[[new]] = What's New in Spring Security 5.6 Spring Security 5.6 provides a number of new features. Below are the highlights of the release. * All new https://antora.org/[Antora] based https://docs.spring.io/spring-security/[documentation]. [[whats-new-servlet]] == Servlet * Core ** Introduced https://github.com/spring-projects/spring-security/issues/10226[`SecurityContextChangedListener`] ** Improved https://github.com/spring-projects/spring-security/pull/10279[Method Security Logging] * Configuration ** Introduced https://github.com/spring-projects/spring-security/pull/9630[`AuthorizationManager`] for method security * SAML 2.0 Service Provider ** Added https://github.com/spring-projects/spring-security/pull/9483[SAML 2.0 Single Logout Support] ** Added https://github.com/spring-projects/spring-security/pull/10060[Saml2AuthenticationRequestRepository] ** Added https://github.com/spring-projects/spring-security/issues/9486[`RelyingPartyRegistrationResolver`] ** Improved ``Saml2LoginConfigurer``'s handling of https://github.com/spring-projects/spring-security/issues/10268[`Saml2AuthenticationTokenConverter`] * OAuth 2.0 Login ** Added https://github.com/spring-projects/spring-security/pull/10041[`Converter` for `Authentication` result] * OAuth 2.0 Client ** Improved https://github.com/spring-projects/spring-security/pull/9791[Client Credentials encoding] ** Improved https://github.com/spring-projects/spring-security/pull/9779[Access Token Response parsing] ** Added https://github.com/spring-projects/spring-security/pull/10155[custom grant types support] for Authorization Requests ** Introduced https://github.com/spring-projects/spring-security/pull/9208[JwtEncoder] * Testing ** Added support to https://github.com/spring-projects/spring-security/pull/9737[propagate the TestSecurityContextHolder to SecurityContextHolder] [[whats-new-webflux]] == WebFlux * OAuth 2.0 Client ** Improved https://github.com/spring-projects/spring-security/pull/9791[Client Credentials encoding] ** Added https://github.com/spring-projects/spring-security/pull/10131[custom headers support] for Access Token Requests ** Added https://github.com/spring-projects/spring-security/pull/10269[custom response parsing] for Access Token Requests ** Added https://github.com/spring-projects/spring-security/pull/10327[jwt-bearer Grant Type support] for Access Token Requests ** Added https://github.com/spring-projects/spring-security/pull/10336[JWT Client Authentication support] for Access Token Requests ** Improved https://github.com/spring-projects/spring-security/pull/10373[Reactive OAuth 2.0 Client Documentation]