Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-05-30 00:32:14 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,920 Commits 38 Branches 345 Tags
Commit Graph

6920 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Rob Winch
9fe0f50e3c Revert "Add ClientRegistration from OpenID Connect Discovery" 
This reverts commit 0598d4773257d96ed323f98cbc7e78b55dfd516c.
 2018-05-18 09:20:51 -05:00
Rob Winch
6c45e4c8f4 Update to Gradle 4.7 2018-05-18 08:50:08 -05:00
Rob Winch
0598d47732 Add ClientRegistration from OpenID Connect Discovery 
Fixes: gh-4413
 2018-05-16 12:30:04 -05:00
Rob Winch
e82a1d151c Update to spring-build-conventions:0.0.17.RELEASE 
Fixes: gh-5352
 2018-05-15 21:23:25 -05:00
Josh Cummings
658acf0332
PlaceHolderAndELConfigTests groovy->java 
Issue: gh-4939
 2018-05-15 08:47:33 -06:00
Josh Cummings
428b0e45aa
HttpCorsConfigTests groovy->java 
Issue: gh-4939
 2018-05-15 08:47:33 -06:00
Josh Cummings
306e9ed91c
HttpConfigTests groovy->java 
Issue: gh-4939
 2018-05-15 08:47:33 -06:00
Rob Winch
aa2b96e4b8 Next Development Version 2018-05-14 21:58:51 -05:00
Rob Winch
88311897e5 Disable SNAPSHOT tests for release 2018-05-14 21:57:08 -05:00
Rob Winch
a1c93b1cce Release 5.1.0.M1 5.1.0.M1 2018-05-14 21:44:09 -05:00
Rob Winch
32e368d9b7 Single ClientRegistration redirects by default 
Fixes: gh-5339
 2018-05-14 16:38:13 -05:00
Rob Winch
f29e4cf91f LoginPageGeneratingWebFilter conditionally renders formLogin 
Issue: gh-4807
 2018-05-14 16:38:13 -05:00
Rob Winch
bc3467c118 Add oauth2login-webflux sample 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
7013c6fd76 Add OAuth2LoginSpec 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
23f4b9d3d1 Add OAuth2AuthorizationRequestRedirectWebFilter 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
de959dbff6 Add OAuth2ClientArgumentResolver 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
c1e9785a48 Add OAuth2LoginReactiveAuthenticationManager 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
7401cb2b51 Add ServerOAuth2LoginAuthenticationTokenConverter 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
3cd2ddf793 Add NimbusReactiveAuthorizationCodeTokenResponseClient 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
3220e9560a Add DefaultReactiveOAuth2UserService 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
b613b2d253 Add WebSessionOAuth2ReactiveAuthorizationRequestRepository 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
5e9c714ff0 Add InMemoryReactiveOAuth2AuthorizedClientService 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
a02b0c17f8 Add InMemoryReactiveClientRegistrationRepository 
Issue: gh-4807
 2018-05-11 04:19:50 -05:00
Rob Winch
ca9cd20832 Add DelegatingServerAuthenticationSuccessHandler 
Fixes: gh-5332
 2018-05-11 04:19:50 -05:00
Rob Winch
d874c4954e AuthenticationWebFilter handle empty Authentication 
Fixes: gh-5333
 2018-05-11 04:19:50 -05:00
Rob Winch
c696640276 OAuth2AuthorizationResponseUtils uses MultiMap 
Fixes: gh-5331
 2018-05-11 04:19:50 -05:00
Rob Winch
8fa6dd0f5b Revert "Fix SecuredAnnotationSecurityMetadataSourceTests -> Related SPR-16677" 
This reverts commit d4e459874a2d6c58f822dd8d907870954167641e.
 2018-05-11 04:19:50 -05:00
Rob Winch
e78457d3a1 Fix checkstyle for CsrfServerLogoutHandlerTests 
Issue: gh-4840
 2018-05-11 04:16:48 -05:00
Eric Deandrea
26f53a20b3 Add CsrfServerLogoutHandler 
Create a CsrfServerLogoutHandler which invalidates the current CsrfToken

Fixes gh-4840
 2018-05-11 04:16:48 -05:00
Eric Deandrea
21750242cf Add HttpStatusReturningServerLogoutSuccessHandler 
An HttpStatusReturningServerLogoutSuccessHandler is missing on the
reactive side - essentially the reactive equivalent of
HttpStatusReturningLogoutSuccessHandler.

Fixes gh-5081
 2018-05-11 04:03:21 -05:00
Eric Deandrea
bc9f8ec430 Add HttpStatusServerEntryPoint 
An HttpStatusServerEntryPoint is missing on the
reactive side - essentially the reactive equivalent of
HttpStatusEntryPoint.

Fixes gh-5082
 2018-05-11 04:00:49 -05:00
Rob Winch
53850978b2 Fixes: gh-5319 2018-05-08 08:54:57 -05:00
Rob Winch
a7a8ac756a Update to Spring Data Kay SR7 
Fixes: gh-5318
 2018-05-08 08:54:47 -05:00
Rob Winch
cf4e139aa0 Update to Spring 5.0.6 
Fixes: gh-5290
 2018-05-08 08:35:36 -05:00
Artyom Emelyanenko
902fc0f657 Fixed confused word in the class javadoc 2018-05-07 16:54:40 -05:00
Johnny Lim
b91ebf7090 Fix @since for MockEventListener 2018-05-07 16:53:26 -05:00
이경욱
26bc6be850 Support whitespace characters using RoleHierarchyImpl 2018-05-07 16:51:41 -05:00
이경욱
6adbe8dae0 Support whitespace characters using RoleHierarchyImpl 2018-05-07 16:51:41 -05:00
Robert Roth
4bfce2a591 Fixed typo in acl database schema appendix. 
Fixes gh-5204
 2018-05-07 16:44:32 -05:00
Robert Roth
fddc28ba3b Fixed typo in CSRF documentation. 
Fixes gh-4792
 2018-05-07 16:44:32 -05:00
Denys Ivano
fed15f2b01 Add accessDeniedHandler method to ExceptionHandlingSpec 
This allows to configure accessDeniedHandler in ExceptionTranslationWebFilter through ServerHttpSecurity.

Issue: gh-5257
 2018-05-07 16:22:29 -05:00
Eric Deandrea
b3c5bfe4db CookieServerCsrfTokenRepository fails when cookie is null/empty 
The CookieServerCsrfTokenRepository fails with an IllegalArgumentException
 when a cookie is present but the value is null or empty.

Fixes gh-5315
 2018-05-07 16:16:51 -05:00
Johnny Lim
9b42831c70 Suppress deprecation warnings in spring-security-crypto 2018-05-04 21:02:57 -05:00
Johnny Lim
2a0f529ee4 Use spring-projects for organization in GitHub URLs 2018-05-04 21:01:39 -05:00
Rob Winch
3ba15a16bf Polish CookieServerCsrfTokenRepository 
- Only do work if subscribed to
- use test naming conventions
- Refactor tests to avoid extracting
  - Uses String for member names which are not type safe
  - Uses long argument list which makes assertions difficult to read

Issue: gh-5083
 2018-05-04 16:54:48 -05:00
Rob Winch
37b1136c0c Remove CookieServerCsrfTokenRepository builder methods 
This is inconsistent with the rest of the code base.

Issue: gh-5083
 2018-05-04 16:54:48 -05:00
Eric Deandrea
1eaecc12ec Add CookieServerCsrfTokenRepository 
A cookie implementation of ServerCsrfTokenRepository (like CookieCsrfTokenRepository)
is missing. In this implementation it would be nice to allow the setting of the domain as well.

Fixes: gh-5083
 2018-05-04 16:54:48 -05:00
Alexander Münch
0570cebbce Avoid unnecessary grow of ArrayList 
Adapted ArrayList size in CacheControlHeadersWriter::createHeaders()
 2018-05-04 14:23:31 -05:00
XYUU
3740d33e64 The HttpHeader's ContentLength is a byte unit 2018-05-04 14:18:03 -05:00
XYUU
23dd136efb The HttpHeader's ContentLength is a byte unit 2018-05-04 14:18:03 -05:00