Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,909 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

12909 Commits

Author SHA1 Message Date
Steve Riesenberg fd547321e8
Default to XorCsrfTokenRequestAttributeHandler 
As of gh-11960, Xor CSRF tokens are the default in 6.0. This commit
makes CsrfAuthenticationStrategy consistent with CsrfFilter.

Issue gh-11960
Closes gh-12235
 2022-11-18 22:50:26 -06:00
Steve Riesenberg 2fe2f919b7
Update org.springframework.data to 2021.2.6 
Closes gh-12249
 2022-11-18 22:50:17 -06:00
Steve Riesenberg 148a01a29c
Update org.springframework to 5.3.24 
Closes gh-12248
 2022-11-18 22:50:14 -06:00
Steve Riesenberg a80013313f
Update org.jetbrains.kotlin to 1.7.21 
Closes gh-12247
 2022-11-18 22:50:10 -06:00
Steve Riesenberg b4a41c8db4
Update hsqldb to 2.7.1 
Closes gh-12246
 2022-11-18 22:50:07 -06:00
Steve Riesenberg aacb4e0658
Update hibernate-entitymanager to 5.6.14.Final 
Closes gh-12245
 2022-11-18 22:50:03 -06:00
Steve Riesenberg d019b536a0
Update io.projectreactor to 2020.0.25 
Closes gh-12243
 2022-11-18 22:49:57 -06:00
Steve Riesenberg e173dfac0b
Exclude minor version updates 2022-11-18 22:43:33 -06:00
Josh Cummings 3f5d8b39ce
Restructure Migration Guide 
Closes gh-12242
 2022-11-18 16:57:32 -07:00
Steve Riesenberg 34102a6531
Document default SecurityContextRepository 
Issue gh-12049
 2022-11-18 16:14:22 -06:00
Steve Riesenberg dd9f954ace
Fix tests in CsrfConfigurerTests 
Closes gh-12241
 2022-11-18 14:58:41 -06:00
Steve Riesenberg 5da78f44f2
Merge branch '5.8.x' 2022-11-18 14:54:33 -06:00
Steve Riesenberg ea6ce05662
Add configurer tests for CookieCsrfTokenRepository 
Issue gh-12236
 2022-11-18 13:12:59 -06:00
Steve Riesenberg 2ed7cff643
Check for existing token before clearing 
Closes gh-12236
 2022-11-18 13:12:59 -06:00
Marcus Da Coregio bf13a8488a Merge branch '5.8.x' 2022-11-18 15:36:03 -03:00
Marcus Da Coregio 1919b4e38b Migration guide for CAS support removal 
Issue gh-12163
 2022-11-18 15:35:39 -03:00
Josh Cummings f17f9f98bd
Fix Broken Link 
Issue gh-12224
 2022-11-18 10:06:16 -07:00
Josh Cummings 9fc699b0a8
Merge branch '5.8.x' 2022-11-18 10:04:53 -07:00
Josh Cummings f6fb138363
Change to Preparation Guide 2022-11-18 10:04:20 -07:00
Josh Cummings 24860d9fb0
Observe Filter Start and Stop 
Issue gh-11911
 2022-11-17 15:11:29 -07:00
Josh Cummings 9d876fce82 Polish ExpressionAuthorizationDecision 
Issue gh-11493
 2022-11-17 15:09:52 -07:00
Josh Cummings e08ed89403 Polish Span and Meter Names 
Closes gh-12156
 2022-11-17 15:09:52 -07:00
Josh Cummings 88e64bac0c Polish Tests 
Issue gh-11992
 2022-11-17 15:09:52 -07:00
Steve Riesenberg 4e88623873
Polish gh-12087 in 6.0 2022-11-17 14:31:44 -06:00
Steve Riesenberg a3d35ecf3c
Merge branch '5.8.x' 
Closes gh-12234
 2022-11-17 14:27:41 -06:00
Michael Sosa 52888d6206
Warn when AuthorizationGrantType does not match 
Log a warning when AuthorizationGrantType does not exactly match a
pre-defined constant.

Closes gh-11905
 2022-11-17 14:17:54 -06:00
Steve Riesenberg 102c5e7a72
Merge branch '5.8.x' 
Merged using the ours strategy.
 2022-11-17 09:34:23 -06:00
Steve Riesenberg a61fffc209
Document reactive support for CSRF BREACH 
Issue gh-11959
 2022-11-17 09:33:13 -06:00
Steve Riesenberg 3cb2b0606e
Document deprecation of tokenFromMultipartDataEnabled 
Issue gh-12020
 2022-11-17 09:33:13 -06:00
Marcus Da Coregio 1648151dd2 Register hints for @WithSecurityContext on class level 
Issue gh-12215
 2022-11-17 10:18:15 -03:00
Steve Riesenberg 222f8ae1a5
Merge branch '5.8.x' 2022-11-16 16:54:32 -06:00
Jan Marten 2301e8ca77
Fix Javadoc in EnableWebSocketSecurity 
Add missing method name in EnableWebSocketSecurity JavaDoc code example.
 2022-11-16 16:51:42 -06:00
Josh Cummings f308f9f54c
Merge branch '5.8.x' 2022-11-16 12:04:45 -07:00
Josh Cummings 17123a3b0f
Polish JwtAuthenticationConverter Preparation Steps 
Issue gh-12022
 2022-11-16 12:00:10 -07:00
Josh Cummings 63aec87c61
Use Imperative in Headers 
Issue gh-12224
 2022-11-16 11:58:25 -07:00
Josh Cummings 7675874137
Restructure Migration Steps 
CLoses gh-12224
 2022-11-16 11:35:47 -07:00
Marcus Da Coregio fa9cb82d4a Merge branch '5.8.x' 2022-11-16 14:51:37 -03:00
Marcus Da Coregio 3d0be9beba Merge branch '5.7.x' into 5.8.x 2022-11-16 14:51:23 -03:00
Marcus Da Coregio 2d19d972f4 Merge branch '5.6.x' into 5.7.x 2022-11-16 14:51:07 -03:00
Marcus Da Coregio d5aabd721a Specify UTF8 for response content 
This is needed because in some other platforms, like Windows, the default charset might be different

Issue gh-12026
 2022-11-16 14:50:31 -03:00
Marcus Da Coregio a9ece433fe Merge branch '5.8.x' 
Closes gh-12223
 2022-11-16 13:45:17 -03:00
Marcus Da Coregio 9b6be3a556 Merge branch '5.7.x' into 5.8.x 
Closes gh-12222
 2022-11-16 13:44:48 -03:00
Marcus Da Coregio 8441e755d3 Merge branch '5.6.x' into 5.7.x 
Closes gh-12221
 2022-11-16 13:44:16 -03:00
Marcus Da Coregio 53148dc7b5 Use UTF-8 in Saml2MetadataFilter response writer 
Closes gh-12026
 2022-11-16 13:43:46 -03:00
Marcus Da Coregio 177e11fbd7 Add WebTestUtils test runtime hints 
Closes gh-12216
 2022-11-16 11:16:20 -03:00
Marcus Da Coregio 7094ee3710 Add runtime hints for annotations using @WithSecurityContext 
Closes gh-12215
 2022-11-16 10:02:34 -03:00
Marcus Da Coregio 063f06e7bf Register FilterChainProxy for all dispatcher types 
Closes gh-12180
 2022-11-16 09:55:21 -03:00
Steve Riesenberg 7929d7b3ee
Merge branch '5.8.x' 
Merged using the ours strategy.
 2022-11-15 14:07:50 -06:00
Steve Riesenberg 754fe7f457
Document deprecations in oauth2 modules 
* oauth2-client
* oauth2-resource-server

Issue gh-12022
 2022-11-15 14:06:34 -06:00
Josh Cummings 0ee01b1ff9
Merge branch '5.8.x' 
Closes gh-12212
 2022-11-15 11:55:38 -07:00