Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,387 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

7387 Commits

Author SHA1 Message Date
Josh Cummings 8eedb3919e
Policy OAuth2ResourceServerSpecTests 
Issue: gh-6052
 2018-11-12 15:01:15 -07:00
Josh Cummings dca3645850
Update to spring-build-conventions:0.0.22.RELEASE 
Fixes: gh-6064
 2018-11-09 10:55:35 -07:00
dperezcabrera 898d005a53 InMemoryUserDetailsManager.updatePassword case-insenstive 
Previously updatePassword was case sensitive which was
inconsistent with the rest of the class.

This commit updates updatePassword to be case insensitive.

Fixes: gh-6039
 2018-11-09 11:39:58 -06:00
Erik van Paassen 3a6582d2a6 Fix csrf:token-repository-ref XSD documentation 
The documentation of the token-repository-ref attribute of the csrf
element in the schema has been updated to make clear the default
repository is lazy. Targets versions 4.2, 5.0 and 5.1.

Fixes gh-6037
 2018-11-08 10:14:49 -06:00
Josh Cummings 9a13f9acde Custom Bearer Token Error Handling Support 
Users can specify a custom access denied handler and authentication
entry point for reactive resource servers.

Fixes: gh-6052
 2018-11-07 16:29:56 -06:00
Josh Cummings 78e27ca17f
Update Reactive Resource Server Docs 
Resource Server documentation for both Servlet and Reactive now have a
similar feel and offer deeper exposure to common use cases.

Fixes: gh-6054
 2018-11-07 12:05:21 -07:00
Josh Cummings 8a475e39be Write Security Headers Before Servlet Include 
HeaderWriterFilter wraps request dispatcher so it can write security
headers before the include occurs.

Fixes: gh-5499
 2018-10-31 09:27:25 -05:00
Paul Wheeler ccc4e1c876 Made AclClassIdUtils genuinely package level by injecting the conversionService instead of AclClassIdUtils 
Fixes gh-4814
 2018-10-31 09:24:35 -05:00
Paul Wheeler 2c362456fd AclClassIdUtils should be public 
Fixes gh-4814
 2018-10-31 09:24:35 -05:00
Josh Cummings 75e7e099ab
MiscHttpConfigTests groovy->java 
Issue: gh-4939
 2018-10-30 12:58:20 -06:00
Josh Cummings 7d3302f52b
Polish Test Name 
So that it adheres to methodNameWhenConditionThenVerification naming
convention.

Issue: gh-3743
 2018-10-30 10:20:37 -06:00
Karl Goffin 50d26c9d28
Polish Logging and Tests 
Removing debug statements which would have prematurely terminated the
stream, changing to AssertJ, and adding another test.

Issue: gh-3743
 2018-10-30 10:18:16 -06:00
Karl Goffin 92e68a589a
PostFilter Support for Streams 
Users can return a Stream from a @PostFilter-annotated method.

Fixes: gh-3743
 2018-10-30 10:17:16 -06:00
Josh Cummings e1c7dd6480
Add JDK 11 to Jenkins 
Fixes: gh-5860
 2018-10-25 17:10:50 -06:00
Josh Cummings 42b111fba6
JDK 11 Compatibility 
Upgraded dependencies and removed a test in the Java Config LDAP
sample which is arguably an integration test since it starts up an
LDAP container. This test also isn't JDK 11 compatible and the
remaining integration tests in the sample cover the same material.

Issue: gh-5860
 2018-10-25 17:10:50 -06:00
Joe Grandja a96893a42a Remove charset from Accept header in UserInfo request 
Fixes gh-6017
 2018-10-25 12:56:45 -04:00
Bob Maertz 52be2839ca Migraged unit test from groovy to java 
Moved AbstractConfigAttributeRequestMatcherRegistryTests.groovy to AbstractConfigAttributeRequestMatcherRegistryTests.java

gh-4939
 2018-10-23 20:04:42 -05:00
Joe Grandja 8ef65ce5c5 Set AuthenticationEventPublisher on each AuthenticationManagerBuilder 
Fixes gh-6009
 2018-10-23 14:08:23 -04:00
Joe Grandja 7a94931514 Polish javadoc 2018-10-23 08:45:06 -04:00
Bob Maertz 551ea66ce3 Migrated unit test TldTests.groovy to TldTests.java 
Moved unit test TldTests#testTldVersionIsCorrect from groovy to java.

gh-4939
 2018-10-22 11:55:34 -05:00
Rob Winch f56f55dc8e Fix BCrypt Checkstyle 
Issue: gh-3320
 2018-10-22 11:18:52 -05:00
linfeng 388a7b62b9 Add BCrypt Revision Support 
Fixes: gh-3320
 2018-10-22 11:13:55 -05:00
Vedran Pavic 605469db06 Clarify default OAuth 2.0 login page requirements 
Fixes gh-5996
 2018-10-22 09:20:49 -04:00
Drummond Dawson 818a3506fe Remove unnecessary concatenation of sql in JdbcUserDetailsManager 2018-10-19 15:30:03 -05:00
Drummond Dawson 9ea4d2d4ac Add missing space to heading for it to render properly 2018-10-19 15:25:15 -05:00
Rob Winch 1eb7a297d3 Update to spring-build-conventions:0.0.20.RELEASE 
Fixes: gh-5998
 2018-10-18 16:14:37 -05:00
Rob Winch d5d9adf11d Fail the build if deploy fails 
Fixes: gh-5997
 2018-10-18 16:03:00 -05:00
Vedran Pavic e1b095df32 Allow in-memory client registration repos to be constructed with a map 
Fixes gh-5918
 2018-10-18 14:07:12 -04:00
Brian Demers 8f49ca850a Fixing IllegalStateException message in OAuth2ResourceServerConfigurer 
Updated message to include `http.oauth2ResourceServer()`
 2018-10-17 15:14:36 -05:00
Josh Cummings adb9f4e34b Add JDK 10 to Jenkins 
Fixes: gh-5860
 2018-10-17 15:03:42 -05:00
Josh Cummings bd9e3877f9 JDK 10 Compatibility 
Upgrading dependencies and reconfiguring PowerMock

Issue: gh-5860
 2018-10-17 15:03:42 -05:00
Josh Cummings 52507695d1 Update to Spring Build Conventions 0.0.19 
Fixes: gh-5981
 2018-10-17 15:03:42 -05:00
sunflower-seed 2e6ff72c31 Update SubjectDnX509PrincipalExtractor.java 
Added missing asterisk
 2018-10-17 14:56:45 -05:00
sunflower-seed e26bb2b326 Update x509.adoc 
Added Escaping for Adoc
 2018-10-17 14:56:45 -05:00
Joe Grandja 0b3aa2ce24 Update Security version to 5.2 2018-10-17 14:52:06 -04:00
Joe Grandja d808b6f49f Update version to 5.2.0.BUILD-SNAPSHOT 2018-10-17 14:12:40 -04:00
Joe Grandja 921abefaa2 Remove address and phone scope from CommonOAuth2Provider.OKTA 
Fixes gh-5987
 2018-10-17 11:50:34 -04:00
Rob Winch a472153a31 Next Development Version 2018-10-15 14:20:19 -05:00
Rob Winch 8d5d0fd891 Release 5.1.1.RELEASE 
Fixes: gh-5963
 2018-10-15 14:19:20 -05:00
Josh Cummings 7269aacbdd Password Modify Extended Operation Support 
LdapUserDetailsManager can be configured to either use direct
attribute modification or the LDAP Password Modify Extended Operation
to change a user's password.

Fixes: gh-3392
 2018-10-15 12:24:39 -06:00
Josh Cummings b9ca1400e3 UnboundIdContainer Random Port Support 
Setting a port of 0 will now induce the container to select a random
port.

Fixes: gh-5920
 2018-10-15 12:24:39 -06:00
Josh Cummings b9c499d8c8 Polish UnboundIdContainerTests 
Basic server startup test now asserts a successful server startup
instead of a failed one.

Issue: gh-5920
 2018-10-15 12:24:39 -06:00
Josh Cummings 22bd8f1c1f Reactive Jwt Authentication Converter Support 
Fixes: gh-5092
 2018-10-15 11:55:12 -05:00
Rob Winch 01b47a8b2f Update to Thymeleaf 3.0.10.RELEASE 
Fixes: gh-5960
 2018-10-15 11:42:20 -05:00
Rob Winch c0e9488f1d Update to htmlunit-driver 2.33.0 
Fixes: gh-5959
 2018-10-15 11:42:13 -05:00
Rob Winch 4b72429b00 Update to Jackson 2.9.7 
Fixes: gh-5958
 2018-10-15 11:42:07 -05:00
Rob Winch 180c6fe24d Update to GAE 1.9.66 
Fixes: gh-5957
 2018-10-15 11:42:01 -05:00
Rob Winch d40a8e09c3 Update to Spring Data Lovelace SR1 
Fixes: gh-5949
 2018-10-15 09:36:45 -05:00
Rob Winch ad05c756de Update to Spring Framework 5.0.1.RELEASE 
Fixes: gh-124
 2018-10-15 09:36:45 -05:00
Joe Grandja 88f8bfeb57 Polish docs for WebClient OAuth2 Servlet Setup 2018-10-15 09:44:22 -04:00