Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-26 13:53:14 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,145 Commits 55 Branches 348 Tags
Commit Graph

17145 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Rob Winch
9c3b11914d webauthn registerCredential returns transports 
The webauthn support previously did not pass the transports to webauthn4j.
This meant that the result of
Webauthn4jRelyingPartyOperations.registerCredential did not have any
transports either.

This commit ensures that the transports are passed to the webauth4j lib
and then returned in the result of registerCredential.

Closes gh-16084
 2024-12-04 15:22:26 -06:00
Harpreet Singh
cc2506b0c1 Fix: Correct OpenSAML 5.x Documentation 
- Fixed invalid XML tags in dependency examples.
- Corrected typo in `<artifactId>` ("opensaml-saml-imple" -> "opensaml-saml-impl").
- Excluded all OpenSAML 4.x dependencies.
- Removed redundant dependencies (`opensaml-core-api` and `opensaml-core-impl`) as they are transitively included in `opensaml-saml-api` and `opensaml-saml-impl`.

Closes gh-16191
 2024-12-04 13:42:03 -07:00
DingHao
dc82a6e97e Remove the cache since UniqueSecurityAnnotationScanner has cached annotations internally 2024-12-04 09:18:12 -07:00
dependabot[bot]
5329030d27 Bump org.gradle.wrapper-upgrade from 0.11.4 to 0.12 
Bumps org.gradle.wrapper-upgrade from 0.11.4 to 0.12.

---
updated-dependencies:
- dependency-name: org.gradle.wrapper-upgrade
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-03 19:21:54 -08:00
Harpreet Singh
c97edf2bd0 Fix typo in documentation: change 'select the write' to 'select the right. Closes gh-16178 2024-12-02 11:01:36 -06:00
dependabot[bot]
e947678424 Bump org.htmlunit:htmlunit from 4.6.0 to 4.7.0 
Bumps [org.htmlunit:htmlunit](https://github.com/HtmlUnit/htmlunit) from 4.6.0 to 4.7.0.
- [Release notes](https://github.com/HtmlUnit/htmlunit/releases)
- [Commits](https://github.com/HtmlUnit/htmlunit/compare/4.6.0...4.7.0)

---
updated-dependencies:
- dependency-name: org.htmlunit:htmlunit
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-01 20:15:00 -08:00
dependabot[bot]
24a42a9b02 Bump org.seleniumhq.selenium:htmlunit3-driver from 4.26.0 to 4.27.0 
Bumps [org.seleniumhq.selenium:htmlunit3-driver](https://github.com/SeleniumHQ/htmlunit-driver) from 4.26.0 to 4.27.0.
- [Release notes](https://github.com/SeleniumHQ/htmlunit-driver/releases)
- [Commits](https://github.com/SeleniumHQ/htmlunit-driver/compare/4.26.0...4.27.0)

---
updated-dependencies:
- dependency-name: org.seleniumhq.selenium:htmlunit3-driver
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-01 20:14:36 -08:00
dependabot[bot]
27e2640250 Bump com.webauthn4j:webauthn4j-core 
Bumps [com.webauthn4j:webauthn4j-core](https://github.com/webauthn4j/webauthn4j) from 0.28.2.RELEASE to 0.28.3.RELEASE.
- [Release notes](https://github.com/webauthn4j/webauthn4j/releases)
- [Changelog](https://github.com/webauthn4j/webauthn4j/blob/master/github-release-notes-generator.yml)
- [Commits](https://github.com/webauthn4j/webauthn4j/compare/0.28.2.RELEASE...0.28.3.RELEASE)

---
updated-dependencies:
- dependency-name: com.webauthn4j:webauthn4j-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-01 20:14:23 -08:00
github-actions[bot]
ea53a4999b Merge branch '6.3.x' 2024-12-02 01:09:38 +00:00
github-actions[bot]
ebb75f5e90 Merge branch '5.8.x' into 6.3.x 2024-12-02 01:09:38 +00:00
dependabot[bot]
a6c3d123ed Bump @antora/collector-extension from 1.0.0-rc.1 to 1.0.0 in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-01 17:08:47 -08:00
github-actions[bot]
4fadcad26a Merge branch '6.3.x' 2024-12-02 00:57:32 +00:00
dependabot[bot]
324de7af93 Bump @antora/collector-extension from 1.0.0-rc.1 to 1.0.0 in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-01 16:56:46 -08:00
dependabot[bot]
fd5c5a8105 Bump @antora/collector-extension from 1.0.0-rc.1 to 1.0.0 in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-01 16:41:08 -08:00
dependabot[bot]
ff7dbb4585 Bump com.fasterxml.jackson:jackson-bom from 2.18.1 to 2.18.2 
Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.18.1 to 2.18.2.
- [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.1...jackson-bom-2.18.2)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson:jackson-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-27 19:57:19 -08:00
dependabot[bot]
e4155ba246 Bump org.jfrog.buildinfo:build-info-extractor-gradle 
Bumps [org.jfrog.buildinfo:build-info-extractor-gradle](https://github.com/jfrog/build-info) from 4.33.22 to 4.33.23.
- [Release notes](https://github.com/jfrog/build-info/releases)
- [Changelog](https://github.com/jfrog/build-info/blob/master/RELEASE.md)
- [Commits](https://github.com/jfrog/build-info/compare/build-info-gradle-extractor-4.33.22...build-info-gradle-extractor-4.33.23)

---
updated-dependencies:
- dependency-name: org.jfrog.buildinfo:build-info-extractor-gradle
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-26 19:53:42 -08:00
github-actions[bot]
77529996a8 Merge branch '6.3.x' 2024-11-27 03:45:35 +00:00
dependabot[bot]
f361ee72e8 Bump org.jfrog.buildinfo:build-info-extractor-gradle 
Bumps [org.jfrog.buildinfo:build-info-extractor-gradle](https://github.com/jfrog/build-info) from 4.33.22 to 4.33.23.
- [Release notes](https://github.com/jfrog/build-info/releases)
- [Changelog](https://github.com/jfrog/build-info/blob/master/RELEASE.md)
- [Commits](https://github.com/jfrog/build-info/compare/build-info-gradle-extractor-4.33.22...build-info-gradle-extractor-4.33.23)

---
updated-dependencies:
- dependency-name: org.jfrog.buildinfo:build-info-extractor-gradle
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-26 19:44:55 -08:00
Harpreet Singh Bhullar
f5eccf7cd3
Fix OAuth2 documentation: Corrected OAuth2ClientHttpRequestInterceptor usage 
Closes gh-16165
 2024-11-26 12:18:19 -06:00
Steve Riesenberg
14be74051e
Merge branch '6.3.x' 
Closes gh-16176
 2024-11-26 12:12:49 -06:00
Steve Riesenberg
21ac1022ef
Merge branch '6.2.x' into 6.3.x 
Closes gh-16175
 2024-11-26 12:12:18 -06:00
dependabot[bot]
c16b2c262d Bump org.seleniumhq.selenium:selenium-java from 4.26.0 to 4.27.0 
Bumps [org.seleniumhq.selenium:selenium-java](https://github.com/SeleniumHQ/selenium) from 4.26.0 to 4.27.0.
- [Release notes](https://github.com/SeleniumHQ/selenium/releases)
- [Commits](https://github.com/SeleniumHQ/selenium/compare/selenium-4.26.0...selenium-4.27.0)

---
updated-dependencies:
- dependency-name: org.seleniumhq.selenium:selenium-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-25 20:01:41 -08:00
Josh Cummings
2b5a2eef82
Address Observation Bean Name Collisions 
Closes gh-16161
 2024-11-25 13:26:52 -07:00
Josh Cummings
a55021539a
Add RSocket and WebFlux Observation Tests 
Issue gh-11989
Issue gh-11990
 2024-11-25 13:26:52 -07:00
Harpreet Singh
68d91916e2 Polish Dark Mode for CSRF and Method Security diagrams 
Closes gh-16151
 2024-11-26 01:53:56 +05:30
Daniel Garnier-Moiroux
46fe0124ba Add RuntimeHints for webauthn Javascript resource 2024-11-25 13:06:50 -06:00
dependabot[bot]
409d552ae0 Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-24 17:15:06 -08:00
github-actions[bot]
2de19cd9fb Merge branch '6.3.x' 2024-11-25 01:02:34 +00:00
dependabot[bot]
753f8aecc9 Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-24 17:01:49 -08:00
github-actions[bot]
748a521dd5 Merge branch '6.3.x' 2024-11-25 00:49:12 +00:00
github-actions[bot]
84e4c9bc42 Merge branch '5.8.x' into 6.3.x 2024-11-25 00:49:12 +00:00
dependabot[bot]
1dbaa08cd4 Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-24 16:48:27 -08:00
dependabot[bot]
1d916c35d1 Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-24 16:27:14 -08:00
Josh Cummings
315aafd464
Merge remote-tracking branch 'origin/6.3.x' 2024-11-22 17:23:43 -07:00
DingHao
e8ba039a61 Delay initialization AuthenticationProvider in Global Authentication 2024-11-22 17:22:14 -07:00
James Howe
aa635b02a8 Another spelling issue 2024-11-22 17:18:46 -07:00
James Howe
d1e6806464 Spelling error in opensaml.adoc 2024-11-22 17:18:46 -07:00
dependabot[bot]
026b500cc3 Bump org.hibernate.orm:hibernate-core from 6.6.2.Final to 6.6.3.Final 
Bumps [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) from 6.6.2.Final to 6.6.3.Final.
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/6.6.3/changelog.txt)
- [Commits](https://github.com/hibernate/hibernate-orm/compare/6.6.2...6.6.3)

---
updated-dependencies:
- dependency-name: org.hibernate.orm:hibernate-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-21 19:53:00 -08:00
Martin Tarjányi
24ccac3555 Fix typo in documentation 2024-11-21 15:18:01 -07:00
Steve Riesenberg
77233daae7
Merge branch '6.3.x' 
Closes gh-16139
 2024-11-20 15:55:57 -06:00
Steve Riesenberg
4b41f8cb5b
Merge branch '6.2.x' into 6.3.x 
Closes gh-16138
 2024-11-20 15:54:29 -06:00
Steve Riesenberg
0eb6acde96
Polish gh-16133 2024-11-20 15:50:29 -06:00
Kai Zander
73f3f75712
Always return current ClientRegistration in loadAuthorizedClient 
This changes `InMemoryOAuth2AuthorizedClientService.loadAuthorizedClient`
(and its reactive counterpart) to always return `OAuth2AuthorizedClient`
instances containing the current `ClientRegistration` as obtained from
the `ClientRegistrationRepository`.

Before this change, the first `ClientRegistration` instance was cached,
with the effect that any changes made in the `ClientRegistrationRepository`
(such as a new client secret) would not have taken effect.

Closes gh-15511
 2024-11-20 15:50:29 -06:00
github-actions[bot]
93ce7e97be Next development version 2024-11-20 21:29:24 +00:00
github-actions[bot]
59b7b55cf8 Release 6.4.1 6.4.1 2024-11-20 20:49:22 +00:00
Tran Ngoc Nhan
b896a74669 Resolve Observation Bean Name Collisions 
Closes gh-16011
 2024-11-20 13:28:06 -07:00
Josh Cummings
91832bfc8e Add EnableWebSecurity + EnableWebSocketSecurity Test 
Issue gh-16011
 2024-11-20 13:28:06 -07:00
Josh Cummings
30c9860fc3
Add What's New Link to Landing Pages 
- to the README
- to the Reference index page
 2024-11-18 15:51:25 -07:00
Josh Cummings
4787efb40b
Update What's New 2024-11-18 15:51:24 -07:00
Steve Riesenberg
b712c24a88
Merge branch '6.3.x' 2024-11-18 16:19:24 -06:00