Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-20 21:38:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,863 Commits 33 Branches 337 Tags
Commit Graph

8863 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Josh Cummings
a402c3884a
Add ConditionValidator Support 
Closes gh-8769
 2020-08-04 13:05:23 -06:00
Josh Cummings
d9d8253603
Polish OpenSamlAuthenticationProvider 
Issue gh-8769
 2020-08-04 13:05:23 -06:00
Joe Grandja
3bc0b8c144 Revert "Fix snapshot build failure related to reactor-netty" 
This reverts commit f37714a26fb2cc8a93cb1d5259a00c4c0934dd59.
 2020-08-04 14:24:32 -04:00
Joe Grandja
f37714a26f Fix snapshot build failure related to reactor-netty 
Closes gh-8909
 2020-08-04 14:17:03 -04:00
Joe Grandja
8146b1fdda Deprecate CustomUserTypesOAuth2UserService 
Closes gh-8908
 2020-08-04 13:23:44 -04:00
Joe Grandja
73e550a867 Polish gh-8906 2020-08-04 11:16:26 -04:00
Joe Grandja
0ed919f072 Deprecate ClientRegistration.redirectUriTemplate 
Closes gh-8906
 2020-08-04 11:03:29 -04:00
Joe Grandja
a0c10f2df6 Allow for custom ClientRegistration.clientAuthenticationMethod 
Closes gh-8903
 2020-08-04 08:48:56 -04:00
Joe Grandja
11cc94afd8 Deprecate ImplicitGrantConfigurer 
Closes gh-8902
 2020-08-04 07:26:58 -04:00
Joe Grandja
4e5a304a8a Remove use of Mono.deferWithContext() 
Closes gh-8901
 2020-08-04 07:26:32 -04:00
Dávid Kováč
dfaf251970 Resolve Bearer token after subscribing to publisher 
Bearer token was resolved immediately after calling method convert. In situations when malformed token was provided or authorization header and access token query param were present in request exception was thrown instead of signalling error.
After this change Bearer token is resolved on subscription and invalid states are handled by signaling error to subscriber.

Closes gh-8865
 2020-08-03 11:04:21 -05:00
Rob Winch
e770a21589 Revert "Fix build error related to Mono.deferWithContext()" 
This reverts commit 104d785210efc310b990e5206cca8acd25ecb35d.
 2020-07-31 13:02:25 -05:00
Josh Cummings
f6e47830fe
Remove unused import 
Issue gh-8589
 2020-07-31 08:37:32 -06:00
Josh Cummings
90e5f45e1f
Polish to Avoid NPE 
Issue gh-5648

Co-authored-by: MattyA <mat.auburn@gmail.com>
 2020-07-30 16:56:41 -06:00
Josh Cummings
b2728059ae
Additional Jwt Validation Debug Messages 
Closes gh-8589

Co-authored-by: MattyA <mat.auburn@gmail.com>
 2020-07-30 16:56:37 -06:00
Josh Cummings
a32de931d3
Polish Javadoc 
Issue gh-6019
 2020-07-28 16:04:06 -06:00
Joe Grandja
104d785210 Fix build error related to Mono.deferWithContext() 
Issue gh-8881
 2020-07-27 14:24:01 -04:00
Eleftheria Stein-Kousathana
31d5b5068c Kotlin OAuth2 client WebFlux samples 
Issue gh-8172
 2020-07-27 09:34:37 +02:00
Josh Cummings
79dca94ce1
Simplify Tests 
Issue gh-8772
 2020-07-24 17:44:10 -06:00
Joakim Löfgren
eccd929819 Update SimpleSaml2AuthenticatedPrincipal class name 
Rename it to DefaultSaml2AuthenticatedPrincipal to be more in line with
the respective class in the OAuth2 module.

Also make the class public to be able to whitelist the SAML2 auth classes
in Jackson object mappers for deserialization in e.g. Spring Session MongoDB.

Closes gh-8852
 2020-07-23 16:53:32 -06:00
Josh Cummings
08849e2652
Remove OpenSamlImplementation 
Closes gh-8775
 2020-07-23 16:09:02 -06:00
Josh Cummings
5779121da6
OpenSamlAuthenticationRequestFactory Uses OpenSAML Directly 
Closes gh-8774
 2020-07-23 16:09:02 -06:00
Josh Cummings
2e2da06bdb
OpenSamlAuthenticationProvider Uses OpenSAML Directly 
Closes gh-8773
 2020-07-23 16:09:02 -06:00
Josh Cummings
77128a94e2
Add OpenSamlRelyingPartyRegistrationBuilderHttpMessageConverter 
Closes gh-8877
 2020-07-23 15:32:22 -06:00
Josh Cummings
2276fcf34a
Add OpenSamlInitializationService 
Closes gh-8772
 2020-07-23 15:03:16 -06:00
Josh Cummings
43f2904059
Add ACS Location Default 
Closes gh-8876
 2020-07-23 15:03:16 -06:00
Eleftheria Stein-Kousathana
7c4a706865 Throw exception if specified ldif does not exist 
Closes gh-7791

Co-Authored-By: Shay Dratler <dratler@users.noreply.github.com>
 2020-07-22 18:50:03 +02:00
Artur Otrzonsek
b22c50c4a8 Reactive SwitchUserWebFilter for user impersonation 
Closes gh-8599
 2020-07-22 16:05:31 +02:00
Evgeniy Cheban
0a2006ebec Support custom filter in Server Kotlin DSL 
Closes gh-8783
 2020-07-22 05:32:16 -04:00
Josh Cummings
b61bf49d07
Polish gh-8824 2020-07-21 10:47:37 -06:00
Dávid Kováč
37aa5f9b7c Introduce AuthenticationConverterServerWebExchangeMatcher 
AuthenticationConverterServerWebExchangeMatcher is ServerWebExchangeMatcher implementation based on AuthenticationConverter which matches if ServerWebExchange can be converted to Authentication.
It can be used as a matcher where SecurityFilterChain should be matched based on used authentication method.
BearerTokenServerWebExchangeMatcher was replaced by this matcher.

Closes gh-8824
 2020-07-21 10:11:57 -06:00
Dennis Neufeld
de572be8e9 Add OAuth2AuthenticationException to allowlist 
Add mixins for
- OAuth2AuthenticationException
- OAuth2Error

Closes gh-8797
 2020-07-21 10:14:45 -04:00
Eleftheria Stein
e902be7ab9 Use String to specify custom HTTP method in test 
Closes gh-8592
 2020-07-21 15:47:11 +02:00
Eleftheria Stein
fb936e2780 Polish CookieRequestCacheTests 
Issue gh-8817
Issue gh-8820
 2020-07-21 15:02:21 +02:00
majian
41f26b768a Improve request matching logic when using cookie 
- Repair request cache deleted by mistake
- Fix RequestCache throw exception and error redirect.

Closes gh-8820
Closes gh-8817
 2020-07-21 15:02:21 +02:00
Josh Cummings
97ccbe5df2
Polish Saml2X509Credential Factories 
Issue gh-8789
 2020-07-20 15:50:16 -06:00
Thomas Vitale
3978cc591f
Add Static Factories to Saml2X509Credential 
- Add static factories to Saml2X509Credential for verification, encryption,
signing, and decryption.
- Add unit tests for new static factories in Saml2X509Credential.

Fixes gh-8789
 2020-07-20 15:29:48 -06:00
Josh Cummings
cc44a93333
Polish WebSecurityConfigurerAdapter JavaDoc 
Issue gh-8784
 2020-07-20 15:21:18 -06:00
Romil Patel
956a6ee00c
WebSecurityConfigurerAdapter JavaDoc 
Closes gh-8784
 2020-07-20 15:21:18 -06:00
Josh Cummings
56928f61f0
Separate RP and AP Credentials 
Closes gh-8788
 2020-07-20 14:19:33 -06:00
Rivaldi
87cd1d73df Update README.adoc 
Fix typo
 2020-07-20 04:32:45 -04:00
Josh Cummings
a54e77a3c3
Saml2AuthenticationToken takes a RelyingPartyRegistration 
Closes gh-8845
 2020-07-17 12:19:27 -06:00
Josh Cummings
44ec061f05
Add AssertionConsumerServiceBinding 
Closes gh-8776
 2020-07-16 16:22:38 -06:00
Josh Cummings
2c960d2ad1
Add AuthnRequestConsumerResolver 
Closes gh-8141
 2020-07-16 14:53:22 -06:00
Josh Cummings
2e5c87dc75
Restore Binary Compatibility 
Issue gh-8835
 2020-07-16 11:10:20 -06:00
Josh Cummings
b02e344c73
Move Saml2Error 
Move to core package

Closes gh-8835
 2020-07-15 20:09:45 -06:00
Josh Cummings
db0d863701
Fix commons-codec Build Error 
Issue gh-8836
 2020-07-15 20:09:45 -06:00
Josh Cummings
d3bea02124
Polish Bearer Token Padding 
Issue gh-8502
 2020-07-15 18:14:39 -06:00
kothasa
d38dabac02
Bearer Token Padding 
Closes gh-8502
 2020-07-15 18:13:51 -06:00
Joe Grandja
7cc6509200 Polish gh-8669 2020-07-15 11:52:42 -04:00