707f8286f8
Fix typo
2022-12-05 14:09:41 -08:00
547a1a11d1
Merge branch '6.0.x'
...
Closes gh-12342
2022-12-05 12:26:39 -08:00
42a00e2003
Merge branch '5.8.x' into 6.0.x
...
Closes gh-12341
2022-12-05 12:26:00 -08:00
d2b33a2583
Fix docs
...
Closes gh-11396
2022-12-05 12:25:26 -08:00
74e8fa10a2
Fix password encoder migration guide
2022-12-02 14:12:47 -07:00
eb57d9e5c1
Merge branch '6.0.x'
2022-11-29 16:26:13 -07:00
c60c10792c
Fix Observability Opt-out Documentation Typo
...
Issue gh-12268
2022-11-29 16:24:57 -07:00
e6173f9e5b
Prepare for Spring Security 6.1
2022-11-28 15:47:10 -03:00
50da5b6498
Fix securityMatchers code sample
...
Closes gh-12296
2022-11-25 10:18:40 -03:00
3e0e532ed7
Merge branch '5.8.x' into 6.0.x
...
Closes gh-12287
2022-11-24 08:48:27 -03:00
5db7ac4ce3
Merge branch '5.7.x' into 5.8.x
...
Closes gh-12286
2022-11-24 08:48:05 -03:00
9b3f834bff
Merge branch '5.6.x' into 5.7.x
...
Closes gh-12285
2022-11-24 08:47:46 -03:00
70bfc39418
Fix AuthorizationFilter diagram in docs
...
Closes gh-12274
2022-11-24 08:46:16 -03:00
2d567cdb09
Merge branch '5.8.x' into 6.0.x
2022-11-23 17:18:52 -06:00
87c074fc26
Merge branch '5.7.x' into 5.8.x
2022-11-23 17:14:56 -06:00
621889fa18
Merge branch '5.6.x' into 5.7.x
2022-11-23 17:12:30 -06:00
fe252f5057
sync docs build; upgrade Antora and Antora Collector to latest alpha
2022-11-21 17:26:51 -07:00
01117b11fe
Polish Kotlin snippet
...
- to match the comments in the related Java snippet
Issue gh-11959
2022-11-20 12:28:45 -07:00
7804e3283b
Fix Migration 6.0 Link
...
Issue gh-12242
2022-11-20 12:26:42 -07:00
e60eb87441
Fix additional typos
...
Issue gh-11959
2022-11-19 23:22:29 -06:00
3d2be56249
Fix reference to CookieServerCsrfTokenRepository
...
Issue gh-11959
2022-11-19 23:12:59 -06:00
4442a618ea
Add reactive opt out steps for CSRF BREACH
...
Issue gh-11959
2022-11-19 23:00:38 -06:00
4994e67eda
Add servlet opt out steps for CSRF BREACH
...
Issue gh-12107
2022-11-19 22:11:18 -06:00
3f5d8b39ce
Restructure Migration Guide
...
Closes gh-12242
2022-11-18 16:57:32 -07:00
34102a6531
Document default SecurityContextRepository
...
Issue gh-12049
2022-11-18 16:14:22 -06:00
1919b4e38b
Migration guide for CAS support removal
...
Issue gh-12163
2022-11-18 15:35:39 -03:00
f17f9f98bd
Fix Broken Link
...
Issue gh-12224
2022-11-18 10:06:16 -07:00
f6fb138363
Change to Preparation Guide
2022-11-18 10:04:20 -07:00
a61fffc209
Document reactive support for CSRF BREACH
...
Issue gh-11959
2022-11-17 09:33:13 -06:00
3cb2b0606e
Document deprecation of tokenFromMultipartDataEnabled
...
Issue gh-12020
2022-11-17 09:33:13 -06:00
17123a3b0f
Polish JwtAuthenticationConverter Preparation Steps
...
Issue gh-12022
2022-11-16 12:00:10 -07:00
63aec87c61
Use Imperative in Headers
...
Issue gh-12224
2022-11-16 11:58:25 -07:00
7675874137
Restructure Migration Steps
...
CLoses gh-12224
2022-11-16 11:35:47 -07:00
063f06e7bf
Register FilterChainProxy for all dispatcher types
...
Closes gh-12180
2022-11-16 09:55:21 -03:00
754fe7f457
Document deprecations in oauth2 modules
...
* oauth2-client
* oauth2-resource-server
Issue gh-12022
2022-11-15 14:06:34 -06:00
9bc38ed318
Register FilterChainProxy for All Dispatcher Types Migration Steps
...
Closes gh-12186
2022-11-15 11:55:03 -07:00
f3d704a27d
Add PasswordEncoder Preparation Steps
...
Issue gh-10506
2022-11-14 15:25:49 -07:00
60e573de26
Add WebSecurityConfigurerAdapter Preparation Steps
...
Issue gh-10902
2022-11-14 10:53:13 -07:00
4ec10a2bca
Document new oauth2Login() authority defaults
...
Issue gh-11887
2022-11-14 10:37:02 -06:00
03b407a49a
Polish migration doc
...
Issue gh-12023
2022-11-14 10:27:19 -06:00
2a6123a456
Document new oauth2Login() authority defaults
...
Issue gh-11887
2022-11-14 09:39:37 -06:00
001452d249
Document CAS support removal
...
Closes gh-12163
2022-11-11 13:29:52 -03:00
1a6a295a07
Document Update to 5.8 in Migration
...
Closes gh-12196
2022-11-10 21:45:41 -06:00
ef8c4d85bc
Document Configure Default SessionAuthenticationStrategy
...
Closes gh-12192
2022-11-10 14:11:10 -06:00
7b28df8ebe
Document deprecation in SecurityContextRepository
...
Issue gh-12023
2022-11-09 14:49:45 -06:00
63cf954e07
Document SecurityContextRepository default
...
Closes gh-12049
2022-11-09 14:49:15 -06:00
aefc157953
Add important note for SecurityContextRepository
...
Issue gh-12049
2022-11-09 14:47:50 -06:00
1a3be83084
Merge branch '5.8.x'
...
Closes gh-12185
2022-11-09 12:28:37 -06:00
ea8fb1f159
Document SecurityContextRepository default
...
Issue gh-12049
2022-11-09 12:19:44 -06:00
2e41e1cbac
Document deprecation in SecurityContextRepository
...
Issue gh-12023
2022-11-09 12:19:44 -06:00
9071f10759
Document DelegatingSecurityContextRepository
...
Closes gh-12069
2022-11-09 12:19:43 -06:00
3366792d3b
Adjust SAML What's New
...
Issue gh-11077
2022-11-08 14:15:38 -07:00
079bb45d94
Add Encryptors Preparation Steps
...
Issue gh-8980
2022-11-08 14:13:44 -07:00
8af3b5afe4
Fix documentation part of Multiple HttpSecurity Instances
...
`http.antMatcher()` is not longer available and was replaced with
`http.securityMatcher()`, so use this in the Java Config Multiple
HttpSecurity Instances example, too
2022-11-08 13:51:05 -03:00
1103e68fc9
Polish Use new requestMatchers method migration
...
Issue gh-12100
2022-11-08 10:31:49 -03:00
89423b38b6
Add requestMatchers and securityMatchers migration steps
...
Issue gh-12100
2022-11-08 08:31:03 -03:00
693bfb66b2
Document how to use the new requestMatchers and securityMatchers
...
Closes gh-12100
2022-11-08 08:27:31 -03:00
6043cee699
Add OpenSaml4AuthenticationProvider Preparation Steps
...
Issue gh-11077
2022-11-07 17:40:19 -07:00
095faffd70
Add RelyingPartyRegistration Preparation Steps
...
Issue gh-11077
2022-11-07 13:37:44 -07:00
33ce3b59b8
Add Saml2AuthenticationToken Preparation Steps
...
Issue gh-11077
2022-11-03 13:57:54 -06:00
2f87309cda
Fix Typo
...
Closes gh-11077
2022-11-03 13:37:13 -06:00
c7b9b33cd1
Merge branch '5.8.x'
2022-11-03 08:23:50 -03:00
4d646a2978
Merge branch '5.7.x' into 5.8.x
2022-11-03 08:23:26 -03:00
067fc1678c
Merge branch '5.6.x' into 5.7.x
2022-11-03 08:22:09 -03:00
01a37dd678
Fix typo
...
(cherry picked from commit 20e89e3eca0823bfa329b5de80448bac1f5e0f30)
2022-11-03 08:21:48 -03:00
aad01447c3
docs: fix realm typo
2022-11-03 08:21:26 -03:00
bb43293469
Expand SAML Deprecations What's New
...
Issue gh-11077
2022-11-02 18:03:13 -06:00
5760b6dedf
Add AuthenticationServiceException Reactive Migration Steps
...
Issue gh-9429
Issue gh-12132
2022-11-02 18:02:53 -06:00
953c9294d0
Initial SAML Deprecation Preparation Steps
...
- Stop using Converter constructors
- Replace Saml2AuthenticationRequestContextResolver and
Saml2AuthenticationRequestFactory with
Saml2AuthenticationRequestResolver
Issue gh-11077
2022-11-02 18:01:03 -06:00
ba8f344ccb
Add AuthenticationServiceException Reactive Preparation Steps
...
Issue gh-9429
Issue gh-12132
2022-11-02 15:48:04 -06:00
cca999c57d
Merge remote-tracking branch 'origin/5.8.x'
2022-11-01 13:46:08 -06:00
d29ab8bcae
Merge branch '5.7.x' into 5.8.x
2022-11-01 13:43:40 -06:00
c94e33b6c8
Merge branch '5.6.x' into 5.7.x
2022-11-01 13:42:35 -06:00
63fb14f8c8
Add Remember Me SHA-256 migration steps
...
Issue gh-12097
2022-11-01 15:42:21 -03:00
8315545144
Update RP-Initiated Logout target URLs.
...
The URLs we're using are not actually pointing to the OIDC RP-Initiated Logout Specs.
Fixes: gh-12081
2022-11-01 12:35:39 -06:00
990ee8b8a5
Merge branch '5.8.x'
...
Closes gh-12119
2022-11-01 15:35:12 -03:00
7cbb9e82f9
Document how to opt-in for SHA256 in RememberMe
...
Closes gh-12097
2022-11-01 15:33:45 -03:00
d701946089
Merge branch '5.8.x'
2022-11-01 08:18:30 -03:00
6a4b279145
Merge branch '5.7.x' into 5.8.x
2022-11-01 08:17:50 -03:00
752e943492
Merge branch '5.6.x' into 5.7.x
2022-11-01 08:17:03 -03:00
e9db852d6e
update generateAntora task to keep prerelease segment other than -SNAPSHOT in docs version
2022-11-01 08:13:43 -03:00
2a2f7a197c
Add AuthenticationEntryPointFailureHandler Migration Steps
...
Issue gh-9429
2022-10-31 16:40:21 -06:00
39f4fcd5f2
Add AuthenticationEntryPointFailureHandler Preparation Steps
...
Issue gh-9429
2022-10-31 16:33:25 -06:00
ac7f726a24
Add RunAsManager Preparation Steps
...
Closes gh-11337
2022-10-31 15:46:19 -06:00
c5badbc631
Add AccessDecisionManager Preparation Steps
...
Issue gh-11337
2022-10-31 15:25:05 -06:00
86c9d5cfbe
Remove Stray Horizontal Rules
...
Issue gh-11337
2022-10-31 15:24:59 -06:00
4112adf6a0
Document Configure Default CsrfTOken BREACH Protection
...
Closes gh-12107
2022-10-28 15:57:25 -05:00
96d7c78b67
Polish Document Defer load CsrfToken
...
Issue gh-12105
2022-10-28 15:51:28 -05:00
d860775b45
Document Defer load CsrfToken
...
Closes gh-12105
2022-10-28 15:41:25 -05:00
4938c394e4
Move Opt-out Steps
...
Closes gh-12104
2022-10-28 13:52:02 -06:00
4f5372a3a7
Add Request Security Migration Steps
...
Issue gh-11337
2022-10-28 12:25:44 -06:00
8da916fa1c
Add Request Security Preparation Steps
...
Issue gh-11337
2022-10-28 11:48:21 -06:00
56482e25de
Polish Method Security Migration Steps
...
- Revert steps removed since implicitly included in preparation guide
Issue gh-11337
2022-10-28 09:51:02 -06:00
e900ca3a86
Polish Method Security Preparation Steps
...
- Add instruction to declare 5.8 defaults
Issue gh-11337
2022-10-28 09:46:48 -06:00
b4974bbce9
Polish Message Security Preparation Steps
...
- Added step to declare the 5.8 default in case later preparation steps
cannot be taken yet
Issue gh-11337
2022-10-28 09:26:04 -06:00
f2fc2f9a2b
Add Message Security Cleanup Steps
...
Issue gh-11337
2022-10-28 09:17:58 -06:00
31a1486b88
Add Message Security Preparation Steps
...
Issue gh-11337
2022-10-27 20:08:13 -06:00
855d6b6326
Merge branch '5.8.x'
2022-10-27 15:39:23 -05:00
3da0d1bf27
Merge branch '5.8.x'
2022-10-27 15:39:03 -05:00
5721b0351e
Polish RequestCache continue Kolin Configuration
...
Issue gh-12089
2022-10-27 15:13:50 -05:00
aac1261f0c
Document Migration to SecurityContextHolderFilter
...
Closes gh-12098
2022-10-27 15:12:45 -05:00
1dd13e69a4
Standardize Preparation Guide Layout
...
Closes gh-12096
2022-10-27 10:34:20 -06:00
cc8a93e5ec
Restore Missing Links to Migration Guide
2022-10-26 16:19:44 -06:00
f29d1da0a5
Add Link to 5.8 Preparation Guide
...
Closes gh-12093
2022-10-26 16:19:31 -06:00
2a95a24390
Add Link to 6.0 Migration Guide
...
Issue gh-12093
2022-10-26 16:15:36 -06:00
d40ed58118
Merge branch '5.8.x'
...
Closes gh-12091
Closes gh-12092
2022-10-26 14:56:02 -05:00
2b50aa3ae0
Polish Method Security Migration Steps
...
Removed checkboxes when there is only one step
2022-10-26 13:47:16 -06:00
24cc7ff178
Document Saved Requests Migration
...
Closes gh-12089
2022-10-26 14:24:00 -05:00
c17e258a6f
Document Saved Requests
...
Closes gh-12088
2022-10-26 14:22:30 -05:00
d076ddb26c
Polish Method Security Migration Steps
2022-10-26 13:18:07 -06:00
f6731e89db
Polish Method Security Preparation Steps
2022-10-26 12:37:54 -06:00
4528561326
Add Method Security Migration Steps
2022-10-25 15:04:59 -06:00
7adc000c6b
Merge remote-tracking branch 'origin/5.8.x'
2022-10-25 14:42:32 -06:00
04fa5af794
Add Missing Doc Header
...
The EnableMethodSecurity section
2022-10-25 14:41:11 -06:00
e505bc3af4
Add Method Security Preparation Steps
2022-10-25 14:41:10 -06:00
f2ddeaface
Merge remote-tracking branch 'origin/5.8.x'
2022-10-17 15:01:30 -06:00
cfb7c87dfd
Merge remote-tracking branch 'origin/5.7.x' into 5.8.x
2022-10-17 15:00:40 -06:00
6b25307339
Merge remote-tracking branch 'origin/5.6.x' into 5.7.x
2022-10-17 14:57:39 -06:00
89c815032c
Fix Index Out of Bounds
2022-10-17 14:52:03 -06:00
4ba8f8bfe0
Update What's New
...
Closes gh-12024
2022-10-13 20:08:31 -06:00
f4cc27c375
Change Default for (Server)AuthenticationEntryPointFailureHandler
...
Closes gh-9429
2022-10-13 20:03:03 -06:00
d6356415f9
Polish whats-new.adoc
2022-10-13 13:42:04 -05:00
74e0616451
Update What's New for 6.0
2022-10-13 13:42:04 -05:00
5a55987d6e
Add links to reference in What's New for 5.8
...
Issue gh-4001
Issue gh-11959
2022-10-13 12:52:01 -05:00
59c4538798
Update What's New
...
Closes gh-12021
2022-10-13 10:13:20 -06:00
fe96a62dfc
Document Observability Support
...
Issue gh-10964
2022-10-12 20:32:25 -06:00
bf1e622751
Update What's New in 6.0 for PasswordEncoders
...
Issue gh-11985
2022-10-12 08:27:46 -04:00
716aa6df5c
Merge branch '5.8.x'
2022-10-12 07:43:26 -04:00
ffbcaca24a
Update reference for PasswordEncoders
...
Issue gh-10506
2022-10-12 07:32:30 -04:00
c5e35bf32e
Merge branch '5.8.x'
...
Closes gh-11978
2022-10-10 09:24:50 -03:00
4b6fed0667
Add static factory method to AntPathRequestMather and RegexRequestMatcher
...
Closes gh-11938
2022-10-10 09:24:15 -03:00
27059ced87
Default X-Xss-Protection header value to "0"
...
Closes gh-9631
2022-10-07 17:42:55 -05:00
6753f9745e
Merge branch '5.8.x'
...
# Conflicts:
# config/src/test/kotlin/org/springframework/security/config/web/server/ServerCsrfDslTests.kt
# docs/modules/ROOT/pages/reactive/exploits/csrf.adoc
2022-10-07 17:29:07 -05:00
f462134e87
Add reactive support for BREACH
...
Closes gh-11959
2022-10-07 16:34:17 -05:00
398f5dee7f
Remove deprecated RequestMatcher methods from Java Configuration
...
Closes gh-11939
2022-10-07 15:26:46 -03:00
9fd195d419
Default to shouldFilterAllDispatcherTypes=true in XML
...
Closes gh-11970
2022-10-07 11:46:20 -03:00
146d3269bc
Merge branch '5.8.x'
...
Closes gh-11971
2022-10-07 10:28:14 -03:00
f3321c256c
Add XML support for shouldFilterAllDispatcherTypes
...
Closes gh-11492
2022-10-07 10:20:32 -03:00
12b9f2e196
use-authorization-manager defaults to true
...
Closes gh-11929
2022-10-06 08:12:46 -06:00
c4d23f2b49
Use MvcRequestMatcher by default if Spring MVC is present
...
Closes gh-11899
2022-10-06 09:12:04 -03:00
8b490de08d
Merge branch '5.8.x'
...
# Conflicts:
# docs/modules/ROOT/pages/servlet/exploits/csrf.adoc
2022-10-05 14:46:15 -05:00
dce1c30522
Add support for BREACH
...
Closes gh-4001
2022-10-05 14:21:13 -05:00
22cbd2c42e
Merge branch '5.8.x'
...
Closes gh-11957
2022-10-05 14:00:13 -05:00
a5cc1f0b60
Merge branch '5.7.x' into 5.8.x
...
Closes gh-11956
2022-10-05 13:58:44 -05:00
37dd896d4b
Merge branch '5.6.x' into 5.7.x
...
Closes gh-11955
2022-10-05 13:57:25 -05:00
e0843aabb1
automatically manage docs version (with collector)
2022-10-05 13:56:22 -05:00
c1fcf275d9
Update What's New for 5.8
...
Issue gh-11952
2022-10-05 13:48:18 -05:00
38a7bbd2eb
Merge branch '5.8.x'
2022-10-05 13:20:12 -03:00
ace8caa182
Remove mvcMatchers usage from docs
...
Issue gh-11347
2022-10-05 13:19:37 -03:00
35f7e46d05
Remove WebSecurityConfigurerAdapter
...
Closes gh-10902
2022-10-04 15:13:04 -03:00
heowc
Marcus Da Coregio
Michael Schneider
Josh Cummings
Marc Becker
Steve Riesenberg
Dan Allen
Rob Winch
Johannes Graf
Rivaldi
Márk Kővári
Ger Roza
Joe Grandja
Daniel Garnier-Moiroux