ea4de AbstractAuthenticationProcessingFilter.securityContextRepository
Issue gh-10953
2022-03-12 13:23:47 -06:00
Rob Winch ae7d56d65b Add Persistence to documentation
Closes gh-10962
2022-03-11 13:43:11 -06:00
Norbert Nowak abd33389be Add UsernamePasswordAuthenticationToken factory methods
- unauthenticated factory method
 - authenticated factory method
 - test for unauthenticated factory method
 - test for authenticated factory method
 - make existing constructor protected
 - use newly factory methods in rest of the project
 - update copyright dates

Closes gh-10790
2022-03-09 15:49:29 -07:00
Rob Winch 28c7a4be11 Add SecurityContextRepository to all Authentication Filters
Closes gh-10949
2022-03-09 15:48:03 -06:00
Rob Winch 9b380582dc BearerTokenAuthenticationFilter.securityContextRepository
Issue gh-10953
2022-03-09 15:47:34 -06:00
Rob Winch 4462b73fd9 AbstractPreAuthenticatedProcessingFilter.securityContextRepository
Issue gh-10953
2022-03-09 15:47:34 -06:00
Rob Winch ba7fb0cb14 DigestAuthenticationFilter.securityContextRepository
Issue gh-10953
2022-03-09 15:47:34 -06:00
Rob Winch 09e730734b BasicAuthenticationFilter.setSecurityContextRepository
Issue gh-10953
2022-03-09 15:47:34 -06:00
Rob Winch d909d3bc40 RememberMeAuthenticationFilter.securityContextRepository
Issue gh-10953
2022-03-09 15:47:34 -06:00
Rob Winch 7c5b939bbd AuthenticationFilter.securityContextRepository
Issue gh-10953
2022-03-09 15:47:34 -06:00
Marcus Da Coregio 8c94c2e15a AuthorizationManagerWebInvocationPrivilegeEvaluator grant access when AuthorizationManager abstains
Closes gh-10950
2022-03-09 15:21:14 -03:00
Lijamaija 660da6f4a0 Add Kotlin example for SecuritySocketAcceptorInterceptor of RSocket
Closes gh-10932
2022-03-09 17:49:43 +01:00
Steve Riesenberg 5f37ee2f64 Add missing output and checkout
Issue gh-10928
2022-03-09 10:47:48 -06:00
Rob Winch 2abeff2089 HttpSessionSecurityContextRepository saves with original response
Previously, the HttpSessionSecurityContextRepository unnecessarily required
the HttpServletResponse from the HttpReqeustResponseHolder passed into
loadContext. This meant code that wanted to save a SecurityContext had to
have a reference to the original HttpRequestResponseHolder. Often that
implied that the code that saves the SecurityContext must also load the
SecurityContext.

This change allows any request / response to be used to save the
SecurityContext which means any code can save the SecurityContext not just
the code that loaded it. This sets up the code to be permit requiring
explicit saves. Using the request/response from the
HttpRequestResponseHolder is only necessary for implicit saves.

Closes gh-10947
2022-03-09 10:21:51 -06:00
Marcus Da Coregio 1762a4ce70 Add SAML 2.0 Single Logout XML Support
Closes gh-10842
2022-03-09 10:48:34 -03:00
Marcus Da Coregio 1cbe7a75d3 Add SAML 2.0 Login XML Support
Closes gh-9012
2022-03-09 10:40:26 -03:00
Steve Riesenberg aa0005b1e1 Update CI process to create GitHub releases with release notes
Closes gh-10928
2022-03-08 17:41:57 -06:00
Rob Winch bab5d252a2 Add RequestAttributeSecurityContextRepository
Closes gh-10918
2022-03-08 15:00:22 -06:00