Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-25 08:58:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
9,179 Commits 34 Branches 337 Tags
Commit Graph

9179 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Josh Cummings
bd42939b52 Fix AuthnRequestConverter Sample Typos 
Closes gh-10364
 2021-11-18 13:38:32 -07:00
Josh Cummings
ef23337f90 Fix setJWTClaimSetJWSKeySelector Typo 
Closes gh-10504
 2021-11-16 15:35:10 -07:00
Josh Cummings
e8bbe7a1ce Fix jwtDecoder Documentation Usage 
Closes gh-10505
 2021-11-16 15:21:59 -07:00
Josh Cummings
f89a34c30b Don't Cache ReactiveJwtDecoders Errors 
Closes gh-10444
 2021-11-10 18:07:14 -07:00
Marcus Da Coregio
89db1c37a3 Update DefaultWebInvocationPrivilegeEvaluator to use current ServletContext 
Closes gh-10208
 2021-10-22 14:49:13 -03:00
Steve Riesenberg
f1e7744d42 Next Development Version 2021-10-19 00:49:21 -05:00
Steve Riesenberg
0704c709dc Revert "Lock Dependencies for Release" 
This reverts commit 03c2c49d66fe395374ecb3bed696087e882a6bbc.
 2021-10-18 17:38:07 -05:00
Steve Riesenberg
957111c29c Release 5.4.9 5.4.9 2021-10-18 17:35:38 -05:00
Steve Riesenberg
03c2c49d66 Lock Dependencies for Release 2021-10-18 17:34:42 -05:00
Steve Riesenberg
397781e57c Update to Spring Boot 2.4.11 
Closes gh-10418
 2021-10-18 17:33:19 -05:00
Steve Riesenberg
c83bd075a2 Revert "Lock Dependencies for Release" 
This reverts commit bedb569f0d41a46a92665a4e45adcc525cc10290.
 2021-10-18 16:49:15 -05:00
Steve Riesenberg
bedb569f0d Lock Dependencies for Release 2021-10-18 15:38:17 -05:00
Josh Cummings
ba468c7e6e Restructure SwitchUserFilter Logs 
Issue gh-6311
 2021-10-18 15:38:16 -05:00
Emil Sierżęga
37ccf3c18c Fixed link in .editorconfig 2021-10-13 15:38:01 -06:00
Marcus Da Coregio
f45b990b4b Allow SAML 2.0 loginProcessingURL without registrationId 
Closes gh-10176
 2021-10-05 13:30:20 -03:00
Josh Cummings
4df9b4547f Fix OAuth2 Error Code 
Closes gh-10319
 2021-09-28 14:56:25 -06:00
heowc
02060015a5 Fix typo 
Closes gh-10276
 2021-09-22 16:36:38 -06:00
Rob Winch
278bda1c2d Remove finally block for junit 
Allow this to be gathered by Gradle enterprise since if build is up to
date there will be no tests ran which causes failure. Additionally,
Gradle Enterprise displays the tests better than Jenkins.
 2021-09-22 16:25:20 -05:00
Rob Winch
8104a17049
Specify Jenkins user in Jenkinsfile 2021-09-22 16:06:49 -05:00
Anthony Lofton
7614346a6f Updated test.adoc SecurityMockServerConfigurers method references 
Updated all references to SecurityMockServerConfigurers to refer to
correct methods.
Added documentation for mockJwt to include the
SecurityMockServerConfigurers class.

Issue gh-10254
 2021-09-14 16:19:49 -03:00
Derek Van Blerkom
9a1f04c08f Fix return type to allow further security config 
Issue gh-10245
 2021-09-13 15:41:25 -03:00
Fabio Guenci
8c1201ae49
Preserve Null Claim Values 
Prior to this commit ClaimTypeConverter returned the claims with the
original value for all the claims with a null converted value.
The changes allows ClaimTypeConverter to overwrite and return claims
with converted value of null.

Closes gh-10135
 2021-08-16 15:07:23 -06:00
Joe Grandja
fefe985242 Next Development Version 2021-08-16 11:57:20 -04:00
Joe Grandja
ec6b2203ca Revert "Lock Dependencies for Release" 
This reverts commit 067bdd0dd91038678a414e6609a585f0ed0ded9d.
 2021-08-16 11:55:39 -04:00
Joe Grandja
16b28f5a2f Release 5.4.8 5.4.8 2021-08-16 11:12:40 -04:00
Joe Grandja
067bdd0dd9 Lock Dependencies for Release 2021-08-16 11:12:40 -04:00
Joe Grandja
2f81cbc577 Update to Spring Boot 2.4.8 
Closes gh-10181
 2021-08-16 11:12:21 -04:00
Steve Riesenberg
dc81e1c86b Revert "URL encode client credentials" 
This reverts commit 5243b1b8a82398c443c5fe563e39f4eacb540798.

Issue gh-9610 gh-9861
Closes gh-10018
 2021-07-20 13:29:29 -05:00
dmitrilc
6878ff7487
Update oauth2-resourceserver.adoc 
fix the name of the parameter, from failure to badCredentials

Replaces AuthenticationFailureEvent

Remove AuthenticationFailureEvent Reference

Closes gh-10062
 2021-07-16 12:03:35 -06:00
Luke Quinane
c5a50bd7ec Fix typos 
Closes gh-10050
 2021-07-08 09:48:28 -03:00
Daniel Garnier-Moiroux
37e2cc4e89 Fix Saml2WebSsoAuthenticationRequestFilter javadoc 
Closes gh-10025
 2021-06-30 13:55:35 +02:00
Rob Winch
ad45a74b34 Update to use s01.oss.sonatype.org 
Closes gh-10015
 2021-06-29 16:36:42 -05:00
Rob Winch
84118a7d44 Remove -PdeployDocsHost=docs-ip.spring.io 
Closes gh-10021
 2021-06-29 16:17:38 -05:00
Rob Winch
fb83ddabe2 Update to spring-build-conventions:0.0.38 
Closes gh-10020
 2021-06-29 16:14:43 -05:00
/usr/local/ΕΨΗΕΛΩΝ
50a17f58db Improve AuthenticationManagerBeanDefinitionParser XML parsing 
Closes gh-7282
 2021-06-28 12:19:39 +02:00
Eleftheria Stein
e313e6b89a Apply DefaultLoginPageConfigurer before logout 
If they are not applied in this order, then the LogoutConfigurer cannot
set the logoutSuccessUrl, because the DefaultLoginPageGeneratingFilter
does not exist yet.
This impacts users that inject the default HttpSecurity bean.

Closes gh-9973
 2021-06-24 11:09:19 +02:00
Steve Riesenberg
5137a653ff
Next Development Version 2021-06-21 13:02:52 -05:00
Steve Riesenberg
c17767883f Revert "Lock Dependencies for Release" 
This reverts commit d71be4ca28afa6e9ed9c0d30ee5dae74a5eb1987.
 2021-06-21 12:57:05 -05:00
Josh Cummings
73e6ef2ace
Release 5.4.7 5.4.7 2021-06-21 10:33:21 -06:00
Josh Cummings
d71be4ca28
Lock Dependencies for Release 2021-06-21 10:33:10 -06:00
Eleftheria Stein
0c1bce5c82 Disable default logout page when logout disabled 
Closes gh-9475
 2021-06-17 17:17:06 +02:00
Arnaud Mergey
1cd4ffeeb7
fix typo preventing full exception to be displayed in log 
closes gh-9901
 2021-06-17 08:40:55 -06:00
Christian Frommeyer
1d48f31e4b
Replace StringUtils from oauth2-oidc-sdk 
SecurityMockServerConfigurers.java previously used the StringUtils from
the optional oauth2-oidc-sdk dependency. Replacing this with the
StringUtils from the spring framework this should not force adding the
dependency in cases where it is not actually used.

Closes gh-9923
 2021-06-16 13:23:23 -06:00
Steve Riesenberg
a108868529 Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository 
Related to gh-9649
Closes gh-9857
Closes gh-9912
 2021-06-15 11:44:34 -05:00
Marcus Hert da Coregio
ac371d5de6 Fix Adding Filter Relative to Custom Filter 
Closes gh-9787
 2021-06-14 15:57:52 -03:00
Josh Cummings
e601d9692e
Anonymous Authentication Argument Resolution Docs 
Closes gh-3338
 2021-06-08 16:22:49 -06:00
Josh Cummings
18d04f2551
Fix Getting Started Link 
Closes gh-6502
 2021-06-08 13:49:14 -06:00
Josh Cummings
b9e1901f19
Format PayloadInterceptorRSocket 
Issue gh-9345
 2021-06-04 12:56:37 -06:00
Josh Cummings
5666246187
PayloadInterceptorRSocket retains all payloads 
Flux#skip discards its corresponding elements, meaning that they
aren't intended for reuse. When using RSocket's ByteBufPayloads,
this means that the bytes are releaseed back into RSocket's pool.

Since the downstream request may still need the skipped payload,
we should construct the publisher in a different way so as to
avoid the preemptive release.

Deferring Spring JavaFormat to clarify what changed.

Closes gh-9345
 2021-06-04 12:55:33 -06:00
Steve Riesenberg
5243b1b8a8 URL encode client credentials 
Closes gh-9610
 2021-06-03 09:29:25 -05:00