Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
8,644 Commits 34 Branches 334 Tags 114 MiB
Commit Graph

8644 Commits

Author SHA1 Message Date
shazin 8c0bdd50e2
Delegating Saml2AuthenticationRequestContext creation to Saml2AuthenticationRequestContextResolver 
Saml2AuthenticationRequestContext creation logic is not extensible at
the moment as it is provided inside of Saml2WebSsoAuthenticationRequestFilter.
This change enables to custom logic to be used when creating Saml2AuthenticationRequestContext by
taking the logic from the aforementioned filter to a seperate extensible
API by the name Saml2AuthenticationRequestContextResolver.

This provides following API contract and implementation:

 - Saml2AuthenticationRequestContextResolver
 - DefaultSaml2AuthenticationRequestContextResolver

Fixes gh-8360
 2020-04-17 15:40:24 -06:00
Philipp Gerhard b9b89035f6 Documented dependencies opaque Resource Server 
Extended the documentation for the opaque Resource Server in order to clearly state which dependencies are required in order for the minimal deployment to work. Replaced dead link for Contribute guidelines in README.adoc

Closes gh-8391
 2020-04-17 16:25:14 -05:00
Antonin Arquey 5cd1ec7bb3 Add AuthoritiesMapper setter for reactive OAuth2Login 
Allow the configuration of a custom GrantedAuthorityMapper for reactive OAuth2Login

- Add setter in OidcAuthorizationCodeReactiveAuthenticationManager
  and OAuth2LoginReactiveAuthenticationManager

- Use an available GrantedAuthorityMapper bean to configure the default ReactiveAuthenticationManager

Fixes gh-8324
 2020-04-17 16:55:05 -04:00
Roberto Paolillo 2cccf223df Add Flag to enable searching of LDAP groups on subtrees 
Closes gh-8939
 2020-04-17 12:55:11 -05:00
Souphorn 64a5bb053e Fix typo with correct capitalization 2020-04-17 10:22:37 -04:00
Josh Cummings 2eebfd3c92
Polish http links 
Issue gh-8397
 2020-04-16 17:22:32 -06:00
Josh Cummings 8904361a37
Polish Saml Tests 
Fixes gh-8403
Fixes gh-8404
 2020-04-16 17:10:51 -06:00
Josh Cummings 7056c2d9de
Polish OpenSamlAuthenticationProviderTests 
- Added missing this keywords
- Removed unused variables
- Coded to interfaces
- Added missing JavaDoc

Issue gh-6019
 2020-04-16 17:09:46 -06:00
Rob Winch b1c8affec0 Update issue templates 
Remove old templates
 2020-04-16 16:05:40 -05:00
Rob Winch 5eb7134ee0 Update issue templates 
Improve descriptions
 2020-04-16 16:03:57 -05:00
Rob Winch 27b711a0a9 Add `status: waiting-for-triage` to issue templates 2020-04-16 16:02:26 -05:00
Rob Winch 1b4f6bbe33 Link to shared CODE_OF_CONDUCT 
Issue gh-8396
 2020-04-15 17:17:25 -05:00
Rob Winch a8b438587b CONTRIBUTING to adoc 
Closes gh-8397
 2020-04-15 17:16:33 -05:00
Rob Winch 13482db003 Add LICENSE.txt 
Community files don't support LICENSE

Issue gh-8396
 2020-04-15 16:44:13 -05:00
Rob Winch 29e81bc730 Use Default Community Files 
See https://help.github.com/en/github/building-a-strong-community/creating-a-default-community-health-file

Closes gh-8396
 2020-04-15 16:37:52 -05:00
Rob Winch 71fcd5835b Remove legacy issue template 
Issue gh-8395
 2020-04-15 16:36:08 -05:00
Rob Winch 62fa697863 Add GitHub Issue Templates 
Closes gh-8395
 2020-04-15 16:12:45 -05:00
Loïc Labagnara 146d9ba0bf Add marker to make Kotlin DSL type safe. 
Fixes gh-8366
 2020-04-14 16:23:28 -04:00
shazin 4e5a3a76cd
Open Saml2AuthenticationRequestContext 
Fixed gh-8356
 2020-04-13 23:58:12 -06:00
Josh Cummings 13b2b00093
Add JwtAuthenticationConverter docs 
Issue gh-8185
 2020-04-13 22:47:20 -06:00
Evgeniy Cheban a70d55552b
Resource Server Finds JwtAuthenticationConverter Beans 
Fixes gh-8185
 2020-04-13 22:47:20 -06:00
Rob Winch 9a42a028e7 Logout defaults to use Global SecurityContextServerLogoutHandler 
Closes gh-8375
 2020-04-13 16:36:12 -05:00
Josh Cummings ad8c49acae
Add Docs 
Issue gh-8332
 2020-04-10 16:52:10 -06:00
Josh Cummings 10aa9743ed
Polish NimbusJwtDecoder 
- Follow convention to prefix member variable references with "this."
- Reduce stack trace when IOException is thrown
- Name tests to follow conventions

Issue gh-8332
 2020-04-10 16:45:01 -06:00
Mykyta Bezverkhyi 9133cc24e4
Add Cache to NimbusJwtDecoderJwkSetUriBuilder 
PR gh-8332
 2020-04-10 16:45:01 -06:00
Oh Myung Woon b7d3acc02c Add constructors to AbstractAuthenticationProcessingFilter 
Closes gh-8309
 2020-04-09 13:53:06 -05:00
Josh Cummings 419d7264f9
Add Docs for Custom Bearer Token Header 
Issue gh-8337
 2020-04-09 10:36:03 -06:00
Teddy Reinert 2f8eb16d76
Allow custom header during bearer token extraction 
Added ability to specify the header that
ServerBearerTokenAuthenticationConverter and
DefaultBearerTokenResolver use to extract a Bearer Token.

Fixes gh-8337
 2020-04-09 10:36:03 -06:00
Josh Cummings 95f0d02d79
Polish Saml2WebSsoAuthenticationRequestFilter 
- Updated formatting
- Reordered methods
- Removed a method

These changes will hopefully simplify future contribution.

Issue gh-6019
 2020-04-08 16:27:46 -06:00
Josh Cummings 711954e016
Deprecate Saml2AuthenticationRequestFilter Constructor 
Removing the default usage of OpenSamlAuthenticationRequestFactory.
Otherwise, the Open SAML dependency is required, even when
Saml2AuthenticationRequestFactory is implemented without it.

Fixes gh-8359
 2020-04-08 16:27:46 -06:00
Josh Cummings 887cb99926
Saml2AuthenticationRequestFilter Tests 
To confirm behavior still works as expected after making related changes.

Issue gh-8359
 2020-04-08 16:27:46 -06:00
Josh Cummings 0ca65f8677
Add Missing JavaDoc 
Issue gh-6019
 2020-04-08 16:27:46 -06:00
Eleftheria Stein 5f1eb392ff Add WebFlux Kotlin samples to docs 
Issue: gh-8172
 2020-04-08 14:57:25 -04:00
Eleftheria Stein 681d2d68e7 Fix typos in FAQ reference docs 
Add missing space; use https in links
 2020-04-08 11:44:42 -04:00
Rob Winch d64968a657
Fix example in javadoc of FilterChainProxy 
Closes gh-8344
 2020-04-08 09:08:30 -05:00
Evgeniy Cheban 25fb1f417d Added setPrincipalClaimName to JwtAuthenticationConverter 
Fixes gh-8186
 2020-04-07 16:20:43 -06:00
Eleftheria Stein 420737fa88 Add Kotlin WebFlux sample 
Issue: gh-5558
 2020-04-07 16:51:42 -04:00
Eleftheria Stein 8cf4ada7de Update Spring Kotlin plugin in sample 2020-04-07 16:17:42 -04:00
Alan Czajkowski 4b2afdf825 BCryptPasswordEncoder rawPassword cannot be null 
Closes gh-8317
 2020-04-07 13:44:23 -05:00
Mustafa Ulu 6bdd5f710f
Fix example in javadoc of FilterChainProxy 2020-04-07 21:05:12 +03:00
Eleftheria Stein 39e09e4ca5 Idiomatic Kotlin DSL for server HTTP security 
Issue: gh-5558
 2020-04-07 11:04:59 -04:00
Eleftheria Stein 6017510fdd Compile Kotlin tasks using JVM 1.8 2020-04-07 11:04:59 -04:00
Rob Winch b6fb063145
Adding Map support to DefaultMethodSecurityExpressionHandler 
Closes gh-8331
 2020-04-07 09:57:47 -05:00
Maksim Mednik b57c2f2821 Updating authorization docs to mention handling of Maps in @PreFilter and @PostFilter annotations 2020-04-06 18:36:32 -04:00
hotire 6d45ec5d6b Fix typo in Javadoc of ServerHttpSecurity#hasAuthority 2020-04-06 14:19:42 -05:00
Maksim Mednik eacd212a5a Adding Map support to DefaultMethodSecurityExpressionHandler 2020-04-04 15:46:07 -04:00
Markus Engelbrecht dc6b8ce470
Add addFilterAfter and addFilterBefore to Kotlin DSL 
Fixes gh-8316
 2020-04-03 12:04:03 -04:00
Eleftheria Stein 1de0cf5057 Fix HttpSecurity Javadoc 
Fixes gh-4404
 2020-04-02 11:32:38 -04:00
Rob Winch 72f13c8ed0 Update to aspectj-plugin:4.1.6 
Closes gh-8305
 2020-04-01 16:53:17 -05:00
Ruby Hartono 71b4248fe6 Improve OAuth2LoginAuthenticationProvider 
1. update OAuth2LoginAuthenticationProvider to use
OAuth2AuthorizationCodeAuthenticationProvider
2. apply fix gh-5368 for OAuth2AuthorizationCodeAuthenticationProvider
to return additionalParameters value from accessTokenResponse

Fixes gh-5633
 2020-03-30 20:55:43 -04:00