50d1a81458
AbstractAuthenticationToken.getName() uses UserDetails.getUsername()
...
Fixes gh-4877
2017-11-30 09:17:42 -05:00
ee1745b681
Update to Spring Framework 5.0.2.RELEASE
2017-11-27 11:57:03 -06:00
691bf2e11d
PasswordEncoder Bean for AuthenticationManagerBuilder
...
Issue: gh-4873
2017-11-27 11:42:56 -06:00
701933c7f7
Fix copyright start years
...
See gh-4655
See gh-4725
2017-11-17 10:14:32 -06:00
5f518d00e5
Apply Checkstyle EmptyStatementCheck module
...
This commit adds Checkstyle `EmptyStatementCheck` module and aligns code with it.
2017-11-16 20:18:21 -06:00
563139c469
Fix keys in messages bundle
2017-11-16 11:28:57 -06:00
fffd781b03
Add localization to error messages from ExceptionTranslationFilter
...
Fixes gh-4504
2017-11-16 11:25:56 -06:00
b6895e6359
Apply Checkstyle WhitespaceAfterCheck module
2017-11-16 11:18:31 -06:00
d900f2a623
Remove unused imports
...
This commit also adds UnusedImportsCheck Checkstyle module.
2017-11-14 14:41:08 -06:00
6d4b4bf2c7
Align Dependencies with Spring IO Cairo
...
Fixes gh-4821
2017-11-14 13:45:24 -06:00
99df632f24
Add missing @Override annotations
...
This commit also adds MissingOverrideCheck module to Checkstyle configuration.
2017-11-08 13:27:24 -06:00
d9abd2e443
User.UserBuilder only encodes once
...
Fixes gh-4794
2017-11-06 09:47:37 -06:00
881cd0befb
Fix UsernamePasswordAuthenticationTokenMixin to handle null credentials/details
...
Resolves #4698
2017-10-31 16:34:07 -05:00
e95430fa36
Polish Reactive Method Security reference
...
Issue gh-4757
2017-10-30 16:27:50 -05:00
ec723952d5
principals and sessionIds should be set using constructor so that can be shared across node in cluster
...
As principals and sessionIds are set in class itself so one can't share user session count across nodes(Cluster). Using constructor for setting principals and sessionIds we can pass Cache map to constructor which can enable common session count in cluster otherwise user would be allowed to logged in with multiple sessions. There is no point keeping principals and sessionIds completely internal.
2017-10-30 01:08:15 -05:00
35706ad60a
Deserialize the principal in a neutral way
...
When the principal of the Authentication is an object, it is not necessarily
an User: it could be another implementation of UserDetails, or even a
completely unrelated type. Since the type of the object is serialized as a
property and used by the deserialization anyway, there's no point in
enforcing a stricter type.
2017-10-30 00:53:31 -05:00
6fd9ff254b
Map values directly from the JSON nodes
...
Not only is it more efficient without converting to an intermediate String,
using JsonNode.toString() may not even produce valid JSON according to its
Javadoc (ObjectMapper.writeValueAsString() should be used).
2017-10-30 00:53:31 -05:00
0771778b81
Polish more AssertJ assertions
2017-10-29 22:22:34 -05:00
e0aca04a28
Polish AssertJ assertions
...
Polish AssertJ assertions
2017-10-29 22:22:34 -05:00
44320447fe
Update to Spring 5.0.1.RELEASE
...
Issue gh-4739
2017-10-29 14:31:45 -05:00
747473257f
Use ReactorSecurityContextHolder
...
Issue gh-4713
2017-10-26 20:11:42 -05:00
9ea4df5b5d
ReactiveSecurityContextHolder
...
Fixes gh-4713
2017-10-26 20:11:42 -05:00
399da1ecad
SecurityContextImpl constructor
...
Fixes gh-4712
2017-10-26 20:11:42 -05:00
38a8189a62
DelegatingApplicationListener uses CopyOnWriteArrayList
...
Fixes gh-4416
2017-10-24 15:35:04 -05:00
8291f20796
DaoAuthenticationProvider uses DelegatingPasswordEncoder
...
This means that passwords will be encoded with BCrypt by default
Fixes: gh-2775
2017-10-24 07:56:28 -05:00
d19b222b55
UserDetailsRepositoryReactiveAuthenticationManager uses DelegatingPasswordEncoder
...
This means passwords will be encoded with BCrypt by default
Issue: gh-2775
2017-10-24 07:56:28 -05:00
cdc992b132
Remove SaltSource
...
Fixes gh-4681
2017-10-24 07:56:28 -05:00
4529e09339
Remove PasswordEncoder from core
...
Issue: gh-4674
2017-10-24 07:56:28 -05:00
6c69333df6
Remove PasswordEncoderUtils from core
...
Issue: gh-4674
2017-10-24 07:56:28 -05:00
3a4a32e654
Remove LdapShaPasswordEncoder from core
...
Issue: gh-4674
2017-10-24 07:56:20 -05:00
6a3e981c80
Remove BaseDigestPasswordEncoder from core
...
Issue: gh-4674
2017-10-24 07:55:40 -05:00
a8aa65b828
Remove Md4PasswordEncoder from core
...
Issue: gh-4674
2017-10-24 07:55:32 -05:00
2dc4e326be
Remove MessageDigestPasswordEncoder from core
...
Issue: gh-4674
2017-10-23 22:27:16 -05:00
12dbf2e961
Remove PlainTextPasswordEncoder from core
...
Issue: gh-4674
2017-10-23 22:27:16 -05:00
40fd8d7aa7
Remove ShaPasswordEncoder from core
...
Issue: gh-4674
2017-10-23 22:27:16 -05:00
e98fc3556e
Remove Md5PasswordEncoder from core
...
Issue: gh-4674
2017-10-23 22:27:16 -05:00
52560b560d
PasswordEncodedUser
...
Fixes gh-4680
2017-10-23 22:27:16 -05:00
1ea10a1e89
Add User.withDefaultPasswordEncoder()
...
Fixes gh-4678
2017-10-23 22:27:16 -05:00
a0fb324e1d
Add passwordEncoder to UserBuilder
...
Fixes gh-4677
2017-10-23 22:27:16 -05:00
7fd1cff3ce
Fix PrePostAdviceReactiveMethodInterceptor tangle
...
Issue: gh-4636
2017-10-16 16:36:43 -05:00
1dc49276f8
Fix P tangle
...
Issue: gh-4636
2017-10-16 16:36:15 -05:00
96f6368214
Update to Spring Framework 5.0.1.BUILD-SNAPSHOT
...
Fixes gh-4633
2017-10-16 16:30:59 -05:00
57d26ffa10
Polish
2017-10-11 13:57:59 -05:00
e99e2a9f09
PrePostAdviceMethodInterceptor->PrePostAdviceReactiveMethodInterceptor
...
Issue gh-4615
2017-10-11 13:57:54 -05:00
5502856095
UserDetailsRepositoryAuthenticationManager->UserDetailsRepositoryReactiveAuthenticationManager
...
Issue gh-4615
2017-10-11 13:57:35 -05:00
4681697581
UserDetailsRepository->ReactiveUserDetailsService
...
Issue gh-4615
2017-10-11 13:57:30 -05:00
f1bc82dcef
AuthenticatedAuthorizationManager->AuthenticatedReactiveAuthorizationManager
...
Issue gh-4615
2017-10-11 13:57:26 -05:00
866ce5eaec
AuthorityAuthorizationManager->AuthorityReactiveAuthorizationManager
...
Issue gh-4615
2017-10-11 13:57:08 -05:00
fc84d31010
Fix Javadoc Encoding
2017-10-09 16:48:50 -05:00
23f56f568c
Update MockitJunitRunner import
...
Issue: gh-4608
2017-10-09 16:13:33 -05:00
445834784a
Update to Mockito 2.10.0
...
Issue: gh-4608
2017-10-09 16:13:11 -05:00
f3828924ff
Fix equals and hashCode alignment
...
Fixes gh-4588
2017-09-28 17:25:00 -05:00
1c9b627267
Update to Spring Framework 5.0.0.RELEASE
...
Fixes gh-4585
2017-09-28 17:24:38 -05:00
b59265c641
Add InMemoryUserDetailsManager(UserDetails... users)
2017-09-22 19:56:32 -05:00
9e719bc313
Drop the `aopalliance:aopalliance` dependency
...
As of Spring 4.3 RC1 the `org.aopalliance` interfaces are once again bundled
with `spring-aop` [1]. Moreover, all modules with a dependency on
`aopalliance:aopalliance` directly or indirectly also depend on `spring-aop`.
This change drops the `aopalliance:aopalliance` dependency in all places it's
declared. Where applicable an explicit dependency on `spring-aop` was added in
its place. (This dependency was already present in most places; in one case the
module didn't require `aopalliance:aopalliance` in the first place.)
The documentation is updated accordingly.
[1] https://jira.spring.io/browse/SPR-13984
2017-09-22 11:11:04 -05:00
8854414101
Polish for Gradle 5.0
2017-09-18 16:53:19 -05:00
8a66d0c78d
Polish PermissionEvaluator Autowired into Web Security
...
Issue gh-4077
2017-09-18 16:53:19 -05:00
3bf6bf10de
Configure permissionEvaluator and roleHierarchy by default
...
Implementations of AbstractSecurityExpressionHandler (such as the very commonly used DefaultWebSecurityExpressionHandler) get PermissionEvaluator and RoleHierarchy from the application context (if the application context is provided, and exactly one of such a bean exists in it). This approach matches that used in GlobalMethodSecurityConfiguration, making everything in Spring Security work the same way (including WebSecurity).
Issue gh-4077
2017-09-18 16:35:16 -05:00
1f4082e754
Fix copyright lines
2017-09-18 11:11:25 -05:00
3ecf3ea034
Fix double * in Copyright headers
2017-09-18 10:47:26 -05:00
ae342dfcce
Update to the lastest SNAPSHOTs
2017-09-18 10:17:21 -05:00
7bb4367cf1
Prepare Versions for Release
2017-09-13 08:24:14 -05:00
72f139a824
Mono.currentContext()->subscriberContext()
...
Fixing refactoring by Reactor
2017-09-01 16:14:42 -05:00
b3ad174ee2
Small typo in Javadoc
2017-08-30 15:27:53 -05:00
895f0d108c
Run PasswordEncoder on Schedulers.parallel()
2017-08-29 22:26:56 -05:00
a563689e6c
Add PasswordEncoder for UserDetailsRepositoryAuthenticationManager
2017-08-29 21:19:42 -05:00
416ff3c77a
Add EnableReactiveMethodSecurity
...
Issue gh-4496
2017-08-17 16:42:01 -05:00
e16b8e7976
Fix logback-test.xml
2017-08-17 16:42:01 -05:00
0f0563cd6f
MethodSecurityMetadataSourceAdvisor supports MethodInterceptor
...
Fixes gh-4480
2017-07-31 16:46:51 -05:00
a176a8c4ae
Update to next development version
2017-07-24 11:54:43 -04:00
abf34e0e67
Release 5.0.0.M3
2017-07-24 11:12:32 -04:00
0b481cf4b6
Make UserBuilder.username public
...
This allows for reusing a UserBuilder to create multiple UserDetails with
similar attributes but different usernames.
Fixes gh-4453
2017-07-12 13:54:52 -05:00
37011720c9
Update to latest Spring IO Cairo SNAPSHOT
...
Fixes gh-4407
2017-06-20 16:42:09 -05:00
fb85ad6bd7
Revert "Work Around SPR-15651"
...
This reverts commit 6c286696b4
2017-06-15 15:25:36 -05:00
dcef3d6ebb
Remove springIoVersion for release preparations
2017-06-15 13:34:51 -05:00
6c286696b4
Work Around SPR-15651
...
Issue gh-4386
2017-06-09 22:26:02 -05:00
d09fb5b500
Move UserDetailsRepository to core.userdetails
...
Fixes gh-4383
2017-06-09 16:07:09 -05:00
eb6bd9bea9
Update groupId io.projectreactor.addons -> io.projectreactor
...
Fixes gh-4377
2017-06-08 14:06:51 -04:00
5dee8534cd
Update SecurityJackson2Modules
...
Fixes gh-4370
2017-06-07 23:05:13 -05:00
a79a81cd24
Simplify webflux samples
...
Remove the custom user from the hellowebflux and hellowebfluxfn samples.
2017-05-23 15:59:16 -05:00
07234f6255
Switch back to Spring Framework 5.0.0.BUILD-SNAPSHOT
2017-05-16 15:12:09 -05:00
22c1685d70
Use AssertionsForClassType
2017-05-15 13:48:12 -05:00
d81b436e5d
Remove pom.xml from build
...
Gradle is easy enough to import into IDEs, so pom.xml should no
longer be necessary.
This commit removes the pom.xml files from the build.
Fixes gh-4283
2017-05-11 14:32:36 -05:00
e9427e421b
Update Spring version
2017-05-10 00:27:36 -05:00
85719fcd64
Use Base64 implementation provided by Java 8
2017-05-10 00:27:36 -05:00
b4f2777755
Add WebFlux
...
Fixes gh-4128
2017-05-10 00:13:02 -05:00
051e3fb079
Add UserBuilders.withUserDetails
2017-05-10 00:12:12 -05:00
5c7ff5c24a
Update to spring 5.0.0.RC1
2017-05-09 02:35:46 -05:00
e1ef0477fb
Build Leverages tests-configuration plugin
2017-05-01 17:10:20 -05:00
d108bf58bf
Remove commons-logging
...
Issue: gh-4308
2017-04-24 19:40:22 -05:00
dd6fc48dd8
Standardize Build
...
The build now uses spring build conventions to simplify the build
Fixes gh-4284
2017-04-21 10:55:05 -05:00
71e491fcf0
Provide abstraction for an Authenticated Principal
2017-04-10 16:18:40 -04:00
2ce174dbf0
Update poms to 5.0.0.BUILD-SNAPSHOT
2017-04-07 16:49:50 -04:00
2b81983f7c
Update to Java 8 compatibility
...
* Spring IO Athens-BUILD-SNAPSHOT -> Cairo-BUILD-SNAPSHOT
* CGLib 3.1 -> 3.2.5 latest release Issue related to ASM https://github.com/cglib/cglib/issues/20
* AssertJ 2.2.0 -> 3.6.2 latest release
* PowerMock 1.6.2 -> 1.6.5 latest release is 1.6.6 but has regression Issue https://github.com/powermock/powermock/issues/717
* Update maven-compiler-plugin source/target to 1.8
2017-04-07 16:49:38 -04:00
3ca78df15f
Fix Security version Test
2017-03-08 19:12:39 -06:00
d2524eadfc
Update poms to new to SNAPSHOT version
2017-03-02 09:20:34 -06:00
081f0c4d94
Release version 4.2.2.RELEASE
2017-03-02 07:29:42 +00:00
f99fe36e02
Refer to SimpleGrantedAuthority instead of GrantedAuthorityImpl
...
GrantedAuthorityImpl has been replaced a couple of years ago with
SimpleGrantedAuthority and this commit fixes the documentation items
which weren’t updated to reflect this change.
Fixes gh-4163.
2017-03-02 00:09:14 -06:00
901a4e183a
Update SecurityContextHolder.java
...
Use StringUtils.hasText
2017-03-01 23:54:04 -06:00
b64cdb5765
Fix RoleHiearchyUtilsTests on Windows
...
Fixes gh-4228
2017-03-01 23:27:11 -06:00
Joe Grandja
Rob Winch
Johnny Lim
Oleg Zhuravlev
Benedikt Ritter
Greg Turnquist
Gajendra kumar
Frank Pavageau
Antoine
Stephan Schroevers
Craig Andrews
ladislav-bozek
Vedran Pavic
Rob Winch
Spring Buildmaster
pkovacs
stonio