e39b39dada
Corrected Reference to HttpServletRequest#authenticate
2024-08-26 15:35:13 -07:00
d2e8c19789
Merge branch '6.3.x'
2024-08-26 16:33:04 -06:00
279cb89eac
Merge branch '6.2.x' into 6.3.x
2024-08-26 16:32:58 -06:00
2ba9b6821a
Fix OIDC Logout Code Snippets
2024-08-26 15:32:35 -07:00
f372f5cf52
Replace OidcSessionStrategy References with OidcSessionRegistry
2024-08-26 15:32:35 -07:00
f0f04e490e
Merge branch '6.3.x'
2024-08-26 16:25:27 -06:00
6ea33ceaea
Merge branch '6.2.x' into 6.3.x
2024-08-26 16:25:12 -06:00
47723f6d39
Fix code format in OIDC Logout docs
2024-08-26 15:14:02 -07:00
8318a42959
Update What's New for 6.4
...
Issue gh-15437
2024-08-22 13:12:33 -05:00
06febf7857
Update What's New
2024-08-21 18:19:18 -06:00
e3c19ba86c
Add RestClient interceptor
...
Closes gh-13588
2024-08-16 17:15:18 -05:00
12a9f9240c
Fix: Adjusted code formatting to remaining code examples.
2024-08-12 12:59:36 -03:00
e40c98e6d7
Deprecate PrePostTemplateDefaults
...
Since there is nothing specific to configuring pre/post
annotations, there is no need for the extra class.
If a need like this does arise in the future,
either AnnotationTemplateExpressionDefaults can be sub-
classed, or it can have introduced a Map field holding
custom properties.
Issue gh-15286
2024-08-10 11:46:51 -06:00
f4d9d0d54f
Document @AuthenticationPrincipal meta-annotations
...
Issue gh-15286
2024-08-10 11:46:51 -06:00
96682a1d5c
Document OpenSAML 4 vs OpenSAML 5 Support
...
Closes gh-11658
2024-08-06 18:14:12 -06:00
1da383b360
Add OpenSAML 5 Support
...
Issue gh-11658
2024-08-06 18:14:11 -06:00
1be596bb2f
Use OpenSAML API for registration
...
Issue gh-11658
2024-08-06 18:14:11 -06:00
51fc05630d
Use OpenSAML API for web.authentication.logout
...
Issue gh-11658
2024-08-06 18:14:10 -06:00
ef35c4a64a
Merge branch '6.3.x'
2024-07-29 15:10:50 -06:00
97a49e18b9
Merge branch '6.2.x' into 6.3.x
2024-07-29 15:10:32 -06:00
e51507e32d
Polish Inline Code Formatting
2024-07-29 14:08:01 -07:00
bfee6927c2
Correct Explanation for HttpSessionCsrfTokenRepository
2024-07-29 14:08:01 -07:00
e0be46ea84
Merge branch '6.3.x'
2024-07-29 13:40:27 -06:00
da65830569
Use Correct Meta-Annotation in Kotlin Sample
2024-07-29 13:39:34 -06:00
8231b8a03b
Merge branch '6.3.x'
2024-07-29 14:56:16 -03:00
c1b3b329af
Merge branch '6.2.x' into 6.3.x
2024-07-29 14:56:09 -03:00
3d4bcf1b44
fix: Restrict automatic CORS configuration to UrlBasedCorsConfigurationSource
...
- Update CORS configuration logic to automatically enable .cors() only if a UrlBasedCorsConfigurationSource bean is present.
- Modify applyCorsIfAvailable method to check for UrlBasedCorsConfigurationSource instances.
2024-07-29 14:55:55 -03:00
9d8888c5f0
Use AssertingPartyMetadata
...
Issue gh-15394
2024-07-19 18:48:23 -07:00
e6dfb63bdf
Add OpenSamlAssertingPartyMetadataRepository
...
Closes gh-12116
Closes gh-15395
2024-07-19 18:48:23 -07:00
796e4d6b6c
Add query parameter support for authn requests
...
Closes gh-15017
2024-07-13 23:57:57 -06:00
5bd4db1a13
Use javadoc macro
...
Closes gh-15386
2024-07-09 22:35:01 -05:00
f184d13096
Update the OAuth2 jwt and opaque resource server documentation with the Lambda DSL
...
The OAuth2ResourceServerConfigurer::opaqueToken() and ::jwt() methods are deprecated since Spring Security 6.1
2024-07-09 07:25:13 -07:00
290cee238d
Merge branch '6.2.x' into 6.3.x
...
Closes gh-15380
2024-07-08 20:52:46 -06:00
f4cbaaa2dd
Fix typos and formatting in documentation
...
Closes gh-15353
2024-07-08 20:52:06 -06:00
148e7843bf
Fix typos and formatting in documentation
2024-07-08 19:51:06 -07:00
7b39800606
Add CachingRelyingPartyRegistrationRepository
...
Closes gh-15341
2024-07-01 19:43:09 -06:00
f532807836
Merge branch '6.3.x'
2024-07-01 17:20:52 -06:00
4975254124
Merge branch '6.2.x' into 6.3.x
...
Closes gh-15340
2024-07-01 17:19:51 -06:00
99cda31579
Update prerequisites documentation
...
Raises the minimum version of the Java runtime for Spring
Security from 8 to 17
Closes gh-15323
2024-07-01 17:19:22 -06:00
48826201b1
Update architecture.adoc
...
The list of filters is printed at DEBUG level on the application startup and not INFO level, see DefaultSecurityFilterChain
2024-07-01 15:19:50 -06:00
ceb278c908
Update events.adoc
...
Changes GenericAuthenticationFailureEvent to AbstractAuthenticationFailureEvent
The class GenericAuthenticationFailureEvent does not exist.
2024-07-01 15:19:00 -06:00
e7212b37f7
Update events.adoc
...
Changes type to DefaultAuthenticationEventPublisher
Only DefaultAuthenticationEventPublisher has the method
setDefaultAuthenticationFailureEvent, but not the interface
AuthenticationEventPublisher.
2024-07-01 15:19:00 -06:00
a9aefafb76
Fix malformed list in "Using Method Parameters" documentation
2024-07-01 15:18:17 -06:00
8572764583
Merge branch '6.3.x'
...
Closes gh-15322
2024-06-28 15:34:28 -03:00
113e72f18e
Merge branch '6.2.x' into 6.3.x
...
Closes gh-15321
2024-06-28 15:34:14 -03:00
462ce1ee91
Merge branch '5.8.x' into 6.2.x
...
Closes gh-15320
2024-06-28 15:33:59 -03:00
779030b6cd
Document the role of CredentialsContainer
...
Closes gh-15319
2024-06-28 15:33:34 -03:00
dd7472272a
Merge branch '6.3.x'
...
Closes gh-15306
2024-06-26 14:04:27 -03:00
e16ce57fbb
Use AuthenticationFailureHandler instead of @ControllerAdvice
...
Closes gh-15305
2024-06-26 14:03:44 -03:00
d5328df82d
Merge branch '6.3.x'
2024-06-24 13:02:15 -06:00
Xi Minghui
Josh Cummings
Hero Wanders
Junhyunny
Steve Riesenberg
Robert Danczak
Taha Körkem
Marcus Hert Da Coregio
baezzys
Rob Winch
Antoine Rey
Seungrae
Dumitru Boldureanu
Stefan Ganzer
Marcono1234