Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,015 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

7015 Commits

Author SHA1 Message Date
Rob Winch 9cef054db7 Add scripts/s101.sh 2018-07-14 22:40:44 -05:00
Rob Winch 86b5150d88 Spring Version null for NullPointerException 2018-07-14 22:21:10 -05:00
Rob Winch 2856f93140 Jenkinsfile add --refresh-dependencies JDK specific builds 2018-07-13 21:17:23 -05:00
Rob Winch d9d9879909 Add JdbcUserDetailsManager(DataSource) constructor 
Fixes: gh-5512
 2018-07-13 15:59:13 -05:00
mhyeon.lee 1d920680bf Enhance OAuth2AccessToken to be serializable 
Change the TokenType to Serializable
so that the OAuth2AccessToken can be serialized.
(org.springframework.security.oauth2.core.OAuth2AccessToken.TokenType)

Fixes gh-5492
 2018-07-13 11:36:11 -04:00
mhyeon.lee 2af69f08a9 Fix oauth2login loginProcessingUrl NPE for java config 
Java Config http.oauth2Login().loginProcessingUrl("url"); throws NPE.
Override loginProcessingUrl method and cached config url.
Then when the config is initialized,
it calls the super method to complete the configuration.

Fixes gh-5488
 2018-07-13 09:34:17 -04:00
Johnny Lim 522bfe9e05 Polish Javadoc in ServerHttpSecurity 2018-07-11 08:01:49 -05:00
Rob Winch a5ae714ed5 NimbusReactiveJwtDecoder propagates errors looking up keys 
Fixes: gh-5490
 2018-07-06 16:39:59 -05:00
Mahan Hashemizadeh 555512e1f0 HstsSpec methods return this 
HstsSpec methods maxAge and includeSubdomains use to return void
which broke using it as a fluent API.

The methods now return HstsSpec which fixes this issue.

Fixes: gh-5483
 2018-07-05 13:58:45 -05:00
Josh Cummings 998d1a064b Close Nimbus Information Leak 
This commit captures and remaps the exception that Nimbus throws
when a PlainJWT is presented to it.

While the surrounding classes are likely only used today by the
oauth2Login flow, since they are public, we'll patch them at this
point for anyone who may be using them directly.

Fixes: gh-5457
 2018-07-03 10:28:31 -05:00
Rob Winch f7dc76de5f Fix OAuth2BodyExtractorsTests for JDK9 
Issue: gh-5475
 2018-07-02 16:29:07 -05:00
Rob Winch ba489af354 Fix OAuth2AuthorizedClientExchangeFilterFunctionTests on JDK9 
Issue: gh-4371
 2018-07-02 16:16:16 -05:00
Rob Winch 127a32bd81 Fix checkstyle OAuth2AuthorizedClientExchangeFilterFunctionTests 
Issue: gh-4371
 2018-07-02 15:47:24 -05:00
Rob Winch 73689ecfd7 Fix Imports of OAuth2AccessTokenResponse 
Issue: gh-5474
 2018-07-02 15:46:33 -05:00
Rob Winch 0116c65c0e OAuth2AuthorizedClientExchangeFilterFunction Refresh Support 2018-07-02 14:14:17 -05:00
Rob Winch 1f1fb1a801 Add MockExchangeFunction getResponse 
This allows setting up the mock

Issue: gh-5386
 2018-07-02 12:43:00 -05:00
Rob Winch 0910e04bdf MockExchangeFunction Support Multiple Requests 
Issue: gh-5386
 2018-07-02 12:42:54 -05:00
Rob Winch e27e1cd637 Add OAuth2AccessTokenResponseBodyExtractor 
This externalizes converting a OAuth2AccessTokenResponse from a
ReactiveHttpInputMessage.

Fixes: gh-5475
 2018-07-02 12:41:44 -05:00
Rob Winch ab61732e17 Add OAuth2AccessTokenResponse.withResponse 
Add ability to build a new OAuth2AccessTokenResponse from another
OAuth2AccessTokenResponse.

Fixes: gh-5474
 2018-07-02 12:37:45 -05:00
Josh Cummings 1d0bb08398
InterceptUrlConfigTests groovy->java 
Issue: gh-4939
 2018-07-02 10:39:24 -06:00
Josh Cummings d7ebe5be86
Rename createJwkSet method typo 
Actually, it is creating a claims set, just a typo.

Issue: gh-5330
 2018-06-28 11:31:21 -06:00
Rob Winch 8ef4a5ba92 Add NimbusReactiveJwtDecoder RSAPublicKey Support 
Fixes: gh-5460
 2018-06-25 21:30:49 -05:00
Joe Grandja d32aa3c6d6 Validate sub claim in UserInfo Response 
Fixes gh-5447
 2018-06-25 16:44:04 -04:00
Joe Grandja ec970c9b8e Improve message for NoUniqueBeanDefinitionException in OAuth2ClientConfigurerUtils 2018-06-25 15:20:02 -04:00
Joe Grandja b3a38fb0f6 OAuth2ClientWebMvcSecurityConfiguration handles multiple OAuth2AuthorizedClientService @Bean 
Fixes gh-5321
 2018-06-25 15:20:02 -04:00
Rob Winch 81350ca3c3 Add NimbusJwkReactiveJwtDecoderTests 
Issue: gh-5330
 2018-06-25 12:13:08 -05:00
Rob Winch 7b406e89e4 Fixes in decoder 2018-06-25 10:08:13 -05:00
Rob Winch a5f7713d9f adding a test 2018-06-25 10:03:53 -05:00
Rob Winch 069847ad3f Update to Spring Boot 2.0.3.RELEASE 
Fixes: gh-5454
 2018-06-20 15:48:41 -05:00
Josh Cummings b437ce03b0
HttpHeadersConfigTests groovy->java 
Also, slightly modified the approach when asserting headers. In the
previous incarnation, the tests would assert an exact match against
the list of headers, which is more brittle than confirming that the
expected headers are there and the unexpected ones are not.

Now, should Spring Security add other headers that are outside the
purview of the secure headers configuration, the assertions won't
break.

Issue: gh-4939
 2018-06-20 07:53:22 -06:00
Joe Grandja 6081451fa3 Polish OAuth2Configurer 2018-06-19 06:10:30 -04:00
Rob Winch 3573167d77 ServerHttpSecurity oauth leverages OidcReactiveAuthenticationManager 
Issue: gh-5330
 2018-06-18 16:08:07 -05:00
Rob Winch d521d5e066 Add OidcReactiveAuthenticationManager 
Fixes: gh-5330
 2018-06-18 16:08:07 -05:00
Rob Winch f7a2a41241 Add OidcReactiveOAuth2UserService 
Issue: gh-5330
 2018-06-18 16:08:07 -05:00
Rob Winch 5ed319b11a Add NimbusReactiveJwtDecoder 
Issue: gh-5330
 2018-06-18 16:08:07 -05:00
Rob Winch 0d23aad911 Add ReactiveRemoteJWKSource 
Issue: gh-5330
 2018-06-18 16:08:07 -05:00
Rob Winch 7898ce2ded Add JWKContextJWKSource 
Issue: gh-5330
 2018-06-18 16:08:07 -05:00
Rob Winch aa0ea4a8eb Add JWKContext 
Issue: gh-5330
 2018-06-18 16:06:32 -05:00
Rob Winch 923e23d05b Add JWKSelectorFactory 
Issue: gh-5330
 2018-06-18 16:06:26 -05:00
Rob Winch 3ddde473f2 Extract OidcTokenValidator 
Issue: gh-5330
 2018-06-18 16:06:19 -05:00
Rob Winch adb8c60173 Extract OidcUserRequestUtils 
This logic is shared by both reactive and non-reactive clients.

Issue: gh-5330
 2018-06-18 16:06:01 -05:00
Rob Winch 4d1c8f26c5 Add DelegatingReactiveAuthenticationManager 
Fixes: gh-5448
 2018-06-18 16:03:41 -05:00
Rob Winch a3db6fc993 Polish OidcUserService 
Fixes: gh-5449
 2018-06-18 16:03:41 -05:00
Rob Winch c3177a84a3 Override toString() in all RequestMatcher 
It makes it easier to debug having custom
toString().

Fixes: gh-5446
 2018-06-15 11:27:28 -05:00
Rob Winch 71986e5f42 Fix htmlunit 
Fixes: gh-5426
 2018-06-12 17:12:52 -05:00
Rob Winch 136f0d94f5 Update to Selenium 3.12.0 
Fixes: gh-5427
 2018-06-12 17:12:52 -05:00
Rob Winch 7bcba97626 Update to htmlunit-driver:2.31.0 
Fixes: gh-5428
 2018-06-12 17:12:52 -05:00
Rob Winch f6dca7cf6e Update to hibernate-validator:6.0.10.Final 
Fixes: gh-5429
 2018-06-12 17:12:52 -05:00
Rob Winch 30fbc5557a Update to Hibernate 5.2.17 
Fixes: gh-5430
 2018-06-12 17:12:52 -05:00
Rob Winch fc024b994c Update to hsqldb:2.4.1 
Fixes: gh-5431
 2018-06-12 17:12:52 -05:00