Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
13,590 Commits 29 Branches 320 Tags 104 MiB
Commit Graph

2339 Commits

Author SHA1 Message Date
Josh Cummings 5814f614c7
Merge branch '6.0.x' 
Closes gh-13128
 2023-05-02 16:56:37 -06:00
Josh Cummings 46ad9c122e
Merge branch '5.8.x' into 6.0.x 
Closes gh-13127
 2023-05-02 16:56:06 -06:00
Josh Cummings e9a02bc6e9
RememberMeConfigurer Picks Up SecurityContextRepository 
Closes gh-13104
 2023-05-02 16:46:35 -06:00
Marcus Da Coregio 45efd48b93 Merge branch '6.0.x' 
Closes gh-13122
 2023-05-02 10:13:24 -03:00
Marcus Da Coregio 69338ecdfa Only Observe AuthenticationManager if it is not null 
Closes gh-13084
 2023-05-02 10:12:46 -03:00
SeasonPan a44e91d044 fix javadoc typo 2023-04-24 16:41:17 -06:00
Josh Cummings f261242db1
Merge branch '5.7.x' into 5.8.x 2023-04-24 16:33:29 -06:00
Ruslan Stelmachenko caa4093619 Fix javadoc for migration from WebSecurityConfigurerAdapter 2023-04-24 16:32:16 -06:00
Josh Cummings dd14bbb365
Merge branch '6.0.x' 2023-04-18 12:42:55 -06:00
Josh Cummings 1e25756ee6
Fix Import Order 2023-04-18 12:42:25 -06:00
Josh Cummings 68b198f091
Merge branch '6.0.x' 2023-04-18 12:20:44 -06:00
Josh Cummings 64542b4059
Polish X509 SecurityContextRepository 
Like Basic and Bearer authentication, X509 is
stateless by default. As such, it is better to not
pick up the global SecurityContextRepository bean.

The better fix is to change the default from
HttpSessionSecurityContextRepository to
RequestAttributeSecurityContextRepository.

Issue gh-13008
 2023-04-18 12:18:20 -06:00
Josh Cummings c79f04cd11
Merge branch '6.0.x' 
Closes gh-13063
 2023-04-17 17:07:32 -06:00
Josh Cummings c3479ddb45
Pick Up SecurityContextRepository 
Closes gh-13008
 2023-04-17 17:06:06 -06:00
Marcus Da Coregio 04b3d07319 Merge branch '6.0.x' 2023-04-17 07:30:54 -03:00
Marcus Da Coregio a484044591 Merge branch '5.8.x' into 6.0.x 2023-04-17 07:29:42 -03:00
Marcus Da Coregio 6cf8c53aaa Merge branch '5.7.x' into 5.8.x 2023-04-17 07:16:47 -03:00
Marcus Da Coregio 2d52fb8e4b Clear Repository on Logout 2023-04-17 06:47:57 -03:00
Marcus Da Coregio 82a149207d Deprecate .and() and non lambda DSL methods 
Closes gh-12629
 2023-04-14 15:50:58 -03:00
Marcus Da Coregio 1a4a2a9055 Merge branch '5.8.x' into 6.0.x 2023-04-14 13:32:10 -03:00
Marcus Da Coregio 54117d7d27 Fix test suffix to align with checkstyle 2023-04-14 13:29:15 -03:00
Marcus Da Coregio 01d1e20dc3 Deprecate shouldFilterAllDispatcherTypes 
Closes gh-12138
 2023-04-13 15:05:10 -03:00
Marcus Da Coregio 57e134cc5f Merge branch '6.0.x' 2023-03-22 10:12:28 -03:00
Marcus Da Coregio 67645b32f4 Merge branch '5.8.x' into 6.0.x 2023-03-22 10:12:11 -03:00
Marcus Da Coregio fd65dc6756 Merge branch '5.7.x' into 5.8.x 2023-03-22 10:08:17 -03:00
Martin Tarjányi 5eefe9dcff Fix typo in SessionManagementConfigurer javadoc 2023-03-22 10:07:44 -03:00
Josh Cummings ca9139b68f
Merge branch '6.0.x' 2023-03-20 17:02:15 -06:00
twosom cbb4e40166 fix typo in RequestCacheResultMatcher 2023-03-20 17:02:00 -06:00
Josh Cummings a4bc0a6f3c Polish 
- Add POST /login assertion
- Rearrange test and config class

Issue gh-12552
 2023-03-20 14:31:13 -06:00
Clayton Walker e2332d9620 Add disable to FormLoginDsl 
Closes gh-12552
 2023-03-20 14:31:13 -06:00
Josh Cummings a7562ad950
Update io.spring.javaformat to 0.0.38 
Closes gh-12891
 2023-03-20 10:44:35 -06:00
Josh Cummings 3ad6c6ce06 Use EntityId-lookup Components 
Closes gh-12880
 2023-03-17 18:00:02 -06:00
Josh Cummings 46452c0cae Add saml2Metadata 
Closes gh-11828
 2023-03-17 18:00:02 -06:00
hdeadman e0284a4503 Fix CAS packages for 4.0.1 and Jasig references 
Issue gh-11674
 2023-03-01 17:21:24 -03:00
hdeadman b4d3ac6665 Revert "Remove CAS module" 
This reverts commit caf4c471
 2023-03-01 17:21:23 -03:00
Josh Cummings f5a4b520d1
Merge branch '6.0.x' 
Closes gh-12781
 2023-02-24 11:04:03 -07:00
Josh Cummings bbd31f0e33
Defer ObservationRegistry Lookup 
Closes gh-12780
 2023-02-24 11:03:32 -07:00
Marcus Da Coregio 963a18a27f Merge branch '6.0.x' 
Closes gh-12778
 2023-02-23 15:17:47 -03:00
Marcus Da Coregio 7d22e02593 Merge branch '5.8.x' into 6.0.x 
Closes gh-12777
 2023-02-23 15:17:25 -03:00
Marcus Da Coregio 97ba596ca3 Merge branch '5.7.x' into 5.8.x 
Closes gh-12776
 2023-02-23 15:17:04 -03:00
Marcus Da Coregio 1c3ce1e401 Fix entity-id ignored in RelyingPartyRegistration XML config 
Closes gh-11898
 2023-02-23 15:16:40 -03:00
Josh Cummings afb5a4ae2c
Merge branch '6.0.x' 
Closes gh-12688
 2023-02-16 14:56:55 -07:00
Josh Cummings cedb9fd199
Merge branch '5.8.x' into 6.0.x 
Closes gh-12687
 2023-02-16 14:56:32 -07:00
Josh Cummings 0baf650f38
Merge branch '5.7.x' into 5.8.x 
Closes gh-12686
 2023-02-16 14:55:22 -07:00
Leonid Rozenblyum 000b4bc495 Fix NPE in HttpSecurity#addFilterBefore, HttpSecurity#addFilterAfter 
Before the fix, these methods would throw a NPE in case when the filter class passed as the second parameter, is not registered yet.

In particular, this exception can occur when mixing standard and custom DSL to register filters.

The fix doesn't change the situation that standard DSL for registration of filters cannot refer to filters that are registered via custom DSL even though those calls were done earlier.

It just provides more user-friendly error handling for this and most likely other scenarios of calls of HttpSecurity#addFilterBefore, HttpSecurity#addFilterAfter.

The error handling is implemented similarly to HttpSecurity#addFilter.

Closes gh-12637
 2023-02-16 14:54:44 -07:00
twosom cef13a6a16 Fix Javadoc Type Parameter 2023-02-15 15:31:09 -07:00
twosom c79dac49ca Fix Typo 2023-02-15 15:31:09 -07:00
Josh Cummings d91837eadc
Merge branch '6.0.x' 
Closes gh-12641
 2023-02-07 12:46:42 -07:00
Tobias Meurer 7dd5cc6082 Pick Up Custom SecurityContextRespository 
Closes gh-12579
 2023-02-07 12:46:12 -07:00
twosom c66370c092 Update javadoc in EnableWebSecurity 2023-02-07 12:45:23 -07:00