Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-08-19 15:57:09 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,916 Commits 44 Branches 354 Tags
Commit Graph

1063 Commits

Author SHA1 Message Date
Rob Winch
0d566c02ce Update to assertj 3.11.1 
Fixes: gh-6170
 2018-11-28 10:25:28 -06:00
Rob Winch
d5949597b7 Revert "Update to assertj 3.11.1" 
This reverts commit cbf1c3d45a66ffb11202fb73920d25f62d2387d0.
 2018-11-28 10:10:35 -06:00
Rob Winch
cbf1c3d45a Update to assertj 3.11.1 
Fixes: gh-6170
 2018-11-28 09:56:05 -06:00
Josh Cummings
ddad61de14
Register NullRequestCache When Disabled 
Fixes: gh-6102
 2018-11-20 08:06:38 -07:00
Josh Cummings
e6a1552eb1
RequestCacheConfigurerTests groovy->java 
Issue: gh-4939
 2018-11-20 08:00:38 -07:00
Erik van Paassen
212ae6bddc Fix csrf:token-repository-ref XSD documentation 
The documentation of the token-repository-ref attribute of the csrf
element in the schema has been updated to make clear the default
repository is lazy. Targets versions 4.2, 5.0 and 5.1.

Fixes gh-6037
 2018-11-08 10:20:31 -06:00
Joe Grandja
d6da4d20b4 Set AuthenticationEventPublisher on each AuthenticationManagerBuilder 
Fixes gh-6009
 2018-10-23 14:49:44 -04:00
Rob Winch
87a5c16b53 Add @Configuration to ServerHttpSecurityConfiguration 
Fixes: gh-5635
 2018-08-03 09:39:17 -05:00
mhyeon.lee
eb897ac69c Fix oauth2login loginProcessingUrl NPE for java config 
Java Config http.oauth2Login().loginProcessingUrl("url"); throws NPE.
Override loginProcessingUrl method and cached config url.
Then when the config is initialized,
it calls the super method to complete the configuration.

Fixes gh-5488
 2018-07-13 11:42:43 -04:00
Denys Ivano
7b8fa90d96 Add accessDeniedHandler method to ExceptionHandlingSpec 
This allows to configure accessDeniedHandler in ExceptionTranslationWebFilter through ServerHttpSecurity.

Issue: gh-5257
 2018-05-07 16:23:32 -05:00
Rob Winch
32f5fb5eb2 ExceptionTranslationFilter does not handle committed responses 
Fixes: gh-5273
 2018-04-30 16:50:02 -05:00
Rob Winch
f7f6798f71 DefaultWebSecurityExpressionHandler uses PermissionEvaluator Bean 
The default instance of DefaultWebSecurityExpressionHandler uses the
PermissionEvaluator Bean by default.

Fixes: gh-5272
 2018-04-30 12:16:34 -05:00
Joe Grandja
0b72f93027 WebSecurityConfigurationTests groovy->java 
Issue: gh-4939
 2018-04-30 11:43:30 -05:00
Rob Winch
151b545ed0 Polish Javadoc 
Fixes: gh-5186
 2018-03-29 15:33:31 -05:00
Rob Winch
c67ce144b9 Polish HeadersSpec 
Fixes: gh-5187
 2018-03-29 15:33:31 -05:00
Rob Winch
6729c39905 Fix JDK 9 
Issue: gh-5160
 2018-03-28 15:00:41 -05:00
Rob Winch
e68657216c Fixes for SPR-16624 
Fixes: gh-5165
 2018-03-27 22:36:03 -05:00
Rob Winch
0458ca88e6 Relax assertions in HeaderSpecTests 
Fixes: gh-5117
 2018-03-15 08:31:21 -05:00
Rob Winch
a7a71d6cef Fix @since on GlobalAuthenticationConfigurerAdapter 
Fixes: gh-5109
 2018-03-13 14:25:40 -05:00
Josh Cummings
1ed51033cc Migrate config-debug groovy->java 
All tests in `org.springframework.security.config.debug` are migrated.

Note that `SecurityDebugBeanFactoryPostProceessorTest` preserves the original structure-verifying strategy used in the Groovy test. Verifying debug behavior turns out to be fairly tricky since being behaviorally invisible is in its nature.

Issue: gh-4939
 2018-03-02 08:55:07 -06:00
Josh Cummings
1b69c62d20 PortMapperConfigurerTests groovy->java 
Issue: gh-4939
 2018-02-27 11:44:21 -05:00
Josh Cummings
e08d4cc90c AnonymousConfigurerTests groovy->java 
This test now checks key and principal both, which differs from the original Groovy test

In order to keep from needing to execute logic internal to `AnonymousAuthenticationToken`, this test changed from the original Groovy test. In the Groovy test, `key` is tested; however in this new test, `principal` is tested instead.

A concern was raised that if `AnonymousAuthenticationProvider` were invoked in this test, then testing only `principal` would not confirm that `key` was correctly propagated to `AnonymousAuthenticationProvider`. So, the test now configures both `key` and `principal`. The former to confirm correct wiring of `AnonymousAuthenticationProvider` and the latter to confirm correct wiring of `AnonymousAuthenticationFilter`.

Issue: gh-4939
 2018-02-27 11:30:02 -05:00
Josh Cummings
bb59733736 Sec2377Tests groovy->java 
Issue: gh-4939
 2018-02-22 10:48:18 -05:00
Joe Grandja
dc9248e73c NamespaceHttpTests groovy->java 
Issue: gh-4939
 2018-02-22 10:29:48 -05:00
Joe Grandja
fded710e04 HttpConfigurationTests groovy->java 
Issue: gh-4939
 2018-02-16 14:16:51 -05:00
Rob Winch
210a510bba Use HttpFirewall Bean 
Fixes: gh-5022
 2018-02-15 17:18:28 -06:00
Joe Grandja
52b5423b75 WebSecurityConfigurerAdapterTests groovy->java 
Issue: gh-4939
 2018-02-15 17:50:55 -05:00
Joe Grandja
7fc88a391f SampleWebSecurityConfigurerAdapterTests groovy->java 
Issue: gh-4939
 2018-02-14 15:40:46 -05:00
Joe Grandja
c31c1a4616 AbstractConfiguredSecurityBuilderTests -> remove use of reflection 
Issue gh-4939
 2018-02-14 12:47:35 -05:00
Rob Winch
780c9dd455 Fix GlobalMethodSecurityConfigurationTests checkstyle 
Issue: gh-4939
 2018-02-13 09:41:07 -06:00
Rob Winch
8b6e77e5ab Fix SpringTestContext checkstyle 
Issue: gh-5015
 2018-02-13 09:40:47 -06:00
Rob Winch
6af1ac08db GlobalMethodSecurityConfigurationTests groovy->java 
Issue: gh-4939
 2018-02-13 09:37:05 -06:00
Rob Winch
6c52eb6ee1 MethodSecurityService add additional methods 
Fixes: gh-5016
 2018-02-13 09:36:57 -06:00
Rob Winch
ca5fb78ee1 Authz check(boolean result) 
Issue: gh-5016
 2018-02-13 09:36:48 -06:00
Rob Winch
1ad57adccc SpringTestContext allow setting Context 
Fixes: gh-5015
 2018-02-13 09:36:39 -06:00
Rob Winch
49e5b15ce2 Extract MockEventListener 
Fixes: gh-5014
 2018-02-13 09:36:27 -06:00
Rob Winch
ce5fb51b20 Remove Mono.defer in ReactorContextWebFilter 
Fixes: gh-5010
 2018-02-08 16:19:10 -06:00
Rob Winch
964a14b224 Document Reactive Method security requires Publisher return types 
Fixes: gh-4988
 2018-02-07 16:43:18 -06:00
Rob Winch
ea3dd336aa Cache headers only if no cache headers set 
Fixes: gh-5004
 2018-02-07 14:56:34 -06:00
Rob Winch
2165cc72ef BaseAuthenticationConfig groovy->java 
Issue: gh-4939
 2018-02-07 14:40:55 -06:00
Rob Winch
2c519b7e74 NamespaceGlobalMethodSecurityTests groovy->java 
Issue: gh-4939
 2018-02-06 15:23:41 -06:00
Rob Winch
9587f3280e MethodSecurityServiceImpl groovy->java 
Issue: gh-4939
 2018-02-06 14:09:58 -06:00
Rob Winch
751130ba04 MethodSecurityService groovy->java 
Issue: gh-4939
 2018-02-06 14:08:43 -06:00
Rob Winch
9e23d684e7 Polish Imports in SpringTestRule 
Fixes: gh-5001
 2018-02-06 13:48:36 -06:00
Rob Winch
73f5e89e4c SpringTestRule clears SecurityContext 
Fixes: gh-5001
 2018-02-06 11:54:26 -06:00
Rob Winch
1efc7ef5d7 Issue50Tests groovy->java 
Issue: gh-4939
 2018-02-06 11:53:19 -06:00
Rob Winch
d12d9ba538 SecurityConfig groovy->java 
Issue: gh-4939
 2018-02-06 11:53:07 -06:00
Rob Winch
9e3e7e9e29 ApplicationConfig groovy->java 
Issue: gh-4939
 2018-02-06 11:52:29 -06:00
Rob Winch
11c8d5ddfb UserRepository groovy->java 
Issue: gh-4939
 2018-02-06 11:51:58 -06:00
Rob Winch
1217547ebd User groovy->java 
Issue: gh-4939
 2018-02-06 11:51:38 -06:00