Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-24 16:05:15 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,330 Commits 34 Branches 337 Tags
Commit Graph

1476 Commits

Author SHA1 Message Date
Eleftheria Stein
a9a1f8ee53 Allow configuration of form login through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
758397f102 Allow configuration of headers through nested builder 
Issue: gh-5557
 2019-07-09 15:35:37 -04:00
Eleftheria Stein
6986cf3ef3 Allow configuration of csrf through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Eleftheria Stein
1a31376dda Allow configuration of exception handling through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Eleftheria Stein
92314b0956 Allow configuration of logout through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Eleftheria Stein
d66d895e60 Migrate ServletApiConfigurerTests groovy->java 
Issue: gh-4939
 2019-07-04 12:14:49 -04:00
Clement Ng
491da9db03 Added OAuth2TokenAttributes to wrap attributes 
To simplify access to OAuth 2.0 token attributes

Fixes gh-6498
 2019-07-02 07:45:56 -06:00
Josh Cummings
ee8182dceb
NamespaceSessionManagementTests groovy->java 
Issue: gh-4939
 2019-07-02 07:34:36 -06:00
Tadaya Tsuyukubo
7782e29a58 Allow custom ReactiveAuthenticationManager for basic and form auth 
Prior to this change, "HttpBasicSpec#authenticationManager" and
"FormLoginSpec#authenticationManager" were always overridden by
"ServerHttpSecurity#authenticationManager".

This commit makes sure override only happens when custom authentication
manager was not specified.

Fixes: gh-5660
 2019-06-28 11:04:21 -05:00
Eleftheria Stein
39ba1006ba Migrate FormLoginConfigurerSpec groovy->java 
Issue: gh-4939
 2019-06-27 11:53:32 -04:00
Eleftheria Stein
3c240d0ce3 Migrate DefaultLoginPageConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-24 10:38:20 -04:00
Eleftheria Stein
12da990b6b Allow configuration of HTTP basic through nested builder 
Issue: gh-5557
Fixes: gh-6885
 2019-06-20 13:58:13 -05:00
Joe Grandja
6e76df8f1d Revert OAuth2AuthorizationCodeGrantWebFilter works with /{action}/ 
Issue #5856
Commit 385bdfc055854581e9e9f671d11f86a978c27c42

NOTE: This commit 'partially' reverts #5856. Only the ServerWebExchangeMatcher for OAuth2LoginSpec is reverted.

Fixes gh-6890
 2019-06-19 16:06:38 -04:00
Joe Grandja
06943d2d39 Revert OAuth2LoginAuthenticationFilter should ignore authenticated requests 
Issue #5915
Commit 93ca45540556c4e8ade7f8948883f94fb0851ebb

Fixes gh-6890
 2019-06-19 16:06:38 -04:00
Rafiullah Hamedy
f6ed1db702 Introduced ReactiveAuthenticationManagerResolver 
Suitable for multi-tenant reactive applications needing to branch
authentication strategies based on request details.
 2019-06-13 08:52:19 -06:00
Eleftheria Stein
759e47ba84 Migrate OpenIDLoginConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-12 15:23:47 -04:00
Eleftheria Stein
e6ace0891f Migrate X509ConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-11 17:31:53 -04:00
Eleftheria Stein
6ad46da426 Migrate ExpressionUrlAuthorizationConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-11 15:46:37 -04:00
Eleftheria Stein
56b716d9f7 Migrate SessionManagementConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-11 09:24:42 -04:00
Eleftheria Stein
1ec040e554 Disable bean proxying in configuration classes 
Fixes gh-6967
 2019-06-10 20:40:06 -05:00
Eleftheria Stein
371a3b9c7f Migrate CorsConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-10 16:36:38 -04:00
Eleftheria Stein-Kousathana
c4dd800653
Merge pull request #6944 from eleftherias/gh-4939-channel-security-groovy-to-java 
Migrate ChannelSecurityConfigurerTests groovy->java
 2019-06-10 15:28:42 -04:00
Vishal Raj
b6e8997e95 Updates OAuth2ResourceServer configuration tests 
Refactores collapsed imports
 2019-06-07 11:56:03 -06:00
Eleftheria Stein
d285c6ab4c Migrate JeeConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-07 12:05:25 -05:00
Eleftheria Stein
8e6db95048 Fix HttpSecurity Javadoc for jee() method 
Fixes: gh-6958
 2019-06-07 11:21:05 -05:00
Daniel Meier
fcd8a38f0b Add success handler modification of OAuth2LoginSpec 
Add the ability to modify the success handler used in OAuth2LoginSpec. The
default success handler remains unchanged.

Closes #6863
 2019-06-05 13:25:34 -04:00
Eleftheria Stein
abe7da6b85 Migrate RememberMeConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-04 15:12:11 -05:00
Eleftheria Stein
06d3b60947 Replace bean method calls with injection 
This is so that our configuration classes do not rely on CGLIB to proxy bean methods.

Fixes gh-6818
 2019-06-03 15:45:28 -05:00
Eleftheria Stein
4f042a4ff1 Migrate ChannelSecurityConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-03 11:09:49 -04:00
Eleftheria Stein
be651d9d16 Migrate CsrfConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 13:18:55 -06:00
Eleftheria Stein
6148eef689 Migrate SecurityContextConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 12:07:28 -06:00
Eleftheria Stein
16b0d782f4 Migrate HeadersConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 11:57:01 -06:00
Eleftheria Stein
7806ac21aa Migrate RequestMatcherConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 11:48:34 -06:00
Florian Aumeier
9fe8949883 Add @transient to OAuth2IntrospectionAuthenticationToken 
fixes gh-6829
 2019-05-29 08:42:09 -06:00
Eleftheria Stein
e15922322e Migrate LogoutConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-27 22:53:51 -06:00
Eleftheria Stein
d660084538 Migrate HttpBasicConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-23 09:24:58 -06:00
Eleftheria Stein
f5f965b6aa Fix JavaDoc for defaultSuccessUrl 
Fixes gh-3337
 2019-05-17 10:50:30 -05:00
Josh Cummings
1ed9e3a1c6
Resource Server AuthenticationManager 
Making the authentication manager for jwt() and opaqueToken()
configurable.

Fixes: gh-6832
Fixes: gh-6849
 2019-05-07 17:04:51 -06:00
Joe Grandja
5aa50500cf oauth2Login does not auto-redirect for XHR request 
Fixes gh-6812
 2019-05-02 16:04:09 -04:00
Tadaya Tsuyukubo
aef3f514fe Set "rolePrefix" in ReactiveMethodSecurityConfiguration 
Currently, `GrantedAuthorityDefaults` is not considered in
`ReactiveMethodSecurityConfiguration`.
This commit updates the configuration to be aware of
`GrantedAuthorityDefaults` and update `rolePrefix` when the bean is
available.

Also, use the same instance of `DefaultMethodSecurityExpressionHandler`
when constructing `ExpressionBasedAnnotationAttributeFactory`.
 2019-05-02 10:46:27 -05:00
Josh Cummings
cf0c5f9026
Various NamespaceHttp*Tests groovy->java 
Issue: gh-4939
 2019-04-29 23:36:06 -06:00
Josh Cummings
b1195e7789 Opaque Token Intermediate Type 
Introducing OAuth2TokenIntrospectionClient and also
ReactiveOAuth2TokenIntrospectionClient as configuration points.

The DSL looks in the application context for these types in the same
way it looks for JwtDecoder and ReactiveJwtDecoder, and exposes
similar configuration methods.

Fixes: gh-6632
 2019-04-29 13:39:53 -06:00
Alexey Nesterov
9a67441507 Add x509 support for Reactive Security 
[gh #5038]
 2019-04-26 12:15:18 -05:00
Joe Grandja
5aacd0c955 Expose bean setters in @Configuration used by @EnableWebFluxSecurity 
Fixes gh-6624
 2019-04-23 11:46:09 -04:00
Josh Cummings
1c25fe26c9 Introduce Support for Reading RSA Keys 
Fixes: gh-6494
 2019-04-13 19:39:11 -06:00
Dan Zheng
570eb01733 review phase1 2019-04-13 19:22:44 -06:00
Dan Zheng
678e0b19e0 Introduce @CurrentSecurityContext for method arguments 2019-04-13 19:22:44 -06:00
Denis Babochenko
21f7148e7a Update filters documentation 
Fixes: gh-5553
 2019-04-13 19:21:10 -06:00
Josh Cummings
7e8aadeb96 Multi-tenancy for Resource Server 
Fixes: gh-5351
 2019-03-29 15:00:48 -06:00
Joe Grandja
4e9c37b1ae Manual URL Cleanup 2019-03-29 13:24:11 -04:00