Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-07-08 11:32:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
11,916 Commits 38 Branches 348 Tags
Commit Graph

11916 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Evgeniy Cheban
48ef3f4719
Some Security Expressions cause NPE when used within Query annotation 
Added trustResolver, roleHierarchy, permissionEvaluator, defaultRolePrefix
fields to SecurityEvaluationContextExtension.

Closes gh-11196
Closes gh-11289
 2022-05-26 17:43:50 -05:00
Evgeniy Cheban
495028eb85 Some Security Expressions cause NPE when used within Query annotation 
Added trustResolver, roleHierarchy, permissionEvaluator, defaultRolePrefix
fields to SecurityEvaluationContextExtension along with setter methods to override defaults.

Closes gh-11196
 2022-05-26 14:35:40 -05:00
Juny Tse
649428b49a
Use Base64 encoder with no CRLF in output for SAML 2.0 messages 
Closes gh-11262
 2022-05-25 12:06:27 -06:00
Juny Tse
d0da160007
Use Base64 encoder with no CRLF in output for SAML 2.0 messages 
Closes gh-11262
 2022-05-25 12:02:13 -06:00
Juny Tse
16664dcdbd
Use Base64 encoder with no CRLF in output for SAML 2.0 messages 
Closes gh-11262
 2022-05-25 11:43:50 -06:00
Josh Cummings
53e509f0c6
Remove duplicate check 
Closes gh-11192
 2022-05-23 16:00:15 -06:00
Josh Cummings
b51c71c3b3
Use original query string to verify signature 
Closes gh-11235
 2022-05-23 13:56:28 -06:00
Josh Cummings
5adb6e25a3
Correctly encode query parameters 
Issue gh-11235
 2022-05-20 17:46:40 -06:00
Evgeniy Cheban
362f15534e createEvaluationContext should defer lookup of Authentication 
- Added createEvaluationContext method that accepts Supplier<Authentication>
- Refactored classes that use EvaluationContext to use lazy initialization of Authentication

Closes gh-9667
 2022-05-18 17:34:14 -06:00
Steve Riesenberg
33b74c7893
Next development version 2022-05-18 14:17:03 -05:00
Steve Riesenberg
e70752954a
Release 5.5.8 5.5.8 2022-05-18 11:52:45 -05:00
Steve Riesenberg
0355e960d7
Next development version 2022-05-18 11:52:05 -05:00
Steve Riesenberg
fdad14af63
Release 5.6.5 5.6.5 2022-05-18 11:03:25 -05:00
Rob Winch
4caf53e96d Next Development Version 2022-05-18 10:06:25 -05:00
Rob Winch
22a1c99b9e Release 5.7.1 5.7.1 2022-05-18 10:00:11 -05:00
Rob Winch
7d97839235 StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:53:29 -05:00
Rob Winch
cfc057b629 StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:50:10 -05:00
Rob Winch
d94639a1bb StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:49:01 -05:00
Rob Winch
29b2b7a977 StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:14:30 -05:00
Rob Winch
66d1cd592a StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 09:04:46 -05:00
Rob Winch
077c9e0b3e StrictHttpFirewall allows CJKV characters 
Closes gh-11264
 2022-05-18 08:56:57 -05:00
Rob Winch
e2eed33eca Add StrictHttpFirewall.allow* new lines and separators 
Issue gh-11264
 2022-05-17 22:24:31 -05:00
Ulrich Grave
9b874bcde2 Add relyingPartyRegistrationId to AbstractSaml2AuthenticationRequest 
Closes gh-11195
 2022-05-17 16:21:54 -06:00
Rob Winch
5bf478e72e Fix Formatting 
Issue gh-11264
 2022-05-17 16:16:02 -05:00
Rob Winch
e0a6a9efa9 StrictHttpFirewall allows CJKV characters 
Issue gh-11264
 2022-05-17 15:53:18 -05:00
Josh Cummings
084f1fe59c
Release 5.4.11 2022-05-16 14:29:52 -06:00
Josh Cummings
8a64084c82
Add to GitHub Actions CI 2022-05-16 14:29:27 -06:00
Rob Winch
353fac48da Next Development Version 2022-05-16 15:11:34 -05:00
Marcus Da Coregio
b8b0661d73
Lock Dependencies for Release 2022-05-16 14:01:51 -06:00
Josh Cummings
957768310d
Point SAML Sample at Okta 2022-05-16 14:01:51 -06:00
Josh Cummings
5f7fc0eb26
Improve Upgrading 
Closes gh-11259
 2022-05-16 11:08:00 -06:00
Rob Winch
dc648cf79f Next Developement Version 2022-05-16 11:51:06 -05:00
Rob Winch
5155719877 Next Development Version 2022-05-16 11:44:53 -05:00
Rob Winch
ada3337104 Release 5.5.7 5.5.7 2022-05-16 11:37:33 -05:00
Josh Cummings
0bd7daf899 Improve Upgrading 2022-05-16 11:37:33 -05:00
Rob Winch
c2d2914a4f Release 5.6.4 5.6.4 2022-05-16 11:36:26 -05:00
Josh Cummings
a40f73521c Improve Upgrading 2022-05-16 11:36:26 -05:00
Rob Winch
3497b0ed68 Release 5.7.0 5.7.0 2022-05-16 11:35:18 -05:00
Josh Cummings
1229b27b87 Improve Upgrading 2022-05-16 11:35:18 -05:00
Rob Winch
0dcb592b03 AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 11:30:08 -05:00
Rob Winch
0ece0e6012 Extract rejectNonPrintableAsciiCharactersInFieldName 
Closes gh-11234
 2022-05-16 11:30:08 -05:00
Rob Winch
7f121e82f4 AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 11:28:24 -05:00
Rob Winch
9059fb3fc7 Extract rejectNonPrintableAsciiCharactersInFieldName 
Closes gh-11234
 2022-05-16 11:28:19 -05:00
Rob Winch
538252cf07 AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 10:22:30 -05:00
Rob Winch
04ca7ef91b Extract rejectNonPrintableAsciiCharactersInFieldName 
Closes gh-11234
 2022-05-16 10:22:30 -05:00
Rob Winch
1a9ec8a756 AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 10:18:51 -05:00
Rob Winch
4967a0394f Extract rejectNonPrintableAsciiCharactersInFieldName 
Closes gh-11234
 2022-05-16 10:18:51 -05:00
Rob Winch
c6461d61ba AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 10:18:12 -05:00
Rob Winch
4405cf18f3 Extract rejectNonPrintableAsciiCharactersInFieldName 
Closes gh-11234
 2022-05-16 10:18:11 -05:00
Rob Winch
70863952ae AntRegexRequestMatcher Optimization 
Closes gh-11234
 2022-05-16 10:17:44 -05:00