Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-12-31 12:30:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,152 Commits 54 Branches 369 Tags
Commit Graph

1095 Commits

Author SHA1 Message Date
Josh Cummings
d3a95c5c1e
Merge branch '6.3.x' 2024-12-05 09:52:55 -07:00
Josh Cummings
0f85da77be
Merge branch '6.2.x' into 6.3.x 
Closes gh-16219
 2024-12-05 09:52:32 -07:00
Josh Cummings
96a9cf0d2d
Restore Previous Behavior for Servlet 5 
Closes gh-16173
 2024-12-05 09:52:06 -07:00
Rob Winch
9c3b11914d webauthn registerCredential returns transports 
The webauthn support previously did not pass the transports to webauthn4j.
This meant that the result of
Webauthn4jRelyingPartyOperations.registerCredential did not have any
transports either.

This commit ensures that the transports are passed to the webauth4j lib
and then returned in the result of registerCredential.

Closes gh-16084
 2024-12-04 15:22:26 -06:00
Daniel Garnier-Moiroux
46fe0124ba Add RuntimeHints for webauthn Javascript resource 2024-11-25 13:06:50 -06:00
Steve Riesenberg
ddf4542a9e
Add hasText assertion to IpAddressMatcher constructor 
Issue gh-15527

(cherry picked from commit 3a298196512de5f3002707e2af8298d650033df7)
 2024-11-15 10:17:39 -06:00
Steve Riesenberg
554df6fab6
Fix NPE in IpAddressMatcher 
Closes gh-15527

(cherry picked from commit 52de894c3c0a812562d6822db30f5c6c88526181)
 2024-11-15 10:17:38 -06:00
Steve Riesenberg
3a29819651
Add hasText assertion to IpAddressMatcher constructor 
Issue gh-15527
 2024-11-15 09:33:31 -06:00
Steve Riesenberg
52de894c3c
Fix NPE in IpAddressMatcher 
Closes gh-15527
 2024-11-15 09:33:30 -06:00
Daniel Garnier-Moiroux
a1526361b6 webauthn: introduce DefaultResourcesFilter#webauthn 2024-11-14 12:11:43 -06:00
nomoreFt
8f1c892fb7 Remove unnecessary parentheses and add static final field 2024-11-13 15:06:58 -06:00
Josh Cummings
981fbd5c2c Polish Tests 
Closes gh-14768
 2024-10-24 20:51:34 -07:00
Josh Cummings
cf03f2fed9
Merge branch '6.3.x' 2024-10-24 11:57:13 -06:00
Josh Cummings
5048a68ab7
Merge branch '6.2.x' into 6.3.x 
Closes gh-15986
 2024-10-24 11:56:41 -06:00
Josh Cummings
addc7c53b2
Merge branch '5.8.x' into 6.2.x 
Closes gh-15985
 2024-10-24 11:56:16 -06:00
DingHao
1399a82ea9 Return Null Request When Cookie Is Malformed 
Closes gh-15905
 2024-10-24 10:55:36 -07:00
Rob Winch
fc5719d8d6 Merge branch '6.3.x' 
Add Firewall for WebFlux

Closes gh-15967
 2024-10-21 12:11:42 -05:00
Joe Grandja
ec38848b20 Fix invalid windows character 2024-10-21 11:34:56 -04:00
Rob Winch
1528c421bd Merge branch '6.2.x' into 6.3.x 
Add Firewall for WebFlux

Closes gh-15967
 2024-10-21 09:43:48 -05:00
Rob Winch
0e257b56ce Add Firewall for WebFlux 
Closes gh-15967
 2024-10-21 09:42:24 -05:00
Rob Winch
542071b1f8 Merge Add Firewall for WebFlux 
Closes gh-15967
 2024-10-21 08:56:42 -05:00
Rob Winch
4ce7cde155 Add Firewall for WebFlux 
Closes gh-15967
 2024-10-21 08:46:13 -05:00
Rob Winch
7f26e54d07 Remove § 
See if this fixes format in windows
 2024-10-20 23:30:40 -05:00
Rob Winch
b0e8730d70 Add Passkeys Support 
Closes gh-13305
 2024-10-20 22:54:53 -05:00
xhaggi
7f537241e7 Use SessionAuthenticationStrategy for Remember-Me authentication 
Closes gh-2253
 2024-10-15 14:07:07 -07:00
Max Batischev
d37d41c130 Polish One-Time Token API Names and Doc 
The names of variables and methods have been adjusted in accordance with the names of the one-time token login API components.

Issue gh-15114
 2024-10-15 14:04:56 -07:00
Josh Cummings
c40334317d
Polish One-Time Token Component Names 
Aligning parts of speech so that names are using nouns/verbs
where comparable components are using nouns/verbs.

Issue gh-15114
 2024-10-14 14:07:47 -06:00
Max Batischev
e7644925f8 Add AuthorizationResult support for AuthorizationManager 
Closes gh-14843
 2024-10-14 11:48:57 -07:00
Josh Cummings
702538ebce AuthorizationEventPublisher Accepts AuthorizationResult 
Closes gh-15915

Co-authored-by: Max Batischev <mblancer@mail.ru>
 2024-10-14 11:48:57 -07:00
Max Batischev
2ca2e56383 Add Reactive One-Time Token Login support 
Closes gh-15699
 2024-10-07 16:39:54 -07:00
Daniel Garnier-Moiroux
7e41785dfc Remove trailing spaces in default UIs 
- Default UIs had blank lines with only spaces. These get deleted by the
  spring-javaformat plugin. In order to avoid this behavior, an extra \s
  had been inserted in the tests. The reason for those \s is not obvious.
- This commit cleans up the \s but changing the HTML templates.
 2024-09-11 10:44:45 -07:00
Daniel Garnier-Moiroux
98975a9b83 Add runtime hints for CSS resource 2024-09-10 12:46:13 -07:00
Daniel Garnier-Moiroux
c1b9035544 Use static CSS in OneTimeToken default UI 2024-09-10 12:46:13 -07:00
Daniel Garnier-Moiroux
e958ff2d4a Use static CSS in reactive default UI 2024-09-10 12:46:13 -07:00
Daniel Garnier-Moiroux
45d53973ab Serve static content (css, js) for reactive default UIs from DefaultResourcesWebFilter 2024-09-10 12:46:13 -07:00
Daniel Garnier-Moiroux
11616a1d78 Use static CSS in servlet default UI 2024-09-10 12:46:13 -07:00
Daniel Garnier-Moiroux
c5c5cd5ed0 Serve static content (css, js) for default UIs from DefaultResourcesFilter 2024-09-10 12:46:13 -07:00
Daniel Garnier-Moiroux
4660e042d9 Remove unused <script> and <noscript> tags in One-Time-Token submit page 2024-09-06 09:13:30 -03:00
Daniel Garnier-Moiroux
528d739a60 Use contextPath in One-Time-Token default submit UI 2024-09-06 09:13:30 -03:00
Daniel Garnier-Moiroux
ef31ae1a98 Render One Time Token UIs using lightweight templates 2024-09-05 15:02:42 -07:00
Daniel Garnier-Moiroux
a642a1bb66 Render reactive default UIs using lightweight templates 2024-09-05 15:02:42 -07:00
Daniel Garnier-Moiroux
8d47906191 Render default UIs using lightweight templates 2024-09-05 15:02:42 -07:00
Daniel Garnier-Moiroux
33495441b5 Hardcode ott-username input name in DefaultLoginPageGeneratingFilter 
- GenerateOneTimeTokenFilter uses `"username"`, the default UI should use the same parameter name
 2024-09-05 09:42:45 -03:00
Marcus Hert Da Coregio
00e4a8fb54 Add support for One-Time Token Login 
Closes gh-15114
 2024-09-03 10:07:56 -03:00
Florian Bernard
008cbc2cae Add cookie customizer to CookieRequestCache and CookieServerRequestCache 
Issue gh-15204
 2024-09-03 09:41:30 -03:00
Ilpyo-Yang
095929f6e8 Include FilterChain in SessionInformationExpiredEvent 
Closes gh-14077
 2024-08-29 13:12:27 -03:00
DingHao
ed16c86115 Improve @CurrentSecurityContext meta-annotations 
Closes gh-15551
 2024-08-13 13:18:15 -06:00
Josh Cummings
08b8b09066
Update Copyright 
Issue gh-15286
 2024-08-10 11:48:14 -06:00
DingHao
9aaf959400 Improve @AuthenticationPrincipal meta-annotations 
Closes gh-15286
 2024-08-10 11:46:51 -06:00
Daniel Garnier-Moiroux
bc8ba7f3b7 Inline CSS for default login and logout page 
- Remove the dependency on Bootstrap CSS. Results in faster load times, no failures
  in air-gapped or offline scenarios, and no dependency on an external CDN that may
  go away some day.
 2024-08-05 09:27:18 -05:00