Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-03-01 10:59:16 +00:00
Code Issues Packages Projects Releases Wiki Activity
16,963 Commits 36 Branches 337 Tags
Commit Graph

16963 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
cedd589a3e Bump com.webauthn4j:webauthn4j-core 
Bumps [com.webauthn4j:webauthn4j-core](https://github.com/webauthn4j/webauthn4j) from 0.27.0.RELEASE to 0.28.0.RELEASE.
- [Release notes](https://github.com/webauthn4j/webauthn4j/releases)
- [Changelog](https://github.com/webauthn4j/webauthn4j/blob/master/github-release-notes-generator.yml)
- [Commits](https://github.com/webauthn4j/webauthn4j/compare/0.27.0.RELEASE...0.28.0.RELEASE)

---
updated-dependencies:
- dependency-name: com.webauthn4j:webauthn4j-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 19:39:25 -08:00
dependabot[bot]
358d7618c4 Bump org.hsqldb:hsqldb from 2.7.3 to 2.7.4 
Bumps org.hsqldb:hsqldb from 2.7.3 to 2.7.4.

---
updated-dependencies:
- dependency-name: org.hsqldb:hsqldb
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 19:38:44 -08:00
dependabot[bot]
e2426437c3 Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 16:48:19 -08:00
github-actions[bot]
345ecca2d0 Merge branch '6.3.x' 2024-11-04 00:45:08 +00:00
dependabot[bot]
f532481841 Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 16:44:17 -08:00
github-actions[bot]
9384030f4d Merge branch '6.3.x' 2024-11-04 00:25:09 +00:00
github-actions[bot]
1da930ec6e Merge branch '6.2.x' into 6.3.x 2024-11-04 00:25:08 +00:00
dependabot[bot]
fed3c99c1d Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 16:24:16 -08:00
Josh Cummings
8a6e1297a1
Add Warning Message for Missing Leading Slashes 
Closes gh-16020
 2024-10-31 12:22:17 -06:00
dependabot[bot]
1d32263a83 Bump org.seleniumhq.selenium:selenium-java from 4.25.0 to 4.26.0 
Bumps [org.seleniumhq.selenium:selenium-java](https://github.com/SeleniumHQ/selenium) from 4.25.0 to 4.26.0.
- [Release notes](https://github.com/SeleniumHQ/selenium/releases)
- [Commits](https://github.com/SeleniumHQ/selenium/compare/selenium-4.25.0...selenium-4.26.0)

---
updated-dependencies:
- dependency-name: org.seleniumhq.selenium:selenium-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-30 20:57:53 -07:00
dependabot[bot]
7ba8986506 Bump org-bouncycastle from 1.78.1 to 1.79 
Bumps `org-bouncycastle` from 1.78.1 to 1.79.

Updates `org.bouncycastle:bcpkix-jdk18on` from 1.78.1 to 1.79
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.bouncycastle:bcprov-jdk18on` from 1.78.1 to 1.79
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

---
updated-dependencies:
- dependency-name: org.bouncycastle:bcpkix-jdk18on
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.bouncycastle:bcprov-jdk18on
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-29 20:21:11 -07:00
dependabot[bot]
178266835a Bump com.fasterxml.jackson:jackson-bom from 2.18.0 to 2.18.1 
Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.18.0 to 2.18.1.
- [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.0...jackson-bom-2.18.1)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson:jackson-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-28 20:50:09 -07:00
Josh Cummings
a793dca1a7 Merge branch '6.3.x' 2024-10-28 14:57:05 -07:00
Cedric Montfort
d9d77bed82 Allow logout+jwt JWT type for reactive 
The OIDC back-channel spec recommends using a logout token typ `logout+jwt`
(see [here](https://openid.net/specs/openid-connect-backchannel-1_0-final.html#LogoutToken).

Support of this type was recently added [on the servlet side]([on the Servlet side](9101bf1f7d)), so back
porting the same on the reactive side to close the gap.

Closes gh-15702
 2024-10-28 14:21:48 -07:00
Steve Riesenberg
ea5bc28773
Polish OAuth2 docs 2024-10-28 16:06:50 -05:00
Steve Riesenberg
d5cb41156c
Update reactive OAuth2 docs 
Issue gh-15938
 2024-10-28 16:06:48 -05:00
github-actions[bot]
9d2ca3da6a Merge branch '6.3.x' 2024-10-28 04:01:04 +00:00
dependabot[bot]
40da492609 Bump ch.qos.logback:logback-classic from 1.5.11 to 1.5.12 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.11 to 1.5.12.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.11...v_1.5.12)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-27 21:00:21 -07:00
dependabot[bot]
0356c34b7b Bump ch.qos.logback:logback-classic from 1.5.11 to 1.5.12 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.11 to 1.5.12.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.11...v_1.5.12)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-27 20:25:01 -07:00
Josh Cummings
27294b2e11
Allow RelyingPartyRegistration Placeholder Resolution in XML 
Closes gh-14645
 2024-10-25 16:12:27 -06:00
Tran Ngoc Nhan
689a4141df Remove unused import 2024-10-25 13:42:33 -07:00
Tran Ngoc Nhan
ab93541926 Simplify condition in some methods 2024-10-25 13:42:33 -07:00
Tran Ngoc Nhan
e76de931ce Polish Optional usage 2024-10-25 13:42:33 -07:00
Tran Ngoc Nhan
ffed4ea1dc Polish diamond usage 2024-10-25 13:42:33 -07:00
Max Batischev
9cb81f8ad5 Polish JdbcOneTimeTokenService 2024-10-25 13:26:52 -07:00
Josh Cummings
726ab52e1a
DefaultSaml2AuthenticatedPrincipal Can Be a Map Key 
Closes gh-15346
 2024-10-25 14:02:06 -06:00
Rob Winch
df7732d6db Merge branch '6.3.x' 2024-10-25 12:14:08 -05:00
Rob Winch
a9be3840f8 Merge branch '6.2.x' into 6.3.x 2024-10-25 12:13:54 -05:00
Rob Winch
1ba6301afa Support ServerWebExchangeFirewall @Bean 
Closes gh-15987
 2024-10-25 12:13:41 -05:00
Rob Winch
8d5fddda9d Merge branch '6.3.x' 
Support ServerWebExchangeFirewall @Bean

Closes gh-15974in 6.4.x
 2024-10-25 12:07:01 -05:00
Rob Winch
adc66e134b Merge branch '6.2.x' into 6.3.x 
Support ServerWebExchangeFirewall @Bean

Closes gh-15991
 2024-10-25 11:56:53 -05:00
Daniel Garnier-Moiroux
a5edcba324 github-actions: configure PR workflow to publish anonymous build scans 2024-10-25 11:23:13 -05:00
dependabot[bot]
dfdf6e0597 Bump org.springframework:spring-framework-bom 
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.2.0-RC2 to 6.2.0-RC3.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.2.0-RC2...v6.2.0-RC3)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-24 20:54:07 -07:00
Josh Cummings
981fbd5c2c Polish Tests 
Closes gh-14768
 2024-10-24 20:51:34 -07:00
Josh Cummings
6dbbe89b83
Merge remote-tracking branch 'origin/6.3.x' 2024-10-24 21:48:10 -06:00
DingHao
308e408b13 Polish DelegatingAuthenticationConverter 2024-10-24 20:47:46 -07:00
Josh Cummings
a36756929b
Polish Filter Chain Documentation 
Closes gh-15893
 2024-10-24 17:09:21 -06:00
Rob Winch
3ba1263d64 Support ServerWebExchangeFirewall @Bean 
Closes gh-15987
 2024-10-24 16:47:36 -05:00
Josh Cummings
cf03f2fed9
Merge branch '6.3.x' 2024-10-24 11:57:13 -06:00
Josh Cummings
5048a68ab7
Merge branch '6.2.x' into 6.3.x 
Closes gh-15986
 2024-10-24 11:56:41 -06:00
Josh Cummings
addc7c53b2
Merge branch '5.8.x' into 6.2.x 
Closes gh-15985
 2024-10-24 11:56:16 -06:00
DingHao
1399a82ea9 Return Null Request When Cookie Is Malformed 
Closes gh-15905
 2024-10-24 10:55:36 -07:00
Tomasz Letachowicz
b2e0539ff5 Add localization to DefaultLoginPageConfigurerTests test in order to avoid failure when system language is different 2024-10-24 11:34:34 -05:00
Steve Riesenberg
9a9926eaff
Merge branch '6.3.x' 2024-10-24 11:17:11 -05:00
Steve Riesenberg
0106e4b299
Merge branch '6.2.x' into 6.3.x 2024-10-24 11:17:02 -05:00
Steve Riesenberg
3592253b8e
Merge branch '5.8.x' into 6.2.x 2024-10-24 11:16:49 -05:00
github-actions[bot]
22dad10f5a
Update Antora Spring UI to v0.4.17 2024-10-24 11:15:07 -05:00
github-actions[bot]
9558b70616
Update Antora Spring UI to v0.4.17 2024-10-24 11:14:55 -05:00
github-actions[bot]
0b83830fb3
Update Antora Spring UI to v0.4.17 2024-10-24 11:14:43 -05:00
github-actions[bot]
ec33e40748
Update Antora Spring UI to v0.4.17 2024-10-24 11:12:30 -05:00