spring-security

History

Jeremy Waters 832f5c39c1 SEC-3190: Add support for colons in remember-me token values We have an issue where token strings that contain a colon break the existing decoding strategy, which tokenizes on colons. so this change urlencodes the individual tokens when creating the cookie string; and urldecodes them decoding the cookie and extracting the tokens. This also eliminates the need for existing code to deal with openid tokens which contain urls, and thus colons.	2017-10-30 00:33:14 -05:00
..
src	SEC-3190: Add support for colons in remember-me token values	2017-10-30 00:33:14 -05:00
spring-security-web.gradle	Move spring-security-webflux into spring-security-web	2017-10-18 16:20:09 -05:00

Jeremy Waters 832f5c39c1 SEC-3190: Add support for colons in remember-me token values

We have an issue where token strings that contain a colon break
the existing decoding strategy, which tokenizes on colons.  so this 
change urlencodes the individual tokens when creating the cookie 
string; and urldecodes them decoding the cookie and extracting the 
tokens.  This also eliminates the need for existing code to deal with
openid tokens which contain urls, and thus colons.

2017-10-30 00:33:14 -05:00

src

SEC-3190: Add support for colons in remember-me token values

2017-10-30 00:33:14 -05:00

spring-security-web.gradle

Move spring-security-webflux into spring-security-web

2017-10-18 16:20:09 -05:00