spring-security

mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00

Author	SHA1	Message	Date
Josh Cummings	bb43174752	Fix Bean Name Issue gh-14480	2024-04-04 13:30:30 -06:00
Josh Cummings	3f7355abc6	Synthesize all annotation attributes Issue gh-14601	2024-04-04 13:30:29 -06:00
Josh Cummings	6f07d63938	Support SpEL Returning AuthorizationDecision Closes gh-14598	2024-04-04 11:32:00 -06:00
Josh Cummings	0a9c482f62	Revert "Support SpEL Returning AuthorizationDecision" This reverts commit 77f2977c55842a717f8cb5c0344a7dd14b39c794.	2024-04-04 11:31:45 -06:00
Josh Cummings	77f2977c55	Support SpEL Returning AuthorizationDecision Closes gh-14599	2024-04-04 09:52:15 -07:00
Marcus Hert Da Coregio	d85857f905	Add Authorization Denied Handlers for Method Security Closes gh-14601	2024-04-03 09:25:12 -03:00
Max Batischev	ff19f04fca	Add JwtValidators append to default Implemented simplified creation of default OAuth2TokenValidator with additional validators. Closes gh-14831	2024-04-02 14:41:35 -07:00
Marcus Hert Da Coregio	7d66525e23	Add Compromised Password Checker Closes gh-7395	2024-04-01 09:48:07 -03:00
Steve Riesenberg	abf9dc165a	Merge branch '6.2.x'	2024-03-26 10:55:48 -05:00
Steve Riesenberg	614123e6f9	Update tests that fail on Windows Issue gh-14609	2024-03-26 10:49:47 -05:00
Josh Cummings	44033cd8b9	Make Internal Logout URI Configurable Closes gh-14609	2024-03-22 16:31:44 -06:00
Josh Cummings	e18ec48134	Fix Test Issue gh-14553	2024-03-22 16:31:42 -06:00
Josh Cummings	662cfed349	Make Internal Logout URI Configurable Closes gh-14609	2024-03-22 16:28:21 -06:00
Josh Cummings	c95f009b23	Fix Test Issue gh-14553	2024-03-22 16:27:16 -06:00
Josh Cummings	9898e0e993	Move AuthorizationAdvisorProxyFactory To prevent package tangles Issue gh-14596	2024-03-22 11:00:39 -06:00
Josh Cummings	795e44d11f	Add Value-Type Ignore Support Issue gh-14597	2024-03-22 11:00:39 -06:00
Josh Cummings	ce54a6db18	Add TestAuthentication convenience method Issue gh-14597	2024-03-19 10:27:03 -06:00
Josh Cummings	d169d5a835	Add AuthorizeReturnObject Closes gh-14597	2024-03-19 10:27:03 -06:00
Josh Cummings	c611b7e33b	Add AuthorizationProxyFactory Reactive Support Issue gh-14596	2024-03-15 11:44:30 -06:00
Josh Cummings	f541bce492	Polish AuthorizationAdvisorProxyFactory - Ensure Reasonable Defaults - Simplify Construction Issue gh-14596	2024-03-15 11:44:30 -06:00
Steve Riesenberg	77c30c431e	Polish tests Issue gh-11783 Issue gh-13763	2024-03-14 15:40:43 -05:00
Steve Riesenberg	80a8d3831a	Simplify reactive OAuth2 Client configuration Closes gh-13763	2024-03-14 15:40:43 -05:00
Josh Cummings	52dfbfb5b3	Add Authorization Proxy Support Closes gh-14596	2024-03-13 14:35:07 -06:00
Steve Riesenberg	d6382b83dc	Configure token-exchange via a bean Issue gh-5199 Issue gh-11783 Closes gh-14701	2024-03-07 11:03:10 -06:00
Josh Cummings	bade66e588	Fix Circular Dependency Closes gh-14674	2024-03-01 14:21:13 -07:00
Marcus Hert Da Coregio	f8ff056eb6	Update Max Sessions on WebFlux Delete WebSessionStoreReactiveSessionRegistry.java and gives the responsibility to remove the sessions from the WebSessionStore to the handler Issue gh-6192	2024-02-28 10:06:45 -03:00
Marcus Hert Da Coregio	a5ce8ae87f	Polish Max Sessions on WebFlux This commit changes the PreventLoginServerMaximumSessionsExceededHandler to invalidate the WebSession in addition to throwing the error, this is needed otherwise the session would still be saved with the security context. It also changes the SessionRegistryWebSession to first perform the operation on the delegate and then invoke the needed method on the ReactiveSessionRegistry Issue gh-6192	2024-02-27 11:12:50 -03:00
Josh Cummings	c639d0a514	Add AOP Integration Test Closes gh-14637	2024-02-26 13:56:56 -07:00
Josh Cummings	4d383023cb	Add meta-annotation parameter support Closes gh-14480	2024-02-26 10:50:35 -07:00
Josh Cummings	347eeb17d5	Merge branch '6.2.x'	2024-02-26 10:17:18 -07:00
Josh Cummings	2471df4d36	Merge branch '6.1.x' into 6.2.x	2024-02-26 10:17:04 -07:00
Josh Cummings	27cd9fa86c	Don't Use Deprecated Class Issue gh-14628	2024-02-26 10:06:59 -07:00
Josh Cummings	093b5572af	Merge branch '6.2.x'	2024-02-22 12:15:42 -07:00
Josh Cummings	bb6045ebea	Merge branch '6.1.x' into 6.2.x Closes gh-14648	2024-02-22 12:15:17 -07:00
Josh Cummings	2fdd541ea5	Merge branch '5.8.x' into 6.1.x Closes gh-14647	2024-02-22 12:15:00 -07:00
DingHao	45c37c4454	Remove duplicate setSecurityContextHolderStrategy Closes gh-14592	2024-02-22 12:14:35 -07:00
Marcus Hert Da Coregio	21580fd27d	Merge branch '6.2.x'	2024-02-16 13:31:20 -03:00
Marcus Hert Da Coregio	15306c1007	Merge branch '6.1.x' into 6.2.x	2024-02-16 13:21:15 -03:00
Rob Winch	750cb30ce4	Add AuthenticationTrustResolver.isAuthenticated	2024-02-16 13:08:29 -03:00
Josh Cummings	7f0433c805	Merge branch '6.2.x'	2024-02-12 17:01:38 -07:00
Josh Cummings	2702a64be7	Use Localhost for Internal Logout Endpoint Closes gh-14553	2024-02-12 17:00:58 -07:00
Josh Cummings	34526c3e01	Merge branch '6.2.x'	2024-02-12 12:54:29 -07:00
Josh Cummings	3ab323663a	Do Not Wire Default OidcSessionStrategy without OidcLogoutConfigurer Closes gh-14558	2024-02-12 12:53:48 -07:00
Marcus Hert Da Coregio	ccb2f06d0d	Partially revert fc658d10 OpenIDAuthenticationFilter exists in versions < 6.0 Issue gh-14531	2024-02-07 10:13:34 -03:00
Marcus Hert Da Coregio	dea6d6b49c	Merge branch '6.2.x' Closes gh-14566	2024-02-07 09:38:10 -03:00
Marcus Hert Da Coregio	ad96837e59	Merge branch '6.1.x' into 6.2.x Closes gh-14565	2024-02-07 09:38:02 -03:00
Marcus Hert Da Coregio	ba1068e368	Merge branch '5.8.x' into 6.1.x Closes gh-14564	2024-02-07 09:37:52 -03:00
DingHao	fc658d10d3	fix security filter sort in javadoc Closes gh-14531	2024-02-07 09:37:01 -03:00
Marcus Hert Da Coregio	915d68e216	Remove includeExpiredSessions parameter The reactive implementation of max sessions does not keep track of expired sessions, therefore we do not need such parameter Issue gh-6192	2024-02-06 10:43:00 -03:00
Josh Cummings	a282887906	Merge branch '6.2.x'	2024-02-05 15:42:09 -07:00

1 2 3 4 5 ...

2588 Commits