8c34af711e
Use ServletContext in AuthorizationManagerWebInvocationPrivilegeEvaluator
...
Closes gh-10908
2022-03-28 10:01:51 -03:00
e176d764ba
Add SecurityContextRepository.loadContext(HttpServletRequest)
...
This allows loading the SecurityContext lazily, without the need for the
response, and does not attempt to automatically save the request when
the response is comitted.
Closes gh-11028
2022-03-25 14:38:37 -05:00
1e3106f3a2
HttpSessionSecurityContextRepository support null HttpServletResponse
...
Closes gh-11029
2022-03-25 13:03:33 -05:00
759d983d62
Fix formatting in reference docs
2022-03-24 15:15:20 +01:00
0a2a327476
Fix reference documentation redirects
...
Closes gh-11018
2022-03-23 09:01:42 +01:00
5a95ebd1ef
Merge branch 'rb6.0.0-M3'
2022-03-22 13:38:36 -05:00
e116bea118
Next development version
2022-03-22 13:37:56 -05:00
6dbba7b4a8
Release 6.0.0-M3
2022-03-22 11:03:54 -05:00
a8e8ad4205
Update spring-data-bom to 2022.0.0-M3
...
Closes gh-11017
2022-03-22 11:03:33 -05:00
ca00b1415b
Add authorizeHttpRequests to Kotlin DSL
...
Closes gh-10481
2022-03-22 08:26:41 -06:00
932ff4f5c4
Fix typos in Kotlin DSL docs
...
Issue gh-10481
2022-03-22 08:26:41 -06:00
e6673c2816
Update spring-data-bom to 2022.0.0-M3
...
Closes gh-11017
2022-03-22 08:40:48 -05:00
8fe6ecb459
Update antora.yml
2022-03-21 15:27:40 -05:00
e13199759a
Next development version
2022-03-21 19:31:36 +00:00
e2e1689d9d
Release 6.0.0-M2
2022-03-21 13:56:04 -05:00
9060cbffcb
Revert "Release 6.0.0-M2"
...
This reverts commit 5f7c98d700
2022-03-21 13:55:34 -05:00
5f7c98d700
Release 6.0.0-M2
2022-03-21 18:41:13 +00:00
55921b380b
Revert "Update spring-data-bom to 2022.0.0-M2"
...
This reverts commit fbd8d78494
2022-03-21 12:43:52 -05:00
c12c8c4013
Revert "Release 6.0.0-M2"
...
This reverts commit ae607cbd97
2022-03-21 12:43:42 -05:00
ae607cbd97
Release 6.0.0-M2
2022-03-21 17:16:08 +00:00
fbd8d78494
Update spring-data-bom to 2022.0.0-M2
...
Closes gh-10978
2022-03-21 11:07:01 -05:00
8aa7029d07
Fix checkstyle errors
...
Issue gh-10989
2022-03-18 22:53:29 -05:00
8584a82e4c
Update io.spring.javaformat to 0.0.31
...
Closes gh-10989
2022-03-18 22:53:29 -05:00
99c4a95ded
Update spring-ldap-core to 2.3.6.RELEASE
...
Closes gh-10995
2022-03-18 19:06:48 -05:00
33d6dbe59d
Update org.slf4j to 1.7.36
...
Closes gh-10994
2022-03-18 19:06:48 -05:00
d3111685d0
Update htmlunit-driver to 2.59.0
...
Closes gh-10993
2022-03-18 19:06:48 -05:00
0fba9ff136
Update hibernate-core-jakarta to 5.6.7.Final
...
Closes gh-10992
2022-03-18 19:06:47 -05:00
54de009c7a
Update org.eclipse.jetty to 11.0.8
...
Closes gh-10991
2022-03-18 19:06:47 -05:00
f2a13aa446
Update htmlunit to 2.59.0
...
Closes gh-10990
2022-03-18 19:06:47 -05:00
e81990c44e
Update io.r2dbc to 0.9.1.RELEASE
...
Closes gh-10988
2022-03-18 18:11:49 -05:00
3e8ed5ea06
Update io.projectreactor to 2020.0.17
...
Closes gh-10986
2022-03-18 18:11:44 -05:00
dec5070909
Update mockk to 1.12.3
...
Closes gh-10985
2022-03-18 18:11:41 -05:00
02c61ad750
Update aspectj-plugin to 6.4.1
...
Closes gh-10984
2022-03-18 18:11:39 -05:00
aebb3807b5
Update com.nimbusds to 9.30
...
Closes gh-10983
2022-03-18 18:11:37 -05:00
3abae62dee
Update jackson-bom to 2.13.2
...
Closes gh-10980
2022-03-18 18:11:30 -05:00
217a9e739e
Update logback-classic to 1.2.11
...
Closes gh-10979
2022-03-18 18:11:27 -05:00
155fe11815
Update release pipeline scheduled time to 5pm UTC
...
Issue gh-10455
2022-03-18 13:43:37 -05:00
43142a8137
Update CI pipeline to push next snapshot version after release
...
Issue gh-10461
2022-03-18 13:43:37 -05:00
f12e5cab3c
Add gradle task for updating to next development version
...
Issue gh-10461
2022-03-18 12:10:21 -05:00
946e24e1c2
Polish gh-10911
2022-03-17 12:34:16 -05:00
2b6bc5dd0b
Use configurable charset in ServerHttpBasicAuthenticationConverter
...
Closes gh-10903
2022-03-17 12:34:16 -05:00
428216b322
Add support for customizing claims in JWT Client Assertion
...
Closes gh-9855
2022-03-17 09:50:25 -05:00
50a3bcf728
Remove unused code
2022-03-17 05:08:39 -04:00
a88b8bf980
ClientAuthenticationMethod equals and hashCode is consistent
...
Closes gh-10559
2022-03-17 05:05:47 -04:00
54b033078b
Allow configuring PKCE for confidential clients
...
Closes gh-6548
2022-03-16 13:36:10 -04:00
d7ac254b3d
Do not run CI on tags
...
Issue gh-10457
2022-03-16 11:47:14 -05:00
90fe1b3a69
Polish UsernamePasswordAuthenticationFilter method
...
Closes gh-10970
2022-03-16 16:41:03 +01:00
92a385ed05
OAuth 2.0 logout handler resolves uri placeholders
...
- OidcClientInitiatedLogoutSuccessHandler can automatically resolve placeholders like baseUrl and registrationId inside the postLogoutRedirectUri
Closes gh-7900
2022-03-15 14:05:26 -06:00
070514b9dd
Polish InResponseTo support
...
- Moved methods so methods are listed before the methods they call
- Adjusted exception handling so no exceptions are eaten
- Adjusted so that malformed_request_data is returned with request data is malformed
- Refactored methods to have only immutable method parameters
- Removed usage of Stream API
- Moved AuthnRequestUnmarshaller into static block so that only looked
up once
Issue gh-9174
2022-03-15 13:06:32 -06:00
4aa9420047
Add support for validation of InResponseTo
...
Whenever an InResponseTo is present in the SAML2 response and / or any of its assertions, it will be validated against the stored SAML2 request. If the request is missing or the ID of the request does not match the InResponseTo, validation fails. If there is no InResponseTo, no validation of it is done (as opposed to checking whether there is a saved request or not and then failing based on that).
Closes gh-9174
2022-03-15 13:06:32 -06:00
Marcus Da Coregio
Rob Winch
Eleftheria Stein
Steve Riesenberg
github-actions[bot]
Yuriy Savchenko
David Kirstein
Joe Grandja
Jánoky László Viktor
ShinDongHun1
Simone Giannino
Josh Cummings
Elias Lousseief