Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
8,371 Commits 32 Branches 333 Tags 111 MiB
Commit Graph

8371 Commits

Author SHA1 Message Date
Eddú Meléndez 9b2af944fa Add unbounid support in xml 
Currently, spring-security provides apacheds integration by default. This
commit introduces a new `mode` in the `ldap-server` tag which allows to choose
beetween `apacheds` and `unboundid`. In order to keep backward compatibility
if `mode` is not set and apacheds jars are in the classpath apacheds is used
as a embedded ldap.

Fixes gh-6011
Currently, unboundid was added as a support for embbeded LDAP and it
is used on the Java Config. This commit introduces support from XML side.
Also, give the chance to users to move from apacheds to unboundid using
a new attribute `mode`.

Fixes gh-6011
 2019-08-10 19:07:45 -05:00
Francesco Chicchiriccò 0410bac559 Add support for oauth2Login().securityContextRepository(...) 
Fixes gh-7222
 2019-08-10 15:56:20 -04:00
Lars Grefer ff1070df36 remove redundant modifiers found by checkstyle 2019-08-10 00:18:56 +02:00
Lars Grefer bbefc491b2 unused imports 2019-08-09 16:59:07 -05:00
Lars Grefer 38de737663 Java 8: Statement lambda can be replaced with expression lambda 2019-08-09 16:59:07 -05:00
Lars Grefer 7b2a7847e5 Java 8: Single Map method can be used 2019-08-09 16:59:07 -05:00
Lars Grefer 3a5d8ba696 Java 8: Collections.sort() can be replaced with List.sort() 2019-08-09 16:59:07 -05:00
Lars Grefer 25c06be1eb Java 7: Identical 'catch' branches in 'try' statement 2019-08-09 16:59:07 -05:00
Lars Grefer 5e44a249f8 Java 5: while-loop replaceable with foreach 2019-08-09 16:59:07 -05:00
Lars Grefer 91c846756e Java 5: Unnecessary Boxing 2019-08-09 16:59:07 -05:00
Lars Grefer 578d628774 'Collection.toArray()' call style 2019-08-09 16:57:31 -05:00
Lars Grefer b3352c7c6e Add Checkstyle configuration for IntelliJ IDEA 2019-08-09 16:21:30 -05:00
Lars Grefer d9016e52e6 Let checkstyle prevent redundant modifiers in the future 2019-08-09 02:52:19 +02:00
Lars Grefer b388976ac8 fix checkstyle 2019-08-09 02:46:20 +02:00
Lars Grefer 50b4883756 Revert Documentation changes 2019-08-09 00:45:42 +02:00
Lars Grefer 35bdf1f009 Unnecessary semicolon 2019-08-09 00:43:13 +02:00
Lars Grefer d9c1f03b84 Unnecessary interface modifier 2019-08-09 00:42:35 +02:00
Lars Grefer 40bee457f9 Unnecessary enum modifier 2019-08-09 00:42:07 +02:00
Lars Grefer 8d0ca14e55 Unnecessary conversion to String 2019-08-09 00:41:46 +02:00
Lars Grefer eddcd1622f Type parameter extends Object 
Reports any type parameters and wildcard type arguments explicitly declared to extend java.lang.Object.
 2019-08-09 00:40:13 +02:00
Lars Grefer fe9e454978 StandardCharsets can be used 
Reports methods and constructors where constant charset String literal is used (like "UTF-8") which could be replaced with a predefined Charset object like StandardCharsets.UTF_8. This may work a little bit faster, because charset lookup becomes unnecessary. Also catching UnsupportedEncodingException may become unnecessary as well. In this case the catch block will be removed automatically.
 2019-08-09 00:39:09 +02:00
Eddú Meléndez a171d8b4bf Make ldap integration tests independent 
Fixes gh-5942
 2019-08-08 17:52:58 -04:00
Eddú Meléndez 76718c4db6 Add method getPort in ApacheDSContainer 
Fixes gh-7236
 2019-08-08 17:52:58 -04:00
Lars Grefer fb39d9c255 Anonymous type can be replaced with lambda 2019-08-08 17:09:09 -04:00
Lars Grefer 05f42a4995 Remove unused imports 2019-08-08 14:22:31 -04:00
Josh Cummings 3a831820f6
Polish LdapUserDetailsManagerModifyPasswordTests 
Issue gh-3392
 2019-08-07 14:37:46 -06:00
Josh Cummings 65f6025cef
Polish OAuth2LoginConfigurer 
Improve way of accessing ApplicationContext to ensure backward
compatibility.

Issue gh-7232
 2019-08-07 13:25:38 -06:00
Josh Cummings a00ad37168
OAuth2LoginConfigurer UserService Beans 
Fixes gh-7232
 2019-08-07 10:58:23 -06:00
Lars Grefer f5cd0ec302 Use try-with-resources instead of try-finally 2019-08-06 15:33:04 -05:00
Jeffrey Morlan a17d66463d Fix race condition in SessionRegistryImpl 
Adding/removing sessions from principals wasn't atomic. If one thread
removed the last session from a principal while another thread added a
new one, the addition could be lost.

Fixes gh-3189
 2019-08-06 13:45:50 -05:00
Henrique Luis Schmidt da62c31fdc Add test examples for the resource server sample 
- Add a post endpoint in /messages
- Changes the security config to require the read scope to GET a message and the write scope
to POST a new message.
- Changes the jwks of the mock server so I could create a new access token with the write scope.
- Creates tests and integration-tests for the POST endpoint.
- Changes the README to add an example of a POST request.

Fixes gh-7118
 2019-08-06 14:27:29 -04:00
kostya05983 646f257e01 docs, change name of class in multiple httpSecurity 2019-08-06 13:05:55 -05:00
Lars Grefer 2056834432 Cleanup unnecessary unboxing 
Unboxing is unnecessary under Java 5 and newer, and can be safely removed.
 2019-08-06 10:17:38 -04:00
Lars Grefer 2306d987e9 Cleanup unnecessary boxing 2019-08-06 10:17:38 -04:00
Filip Hanik 2055466ad7 Add Javadoc 2019-08-05 19:43:00 -04:00
Filip Hanik ddf68821cb Add RequestMatcher.matcher(HttpServletRequest) 
Step 3 - Usage of RequestVariablesExtractor or types that are assigned
to AntPathRequestMatcher should be replaced with the new method.

[closes #7148]
 2019-08-05 19:43:00 -04:00
Eddú Meléndez 496579dde2 Add match result for servlet requests 
Fixes gh-7148
 2019-08-05 19:43:00 -04:00
Eddú Meléndez 2c836a171a Add authenticationFailureHandler method in OAuth2LoginSpec 
Allow to customize the failure handler.

Fixes gh-7051
 2019-08-05 14:09:11 -05:00
Simeon Macke b3da1e466b Add Argon2PasswordEncoder 
Add PasswordEncoder for the Argon2 hashing algorithm (Password Hashing
Competition (PHC) winner).
This implementation uses the BouncyCastle-implementation of Argon2.

Fixes gh-5354
 2019-08-05 13:54:29 -05:00
Josh Cummings 1b1e45a1ef
Next Development Version 2019-08-05 12:29:53 -06:00
Josh Cummings be23fd626e
Release 5.2.0.M4 2019-08-05 12:10:04 -06:00
Josh Cummings 7d7cce27f1
Revert "Update to Spring Boot 2.2.0.M4" 
This reverts commit c8f7273aa2.

Fixes gh-7196
 2019-08-05 12:09:03 -06:00
Josh Cummings cc7512a6eb
Revert "Release 5.2.0.M4" 
This reverts commit 34e54c4675.
 2019-08-05 12:06:13 -06:00
Josh Cummings 34e54c4675
Release 5.2.0.M4 2019-08-05 11:38:46 -06:00
Josh Cummings c8f7273aa2
Update to Spring Boot 2.2.0.M4 
Fixes gh-7143
 2019-08-05 11:37:46 -06:00
Filip Hanik ca8142188c
Build using openjdk8 
Fixes gh-7169

[closes #7169]
 2019-08-05 09:35:41 -06:00
Filip Hanik 802a8015ac
Upgrade com.google.appengine:appengine components to 1.9.76 
Fixes gh-7134

[closes #7134]
 2019-08-05 09:35:41 -06:00
Filip Hanik a2a0674d00
Upgrade org.mockito:mockito-core to 3.0.0 
Fixes gh-7145

[closes #7145]
 2019-08-05 09:35:41 -06:00
Filip Hanik 7a5b8e3e85
Upgrade com.nimbusds:oauth2-oidc-sdk to 6.14 
Fixes gh-7136

[closes #7136]
 2019-08-05 09:35:41 -06:00
Filip Hanik b089dfc040
Upgrade com.nimbusds:nimbus-jose-jwt to 7.6 
Fixes gh-7135

[closes #7135]
 2019-08-05 09:35:40 -06:00