Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-25 00:46:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
10,471 Commits 34 Branches 337 Tags
Commit Graph

10471 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Steve Riesenberg
9861769b02 Remove references to WebSecurityConfigurerAdapter in EnableWebSecurity 
Closes gh-11277
 2022-07-29 17:42:20 -05:00
Steve Riesenberg
9d248c7185
Skip workflows on forks of spring-security 2022-07-28 14:17:42 -05:00
Steve Riesenberg
865bf23ecc
Use cache and user.name system property on Windows 2022-07-28 13:00:15 -05:00
Ulrich Grave
4393c2ea02
Add hash-based Content-Security-Policy for SAML pages 
Closes gh-11631
 2022-07-27 18:04:39 -06:00
Steve Riesenberg
f86d30f4a1
Only run prerequisites job if on upstream repo 2022-07-27 16:01:16 -05:00
Steve Riesenberg
dc59d12405
Simplify dependency graph 2022-07-27 16:01:15 -05:00
Steve Riesenberg
bdeb32854e
Use Spring Gradle Build Action 
Closes gh-11630
 2022-07-27 16:01:15 -05:00
Marcus Da Coregio
7f2c797086 Add Deprecated annotation to WebSecurity#securityInterceptor 
Closes gh-11634
 2022-07-27 14:39:56 -03:00
Steve Riesenberg
a72c5a55db
Revert "Remove @Configuration from webflux config examples" 
This reverts commit aec9effb88f70151912971b2f8b05dc4a9afaa2f.
 2022-07-26 16:46:01 -05:00
Joshua Sattler
aec9effb88 Remove @Configuration from webflux config examples 2022-07-26 16:34:10 -05:00
Rob Winch
9fbe6b7731 Fix Snapshot Sources/Javadoc 
This commit merges a workaround to an issue in JFrog's Gradle plugin
which causes SNAPSHOT javadoc and sources to become out of sync and thus
prevents users from being able to download either.

Closes gh-10602
 2022-07-26 15:49:52 -05:00
Rob Winch
b6258fe1f9 Apply ArtifactoryPlugin in RootProjectPlugin 
Issue gh-10602
 2022-07-26 15:42:51 -05:00
Rob Winch
8aa6fbfed2 ArtifactoryPlugin only apply default publications for MavenPublishPlugin 
Issue gh-10602
 2022-07-26 15:42:51 -05:00
Rob Winch
e3ed6b3539 Update to build-info-extractor-gradle:4.29.0 
Issue gh-10602
 2022-07-26 15:42:50 -05:00
Desmond Silveira
3b9f5ac77b
"Well-Know" should be "Well-Known" 2022-07-26 15:41:38 -05:00
Steve Riesenberg
3f4efedd23
Polish gh-11367 2022-07-26 15:33:34 -05:00
naveen
8f93a7fc94
Set permissions for GitHub actions 
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.

- Included permissions for the action.

https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
 2022-07-26 15:33:33 -05:00
Marcus Da Coregio
b76966638d Use Spring Framework 6.0.0-SNAPSHOT 2022-07-25 14:24:55 -03:00
Marcus Da Coregio
0c549ee147 Use SHA256 by default in Remember Me 
Closes gh-11520
 2022-07-25 10:33:12 -03:00
Yuriy Savchenko
db9d60e82d Add Kotlin example for WebTestClient setup docs 
Closes gh-9998
 2022-07-22 13:47:07 -03:00
Josh Cummings
e092ec780f
Merge Same-named Attribute Elements 
Closes gh-11042
 2022-07-20 18:33:24 -06:00
github-actions[bot]
bf138c5154 Next development version 2022-07-18 17:05:25 +00:00
github-actions[bot]
79912a0a44 Release 6.0.0-M6 6.0.0-M6 2022-07-18 13:29:25 -03:00
Marcus Da Coregio
7e2b344a66 Update org.springframework to 6.0.0-M5 
Closes gh-11594
 2022-07-18 13:28:22 -03:00
Marcus Da Coregio
860c669666 Revert "Release 6.0.0-M6" 
This reverts commit c8fa238cfc5c9052efac7fdcb873d3748c227340.
 2022-07-18 13:18:34 -03:00
github-actions[bot]
c8fa238cfc Release 6.0.0-M6 2022-07-18 15:27:55 +00:00
Joe Grandja
b5b3ddd6b4 Deprecate Resource Owner Password Credentials grant 
Closes gh-11590
 2022-07-15 16:45:00 -04:00
Joe Grandja
6ee1643bae Remove deprecations in ServerOAuth2AuthorizedClientExchangeFilterFunction 
Closes gh-11589
 2022-07-15 15:13:40 -04:00
Joe Grandja
054791c26c Remove deprecations in ServletOAuth2AuthorizedClientExchangeFilterFunction 
Closes gh-11588
 2022-07-15 15:12:39 -04:00
Joe Grandja
65db5fa028 Remove deprecations in JwtAuthenticationConverter 
Closes gh-11587
 2022-07-15 14:43:08 -04:00
Joe Grandja
1ac6054e6f Remove deprecations in OidcUserInfo 
Closes gh-11586
 2022-07-15 14:42:54 -04:00
Joe Grandja
6b41faaf55 Remove deprecations in ClaimAccessor 
Closes gh-11585
 2022-07-15 14:42:33 -04:00
Joe Grandja
0859da5590 Remove deprecations in OAuth2AuthorizedClientArgumentResolver 
Closes gh-11584
 2022-07-15 14:42:03 -04:00
Joe Grandja
743b6a5bfe Remove deprecations in OidcClientInitiatedLogoutSuccessHandler 
Closes gh-11565
 2022-07-15 14:04:09 -04:00
Joe Grandja
cae22867b2 Remove deprecated allowMultipleAuthorizationRequests 
Closes gh-11564
 2022-07-15 13:50:30 -04:00
Marcus Da Coregio
1f26f8c419 Update spring-data-jpa to 3.0.0-M5 
Closes gh-11540
 2022-07-15 14:37:24 -03:00
Marcus Da Coregio
afc62bf6af Update reactor-netty to 1.1.0-M4 
Closes gh-11526
 2022-07-15 14:36:41 -03:00
Marcus Da Coregio
ee11c3ade7 Exclude JavadocPackageCheck from Spring Checks 
Issue gh-11422
 2022-07-15 14:10:53 -03:00
Anbu Sampath
0c14a36ad6 Update Kotlin to 1.7.10 
Closes gh-11374, gh-11534
 2022-07-15 14:10:52 -03:00
Marcus Da Coregio
881b823a2e Update spring-ldap-core to 2.4.1 
Closes gh-11541
 2022-07-15 14:08:51 -03:00
Marcus Da Coregio
210e0022cb Update jsonassert to 1.5.1 
Closes gh-11539
 2022-07-15 14:08:51 -03:00
Marcus Da Coregio
305e96e40c Update htmlunit-driver to 2.63.0 
Closes gh-11538
 2022-07-15 14:08:51 -03:00
Marcus Da Coregio
bbccc48d2f Update junit-bom to 5.9.0-RC1 
Closes gh-11536
 2022-07-15 14:08:51 -03:00
Marcus Da Coregio
5d00bef49b Update org.jetbrains.kotlinx to 1.6.4 
Closes gh-11535
 2022-07-15 14:08:51 -03:00
Marcus Da Coregio
6032c70ed9 Update hibernate-core-jakarta to 5.6.10.Final 
Closes gh-11533
 2022-07-15 14:07:29 -03:00
Marcus Da Coregio
6e8dff9bb0 Update org.eclipse.jetty to 11.0.11 
Closes gh-11532
 2022-07-15 14:07:27 -03:00
Marcus Da Coregio
3bde9f6196 Update assertj-core to 3.23.1 
Closes gh-11531
 2022-07-15 14:07:24 -03:00
Marcus Da Coregio
30c4d78653 Update htmlunit to 2.63.0 
Closes gh-11530
 2022-07-15 14:07:22 -03:00
Marcus Da Coregio
6f3bdba23b Update jakarta.servlet.jsp-api to 3.1.0 
Closes gh-11529
 2022-07-15 14:07:19 -03:00
Marcus Da Coregio
368f35a322 Update jakarta.annotation-api to 2.1.1 
Closes gh-11528
 2022-07-15 14:07:16 -03:00