spring-security

mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 15:20:19 +00:00

Author	SHA1	Message	Date
Steve Riesenberg	3fc7b6e921	Merge branch '5.8.x' into 6.2.x Closes gh-15185	2024-05-31 18:34:14 -05:00
Steve Riesenberg	dcb8c563e8	Fix ArrayIndexOutOfBoundsException Issue gh-13310 Closes gh-15184	2024-05-31 18:12:21 -05:00
Marcus Hert Da Coregio	47ad405063	Merge branch '5.8.x' into 6.2.x Closes gh-15148	2024-05-23 14:04:35 -03:00
Marcus Hert Da Coregio	c7b739eb3f	Fix broken link to jaspan article Closes gh-14358	2024-05-23 14:04:10 -03:00
Marcus Hert Da Coregio	08f11f06ab	Revert unnecessary commits from main Issue gh-15016	2024-05-08 13:49:18 -03:00
Josh Cummings	36cd48474d	Merge branch '6.2.x'	2024-04-17 17:01:24 -06:00
Josh Cummings	3887f33f81	Merge branch '6.1.x' into 6.2.x	2024-04-17 17:01:03 -06:00
Josh Cummings	61df8e493d	Merge branch '5.8.x' into 6.1.x	2024-04-17 17:00:24 -06:00
Josh Cummings	470e2c5c97	Address Build Issues Issue gh-14837	2024-04-17 16:59:40 -06:00
Josh Cummings	ff473313df	Merge branch '6.2.x'	2024-04-17 16:45:47 -06:00
Josh Cummings	f16a434f0c	Merge branch '6.1.x' into 6.2.x Closes gh-14922	2024-04-17 16:45:30 -06:00
Josh Cummings	ade45771b2	Merge branch '5.8.x' into 6.1.x Closes gh-14921	2024-04-17 16:44:50 -06:00
Josh Cummings	657760af5b	Improve Logging Closes gh-14837	2024-04-17 16:43:29 -06:00
Marcus Hert Da Coregio	61eba00654	Move HaveIBeenPwnedRestApiPasswordChecker to spring-security-web Prior to this commit, the implementation was placed in spring-security-core, however we do not want to introduce a dependency on spring-web and spring-webflux for that module. Issue gh-7395	2024-04-10 14:58:01 -03:00
DingHao	f689f3c3fc	Fix continueOnError default value in java doc Closes gh-14870	2024-04-10 13:28:06 -03:00
erie0210	7faae83ebb	docs: fix typo	2024-04-08 14:44:12 -03:00
Josh Cummings	c439cfef0f	Merge branch '6.1.x' into 6.2.x	2024-03-21 17:24:34 -06:00
Thomas Hagelberg	ce9f1821b1	Improve logging in AuthenticationWebFilter Closes #14091	2024-03-21 17:24:10 -06:00
Thomas Hagelberg	091976fffb	Improve logging in AuthenticationWebFilter Closes #14091	2024-03-21 17:22:35 -06:00
ruabtmh	c0928bf198	Add DelegatingAuthenticationConverter Closes gh-14644	2024-03-13 14:33:45 -06:00
DingHao	8885707674	Add DelegatingServerAuthenticationConverter Closes gh-14644	2024-03-05 08:21:59 -07:00
Steve Riesenberg	bd345fb2a8	Polish gh-11758	2024-02-29 12:15:30 -06:00
Markus Heiden	5c5503924b	Add SwitchUserGrantedAuthorityMixIn Closes gh-11775	2024-02-29 11:07:21 -06:00
Marcus Hert Da Coregio	f8ff056eb6	Update Max Sessions on WebFlux Delete WebSessionStoreReactiveSessionRegistry.java and gives the responsibility to remove the sessions from the WebSessionStore to the handler Issue gh-6192	2024-02-28 10:06:45 -03:00
Marcus Hert Da Coregio	a5ce8ae87f	Polish Max Sessions on WebFlux This commit changes the PreventLoginServerMaximumSessionsExceededHandler to invalidate the WebSession in addition to throwing the error, this is needed otherwise the session would still be saved with the security context. It also changes the SessionRegistryWebSession to first perform the operation on the delegate and then invoke the needed method on the ReactiveSessionRegistry Issue gh-6192	2024-02-27 11:12:50 -03:00
Josh Cummings	4d039e515f	Merge branch '6.2.x'	2024-02-22 13:21:22 -07:00
Josh Cummings	9c48546883	Merge branch '6.1.x' into 6.2.x	2024-02-22 13:21:14 -07:00
Josh Cummings	7f106f0419	Merge branch '5.8.x' into 6.1.x	2024-02-22 13:20:29 -07:00
Christian Becker	5f80468de3	Updated copyright date	2024-02-22 13:19:05 -07:00
Christian Becker	2f762fefe1	Allow tab in HTTP header values. Closes gh-14573	2024-02-22 13:19:05 -07:00
Marcus Hert Da Coregio	21580fd27d	Merge branch '6.2.x'	2024-02-16 13:31:20 -03:00
Marcus Hert Da Coregio	15306c1007	Merge branch '6.1.x' into 6.2.x	2024-02-16 13:21:15 -03:00
Rob Winch	750cb30ce4	Add AuthenticationTrustResolver.isAuthenticated	2024-02-16 13:08:29 -03:00
Josh Cummings	aa8178af65	Merge branch '6.2.x'	2024-02-07 08:53:16 -07:00
Josh Cummings	0cadabfa89	Merge branch '6.1.x' into 6.2.x Closes gh-14568	2024-02-07 08:52:47 -07:00
Josh Cummings	75fdcd10f7	Use synchronized Closes gh-14445	2024-02-07 08:48:49 -07:00
Marcus Hert Da Coregio	915d68e216	Remove includeExpiredSessions parameter The reactive implementation of max sessions does not keep track of expired sessions, therefore we do not need such parameter Issue gh-6192	2024-02-06 10:43:00 -03:00
Federico Herrera	c1adeef0da	Add validation IpAddressMatcher Closes gh-13621	2024-01-30 17:16:18 -07:00
Nermin Karapandzic	6e1bcfed11	Add argument resolver for SecurityContext Closes gh-13425	2024-01-29 17:30:38 -07:00
ahmd-nabil	a808c139ad	Enhance IpAddressMatcher performance Closes gh-14493 Signed-off-by: ahmd-nabil <ahm3dnabil99@gmail.com>	2024-01-29 17:28:19 -07:00
sonallux	6df9ef5ba6	Fix wrong class name in JavaDoc In the `ServerWebExchangeDelegatingReactiveAuthenticationManagerResolver.Builder` class the JavaDoc comments mention the wrong class name. This commit fixes this.	2024-01-19 09:29:07 -07:00
Marcus Hert Da Coregio	06278157fa	Merge branch '6.2.x' Closes gh-14471	2024-01-17 16:16:40 -03:00
Marcus Hert Da Coregio	148e0b41d2	Merge branch '6.1.x' into 6.2.x Closes gh-14470	2024-01-17 16:16:27 -03:00
Marcus Hert Da Coregio	ce5f5e6e33	Add native hint for CsrfTokenRequestAttributeHandler$SupplierCsrfToken Closes gh-14397	2024-01-17 16:14:59 -03:00
Josh Cummings	d7a9a19161	Merge branch '6.2.x'	2023-12-18 11:47:39 -07:00
Josh Cummings	03e48905c7	Merge branch '6.1.x' into 6.2.x Closes gh-14346	2023-12-18 11:47:23 -07:00
Josh Cummings	b855ccdb09	Merge branch '5.8.x' into 6.1.x Closes gh-14345	2023-12-18 11:46:04 -07:00
Josh Cummings	eaaa813ede	Fix header value typo Closes gh-11948	2023-12-18 10:42:50 -07:00
Josh Cummings	8a34e32a24	Polish IpAddressAuthorizationManager Closes gh-10577	2023-12-15 16:54:58 -07:00
brunodmartins	ea7c720ce7	Add hasIpAddress to Kotlin DSL Closes gh-10577	2023-12-15 16:54:58 -07:00

1 2 3 4 5 ...

1717 Commits