f011c36ba4
Fix typo in Javadoc of ServerHttpSecurity#hasAuthority
...
Closes gh-8336
2020-04-06 14:20:19 -05:00
bb654fdcdf
Fix HttpSecurity Javadoc
...
Fixes gh-4404
2020-04-02 11:41:15 -04:00
30a63026f8
Next Development Version
2020-04-01 14:26:04 -04:00
f93e5afe16
Release 5.2.3.RELEASE
2020-04-01 12:35:09 -04:00
7b5bdac74d
Update to OpenSAML 3.4.5
...
Fixes gh-8278
2020-04-01 10:01:53 -04:00
80a16e828f
Update to hibernate-entitymanager 5.4.13.Final
...
Fixes gh-8277
2020-04-01 10:01:20 -04:00
ed133d4b8d
Update to hibernate-core 5.2.18.Final
...
Fixes gh-8276
2020-04-01 10:00:41 -04:00
433646b551
Update blockhound to 1.0.3.RELEASE
...
Fixes gh-8275
2020-04-01 09:59:58 -04:00
dd6974812f
Update to unboundid-ldapsdk 4.0.14
...
Fixes gh-8274
2020-04-01 09:59:33 -04:00
97f1e368ee
Update to reactive-streams 1.0.3
...
Fixes gh-8279
2020-04-01 09:58:19 -04:00
7018e7ec51
Update to Jackson 2.10.3
...
Fixes gh-8258
2020-04-01 09:16:29 -04:00
0313757846
Update to okhttp 3.14.7
...
Fixes gh-8259
2020-04-01 09:15:38 -04:00
a021cd3fd5
Update to mockwebserver 3.14.7
...
Fixes gh-8257
2020-04-01 09:15:12 -04:00
a57f4bb025
Update RSocket to 1.0.0-RC6
...
Fixes gh-8256
2020-04-01 09:14:38 -04:00
a02cd9d9e3
Upgrade to embedded Apache Tomcat 9.0.33
...
Fixes gh-8254
2020-04-01 09:13:59 -04:00
eacede6171
Update to httpclient 4.5.12
...
Fixes gh-8253
2020-04-01 09:12:31 -04:00
08b635a85a
Update to org.powermock 2.0.6
...
Fixes gh-8255
2020-04-01 09:12:07 -04:00
e3c3601cf6
Update to Spring Boot 2.2.6.RELEASE
...
Fixes gh-8252
2020-04-01 09:11:30 -04:00
1ca3ea3a71
Update to GAE 1.9.79
...
Fixes gh-8251
2020-04-01 09:10:43 -04:00
dbdf02e864
Update to Reactor Dysprosium-SR6
...
Fixes gh-8250
2020-04-01 09:09:42 -04:00
774dd7bb13
Update to Spring Data Moore-SR6
...
Fixes gh-8248
2020-04-01 09:09:06 -04:00
6a9585dc0d
Update to Spring Framework 5.2.5
...
Fixes gh-8249
2020-03-31 18:06:26 -04:00
298d40b7a5
Update tests to use absolute paths
...
Fixes gh-8260
2020-03-31 18:05:27 -04:00
615f9a3f05
Fix HttpServlet3RequestFactory Logout Handlers
...
Previously there was a problem with Servlet API logout integration
when Servlet API was configured before log out.
This ensures that logout handlers is a reference to the logout handlers
vs copying the logout handlers. This ensures that the ordering does not
matter.
Closes gh-4760
2020-03-30 20:51:25 -05:00
32c3353921
SpringTestContext returns ConfigurableWebApplicationContext
...
Closes gh-8233
2020-03-30 20:51:25 -05:00
401597c673
Improve OAuth2LoginAuthenticationProvider
...
1. update OAuth2LoginAuthenticationProvider to use
OAuth2AuthorizationCodeAuthenticationProvider
2. apply fix gh-5368 for OAuth2AuthorizationCodeAuthenticationProvider
to return additionalParameters value from accessTokenResponse
Fixes gh-5633
2020-03-30 21:09:17 -04:00
258627eaee
SwitchUserFilter Defaults to POST
...
Fixes gh-4183
2020-03-27 14:40:38 -06:00
01f8eb3961
Update Encryptors documentation
...
Fixes gh-8208
2020-03-27 10:20:04 -04:00
a9a9c2c0fd
OAuth2 ClientRegistrations NPE fix when userinfo missing
...
Fixes gh-8187
2020-03-27 06:15:25 -04:00
cb7786bf97
Malformed Bearer Token Returns 401 for WebFlux
...
Fixes gh-7668
2020-03-26 12:59:22 -06:00
4706b16a2b
oauth2Login WebFlux does not auto-redirect for XHR request
...
Fixes gh-8118
2020-03-26 05:09:45 -04:00
98bd1a3f60
Polish Resource Server JWT Docs
...
Issue gh-5935
2020-03-25 16:33:31 -06:00
f06aa724bf
OAuth2ErrorHttpMessageConverter handles JSON object parameters
...
Fixes gh-8157
2020-03-24 14:57:24 -04:00
512ad9e7e4
Document AuthorizedClientServiceOAuth2AuthorizedClientManager
...
Fixes gh-8152
2020-03-19 20:14:15 -04:00
256aba7b37
Fix rsocket test
...
Request route that exists; add additional error message verification
Fixes gh-8154
2020-03-19 17:36:20 -04:00
86e25ff2ab
Fix typo in Javadoc of HttpSecurity#csrf()
...
`HttpSecurity#csrf()` obviously returns a `CsrfConfigurer`, while the Javadoc states that it returns the `ServletApiConfigurer`.
2020-03-17 13:36:34 -06:00
a49a325db2
Fix exception for empty basic auth header token
...
fixes spring-projectsgh-7976
2020-03-16 16:06:52 -04:00
75f22285c6
Fix typo 'properites' in documentation
...
Fixes gh-8095
2020-03-11 11:01:06 -06:00
8fa16ce63e
Update to Jetty 9.4.27
...
Fixes gh-7507
2020-03-09 10:03:18 -06:00
32c02fbedb
Remove empty relay state from redirect url
2020-03-04 12:47:03 -07:00
96ff3a54a9
Fix typo in AntPathRequestMatcher contructor comment
2020-03-02 07:16:07 -06:00
9092115b8a
Register Authentication Provider in Init Phase
...
Fixes gh-8031
2020-02-28 18:43:54 -07:00
3dbfef9ef1
OAuth2AccessTokenResponseHttpMessageConverter handles JSON object parameters
...
Fixes gh-6463
2020-02-24 15:58:25 -05:00
8acdb82e6a
OAuth2AuthorizationCodeGrantWebFilter matches on query parameters
...
Fixes gh-7966
2020-02-10 15:28:06 -05:00
5ce0ce3f38
Fix var typo and code readability
2020-02-10 12:06:30 -07:00
6141132cfa
Fix test gh-7963
2020-02-10 05:53:00 -05:00
cc7ea4acd3
OAuth2AuthorizationCodeGrantFilter matches on query parameters
...
Fixes gh-7963
2020-02-10 05:24:14 -05:00
1e4736f9b3
Prevent double-escaping of authorize URL parameters
...
If the authorization URL in the OAuth2 provider configuration contained query parameters with escaped characters, these characters were escaped a second time. This commit fixes it.
It is relevant to support the OIDC claims parameter (see https://openid.net/specs/openid-connect-core-1_0.html#ClaimsParameter ).
Fixes gh-7871
2020-02-08 16:59:01 -05:00
0012e24c46
Don't force downcasting of RequestAttributes to ServletRequestAttributes
...
Fixes gh-7953
2020-02-07 20:18:50 -05:00
2dc8147106
Add release-notes-sections.yml
2020-02-05 15:18:32 -05:00
hotire
Eleftheria Stein
Rob Winch
Ruby Hartono
Josh Cummings
Martin Nemec
Joe Grandja
Erik van Paassen
Zeeshan Adnan
Markus Engelbrecht
Clement Stoquart
AmitB
Rafael Renan Pacheco
Manuel Bleichenbacher
Stephane Maldini