Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-24 16:05:15 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,834 Commits 34 Branches 337 Tags
Commit Graph

7834 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Édouard Hue
e8dd1325fd Fixed misleading OAuth2 error messages 
Error messages sent by BearerTokenAccessDeniedHandler included
information about the scopes of the rejected token instead of
the scopes required by the resource.
* Removal of token scopes from error_description attribute.
* Removal of scope attribute from WWW-Authenticate response header.

Fixes gh-7089
 2019-07-18 07:01:33 -04:00
Eleftheria Stein
b153d92b23 Fix JavaDoc for formLogin in ServerHttpSecurity 2019-07-18 06:23:04 -04:00
Rob Winch
dc2705189f
Fix typo in documentation 
Fixed typo in documentation.
 2019-07-16 12:01:07 -05:00
Michael Vitz
09e8ae42ed Allow configuration of SessionAuthenticationStrategy for CSRF 
Closes gh-5300
 2019-07-16 07:47:13 -05:00
Rob Winch
ea54d9014d
DSL nested builder for HTTP security 
DSL nested builder for HTTP security

Fixes gh-5557
 2019-07-12 16:09:19 -05:00
Eleftheria Stein
a0ca45e4b8 Use http security nested builder in samples 
Issue: gh-5557
 2019-07-12 14:00:07 -04:00
Eleftheria Stein
b004f9f677 Use http security nested builder in docs 
Issue: gh-5557
 2019-07-12 13:58:17 -04:00
Eleftheria Stein
7961b819aa Allow configuration of session fixation and concurrency through nested builder 
Issue: gh-5557
 2019-07-12 13:53:55 -04:00
Lars Grefer
61f3e8cf3f Update to Gradle 5.5.1 2019-07-11 22:15:42 -04:00
Lars Grefer
2e38e3bd46 Update to Gradle 5.5 2019-07-11 22:15:42 -04:00
Pei-Tang Huang
0fea2fb256 Add Chinese Traditional localized messages. 2019-07-10 12:01:22 -05:00
Clement Ng
28855e9cd6 Changed docs to reflect that init should apply configurers 2019-07-10 11:54:56 -05:00
Lars Grefer
3d2542ce54 Migrate TrangPlugin groovy->java 
Issue: gh-4939
 2019-07-10 11:21:54 -05:00
Lars Grefer
3ea9d376b2 Cleanup explicit type arguments 2019-07-10 09:32:41 -05:00
Lars Grefer
c5b5cc507c Cleanup redundant type casts 2019-07-10 09:31:09 -05:00
George Sofianos
8948ba3a48 Fixed typo in documentation. 2019-07-09 23:41:40 +03:00
Eleftheria Stein
4b2539df10 Allow configuration of oauth2 resource server through nested builder 
Issue: gh-5557
 2019-07-09 16:11:26 -04:00
Eleftheria Stein
415760838f Allow configuration of oauth2 client through nested builder 
Issue: gh-5557
 2019-07-09 16:03:46 -04:00
Eleftheria Stein
e47389e60b Allow configuration of oauth2 login through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
bf1bbd14e9 Allow configuration of openid login through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
c3dad06ea6 Allow configuration of request matchers through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
1ad9f15e19 Allow configuration of requires channel through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
ae8e12f049 Allow configuration of anonymous through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
a5943fbafb Allow configuration of servlet api through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
04e0dcfe61 Allow configuration of security context through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
81d3cf1e7b Allow configuration of authorize requests through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
1445d1b012 Allow configuration of request cache through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
fcb119b94e Allow configuration of remember me through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
ae9eb6f56b Allow configuration of x509 through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
bfc9538da1 Allow configuration of jee through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
86f0f84740 Allow configuration of port mapper through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
6fbea88e1e Allow configuration of session management through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
6fd515813c Allow configuration of cors through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
a9a1f8ee53 Allow configuration of form login through nested builder 
Issue: gh-5557
 2019-07-09 15:37:28 -04:00
Eleftheria Stein
758397f102 Allow configuration of headers through nested builder 
Issue: gh-5557
 2019-07-09 15:35:37 -04:00
Eleftheria Stein
6986cf3ef3 Allow configuration of csrf through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Eleftheria Stein
1a31376dda Allow configuration of exception handling through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Eleftheria Stein
92314b0956 Allow configuration of logout through nested builder 
Issue: gh-5557
 2019-07-09 10:14:18 -04:00
Lars Grefer
43737a56bd Use foreach where possible 2019-07-09 06:11:45 -06:00
Lars Grefer
7dc28ff376 Use contains() instead of indexOf() != -1 2019-07-09 06:07:42 -06:00
Joe Grandja
e554547593 Revert Map constructor for InMemoryReactiveClientRegistrationRepository 
This commit reverts f6414e9a52f6a66dc8d21c0455c0b9ead7edc520 and
partial revert of e1b095df3260c45c53408ef0a3360a7aa7c5073b.
NOTE: InMemoryReactiveClientRegistrationRepository should not expose a
Map constructor as it would allow the caller to pass in a 'distributed' (remote) Map,
which would result in a blocking I/O operation.
 2019-07-08 15:32:52 -04:00
Joe Grandja
23d61d43e5 Polish #5994 2019-07-08 14:50:38 -04:00
Vedran Pavic
9432670f1d Allow InMemoryOAuth2AuthorizedClientService to be constructed with a Map 
Fixes gh-5994
 2019-07-08 12:46:26 -04:00
Eleftheria Stein
d66d895e60 Migrate ServletApiConfigurerTests groovy->java 
Issue: gh-4939
 2019-07-04 12:14:49 -04:00
Bruno Studer
8016a193b9
Optimize IpAddressMatcher 
Get rid of byte array allocation in matcher and small optimizations
 2019-07-03 23:27:12 -06:00
Édouard Hue
3c1472501f Fixed validation in ClientRegistration.Builder 
ClientRegistration.Builder defaulted to validating as an
authorization_code registration, though a custom grant type could be in
use. The actual grant_type is now verified for every case.
 - Fixed validation in ClientRegistration.Builder
 - New test that fails unless the issue is fixed.

Also made OAuth2AuthorizationGrantRequestEntityUtils public to help
implementing custom token response clients.

Fixes gh-7040
 2019-07-03 16:07:19 -05:00
Rob Winch
e1f155ba89 Polish SCrypt Upgrade Support 
* Break up tests
* Rename test methods to follow conventions
* Fix checkstyle

Issue gh-7057
 2019-07-03 15:50:51 -05:00
Lars Grefer
e95effc839 Allow upgrading between different SCrypt encodings 
Fixes gh-7057
 2019-07-03 15:48:42 -05:00
Rob Winch
742df2cd1d Polish BCrypt upgrade 
Issue gh-7042
 2019-07-03 14:08:21 -05:00
Lars Grefer
d3d6a8743e Allow upgrading between different BCrypt encodings 
Fixes gh-7042
 2019-07-03 14:08:04 -05:00