b26f2af5d5
Polish
...
Formatting as well as adding a missing defer
Issue gh-15699
2024-10-07 16:39:54 -07:00
2ca2e56383
Add Reactive One-Time Token Login support
...
Closes gh-15699
2024-10-07 16:39:54 -07:00
de104e22b7
Update javaDoc for DefaultOneTimeTokenSubmitPageGeneratingFilter
2024-10-02 15:31:43 -05:00
7fcb42b537
Fix typo of createDefaultRequestMacher in WebSessionServerRequestCache
...
createDefaultRequestMacher -> createDefaultRequestMatcher
2024-09-30 15:24:40 -07:00
a88a7744ed
Require GeneratedOneTimeTokenHandler on constructor
...
Issue gh-15114
2024-09-17 08:21:26 -03:00
7e41785dfc
Remove trailing spaces in default UIs
...
- Default UIs had blank lines with only spaces. These get deleted by the
spring-javaformat plugin. In order to avoid this behavior, an extra \s
had been inserted in the tests. The reason for those \s is not obvious.
- This commit cleans up the \s but changing the HTML templates.
2024-09-11 10:44:45 -07:00
98975a9b83
Add runtime hints for CSS resource
2024-09-10 12:46:13 -07:00
2405a5b680
Remove CssUtils
2024-09-10 12:46:13 -07:00
c1b9035544
Use static CSS in OneTimeToken default UI
2024-09-10 12:46:13 -07:00
e958ff2d4a
Use static CSS in reactive default UI
2024-09-10 12:46:13 -07:00
45d53973ab
Serve static content (css, js) for reactive default UIs from DefaultResourcesWebFilter
2024-09-10 12:46:13 -07:00
11616a1d78
Use static CSS in servlet default UI
2024-09-10 12:46:13 -07:00
c5c5cd5ed0
Serve static content (css, js) for default UIs from DefaultResourcesFilter
2024-09-10 12:46:13 -07:00
2ff29dc229
Throw AuthorizationDeniedException when AuthorizationResult is available
...
Closes gh-15706
2024-09-10 09:14:50 -03:00
4660e042d9
Remove unused <script> and <noscript> tags in One-Time-Token submit page
2024-09-06 09:13:30 -03:00
528d739a60
Use contextPath in One-Time-Token default submit UI
2024-09-06 09:13:30 -03:00
ef31ae1a98
Render One Time Token UIs using lightweight templates
2024-09-05 15:02:42 -07:00
a642a1bb66
Render reactive default UIs using lightweight templates
2024-09-05 15:02:42 -07:00
8d47906191
Render default UIs using lightweight templates
2024-09-05 15:02:42 -07:00
33495441b5
Hardcode ott-username input name in DefaultLoginPageGeneratingFilter
...
- GenerateOneTimeTokenFilter uses `"username"`, the default UI should use the same parameter name
2024-09-05 09:42:45 -03:00
00e4a8fb54
Add support for One-Time Token Login
...
Closes gh-15114
2024-09-03 10:07:56 -03:00
5c56bddbdd
Polish log message
2024-09-03 09:43:37 -03:00
008cbc2cae
Add cookie customizer to CookieRequestCache and CookieServerRequestCache
...
Issue gh-15204
2024-09-03 09:41:30 -03:00
626610a975
Polish Annotation API
...
Rename to a class that isn't focused on the synthesis implementation detail.
Also add Security to the front of the name to clarify that it is only intended
for security annotations, reminiscent of SecurityMetadataSource.
Refine method signatures to better articulate supported use cases.
Issue gh-15286
2024-08-30 08:51:49 -06:00
095929f6e8
Include FilterChain in SessionInformationExpiredEvent
...
Closes gh-14077
2024-08-29 13:12:27 -03:00
ed16c86115
Improve @CurrentSecurityContext meta-annotations
...
Closes gh-15551
2024-08-13 13:18:15 -06:00
08b8b09066
Update Copyright
...
Issue gh-15286
2024-08-10 11:48:14 -06:00
2c02d8aec7
Update Copyright
2024-08-10 11:46:51 -06:00
9aaf959400
Improve @AuthenticationPrincipal meta-annotations
...
Closes gh-15286
2024-08-10 11:46:51 -06:00
bc8ba7f3b7
Inline CSS for default login and logout page
...
- Remove the dependency on Bootstrap CSS. Results in faster load times, no failures
in air-gapped or offline scenarios, and no dependency on an external CDN that may
go away some day.
2024-08-05 09:27:18 -05:00
4169c0cf36
Publish Constants for Firewall Header and Parameter Predicates
...
Introduced public static final Predicates for allowed header names,
header values, parameter names, and parameter values for building
expressions.
Closes gh-13639
2024-07-18 17:24:38 -07:00
773e86701e
Add ParameterRequestMatcher
...
Closes gh-15342
2024-07-02 15:17:54 -06:00
9f0b2a29ee
Merge branch '6.3.x'
2024-07-01 11:43:19 -06:00
8917cdb404
Improve Performance of IPv4 Check
...
Closes gh-15324
2024-07-01 11:40:28 -06:00
44f9396bad
Add support remember-me cookie customization
...
Closes gh-14990
2024-06-05 11:47:20 -03:00
1e4aff2bdb
Merge branch '6.2.x' into 6.3.x
...
Closes gh-15186
2024-05-31 19:02:31 -05:00
3fc7b6e921
Merge branch '5.8.x' into 6.2.x
...
Closes gh-15185
2024-05-31 18:34:14 -05:00
dcb8c563e8
Fix ArrayIndexOutOfBoundsException
...
Issue gh-13310
Closes gh-15184
2024-05-31 18:12:21 -05:00
7288fecc24
Verify ipAddress Not A Hostname
...
Closes gh-15172
2024-05-30 17:50:56 -06:00
6956ed693c
Polish DefaultSecurityFilterChain Logs
...
Reuse String manipulation logic in Spring Framework
Compress whitespace
Closes gh-15096
2024-05-23 12:20:14 -06:00
ac9bdf5cbf
Change DefaultSecurityFilterChain logging to DEBUG level and simplify filter log
...
- Change DefaultSecurityFilterChain logging level from INFO to DEBUG to align with FilterChainProxy.
- Log filter class names instead of the toString() of filter.
2024-05-23 12:02:35 -06:00
0acf6cca6e
Merge branch '6.2.x'
...
Closes gh-15149
2024-05-23 14:05:06 -03:00
47ad405063
Merge branch '5.8.x' into 6.2.x
...
Closes gh-15148
2024-05-23 14:04:35 -03:00
c7b739eb3f
Fix broken link to jaspan article
...
Closes gh-14358
2024-05-23 14:04:10 -03:00
927840fe88
Do Not Invalidate Current Session When It Is Registered
...
Closes gh-15066
2024-05-14 10:01:54 -03:00
08f11f06ab
Revert unnecessary commits from main
...
Issue gh-15016
2024-05-08 13:49:18 -03:00
b3c7f3ff19
Rename CompromisedPasswordCheckResult to CompromisedPasswordDecision
...
Issue gh-7395
2024-04-30 08:38:03 -03:00
36cd48474d
Merge branch '6.2.x'
2024-04-17 17:01:24 -06:00
3887f33f81
Merge branch '6.1.x' into 6.2.x
2024-04-17 17:01:03 -06:00
61df8e493d
Merge branch '5.8.x' into 6.1.x
2024-04-17 17:00:24 -06:00
470e2c5c97
Address Build Issues
...
Issue gh-14837
2024-04-17 16:59:40 -06:00
ff473313df
Merge branch '6.2.x'
2024-04-17 16:45:47 -06:00
f16a434f0c
Merge branch '6.1.x' into 6.2.x
...
Closes gh-14922
2024-04-17 16:45:30 -06:00
ade45771b2
Merge branch '5.8.x' into 6.1.x
...
Closes gh-14921
2024-04-17 16:44:50 -06:00
657760af5b
Improve Logging
...
Closes gh-14837
2024-04-17 16:43:29 -06:00
61eba00654
Move HaveIBeenPwnedRestApiPasswordChecker to spring-security-web
...
Prior to this commit, the implementation was placed in spring-security-core, however we do not want to introduce a dependency on spring-web and spring-webflux for that module.
Issue gh-7395
2024-04-10 14:58:01 -03:00
f689f3c3fc
Fix continueOnError default value in java doc
...
Closes gh-14870
2024-04-10 13:28:06 -03:00
7faae83ebb
docs: fix typo
2024-04-08 14:44:12 -03:00
c439cfef0f
Merge branch '6.1.x' into 6.2.x
2024-03-21 17:24:34 -06:00
ce9f1821b1
Improve logging in AuthenticationWebFilter
...
Closes #14091
2024-03-21 17:24:10 -06:00
091976fffb
Improve logging in AuthenticationWebFilter
...
Closes #14091
2024-03-21 17:22:35 -06:00
c0928bf198
Add DelegatingAuthenticationConverter
...
Closes gh-14644
2024-03-13 14:33:45 -06:00
8885707674
Add DelegatingServerAuthenticationConverter
...
Closes gh-14644
2024-03-05 08:21:59 -07:00
bd345fb2a8
Polish gh-11758
2024-02-29 12:15:30 -06:00
5c5503924b
Add SwitchUserGrantedAuthorityMixIn
...
Closes gh-11775
2024-02-29 11:07:21 -06:00
f8ff056eb6
Update Max Sessions on WebFlux
...
Delete WebSessionStoreReactiveSessionRegistry.java and gives the responsibility to remove the sessions from the WebSessionStore to the handler
Issue gh-6192
2024-02-28 10:06:45 -03:00
a5ce8ae87f
Polish Max Sessions on WebFlux
...
This commit changes the PreventLoginServerMaximumSessionsExceededHandler to invalidate the WebSession in addition to throwing the error, this is needed otherwise the session would still be saved with the security context. It also changes the SessionRegistryWebSession to first perform the operation on the delegate and then invoke the needed method on the ReactiveSessionRegistry
Issue gh-6192
2024-02-27 11:12:50 -03:00
4d039e515f
Merge branch '6.2.x'
2024-02-22 13:21:22 -07:00
9c48546883
Merge branch '6.1.x' into 6.2.x
2024-02-22 13:21:14 -07:00
7f106f0419
Merge branch '5.8.x' into 6.1.x
2024-02-22 13:20:29 -07:00
5f80468de3
Updated copyright date
2024-02-22 13:19:05 -07:00
2f762fefe1
Allow tab in HTTP header values.
...
Closes gh-14573
2024-02-22 13:19:05 -07:00
21580fd27d
Merge branch '6.2.x'
2024-02-16 13:31:20 -03:00
15306c1007
Merge branch '6.1.x' into 6.2.x
2024-02-16 13:21:15 -03:00
750cb30ce4
Add AuthenticationTrustResolver.isAuthenticated
2024-02-16 13:08:29 -03:00
aa8178af65
Merge branch '6.2.x'
2024-02-07 08:53:16 -07:00
0cadabfa89
Merge branch '6.1.x' into 6.2.x
...
Closes gh-14568
2024-02-07 08:52:47 -07:00
75fdcd10f7
Use synchronized
...
Closes gh-14445
2024-02-07 08:48:49 -07:00
915d68e216
Remove includeExpiredSessions parameter
...
The reactive implementation of max sessions does not keep track of expired sessions, therefore we do not need such parameter
Issue gh-6192
2024-02-06 10:43:00 -03:00
c1adeef0da
Add validation IpAddressMatcher
...
Closes gh-13621
2024-01-30 17:16:18 -07:00
6e1bcfed11
Add argument resolver for SecurityContext
...
Closes gh-13425
2024-01-29 17:30:38 -07:00
a808c139ad
Enhance IpAddressMatcher performance
...
Closes gh-14493
Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>
2024-01-29 17:28:19 -07:00
6df9ef5ba6
Fix wrong class name in JavaDoc
...
In the `ServerWebExchangeDelegatingReactiveAuthenticationManagerResolver.Builder` class the JavaDoc comments mention the wrong class name. This commit fixes this.
2024-01-19 09:29:07 -07:00
06278157fa
Merge branch '6.2.x'
...
Closes gh-14471
2024-01-17 16:16:40 -03:00
148e0b41d2
Merge branch '6.1.x' into 6.2.x
...
Closes gh-14470
2024-01-17 16:16:27 -03:00
ce5f5e6e33
Add native hint for CsrfTokenRequestAttributeHandler$SupplierCsrfToken
...
Closes gh-14397
2024-01-17 16:14:59 -03:00
d7a9a19161
Merge branch '6.2.x'
2023-12-18 11:47:39 -07:00
03e48905c7
Merge branch '6.1.x' into 6.2.x
...
Closes gh-14346
2023-12-18 11:47:23 -07:00
b855ccdb09
Merge branch '5.8.x' into 6.1.x
...
Closes gh-14345
2023-12-18 11:46:04 -07:00
eaaa813ede
Fix header value typo
...
Closes gh-11948
2023-12-18 10:42:50 -07:00
8a34e32a24
Polish IpAddressAuthorizationManager
...
Closes gh-10577
2023-12-15 16:54:58 -07:00
ea7c720ce7
Add hasIpAddress to Kotlin DSL
...
Closes gh-10577
2023-12-15 16:54:58 -07:00
465642828a
Merge branch '6.2.x'
...
Add HandlerMappingIntrospector Caching
Closes gh-14333
2023-12-14 16:11:08 -06:00
6dd29520b0
Merge branch '6.1.x' into 6.2.x
...
Add HandlerMappingIntrospector Caching
Closes gh-14332
2023-12-14 16:10:50 -06:00
70dfb3d391
Add HandlerMappingIntrospector Caching
...
Closes gh-14128
2023-12-14 16:08:36 -06:00
57ab15127a
Add Max Sessions on WebFlux
...
Closes gh-6192
2023-12-11 09:48:34 -03:00
cad6689659
Merge remote-tracking branch 'origin/6.1.x'
2023-11-15 09:28:28 -07:00
187ef0e1a8
Merge branch '6.0.x' into 6.1.x
...
Closes gh-14146
2023-11-15 09:26:59 -07:00
18530c8dcd
Add PhasedObservation
...
Observation itself does not protect against start and stop being called
multiple times. This commit aligns all observation instances to instead
use an implementation that does have these guards in place.
Closes gh-14082
2023-11-15 09:22:41 -07:00
e920bfb3a2
Merge branch '6.1.x'
...
Closes gh-14138
2023-11-14 10:56:57 -03:00
Josh Cummings
Max Batischev
John Niang
Marcus Hert Da Coregio
Daniel Garnier-Moiroux
Florian Bernard
Ilpyo-Yang
DingHao
baezzys
Max Batischev
Steve Riesenberg
Joaquin Santana
erie0210
Thomas Hagelberg
Markus Heiden
Christian Becker
Rob Winch
Federico Herrera
Nermin Karapandzic
ahmd-nabil
sonallux
brunodmartins