636f3e1d5d
AbstractPreAuthenticatedProcessingFilter.securityContextRepository
...
Issue gh-10953
2022-03-09 15:33:42 -06:00
e6b6104b52
DigestAuthenticationFilter.securityContextRepository
...
Issue gh-10953
2022-03-09 15:33:42 -06:00
9b0cd5a0a8
BasicAuthenticationFilter.setSecurityContextRepository
...
Issue gh-10953
2022-03-09 15:33:42 -06:00
120f2a356f
RememberMeAuthenticationFilter.securityContextRepository
...
Issue gh-10953
2022-03-09 15:33:42 -06:00
014c471ff1
AuthenticationFilter.securityContextRepository
...
Issue gh-10953
2022-03-09 15:33:42 -06:00
f11cb988a9
AbstractAuthenticationProcessingFilter.securityContextRepository
...
Issue gh-10953
2022-03-09 15:33:42 -06:00
980e0466a7
AuthorizationManagerWebInvocationPrivilegeEvaluator grant access when AuthorizationManager abstains
...
Closes gh-10950
2022-03-09 15:21:37 -03:00
65ec2659c4
HttpSessionSecurityContextRepository saves with original response
...
Previously, the HttpSessionSecurityContextRepository unnecessarily required
the HttpServletResponse from the HttpReqeustResponseHolder passed into
loadContext. This meant code that wanted to save a SecurityContext had to
have a reference to the original HttpRequestResponseHolder. Often that
implied that the code that saves the SecurityContext must also load the
SecurityContext.
This change allows any request / response to be used to save the
SecurityContext which means any code can save the SecurityContext not just
the code that loaded it. This sets up the code to be permit requiring
explicit saves. Using the request/response from the
HttpRequestResponseHolder is only necessary for implicit saves.
Closes gh-10947
2022-03-09 10:17:15 -06:00
bc2bb8cb96
Add Kotlin example for SecuritySocketAcceptorInterceptor of RSocket
...
Closes gh-10932
2022-03-09 16:18:09 +01:00
93d4fd3559
Add SAML 2.0 Single Logout XML Support
...
Closes gh-10842
2022-03-09 09:18:01 -03:00
73f839312d
Add SAML 2.0 Login XML Support
...
Closes gh-9012
2022-03-09 09:18:01 -03:00
b9f79543c5
Add RequestAttributeSecurityContextRepository
...
Closes gh-10918
2022-03-07 14:52:24 -06:00
ff87cfce3a
Polish EntityDescriptor Customizer
...
Issue gh-10839
2022-03-04 10:42:04 -07:00
d225205bf2
Add method to customize EntityDescriptor
...
Closes gh-10839
2022-03-04 10:42:04 -07:00
923c61e9d2
Polish Formatting
...
Issue gh-10799
2022-03-02 16:37:58 -07:00
14d0663ae2
Preserve order of RelyingPartRegistration credentials
...
Issue gh-10799
2022-03-02 16:37:58 -07:00
7a02bd14c1
Replace Apache Commons Base64 Decoding
...
Issue gh-10923
2022-03-02 16:19:03 -07:00
238616da80
Use RFC2045 Encoding for SAML 2.0 Logout
...
Closes gh-10923
2022-03-02 16:18:34 -07:00
931fb6a328
Move UnmodifiableMapDeserializer
...
Issue gh-10905
2022-03-01 14:03:41 -07:00
6c3d183a94
Polish Saml2 Jackson Support
...
Issue gh-10905
2022-03-01 13:56:02 -07:00
df84826c95
Add Jackson Support for Saml2 Module
...
Closes gh-10905
2022-03-01 12:07:55 -07:00
ff15bec02d
update PasswordEncoder declaration
2022-03-01 07:48:31 -07:00
3aa7a65cb4
OAuth2AuthorizedClientArgumentResolver resolves ReactiveOAuth2AuthorizedClientManager
...
Closes gh-10846
2022-02-28 15:30:19 -07:00
70b52a001b
Change HashSet to LinkedHashSet
...
For various RelyingPartyRegistration.credentials to preserve order of insertion.
Issue gh-10799
2022-02-28 14:57:04 -07:00
efd5fc745c
Invert Log Messages
...
Closes gh-10909
2022-02-28 13:10:06 -07:00
344ab1814c
Next development version
2022-02-21 11:56:40 -03:00
2426989441
Release 5.7.0-M2
2022-02-21 11:00:07 -03:00
31d7d29282
Update org.springframework to 5.3.16
...
Closes gh-10892
2022-02-21 10:35:42 -03:00
efbd48c458
Update org.slf4j to 1.7.36
...
Closes gh-10891
2022-02-21 10:35:40 -03:00
970beaa743
Update htmlunit-driver to 2.58.0
...
Closes gh-10890
2022-02-21 10:35:37 -03:00
6e386e5f14
Update org.jetbrains.kotlin to 1.6.20-M1
...
Closes gh-10889
2022-02-21 10:35:35 -03:00
44bcfd8468
Update hibernate-entitymanager to 5.6.5.Final
...
Closes gh-10888
2022-02-21 10:35:32 -03:00
2e32a63a75
Update org.eclipse.jetty to 9.4.45.v20220203
...
Closes gh-10887
2022-02-21 10:35:29 -03:00
d30a4c197d
Update org.aspectj to 1.9.8
...
Closes gh-10886
2022-02-21 10:35:27 -03:00
2d328fa42f
Update htmlunit to 2.58.0
...
Closes gh-10885
2022-02-21 10:35:25 -03:00
5d1d9c765c
Update io.spring.javaformat to 0.0.31
...
Closes gh-10884
2022-02-21 10:35:22 -03:00
bebd615507
Update io.r2dbc to 0.9.1.RELEASE
...
Closes gh-10883
2022-02-21 10:35:20 -03:00
c4f3cd294f
Update io.projectreactor to 2020.0.16
...
Closes gh-10881
2022-02-21 10:35:15 -03:00
1f028c0ec3
Update aspectj-plugin to 6.4.1
...
Closes gh-10880
2022-02-21 10:35:13 -03:00
876a3e9296
Update com.nimbusds to 9.27
...
Closes gh-10879
2022-02-21 10:35:10 -03:00
225e4fdc95
Add .sdkmanrc
2022-02-18 13:48:05 -06:00
3d878549f4
Remove WantAssertionsSigned
...
WantAssertionsSigned requires that asserting parties sign the
assertions. This does not reflect how Spring Security actually
behaves, creating behavior mismatches.
Closes gh-10844
2022-02-18 11:43:25 -07:00
8a56e4f35e
add Kotlin examples for Spring Data Integration of servlet application
2022-02-18 08:46:20 -03:00
e97c643870
Deprecate WebSecurityConfigurerAdapter
...
Closes gh-10822
2022-02-17 12:13:50 +01:00
97c18478e5
Add Skipping Decryption Error Message
...
Closes gh-10220
2022-02-16 16:10:36 -07:00
399562b2a8
Correct Test
...
Issue gh-10220
2022-02-16 16:10:36 -07:00
836335dc89
Collect All Validation Errors
...
- OpenSaml4AuthenticationProvider now collects all validation errors
instead of treating some as their own exception
Issue gh-10220
2022-02-16 16:10:19 -07:00
371389580b
Update JavaDoc
...
Issue gh-10564
2022-02-15 12:57:32 -07:00
0fb6840db3
Make WebAuthenticationDetails constructor public
...
Closes gh-10564
2022-02-15 12:57:32 -07:00
c6b185465d
Add DEFAULT_USER_SCHEMA_DDL_LOCATION constant
...
Closes gh-10837
2022-02-15 11:24:23 +01:00
Rob Winch
Marcus Da Coregio
Lijamaija
Josh Cummings
Ulrich Grave
Sander van Schouwenburg
Talerngpong Virojwutikul
m0k045e
Filip Hanik
Eleftheria Stein
Yuriy Savchenko