Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Spring Security
8,462 Commits 30 Branches 330 Tags 114 MiB
Java 94.5%
Kotlin 4.8%
JavaScript 0.3%
Groovy 0.2%
Go to file
Ovidiu Popa 174b71c017 OidcIdToken cannot be serialized to JSON if token contains claim of type JSONArray or JSONObject 
ObjectToListStringConverter and ObjectToMapStringObjectConverter were checking if the source object is of type List or Map and if the first element or key is a String. If we have a JSONArray containing Strings the above check will pass, meaning that a JSONArray will be returned which is not serializable (same applies to JSONObject)

With this change, even if the check is passing a new List or Map will be returned.

Closes gh-9210
 		2020-12-03 11:42:00 -05:00
.github Use Github Actions workflow for PRs and remove Travis 2020-06-30 05:05:48 -04:00
.idea Add Checkstyle configuration for IntelliJ IDEA 2019-08-09 16:21:30 -05:00
acl Prevent StackOverflowError for AccessControlEntryImpl.hashCode 2020-05-21 10:07:54 -05:00
aspects Remove redundant throws clauses 2019-08-23 01:03:54 +02:00
bom Use spring-build-conventions Bom plugin 2018-01-09 11:27:34 -06:00
buildSrc Create the rncToXsd Task lazily 2019-08-29 06:13:52 -05:00
cas Fix typo 'properites' in documentation 2020-03-11 11:01:06 -06:00
config Update Test Controllers 2020-10-12 18:12:02 -06:00
core Add try-with-resources to close stream 2020-09-29 08:46:18 -06:00
crypto Remove unused field 'digester' in Md4PasswordEncoder 2020-05-21 11:21:24 -05:00
data SecurityEvaluationContextExtension implements latest EvaluationContextExtension 2019-04-11 10:04:57 -04:00
docs add white space before strong notation. 2020-10-30 15:51:27 -06:00
etc Add RSocket Support 2019-09-04 19:24:01 -05:00
gradle Update to Spring LDAP Core 2.3.3 2020-12-02 16:04:41 -07:00
itest Update tests to use absolute paths 2020-03-31 18:05:27 -04:00
ldap ActiveDirectoryLdapAuthenticationProvider uses InternalAuthenticationServiceException 2020-04-24 10:20:35 -05:00
messaging Add Reactive Messaging CurrentSecurityContextPrincipalArgumentResolver 2019-09-27 12:52:19 -05:00
oauth2 OidcIdToken cannot be serialized to JSON if token contains claim of type JSONArray or JSONObject 2020-12-03 11:42:00 -05:00
openid fix checkstyle 2019-08-26 22:42:26 +02:00
remoting Restore Removed Throws Clauses 2019-10-30 12:13:54 -06:00
rsocket Add subscriberContext to PayloadSocketAcceptor delegate.accept 2020-06-05 12:55:07 -05:00
saml2/saml2-service-provider Polish OpenSamlAuthenticationProvider 2020-05-06 14:15:45 -04:00
samples Revert "Temporarily ignore RSocket integration tests" 2020-06-08 16:14:34 -04:00
scripts Add release-notes-sections.yml 2020-02-05 15:18:32 -05:00
taglibs Remove redundant throws clauses 2019-08-23 01:03:54 +02:00
test formLogin() and login() implement Mergable 2020-06-22 14:58:39 -05:00
web Create the CSRF token on the bounded elactic scheduler 2020-09-16 09:21:11 -06:00
.editorconfig Use UTF-8 for Java sources and XML 2019-08-14 08:47:00 -05:00
.gitignore Add Checkstyle configuration for IntelliJ IDEA 2019-08-09 16:21:30 -05:00
CODE_OF_CONDUCT.adoc URL Cleanup 2019-03-19 23:53:23 -05:00
CONTRIBUTING.md Use UTF-8 for Java sources and XML 2019-08-14 08:47:00 -05:00
Jenkinsfile Add missing withCredentials in Jenkinsfile 2020-11-17 09:28:13 -06:00
README.adoc Use Github Actions workflow for PRs and remove Travis 2020-06-30 05:05:48 -04:00
build.gradle Fix artifactoryUsername/Password in build.gradle 2020-11-17 09:05:37 -06:00
class_mapping_from_2.0.x.txt SEC-1148: Simple classname mapping from 2.0 to 3.0 2009-12-02 22:44:30 +00:00
gradle.properties Next Development Version 2020-12-02 19:09:04 -07:00
gradlew Update to Gradle 5.6 2019-08-26 14:32:07 -05:00
gradlew.bat Update to Gradle 5.5 2019-07-11 22:15:42 -04:00
license.txt URL Cleanup 2019-03-14 15:46:20 -05:00
notice.txt URL Cleanup 2019-03-19 23:53:23 -05:00
settings.gradle Fix settings.gradle on Windows 2018-08-22 10:21:41 -05:00

README.adoc 

image::https://badges.gitter.im/Join%20Chat.svg[Gitter,link=https://gitter.im/spring-projects/spring-security?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge]

= Spring Security

Spring Security provides security services for the https://docs.spring.io[Spring IO Platform]. Spring Security 5.0 requires Spring 5.0 as
a minimum and also requires Java 8.

For a detailed list of features and access to the latest release, please visit https://spring.io/projects[Spring projects].

== Code of Conduct
This project adheres to the Contributor Covenant link:CODE_OF_CONDUCT.adoc[code of conduct].
By participating, you  are expected to uphold this code. Please report unacceptable behavior to spring-code-of-conduct@pivotal.io.

== Downloading Artifacts
See https://github.com/spring-projects/spring-framework/wiki/Downloading-Spring-artifacts[downloading Spring artifacts] for Maven repository information.

== Documentation
Be sure to read the https://docs.spring.io/spring-security/site/docs/current/reference/htmlsingle/[Spring Security Reference].
Extensive JavaDoc for the Spring Security code is also available in the https://docs.spring.io/spring-security/site/docs/current/api/[Spring Security API Documentation].

== Quick Start
We recommend you visit https://docs.spring.io/spring-security/site/docs/current/reference/htmlsingle/[Spring Security Reference] and read the "Getting Started" page.

== Building from Source
Spring Security uses a https://gradle.org[Gradle]-based build system.
In the instructions below, https://vimeo.com/34436402[`./gradlew`] is invoked from the root of the source tree and serves as
a cross-platform, self-contained bootstrap mechanism for the build.

=== Prerequisites
https://help.github.com/set-up-git-redirect[Git] and the https://www.oracle.com/technetwork/java/javase/downloads[JDK8 build].

Be sure that your `JAVA_HOME` environment variable points to the `jdk1.8.0` folder extracted from the JDK download.

=== Check out sources
[indent=0]
----
git clone git@github.com:spring-projects/spring-security.git
----

=== Install all spring-\* jars into your local Maven cache
[indent=0]
----
./gradlew install
----

=== Compile and test; build all jars, distribution zips, and docs
[indent=0]
----
./gradlew build
----

Discover more commands with `./gradlew tasks`.
See also the https://github.com/spring-projects/spring-framework/wiki/Gradle-build-and-release-FAQ[Gradle build and release FAQ].

== Getting Support
Check out the https://stackoverflow.com/questions/tagged/spring-security[Spring Security tags on Stack Overflow].
https://spring.io/services[Commercial support] is available too.

== Contributing
https://help.github.com/articles/creating-a-pull-request[Pull requests] are welcome; see the https://github.com/spring-projects/spring-security/blob/master/CONTRIBUTING.md[contributor guidelines] for details.

== License
Spring Security is Open Source software released under the
https://www.apache.org/licenses/LICENSE-2.0.html[Apache 2.0 license].