Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
10,196 Commits 33 Branches 337 Tags
Commit Graph

10196 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Rob Winch
67830f4111 Fix WebSessionReactiveSecurityRepository Supports Cache 
Fix the checkstyle for this feature

Closes gh-8422
 2022-05-03 21:10:07 -05:00
Rob Winch
c6eaa05fc5 WebSessionReactiveSecurityRepository Supports Cache 2022-05-03 16:40:38 -05:00
Rob Winch
7b6fd598d0 Multiple <authentication-manager> Do Not Duplicate Alias 
Previously, two authentication managers with different ids would duplicate
the alias to the global authentication manager. This would cause failures
for when allowBeanDefinitionOverriding = false.

This commit ensures that if the global authentication manager alias is
already set, then it is not set again. This means the first
<authentication-manager> will be used as the global AuthenticationManager.

Closes gh-8767
 2022-05-03 14:57:22 -05:00
Evgeniy Cheban
286e95893a @EnableMethodSecurity doesn't resolve Method Security annotations on interfaces through a Proxy 
Removed proxy unwrapping in case of resolving Method Security annotations,
this cause an issue when interfaces which are implemented by the proxy was skipped,
resulting in a missing security checks on those methods.

Closes gh-11175
 2022-05-03 13:19:35 -05:00
Eleftheria Stein
5ac5edc2e6 Detect UserDetailsService bean in X509 configuration 
Closes gh-11174
 2022-04-28 14:47:18 +02:00
Eleftheria Stein
d40c15e09e Update remember me Javadocs 
Describe the new behaviour for retrieving the UserDetailsService

Issue gh-11170
 2022-04-28 14:13:52 +02:00
Marcus Da Coregio
e94adedb94 Add shouldFilterAllDispatcherTypes to Kotlin DSL 
Closes gh-11153
 2022-04-28 08:19:20 -03:00
Eleftheria Stein
8e34cedcfe Detect UserDetailsService bean in remember me 
Closes gh-11170
 2022-04-28 12:43:13 +02:00
nor-ek
a3e7e54b70 Security Context Dsl 
Closes gh-11039
 2022-04-26 17:34:44 +02:00
Marcus Da Coregio
23594b3d01 Fix setServletContext not being called for AuthorizationManagerWebInvocationPrivilegeEvaluator 
Issue gh-10908
 2022-04-25 09:42:00 -03:00
Marcus Da Coregio
97acbcc2d0 Exclude duplicate issues from changelog 
Closes gh-11154
 2022-04-20 09:02:55 -03:00
Rob Winch
6c8f64d2bd Next Development Version 2022-04-18 14:55:35 -05:00
Rob Winch
e80b3cc5a2 Release 5.7.0-RC1 5.7.0-RC1 2022-04-18 14:50:15 -05:00
Rob Winch
8a54cea6f0 Revert to aspectj-plugin-6.4.1 
There appears to be an issue with publication of aspectj plugin, so
this commit reverts to a previous working version.

See https://github.com/freefair/gradle-plugins/issues/511
 2022-04-18 14:03:14 -05:00
Rob Winch
2b858f9371 Use gradlePluginPortal() 2022-04-18 14:02:21 -05:00
Rob Winch
f52bf98350 Update org.springframework to 5.3.19 
Closes gh-11152
 2022-04-18 13:38:21 -05:00
Rob Winch
e223d23e84 Update org.jetbrains.kotlinx to 1.6.1 
Closes gh-11151
 2022-04-18 13:38:19 -05:00
Rob Winch
6e5b2f23a9 Update org.jetbrains.kotlin to 1.6.20 
Closes gh-11150
 2022-04-18 13:38:17 -05:00
Rob Winch
0803a9e09d Update hibernate-entitymanager to 5.6.8.Final 
Closes gh-11149
 2022-04-18 13:38:14 -05:00
Rob Winch
359137dfae Update org.eclipse.jetty to 9.4.46.v20220331 
Closes gh-11148
 2022-04-18 13:38:12 -05:00
Rob Winch
a62bdd15b4 Update org.aspectj to 1.9.9.1 
Closes gh-11147
 2022-04-18 13:38:10 -05:00
Rob Winch
694ceb3fb1 Update io.rsocket to 1.1.2 
Closes gh-11146
 2022-04-18 13:38:08 -05:00
Rob Winch
0989652a33 Update io.projectreactor to 2020.0.18 
Closes gh-11144
 2022-04-18 13:38:03 -05:00
Rob Winch
70aa33b914 Update aspectj-plugin to 6.4.2 
Closes gh-11143
 2022-04-18 13:38:01 -05:00
Rob Winch
8d866f0088 Update com.nimbusds to 9.34 
Closes gh-11142
 2022-04-18 13:37:59 -05:00
Rob Winch
5606fd5004 Password for plugins 2022-04-18 13:28:27 -05:00
Rob Winch
aaf78330b1 ForceEagerSessionCreationFilter 
Closes gh-11109
 2022-04-15 14:16:35 -05:00
Marcus Da Coregio
7fea639a43 Add Option to Filter All Dispatcher Types 
Closes gh-11092
 2022-04-14 15:58:00 -03:00
Rob Winch
6e6d472da4 Add test support for SecurityContextHolderFilter 
Issue gh-9635
 2022-04-13 10:53:11 -05:00
Marcus Da Coregio
86c3ce7efc Update What's New 2022-04-13 11:24:36 -03:00
Rob Winch
3a9b080bbe Deprecate loadContext(RequestResponseHolder) 
Fix gh-11032
 2022-04-12 16:36:08 -05:00
Josh Cummings
147ab42440
Revert "Pick up AuthorizationManager Bean" 
This reverts commit 32b83aae63db382d3107ad3eb68259715bbd88da.

Issue gh-11067
 2022-04-12 09:32:09 -06:00
Rob Winch
39b0620a84 Add DisableUrlRewritingFilter 
Closes gh-11084
 2022-04-08 16:13:44 -05:00
Josh Cummings
32b83aae63
Pick up AuthorizationManager Bean 
Closes gh-11067
Closes gh-11068
 2022-04-08 10:08:33 -06:00
Marcus Da Coregio
bb0c336ae8 Deprecate Saml2AuthenticationRequestFactory 
Closes gh-11080
 2022-04-08 09:32:03 -03:00
Josh Cummings
b39f213e64
Revert "Add AuthorizationManager to Messaging" 
This reverts commit 77a6e014a9c3da916559ae7d1707b09db3ab1194.
 2022-04-07 17:39:34 -06:00
Josh Cummings
77a6e014a9
Add AuthorizationManager to Messaging 
Closes gh-11076
 2022-04-07 17:39:10 -06:00
Pascal Verdage
b71d9bfdc2 Fix typo 2022-04-06 11:09:41 +02:00
Josh Cummings
057f4a86d5
Add default strategy constructor 
Closes gh-11059
 2022-04-05 17:29:47 -06:00
Josh Cummings
0be2a03741
Polish SecurityContextChannelInterceptorTests 
Issue gh-10973
 2022-04-05 17:11:39 -06:00
Josh Cummings
66213e5b2e
Add Default Test to HttpBasicConfigurerTests 
Issue gh-10973
 2022-04-05 17:11:39 -06:00
Josh Cummings
47c8676be7
Polish Saml2LoginConfigurerTests 
Issue gh-10973
 2022-04-05 17:11:38 -06:00
Jihoon Cha
af7f943325
Prevent instantiation of DelegatingPasswordEncoder if idPrefix contains idSuffix 
Closes gh-10933
 2022-04-05 09:16:44 -05:00
Eleftheria Stein
725a57fccc Remove blocking call from ExceptionTranslationWebFilter 
This also means that the exception message is no longer retrieved from a MessageSource. This is consistent with the other WebFilters.

Closes gh-10864
 2022-04-05 13:12:17 +02:00
Simone Giannino
ea373645e5 Update saganCreateRelease property referenceDocUrl 
- Updated saganCreateRelease task with the new referenceDocUrl for reference documentation

Closes gh-11016
 2022-04-01 13:07:32 -03:00
Johannes Graf
d4931ecf2b
use okta as registration id 
looks like `ping` is some registration id used in the past.
 2022-03-30 14:40:25 -06:00
Josh Cummings
c175118f62
Use RequestMatcherEntry 
Closes gh-11046
 2022-03-30 14:31:11 -06:00
Josh Cummings
04c483387e
Document Authorization Events 
Issue gh-9288
 2022-03-29 16:03:20 -06:00
Josh Cummings
061f69eb70
Polish Authorization Event Support 
- Added spring-security-config support
- Renamed classes
- Changed contracts to include the authenticated user and secured
object
- Added method security support

Issue gh-9288
 2022-03-29 16:03:19 -06:00
Parikshit Dutta
bd9434882f
Add authorization events 
Closes gh-9288
 2022-03-29 15:44:21 -06:00