Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
10,446 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

10446 Commits

Author SHA1 Message Date
Josh Cummings 5e4e7abf15
Add SecurityContextHolderStrategy XML Configuration for Method Security 
Issue gh-11061
 2022-06-27 13:40:55 -06:00
Josh Cummings 74d646f569
Add SecurityContextHolderStrategy Java Configuration for Method Security 
Issue gh-11061
 2022-06-27 13:17:46 -06:00
Josh Cummings 7a9c873d7d
Add SecurityContextHolderStrategy to Method Security 
Issue gh-11060
 2022-06-27 13:17:45 -06:00
Josh Cummings 6ac9366657
Add SecurityContextHolderStrategy Test Support 
Issue gh-11061
Issue gh-11444
 2022-06-27 13:17:45 -06:00
Josh Cummings ef29d3944e
Polish SecurityContextHolderStrategy Java Configuration for Defaults 
Issue gh-11061
 2022-06-27 13:17:44 -06:00
Josh Cummings a7b58c2299
Polish SecurityContextHolderStrategy for Defaults 
gh-11060
 2022-06-27 13:17:44 -06:00
Josh Cummings c29b91cec7
Polish SecurityContextHolderStrategy XML Configuration for Defaults 
Issue gh-11061
 2022-06-27 13:17:43 -06:00
Marcus Da Coregio 084dd56b92 Add LDAP runtime hints 
Closes gh-11438
 2022-06-27 09:25:49 -03:00
Marcus Da Coregio a8c30f79e6 Add Core, MVC and MethodSecurity runtime hints 
Closes gh-11431
 2022-06-27 09:25:49 -03:00
Vinícius Hashimoto 11a74a2926 Fix method call example on documentation 2022-06-24 17:05:31 -06:00
Alonso Araya Calvo 7841827169
Adds the ability to set the CSRF Token cookie max age value 
Closes gh-11432
 2022-06-24 16:42:32 -06:00
Jerome Prinet 6971638e16 Update Gradle Enterprise plugin 2022-06-23 15:07:49 -06:00
Marcus Da Coregio c4a55b90e3 Antora generate workflow use JDK 17 
Closes gh-11430
 2022-06-22 15:21:29 -03:00
Marcus Da Coregio a8b6d9bb40 Use JDK 17 on buildSrc 
Issue gh-11324
 2022-06-22 10:30:45 -03:00
Marcus Da Coregio 03527b2831 Use JDK 17 on Build 
Closes gh-11324
 2022-06-22 10:30:42 -03:00
Rob Winch fe2517f457 Document sagan Release tasks require read:org scope 
Closes gh-11423
 2022-06-21 14:46:35 -05:00
Rob Winch b6d43e58c0 SecurityContextHolder Deferred SecurityContext 
Closes gh-10913
 2022-06-17 16:59:09 -05:00
Rob Winch d4a03dc2b1 Cache SecurityContextRepository.loadContext(HttpServletRequest) Result 
Closes gh-11390
 2022-06-17 15:28:57 -05:00
Josh Cummings 150b81d008
Add SecurityContextHolderStrategy XML Configuration for Defaults 
Issue gh-11061
 2022-06-17 12:21:10 -06:00
Josh Cummings ce218c78f9
Add SecurityContextHolderStrategy Java Configuration for Defaults 
Issue gh-11061
 2022-06-17 11:58:38 -06:00
Josh Cummings a31a99b591
Add SecurityContextHolderStrategy to Default Components 
Issue gh-11060
 2022-06-17 11:58:36 -06:00
Josh Cummings a8ab432aea
Add placeholders to reactive post_logout_redirect_uri 
Now also supports baseScheme, baseHost, basePort, and basePath

Issue gh-11229
 2022-06-16 15:58:44 -06:00
Josh Cummings ebb5746f6e
Reactive OAuth 2.0 logout handler resolves registrationId 
Closes gh-11378
 2022-06-16 15:58:44 -06:00
Josh Cummings 18f7cf5406
Encode postLogoutRedirectUri query params 
Closes gh-11379
 2022-06-16 15:58:43 -06:00
Michael cb0ab49adc
Add placeholders to post_logout_redirect_uri 
Now supports baseScheme, baseHost, basePort, and basePath in addition
to extant baseUrl.

Closes gh-11229
 2022-06-16 15:58:35 -06:00
Steve Riesenberg a061191bd2 Allow form login when single OAuth2 Provider is configured 
Closes gh-6802
 2022-06-15 13:42:06 -05:00
Steve Riesenberg d18291676f
Update copyright year 
Issue gh-11372
 2022-06-15 13:14:07 -05:00
Steve Riesenberg c7df39a3e6
Fix tests using root cause for exception messages 
Closes gh-11372
 2022-06-14 17:12:15 -05:00
Eddú Meléndez d98dab5917 Update java version to 17.0.3-tem 2022-06-14 14:43:34 -05:00
Steve Riesenberg ac98e358a5 Add slack announcement when release is successful 
Closes gh-11307
 2022-06-14 14:10:09 -05:00
Steve Riesenberg 98fbc7a88f
Calculate release day from the first Monday 
Fixes an issue where the first day of the month is (for example) a
Tuesday causing the 2nd Tuesday and 3rd Monday to be over a week apart.

Issue gh-10458
 2022-06-09 15:30:37 -05:00
Josh Cummings 89fb075e2d
Add missing KeyInfo 
Closes gh-11354
 2022-06-09 13:14:19 -06:00
Josh Cummings 3a41567a18
Add OpenSamlSigningUtilsTests 
Issue gh-11354
 2022-06-09 13:14:13 -06:00
Jared Rufer 89989722d0 Support multiple SingleLogoutService bindings. 
Closes gh-11286
 2022-06-09 12:50:33 -06:00
j3graham f3c96fa9cd Remove dependency on commons-codec by using java.util.Base64 
Closes gh-11318
 2022-06-09 06:49:39 -06:00
Steve Riesenberg d1cb236df5
Fix slack notifications in #spring-security-ci 
This change can be reverted if upgrading to a new version of
Gamesight/slack-workflow-status with the fix available (> 1.1.0).

Closes gh-11346
 2022-06-07 16:07:10 -05:00
Zhivko Delchev 1483a57018 Reverse content type check 
When MultipartFormData is enabled currently the CsrfWebFilter compares
the content-type header against MULTIPART_FORM_DATA MediaType which
leads to NullPointerExecption when there is no content-type header.
This commit reverse the check to compare the MULTIPART_FORM_DATA
MediaType against the content-type which contains null check and avoids
the exception.

closes gh-11204
 2022-06-06 15:45:55 -05:00
Rob Winch c9a4ff75d9 Fix typo in BasicLookupStrategy Javadoc 
Issue gh-11336
 2022-06-06 14:07:55 -05:00
shirohoo 9075176c52 Fix typo 2022-06-06 13:49:53 -05:00
Houssem BELHADJ AHMED f4049c18b1 add SAML authentication request support to login configurer 
Closes gh-8873
 2022-06-06 08:05:33 -06:00
Houssem BELHADJ AHMED 33104269d6 make SAML authentication request uri configurable 
Closes gh-10840
 2022-06-06 08:05:33 -06:00
Steve Riesenberg 07f28de79b
Polish gh-11184 
Propagate rename in notify_result section.
 2022-06-03 15:23:48 -05:00
Steve Riesenberg 0ec64c0843 Polish GitHubMilestonePlugin 2022-06-03 15:07:42 -05:00
Steve Riesenberg 46723a601c Add workflow step for scheduling the next milestone 
This step introduces the concept of a release train to determine the appropriate release dates and schedules milestones as needed. It uses the following rules:

- If the current SNAPSHOT version is a minor release (patchVersion == 0), checks to see if a GA release exists. If not, a release train is scheduled as follows:
  - Finds the next available release train starting month (including this month), either January or July.
  - Schedules a release train with M1, M2, M3, RC1 and GA versions on either January/February/March/April/May or July/August/September/October/November
- If the current SNAPSHOT version is a patch release (patchVersion != 0), checks to see if a GA release exists. If not, an individual milestone is scheduled on the next even month whose release day is in the future (can include this month).
- In either case, the release day used to schedule the release is based on the configured weekOfMonth (1-4) and dayOfWeek (1-5), e.g. 3rd Monday of the month (3, 1).

If a milestone already exists, nothing is created. Once created, milestone due dates can be updated manually as desired.

Closes gh-10458
 2022-06-03 15:07:42 -05:00
Steve Riesenberg ab3b6ae95f Add scheduleNextRelease gradle task 2022-06-03 15:07:42 -05:00
Steve Riesenberg 1295b793b3
Polish gh-11183 
Fixed typo in plugin for setting workflowId and added missing repository() closure
 2022-06-03 11:56:08 -05:00
Jyri-Matti Lähteenmäki ca0a6d9777 Treat URLs as String before equals/hashcode 
java.net.URL performs DNS lookups whenever its equals/hashCode is
used. Thus attribute values of type java.net.URL need to be converted
to something else before they are used for equals/hashCode.

Closes gh-10673
 2022-06-03 11:36:00 -04:00
Kuby e28fcbfbbe
Change phoneNumberVerified with type Boolean 
Closes: gh-11315
 2022-06-03 10:23:53 -05:00
Steve Riesenberg ad19fc1330 Add workflow for scheduling releases on maintenance branches 
Closes gh-11180
 2022-06-03 10:19:02 -05:00
Steve Riesenberg 2c93a92afa Add dispatchGitHubWorkflow gradle task 2022-06-03 10:19:02 -05:00