Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2026-01-01 13:01:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
15,043 Commits 54 Branches 369 Tags
Commit Graph

1020 Commits

Author SHA1 Message Date
Marcus Hert Da Coregio
915d68e216 Remove includeExpiredSessions parameter 
The reactive implementation of max sessions does not keep track of expired sessions, therefore we do not need such parameter

Issue gh-6192
 2024-02-06 10:43:00 -03:00
Federico Herrera
c1adeef0da Add validation IpAddressMatcher 
Closes gh-13621
 2024-01-30 17:16:18 -07:00
Nermin Karapandzic
6e1bcfed11 Add argument resolver for SecurityContext 
Closes gh-13425
 2024-01-29 17:30:38 -07:00
Marcus Hert Da Coregio
06278157fa Merge branch '6.2.x' 
Closes gh-14471
 2024-01-17 16:16:40 -03:00
Marcus Hert Da Coregio
148e0b41d2 Merge branch '6.1.x' into 6.2.x 
Closes gh-14470
 2024-01-17 16:16:27 -03:00
Marcus Hert Da Coregio
ce5f5e6e33 Add native hint for CsrfTokenRequestAttributeHandler$SupplierCsrfToken 
Closes gh-14397
 2024-01-17 16:14:59 -03:00
Josh Cummings
d7a9a19161
Merge branch '6.2.x' 2023-12-18 11:47:39 -07:00
Josh Cummings
03e48905c7
Merge branch '6.1.x' into 6.2.x 
Closes gh-14346
 2023-12-18 11:47:23 -07:00
Josh Cummings
b855ccdb09
Merge branch '5.8.x' into 6.1.x 
Closes gh-14345
 2023-12-18 11:46:04 -07:00
Josh Cummings
eaaa813ede
Fix header value typo 
Closes gh-11948
 2023-12-18 10:42:50 -07:00
Rob Winch
465642828a Merge branch '6.2.x' 
Add HandlerMappingIntrospector Caching

Closes gh-14333
 2023-12-14 16:11:08 -06:00
Rob Winch
6dd29520b0 Merge branch '6.1.x' into 6.2.x 
Add HandlerMappingIntrospector Caching

Closes gh-14332
 2023-12-14 16:10:50 -06:00
Rob Winch
70dfb3d391 Add HandlerMappingIntrospector Caching 
Closes gh-14128
 2023-12-14 16:08:36 -06:00
Marcus Da Coregio
57ab15127a Add Max Sessions on WebFlux 
Closes gh-6192
 2023-12-11 09:48:34 -03:00
Marcus Hert Da Coregio
e920bfb3a2 Merge branch '6.1.x' 
Closes gh-14138
 2023-11-14 10:56:57 -03:00
Marcus Hert Da Coregio
921afba134 Use addCookie instead of addHeader in CookieCsrfTokenRepository 
By using addCookie we make sure that configured Tomcat's CookieProcessors are invoked

Closes gh-14131
 2023-11-14 10:56:24 -03:00
Josh Cummings
621ab3e7cb
Merge remote-tracking branch 'origin/6.1.x' 2023-11-07 17:33:09 -07:00
Josh Cummings
bcef8f98aa
Merge branch '6.0.x' into 6.1.x 
Closes gh-14117
 2023-11-07 17:32:51 -07:00
Josh Cummings
4990373cf9
Merge branch '5.8.x' into 6.0.x 
Closes gh-14116
 2023-11-07 17:22:36 -07:00
Josh Cummings
52675c80b3
Check For Null Exception Message 
Closes gh-13768
 2023-11-07 17:19:35 -07:00
Steve Riesenberg
447f40949c
Revert unnecessary merges on 6.1.x 
This commit removes unnecessary main-branch merges starting from
9f8db22b774fe78fef3598c07e184c371892c1c7 and adds the following
needed commit(s) that were made afterward:

- 4d6ff49b9d663d0f25454f3704a45c83b35da689
- ed6ff670d102736eea0ac360921c9015151ac630
- c823b007942a04a27d02c0a28bc2ad85e8790084
- 44fad21363bef1b06422be28c9bbfadde5e44804
 2023-10-31 15:22:15 -05:00
Steve Riesenberg
9db33f33c7
Revert unnecessary merges on 6.0.x 
This commit removes unnecessary main-branch merges starting from
8750608b5bca45525c99d0a41a20ed02de93d8c7 and adds the following
needed commit(s) that were made afterward:

- 5dce82c48bc0b174838501c5a111b2de70822914
 2023-10-31 15:11:45 -05:00
Josh Cummings
ed6ff670d1 Add Test 
Issue gh-13660
 2023-10-30 17:49:58 -06:00
Josh Cummings
5dce82c48b
Close Both Observations 
Depending on when a request is cancelled, the before and after observation
starts and stops may be called out of order due to the order in
which their doOnCancel handlers are invoked.

To address this, the before filter-wrapper now always closes both the
before observation and the after observation. Since the before filter-
wrapper wraps the entire request, this ensures that either that was
started is stopped, and either that has not been started yet cannot
inadvertently be started by any unexpected ordering of events that
follows.

Closes gh-14031
 2023-10-30 16:32:11 -06:00
Mark Chesney
d9399dfda0 Allow redirect status code to be customized 
Closes gh-12797
 2023-10-16 13:55:52 -06:00
Mark Chesney
2638555e53 Allow redirect strategy to be customized 
Closes gh-12795
 2023-10-16 13:55:52 -06:00
Marcus Da Coregio
7e9d707c7d Allow customize the AuthenticationConverter in BasicAuthenticationFilter 
Closes gh-13988
 2023-10-11 08:42:45 -03:00
Marcus Da Coregio
07b6c451fd Merge branch '6.1.x' 
Closes gh-13884
 2023-09-29 11:47:38 -03:00
Marcus Da Coregio
8adfc9b463 Merge branch '6.0.x' into 6.1.x 
Closes gh-13883
 2023-09-29 11:46:48 -03:00
Marcus Da Coregio
92c82191c9 Merge branch '5.8.x' into 6.0.x 
Closes gh-13882
 2023-09-29 11:46:00 -03:00
Marcus Da Coregio
64e2a2ff8b Apply updated Code Style 
Closes gh-13881
 2023-09-29 11:44:32 -03:00
Steve Riesenberg
ff374935fb
Verify ReactorContext when using Virtual Threads 
Closes gh-12791
 2023-09-25 12:01:31 -05:00
Steve Riesenberg
ecf8467cac
Fix tests on JDK 21 
Issue gh-12790
Issue gh-13811
 2023-09-19 10:39:04 -05:00
Steve Riesenberg
d48b8697bd
Fix mockito usage 
Issue gh-13810
 2023-09-19 10:39:04 -05:00
Marcus Da Coregio
a052e2effb Merge branch '6.1.x' 
Closes gh-13821
 2023-09-14 21:26:05 +01:00
Marcus Da Coregio
7fcf44f8d9 Merge branch '6.0.x' into 6.1.x 
Closes gh-13820
 2023-09-14 21:25:48 +01:00
Marcus Da Coregio
18e88366d2 Resolve The matchingRequestParameterName From The Query String 
Prior to this commit, the ServletRequest#getParameter method was used in order to verify if the matchingRequestParameterName was present in the request. That method has some side effects like interfering in the execution of the ServletRequest#getInputStream and ServletRequest#getReader method when the request is an HTTP POST (if those methods are invoked after getParameter, or vice-versa, the content won't be available). This commit makes that we only use the query string to check for the parameter, avoiding draining the request's input stream.

Closes gh-13731
 2023-09-14 21:25:25 +01:00
Tim te Beek
9df9cb5aed refactor: AssertJ best practices 
Use this link to re-run the recipe: https://app.moderne.io/recipes/builder/bGVuS?organizationId=RGVmYXVsdA%3D%3D

Co-authored-by: Moderne <team@moderne.io>
 2023-09-12 16:18:14 -06:00
Marcus Da Coregio
36a488a360 Merge branch '6.1.x' 
Closes gh-13797
 2023-09-12 16:22:31 +01:00
Marcus Da Coregio
b80a1de9fa Merge branch '6.0.x' into 6.1.x 
Closes gh-13796
 2023-09-12 16:22:04 +01:00
Marcus Da Coregio
db37bdfe94 Merge branch '5.8.x' into 6.0.x 
Closes gh-13795
 2023-09-12 16:21:48 +01:00
Marcus Da Coregio
ce012a4661 CookieRequestCache Should Preserve Request Locale 
Closes gh-13792
 2023-09-12 16:21:27 +01:00
Marcus Da Coregio
d23b231ac3 Merge branch '6.1.x' 
Closes gh-13760
 2023-08-31 10:16:30 -03:00
Marcus Da Coregio
b64d5395c5 Merge branch '6.0.x' into 6.1.x 
Closes gh-13759
 2023-08-31 10:16:07 -03:00
Marcus Da Coregio
629540f9d8 Merge branch '5.8.x' into 6.0.x 
Closes gh-13758
 2023-08-31 10:12:59 -03:00
Marcus Da Coregio
96d1763fc4 WWW-Authenticate header should not be added twice 
Closes gh-13737
 2023-08-31 10:07:10 -03:00
Josh Cummings
0d70a7f508
Merge branch '6.1.x' 
Closes gh-13748
 2023-08-28 17:04:25 -06:00
Josh Cummings
a4d8c62ad7
withHttpOnlyCookie defaults to false 
Closes gh-13659
 2023-08-28 16:58:28 -06:00
Olivier Vanekem
6353d90047
Add integrity attribute for signin.css 
Closes gh-13486
 2023-08-10 17:30:52 -05:00
Josh Cummings
82c0ddc56d Polish 
- Add Reactive equivalent
- Update copyright

Issue gh-13310
 2023-08-07 17:57:02 -06:00