Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,752 Commits 32 Branches 333 Tags 109 MiB
Commit Graph

7752 Commits

Author SHA1 Message Date
Rob Winch 1f7ba47ce9 Test Javadoc for RoleHiearchy 
Issue gh-6954
 2019-06-07 10:59:42 -05:00
Rob Winch fcb4def4ac Polish Path Variables in Message Expressions 
Issue gh-4469
 2019-06-07 10:27:23 -05:00
Daniel Bustamante Ospina f97ac4daa6 Support Path Variables in Message Expressions 
Extract path variables expressed in SimpDestinationMessageMatcher's pattern.

Issue: gh-4469
 2019-06-07 10:27:23 -05:00
Daniel Meier fcd8a38f0b Add success handler modification of OAuth2LoginSpec 
Add the ability to modify the success handler used in OAuth2LoginSpec. The
default success handler remains unchanged.

Closes #6863
 2019-06-05 13:25:34 -04:00
Rob Winch 8716a3e644 Update to nohttp 0.0.2.RELEASE 
Closes gh-6955
 2019-06-05 09:52:24 -05:00
Joe Grandja 132a78ddde Fix test 
Issue gh-6245
 2019-06-04 20:34:08 -04:00
Joe Grandja aa767ec8bf Externalize coercion in ClaimAccessor 
Fixes gh-6245
 2019-06-04 17:16:39 -04:00
Rob Winch 3c7aa4243f DefaultServerOAuth2AuthorizationRequestResolver uses fromUri 
Fixes gh-6952
 2019-06-04 15:28:29 -05:00
Eleftheria Stein abe7da6b85 Migrate RememberMeConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-04 15:12:11 -05:00
Eleftheria Stein 06d3b60947 Replace bean method calls with injection 
This is so that our configuration classes do not rely on CGLIB to proxy bean methods.

Fixes gh-6818
 2019-06-03 15:45:28 -05:00
Eleftheria Stein 4f042a4ff1 Migrate ChannelSecurityConfigurerTests groovy->java 
Issue: gh-4939
 2019-06-03 11:09:49 -04:00
Josh Cummings 97a01260f1 Reinstate docs and schema deployments 
Fixes: gh-6929
 2019-05-31 22:05:40 -06:00
Josh Cummings 47d13ac4d0
Temporarily remove docs and schema deployments 
Issue: gh-6929
 2019-05-31 13:39:30 -06:00
Josh Cummings 700ad020ee
Adding JAVA_HOME for JDK 8 
Fixes: gh-6928
 2019-05-31 13:39:30 -06:00
Eleftheria Stein be651d9d16 Migrate CsrfConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 13:18:55 -06:00
Joe Grandja 38ba70bbdd client_credentials client should not set Authorization header when ClientAuthenticationMethod.POST 
Fixes gh-6911
 2019-05-31 14:54:17 -04:00
Eleftheria Stein 6148eef689 Migrate SecurityContextConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 12:07:28 -06:00
Eleftheria Stein 16b0d782f4 Migrate HeadersConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 11:57:01 -06:00
Eleftheria Stein 7806ac21aa Migrate RequestMatcherConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-31 11:48:34 -06:00
Daniel Meier 56f1991240 Update AssertJ to version 3.12.2 
Update the AssertJ dependency to version 3.12.2. Additionally fix
some tests not compiling due to API changes of AssertJ.

Fixes gh-6786
 2019-05-31 11:45:20 -06:00
Clement Ng e66369f6c6 Added null checks and tests to constructors 
RequestKey, JaasGrantedAuthority, and SwitchUserGrantedAuthority
assume certain final members are non-null.

Issue: gh-6892
 2019-05-29 16:10:36 -06:00
Florian Aumeier 9fe8949883 Add @transient to OAuth2IntrospectionAuthenticationToken 
fixes gh-6829
 2019-05-29 08:42:09 -06:00
Eleftheria Stein e15922322e Migrate LogoutConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-27 22:53:51 -06:00
Josh Cummings af3c6d4972
JwtAuthenticationTokenTests Polish 
Using Jwt.Builder to clean up some of this test's config.

Issue: gh-6893
 2019-05-23 11:24:40 -06:00
Josh Cummings 936d28d328
JwtAuthenticationToken Polish 
Aligned JavaDoc and added tests to better assess getName's
functionality.

Issue: gh-6893
 2019-05-23 10:59:45 -06:00
HaydenMeloche f84ab3a255
Added constructors to support custom principal name 
closes #6893
 2019-05-23 10:59:44 -06:00
Eleftheria Stein d660084538 Migrate HttpBasicConfigurerTests groovy->java 
Issue: gh-4939
 2019-05-23 09:24:58 -06:00
Josh Cummings d0f5b42884
Mock Jwt Test Support and Jwt.Builder Polish 
Simplified the initial support to introduce fewer classes and only the
features described in the ticket.

Changed tests to align with existing patterns in the repository.

Added JavaDoc to remaining public methods introduced for this feature.

Issue: gh-6634
Issue: gh-6851
 2019-05-22 14:23:02 -06:00
Jérôme Wacongne e59d8a529b
Mock Jwt Test Support and Jwt.Builder 
Fixes: gh-6634
Fixes: gh-6851
 2019-05-22 14:23:02 -06:00
Kirill Gavrilov f6998547b8 Remove '.html' from interface name 2019-05-20 16:25:30 -05:00
Kirill Gavrilov 9078885a1a Remove redundant for 2019-05-20 16:25:30 -05:00
Eleftheria Stein f5f965b6aa Fix JavaDoc for defaultSuccessUrl 
Fixes gh-3337
 2019-05-17 10:50:30 -05:00
Eleftheria Stein e7f93f221d Update to Spring 5.2.0.M2 
Fixes gh-6864
 2019-05-14 09:45:30 -05:00
Josh Cummings 5840e25732 Polish OAuth2TokenIntrospectionClient 
Placed URI.create in constructor so that the code doesn't do that
processing on each request. Also moved the construction helper methods
up by the constructor for added readability.

Issue: gh-6798
 2019-05-14 07:50:16 -06:00
MD Sayem Ahmed 0bc60dca69 Add custom parameters to token introspection requests 
Added support for providing custom parameters to an OAuth 2.0 token
introspection request. This is done by explicitly instantiating a
NimbusOAuth2TokenIntrospectionClient instance and then setting a custom
Converter implementation.

Fixes gh-6798
 2019-05-14 07:48:07 -06:00
Eleftheria Stein 69e4e3ed88 Update to Reactor Dysprosium-M1 
Fixes gh-6867
 2019-05-13 14:10:55 -06:00
Jérôme Wacongne b04f55830f Git ignore .attach_pid* files 2019-05-13 14:42:55 -05:00
Akane Shimamuko 59a9feda7d Add messages_ja.properties 2019-05-13 11:43:32 -05:00
Josh Cummings 047bd16b51
Propagate Exception in NimbusReactiveJwtDecoder 
Fixes: gh-6823
 2019-05-08 17:25:02 -06:00
Josh Cummings 1ed9e3a1c6
Resource Server AuthenticationManager 
Making the authentication manager for jwt() and opaqueToken()
configurable.

Fixes: gh-6832
Fixes: gh-6849
 2019-05-07 17:04:51 -06:00
Josh Cummings 7200fa2dce
Copy Token Introspection Attributes Map 
Dereference Map passed into constructor for
OAuth2IntrospectionAuthenticationToken.

Fixes: gh-6843
 2019-05-07 13:19:02 -06:00
Rob Winch ead28a3cee
Add create issue for features 2019-05-07 13:34:08 -05:00
Eleftheria Stein c4b6cdea3f Fix OAuth2 multitenancy sample 
Allowing requests with valid tokens, and fixed documentation.

Fixes: gh-6834
 2019-05-03 15:37:26 -06:00
Joe Grandja 5aa50500cf oauth2Login does not auto-redirect for XHR request 
Fixes gh-6812
 2019-05-02 16:04:09 -04:00
Tadaya Tsuyukubo aef3f514fe Set "rolePrefix" in ReactiveMethodSecurityConfiguration 
Currently, `GrantedAuthorityDefaults` is not considered in
`ReactiveMethodSecurityConfiguration`.
This commit updates the configuration to be aware of
`GrantedAuthorityDefaults` and update `rolePrefix` when the bean is
available.

Also, use the same instance of `DefaultMethodSecurityExpressionHandler`
when constructing `ExpressionBasedAnnotationAttributeFactory`.
 2019-05-02 10:46:27 -05:00
Rob Winch 342ef6c287 Update to nohttp 0.0.1.RELEASE 
Issue gh-6819
 2019-05-01 20:12:35 -05:00
Sharad Alury 2850b273ea Reactive JwkSource Builder Parameter Type 
Changed the parameter type from JWT to SignedJWT

Fixes: gh-6771
 2019-05-01 09:10:17 -06:00
Wessel Nieboer 6f5fa1b610 Make AccountStatusUserDetailsChecker implement MessageSourceAware 
Fixes: gh-3980
 2019-05-01 08:57:25 -05:00
httpain 98a8467e4c Fix javadoc typo 2019-04-30 10:42:25 -06:00
Elena Felder e6ac9759e2 Extract bearer token from arbitrary header. 2019-04-30 10:41:20 -06:00