Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,055 Commits 33 Branches 337 Tags
Commit Graph

11055 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Josh Cummings
28424f8ae5
Correct input validation for 31 rounds 
Closes gh-11470
 2022-07-11 14:51:51 -06:00
Rob Winch
a7d21f1b34 Document sagan Release tasks require read:org scope 
Closes gh-11423
 2022-06-21 14:49:38 -05:00
Joe Grandja
d3a024786b Next Development Version 2022-06-20 15:05:30 -04:00
Joe Grandja
fa4c5449e7 Release 5.6.6 5.6.6 2022-06-20 14:50:24 -04:00
Joe Grandja
2a3845a7ed Update org.opensaml:opensaml-core4 to 4.1.1 
Closes gh-11420
 2022-06-20 14:50:24 -04:00
Joe Grandja
ff96a7b5ad Update spring-ldap-core to 2.3.8.RELEASE 
Closes gh-11419
 2022-06-20 14:41:13 -04:00
Joe Grandja
c37ff42234 Update org.springframework.data to 2021.1.5 
Closes gh-11418
 2022-06-20 14:41:10 -04:00
Joe Grandja
0a00d84838 Update org.springframework to 5.3.21 
Closes gh-11417
 2022-06-20 14:41:08 -04:00
Joe Grandja
96c6751a1d Update hibernate-entitymanager to 5.6.9.Final 
Closes gh-11416
 2022-06-20 14:41:05 -04:00
Joe Grandja
8ee9c32788 Update io.projectreactor to 2020.0.20 
Closes gh-11414
 2022-06-20 14:41:00 -04:00
Joe Grandja
7a5fb9eaf7 Update jackson-bom to 2.13.3 
Closes gh-11411
 2022-06-20 14:40:53 -04:00
Joe Grandja
8cbb972cef Add dependency update exclusion for spring-javaformat-checkstyle 2022-06-20 14:27:40 -04:00
Josh Cummings
539a11d0a4
Encode postLogoutRedirectUri query params 
Closes gh-11379
 2022-06-16 16:13:42 -06:00
Zhivko Delchev
e97c5a533b Reverse content type check 
When MultipartFormData is enabled currently the CsrfWebFilter compares
the content-type header against MULTIPART_FORM_DATA MediaType which
leads to NullPointerExecption when there is no content-type header.
This commit reverse the check to compare the MULTIPART_FORM_DATA
MediaType against the content-type which contains null check and avoids
the exception.

closes gh-11204
Closes gh-11205
 2022-06-06 15:47:35 -05:00
shirohoo
e0fa644b08 Fix typo in BasicLookupStrategy Javadoc 
Closes gh-11336
 2022-06-06 14:16:28 -05:00
Rob Winch
592db9180d Enable BackportBot on 5.6.x 2022-06-06 14:16:28 -05:00
André Luis Gomes
aca3fc2412 Update opaque-token.adoc 
Fixing yaml sample in Servlet and Reactive pages
 2022-06-01 08:51:44 -03:00
Claudio Consolmagno
ff71fcbcad
Use 'md:' prefix in EntityDescriptor XML 
Create the EntityDescriptor object with
EntityDescriptor.DEFAULT_ELEMENT_NAME instead of
EntityDescriptor.ELEMENT_QNAME. That ensures the EntityDescriptor tag
is marshalled to xml with the 'md:' prefix, consistent with all other
metadata tags.

Closes #11283
 2022-05-31 17:12:55 -06:00
Claudio Consolmagno
07f9afe057
Use 'md:' prefix in EntityDescriptor XML 
Create the EntityDescriptor object with
EntityDescriptor.DEFAULT_ELEMENT_NAME instead of
EntityDescriptor.ELEMENT_QNAME. That ensures the EntityDescriptor tag
is marshalled to xml with the 'md:' prefix, consistent with all other
metadata tags.

Closes #11283
 2022-05-31 17:11:02 -06:00
Josh Cummings
d7077b441a
Correct access(String) reference 
Closes gh-11280
 2022-05-27 15:00:15 -06:00
Josh Cummings
101f11ba94
Improve ContextConfiguration Docs 
Point to updated Spring Reference

Issue gh-10934
 2022-05-27 13:12:56 -06:00
Josh Cummings
18b903f6e3
Polish ExtendWith Docs 
Use spring-framework-reference-url placeholder

Issue gh-10934
 2022-05-27 13:12:56 -06:00
nor-ek
038266a94f
Update JUnit 5 annotations in documentation 
- replace Before with BeforeEach
- replace RunWith with ExtendWith

Closes gh-10934
 2022-05-27 13:12:55 -06:00
Evgeniy Cheban
cf559ab224
Some Security Expressions cause NPE when used within Query annotation 
Added trustResolver, roleHierarchy, permissionEvaluator, defaultRolePrefix
fields to SecurityEvaluationContextExtension.

Closes gh-11196
Closes gh-11290
 2022-05-26 17:44:28 -05:00
Juny Tse
649428b49a
Use Base64 encoder with no CRLF in output for SAML 2.0 messages 
Closes gh-11262
 2022-05-25 12:06:27 -06:00
Steve Riesenberg
33b74c7893
Next development version 2022-05-18 14:17:03 -05:00
Steve Riesenberg
e70752954a
Release 5.5.8 5.5.8 2022-05-18 11:52:45 -05:00
Steve Riesenberg
0355e960d7
Next development version 2022-05-18 11:52:05 -05:00
Steve Riesenberg
fdad14af63
Release 5.6.5 5.6.5 2022-05-18 11:03:25 -05:00
Rob Winch
cfc057b629 StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:50:10 -05:00
Rob Winch
d94639a1bb StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:49:01 -05:00
Rob Winch
29b2b7a977 StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:14:30 -05:00
Rob Winch
66d1cd592a StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:04:46 -05:00
Rob Winch
077c9e0b3e StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 08:56:57 -05:00
Josh Cummings
084f1fe59c
Release 5.4.11 2022-05-16 14:29:52 -06:00
Josh Cummings
8a64084c82
Add to GitHub Actions CI 2022-05-16 14:29:27 -06:00
Rob Winch
353fac48da Next Development Version 2022-05-16 15:11:34 -05:00
Marcus Da Coregio
b8b0661d73
Lock Dependencies for Release 2022-05-16 14:01:51 -06:00
Josh Cummings
957768310d
Point SAML Sample at Okta 2022-05-16 14:01:51 -06:00
Josh Cummings
5f7fc0eb26
Improve Upgrading 
Closes gh-11259
 2022-05-16 11:08:00 -06:00
Rob Winch
dc648cf79f Next Developement Version 2022-05-16 11:51:06 -05:00
Rob Winch
ada3337104 Release 5.5.7 5.5.7 2022-05-16 11:37:33 -05:00
Josh Cummings
0bd7daf899 Improve Upgrading 2022-05-16 11:37:33 -05:00
Rob Winch
c2d2914a4f Release 5.6.4 5.6.4 2022-05-16 11:36:26 -05:00
Josh Cummings
a40f73521c Improve Upgrading 2022-05-16 11:36:26 -05:00
Rob Winch
0dcb592b03 AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 11:30:08 -05:00
Rob Winch
0ece0e6012 Extract rejectNonPrintableAsciiCharactersInFieldName 
Closes gh-11234
 2022-05-16 11:30:08 -05:00
Rob Winch
7f121e82f4 AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 11:28:24 -05:00
Rob Winch
9059fb3fc7 Extract rejectNonPrintableAsciiCharactersInFieldName 
Closes gh-11234
 2022-05-16 11:28:19 -05:00
Rob Winch
1a9ec8a756 AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 10:18:51 -05:00