60653ddf19
Update htmlunit to 2.56.0
...
Closes gh-10718
2022-01-14 11:58:45 -06:00
7c54f98944
Update io.r2dbc to 0.9.0.RELEASE
...
Closes gh-10717
2022-01-14 11:58:45 -06:00
5cd7c71923
Update io.projectreactor to 2020.0.15
...
Closes gh-10715
2022-01-14 11:58:45 -06:00
7d0185f051
Update mockk to 1.12.2
...
Closes gh-10714
2022-01-14 11:58:45 -06:00
b91d38752a
Update com.nimbusds to 9.22
...
Closes gh-10713
2022-01-14 11:58:45 -06:00
9b12616913
Update jackson-bom to 2.13.1
...
Closes gh-10710
2022-01-14 11:58:45 -06:00
08139cf9f4
Update logback-classic to 1.2.10
...
Closes gh-10709
2022-01-14 11:58:45 -06:00
801dcfdcb4
Allow milestones and release candidates in version upgrades
2022-01-14 11:58:45 -06:00
4939331501
Fix inconsistency in hasProperty check
2022-01-13 17:39:37 -06:00
8abd4e999f
Add GitHubReleasePlugin with createGitHubRelease task
...
Closes gh-10456
Closes gh-10457
2022-01-13 17:39:36 -06:00
194eaf8491
Pull most recent Structure101 version
...
Closes gh-10696
2022-01-11 10:03:13 -07:00
60ed3602f6
Make source code compatible with JDK 8
...
Closes gh-10695
2022-01-11 09:19:41 -03:00
214cfe807e
Allow Jwt assertion to be resolved
...
Closes gh-9812
2022-01-10 10:42:10 -05:00
1ab0705b47
Fix typo
2022-01-10 16:17:42 +01:00
f04cd641b0
Fix @since tag
...
Issue gh-10590, gh-10554
2022-01-06 13:18:25 -03:00
3bb82c4449
Antora prerelease: true for milestone and rc
2022-01-05 09:59:48 -06:00
89366d0874
Update RELEASE.adoc for antora.yml
2022-01-04 15:51:03 -06:00
6884a16726
Add CheckAntoraVersionPlugin
2022-01-04 15:29:14 -06:00
6b54afe9a3
Remove SAML 2.0 Logout Default
...
Closes gh-10607
2022-01-03 12:54:22 -07:00
b9453da343
Support No SingleLogoutServiceLocation
...
Closes gh-10674
2022-01-03 12:54:18 -07:00
18427b6411
Configure WebInvocationPrivilegeEvaluator bean for multiple filter chains
...
Closes gh-10554
2021-12-13 08:57:30 -03:00
7e17a00197
Add RequestMatcherEntry
2021-12-13 08:57:30 -03:00
53b8cff26f
Introduce AuthorizationManagerWebInvocationPrivilegeEvaluator
...
Closes gh-10590
2021-12-13 08:57:30 -03:00
cd8983d4e5
Polish enableSessionUrlRewriting Clarification
...
Closes gh-7644
2021-12-09 12:14:40 -07:00
5598688fa6
Clarify behaviour of enableSessionUrlRewriting
...
See #3087
2021-12-09 12:06:30 -07:00
22379e79e7
Fix the bug that the custom GrantedAuthority comparison fails
...
Closes gh-10566
2021-12-08 08:50:36 -03:00
65426a40ec
Add Cross Origin Policies headers
...
Add DSL support for Cross-Origin-Opener-Policy, Cross-Origin-Embedder-Policy and Cross-Origin-Resource-Policy headers
Closes gh-9385, gh-10118
2021-12-07 17:23:06 +01:00
7ec3b55ab3
Fix Reactive OAuth2 Kotlin DSL examples
...
Closes gh-10580
2021-12-07 13:48:11 +01:00
ed3b0fbaad
Prevent using both authorizeRequests and authorizeHttpRequests
...
Closes gh-10573
2021-12-06 15:47:49 -03:00
62e8799a8d
Use BDD in tests
2021-12-02 17:44:47 -06:00
df0f6f83af
Polish gh-9597
2021-12-02 17:44:47 -06:00
925d531cbe
Set details on authentication token created by HttpServlet3RequestFactory
...
Currently the login mechanism when triggered by executing HttpServlet3RequestFactory#login does not set any details on the underlying authentication token that is authenticated.
This change adds an AuthenticationDetailsSource on the HttpServlet3RequestFactory, which defaults to a WebAuthenticationDetailsSource.
Closes gh-9579
2021-12-02 17:44:46 -06:00
074e38d565
Add missing since
...
Issue gh-7765
2021-12-02 12:09:57 -06:00
3af619d565
Add hasIpAddress to Reactive Kotlin DSL
...
Closes gh-10571
2021-12-02 12:01:11 -06:00
bb2d80fea3
Update copyright year
...
Issue gh-10557
2021-12-01 17:35:43 -06:00
f49c286050
Fix case sensitive headers comparison
...
Closes gh-10557
2021-12-01 15:05:13 -06:00
dbe4d704f8
Add SP NameIDFormat Support
...
closes gh-9115
2021-12-01 13:23:30 -07:00
a68411566e
Polish Memory Leak Mitigation
...
Issue gh-9841
2021-11-30 15:33:47 -07:00
2bc643d6c8
Address SecurityContextHolder memory leak
...
To get current context without creating a new context.
Creating a new context may cause ThreadLocal leak.
Closes gh-9841
2021-11-30 15:33:39 -07:00
1251cde04c
Add Missing Since
...
Issue gh-10482
2021-11-30 15:17:48 -07:00
a3a9de1b9b
PermitAllSupport supports AuthorizeHttpRequestsConfigurer
...
PermitAllSupport supports either an ExpressionUrlAuthorizationConfigurer or an AuthorizeHttpRequestsConfigurer. If none or both are configured an error message is thrown.
Closes gh-10482
2021-11-30 15:17:22 -07:00
f838b7cb1d
Polish gh-10081
2021-11-30 15:44:41 -06:00
23e895f0b1
Add ObjectIdentityGenerator customization to JdbcAclService
...
Providing the possibility to change, how ObjectIdentitys are created inside the BasicLookupStrategy,JdbcAclService
There was a problem with hard coded object identity creation inside the BasicLookupStrategy and the JdbcAclService. It was overkill to overwrite
these classes only for changing this, so introducing an ObjectIdentityGenerator seems the be the better solution here. At default, the standard
ObjectIdentityRetrievalStrategyImpl is used, but can be customized due to setters.
Closes gh-10079
2021-11-30 15:43:11 -06:00
204f0b4599
Polish gh-10007
2021-11-30 15:27:58 -06:00
43317c5a61
Support IP whitelist for Spring Security Webflux
...
Closes gh-7765
2021-11-30 15:27:58 -06:00
dec858a5b7
Fix JwtClaimValidator wrong error code
...
Previously JwtClaimValidator returned the invalid_request error on claim validation failure.
But validators have to return invalid_token errors on failure according to:
https://datatracker.ietf.org/doc/html/rfc6750#section-3.1 .
Also see gh-10337
Closes gh-10337
2021-11-29 12:04:30 -07:00
bbeca7cd65
Polish LDAP serialization
...
Closes gh-9263
2021-11-29 18:03:15 +01:00
3c18278123
Start with LDAP Jackson2 mixins
...
Issue gh-9263
2021-11-29 18:03:03 +01:00
bb99d7d95a
Fix return type for NoOpPasswordEncoder bean in documentation
2021-11-23 14:13:12 -03:00
d736a2b358
Remove usages of Gradle's jcenter() repository
...
Closes gh-10253
2021-11-22 09:28:47 -03:00
Steve Riesenberg
Josh Cummings
Marcus Da Coregio
Joe Grandja
heowc
Rob Winch
James Howe
Guirong Hu
Karl Tinawi
Arnaud Mergey
Hiroshi Shirosaki
Igor Pelesic
Jonas Dittrich
Jonas Erbe
Eleftheria Stein
Markus Heiden
Henning Poettker
Lars Grefer