Commit Graph

6774 Commits

Author SHA1 Message Date
Rob Winch d21338d212 Support errorOnInvalidType for Reactive AuthenticationPrincipal
Fixes: gh-5096
2018-03-09 12:05:55 -06:00
Rob Winch a2073b2b91 Support BeanResolver for Reactive AuthenticationPrincipal
Fixes: gh-4326
2018-03-09 12:05:55 -06:00
Rob Winch d816af2337 Add BadCredentials Jackson Support to What's New
Issue: gh-5087
2018-03-09 12:05:55 -06:00
Rob Winch 7fafd899ee Add Reactive WithUserDetails to What's new
Issue: gh-4888
2018-03-09 12:05:55 -06:00
Josh Cummings bc21f80ebe Update to Spring Boot 2.0.0.RELEASE
Fixes: gh-5061
2018-03-09 09:46:38 -06:00
Rob Winch 65193963ad Fix Imports
Issue: gh-4888
2018-03-09 09:15:39 -06:00
Rob Winch 2228485a40 WithUserDetails supports ReactiveUserDetailsService
Fixes: gh-4888
2018-03-08 23:13:19 -06:00
Rob Winch 949c7d68b8 Fix StrictHttpFirewall rules
Fixes: gh-5044
2018-03-08 21:30:23 -06:00
ylombardi 1d0e97880d Add the BadCredentialsExceptionMixin to help Jackson serialization of BadCredentialsException 2018-03-08 16:55:57 -06:00
Josh Cummings 3121f9c000 NamespaceGlobalMethodSecurity groovy->java
Note that the `WhenUsingAspectJ` tests are still simply verifying structure instead of behavior. This is because the project appearsto be misconfigured in some way such that AspectJ advice isn't getting woven in at runtime. The original Groovy tests also only verified structure and they may be that way for a similar reason.

Either way, I will open up a ticket so we can review why that is the case and if there is a good fix.

Issue: gh-4939
2018-03-08 16:53:54 -06:00
Josh Cummings c91ca0584c Sec2758Tests groovy->java
Note that the old groovy test used a configuration of

```
http
    .authorizeRequests()
        .anyRequest().hasAnyAuthority("USER")
```

However, as I read the issue, gh-2984, the problem this issue
identifies is the non-passive change of defaulting to prefix
ROLE_ with all role-based configuration methods. So, the test now
does the following:

```
http
    .authorizeRequests()
        .anyRequest().access("hasAnyRole('USER')")
```

which demonstrates, given the configuration in this test, that
ROLE_ is correctly not prefixed in this expression, even though
it is a role-based configuration.

Issue: gh-4939
2018-03-08 16:52:20 -06:00
Vedran Pavic 350fcd4277 Upgrade Nimbus JOSE + JWT to 5.6 2018-03-08 16:39:38 -06:00
Vedran Pavic 505aa8dd02 Upgrade Nimbus OAuth + OIDC SDK to 5.56 2018-03-08 16:37:01 -06:00
Rob Winch abae2f3e87 Allow WithSecurityContextTestExecutionListener to execute after @Before
Fixes: gh-2935
2018-03-08 14:13:07 -06:00
Rob Winch 055a2ca917 Polish Javadoc HttpStatusServerAccessDeniedHandler 2018-03-07 12:35:25 -06:00
Rob Winch 9f23212e43 HttpStatusServerAccessDeniedHandler use injected HttpStatus
Fixes: gh-5078
2018-03-07 12:35:25 -06:00
Josh Cummings ca93b34f56 Update to Gradle 4.6
Only thing of interest really is that the Jacoco Gradle plugin was bumped to 0.8.0, which requires org.ow2.asm:asm:6.0.

Issue: gh-5062
2018-03-06 20:23:13 -06:00
Joe Grandja a5bd76b6ed Revert authorization_code grant support
This reverts commit eae7afd9aa.
2018-03-06 16:16:45 -05:00
Joe Grandja c922fe3be1 WebSecurityConfigurationTests groovy->java
Issue: gh-4939
2018-03-06 09:24:52 -05:00
Joe Grandja b1f3d495d9 Sec2515Tests groovy->java
Issue: gh-4939
2018-03-05 15:16:52 -05:00
Joe Grandja 0aa87e8501 EnableWebSecurityTests groovy->java
Issue: gh-4939
2018-03-05 10:23:48 -05:00
Joe Grandja 5af1d1d936 Polish HttpConfigurationTests 2018-03-05 08:36:15 -05:00
Joe Grandja 2a678ebc6e Polish WebSecurityConfigurerAdapterTests 2018-03-05 06:20:27 -05:00
Joe Grandja 5b023d0abc Fix Security version tests -> 5.1 2018-03-02 16:29:22 -05:00
Rob Winch b8dfcd0d35 Update version to 5.1.0.BUILD-SNAPSHOT 2018-03-02 14:34:09 -06:00
Joe Grandja eae7afd9aa Add support for authorization_code grant
Fixes gh-4928
2018-03-02 14:30:49 -05:00
Johnny Lim d316803596 Polish DaoAuthenticationProviderTests 2018-03-02 08:55:37 -06:00
Josh Cummings 1ed51033cc Migrate config-debug groovy->java
All tests in `org.springframework.security.config.debug` are migrated.

Note that `SecurityDebugBeanFactoryPostProceessorTest` preserves the original structure-verifying strategy used in the Groovy test. Verifying debug behavior turns out to be fairly tricky since being behaviorally invisible is in its nature.

Issue: gh-4939
2018-03-02 08:55:07 -06:00
Vedran Pavic b8ae110b7b Upgrade Nimbus JOSE + JWT to 5.5 2018-03-02 08:48:16 -06:00
Rob Winch 458b571d02 Next Development Version 2018-02-28 08:36:16 -06:00
Rob Winch ce8bea69ae Release 5.0.3.RELEASE 2018-02-28 07:05:44 -06:00
Rob Winch ab5a760380 Update to Spring Data Kay SR5
Fixes: gh-5049
2018-02-28 07:05:08 -06:00
Rob Winch ec3534ac8d Update to Reactor Bismuth SR7
Fixes: gh-5050
2018-02-27 20:47:00 -06:00
Rob Winch 68afb2475a Update Selenium Dependencies
Fixes: gh-5056
2018-02-27 20:45:53 -06:00
Rob Winch 0e1060e736 Update to oauth2-oidc-sdk:5.54
Fixes: gh-5055
2018-02-27 20:45:43 -06:00
Rob Winch c9ef2549b2 Update to appengine-gradle-plugin:1.3.5
Fixes: gh-5054
2018-02-27 20:45:27 -06:00
Rob Winch 51ddd2b36d Update to GAE 1.9.62
Fixes: gh-5053
2018-02-27 20:45:09 -06:00
Rob Winch 822129cebd Update to Spring Boot 2.0.0.RC2
Fixes: gh-5052
2018-02-27 20:44:54 -06:00
Rob Winch 3205f68f29 Update to spring-build-conventions:0.0.15.RELEASE
Fixes: gh-5048
2018-02-27 16:23:49 -06:00
Josh Cummings 1b69c62d20 PortMapperConfigurerTests groovy->java
Issue: gh-4939
2018-02-27 11:44:21 -05:00
Josh Cummings e08d4cc90c AnonymousConfigurerTests groovy->java
This test now checks key and principal both, which differs from the original Groovy test

In order to keep from needing to execute logic internal to `AnonymousAuthenticationToken`, this test changed from the original Groovy test. In the Groovy test, `key` is tested; however in this new test, `principal` is tested instead.

A concern was raised that if `AnonymousAuthenticationProvider` were invoked in this test, then testing only `principal` would not confirm that `key` was correctly propagated to `AnonymousAuthenticationProvider`. So, the test now configures both `key` and `principal`. The former to confirm correct wiring of `AnonymousAuthenticationProvider` and the latter to confirm correct wiring of `AnonymousAuthenticationFilter`.

Issue: gh-4939
2018-02-27 11:30:02 -05:00
Rob Winch 8d75554b6b Lazily Create Throwables
Fixes: gh-5040
2018-02-26 16:24:40 -06:00
Josh Cummings bb59733736 Sec2377Tests groovy->java
Issue: gh-4939
2018-02-22 10:48:18 -05:00
Joe Grandja dc9248e73c NamespaceHttpTests groovy->java
Issue: gh-4939
2018-02-22 10:29:48 -05:00
Rob Winch c24490cbb8 Update to spring-build-conventions:0.0.13.RELEASE
Fixes: gh-5030
2018-02-19 23:59:03 -06:00
Rob Winch cc2f676c03 Next Development Version 2018-02-19 22:07:03 -06:00
Rob Winch b305348930 Release 5.0.2.RELEASE 2018-02-19 22:06:06 -06:00
Rob Winch 0704315fca Update to Spring Data Kay SR4
Fixes: gh-5029
2018-02-19 22:03:31 -06:00
Rob Winch 4ba064ca0a Update to Reactor Bismuth-SR6
Fixes: gh-5028
2018-02-19 22:02:23 -06:00
Rob Winch 831399be16 Update to Spring Framework 5.0.4
Fixes: gh-5027
2018-02-19 22:00:33 -06:00