Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Spring Security
8,737 Commits 30 Branches 330 Tags 114 MiB
Java 94.5%
Kotlin 4.8%
JavaScript 0.3%
Groovy 0.2%
Go to file
Erik Bakker cd3fd6762f
Don't Consume Request Body 
Per the servlet spec, getParameter(name) consumes the request body for
POST requests.

This commit prevents DefaultOAuth2AuthorizationRequestResolver from
consuming the request body for non-Authorization requests.

Closes gh-8650
 		2020-06-05 14:21:00 -06:00
.github Update issue templates 2020-04-16 16:05:40 -05:00
.idea Add Checkstyle configuration for IntelliJ IDEA 2019-08-09 16:21:30 -05:00
acl Prevent StackOverflowError for AccessControlEntryImpl.hashCode 2020-05-21 09:53:35 -05:00
aspects Unlock dependencies 2020-05-06 17:27:35 -04:00
bom Use spring-build-conventions Bom plugin 2018-01-09 11:27:34 -06:00
buildSrc Replace VersionsResourceTasks with WriteProperties 2020-03-13 13:26:54 -05:00
cas Unlock dependencies 2020-05-06 17:27:35 -04:00
config Add ServerRequestCache setter in OAuth2AuthorizationCodeGrantWebFilter 2020-06-02 21:54:09 -04:00
core AbstractUserDetailsReactiveAuthenticationManager uses boundidElastic() 2020-05-12 13:07:24 -05:00
crypto Remove unused field 'digester' in Md4PasswordEncoder 2020-05-21 11:19:03 -05:00
data Unlock dependencies 2020-05-06 17:27:35 -04:00
docs Fix broken link in spring security reference document 2020-06-02 05:36:19 -06:00
etc Polish LDAP Authentication 2020-01-16 09:38:40 -06:00
gradle Update to Gradle 6.4.1 2020-05-27 16:12:23 -06:00
itest Unlock dependencies 2020-05-06 17:27:35 -04:00
ldap Allow port=0 for ApacheDSContainer 2020-05-21 16:14:01 -05:00
messaging Unlock dependencies 2020-05-06 17:27:35 -04:00
oauth2 Don't Consume Request Body 2020-06-05 14:21:00 -06:00
openid Unlock dependencies 2020-05-06 17:27:35 -04:00
remoting Unlock dependencies 2020-05-06 17:27:35 -04:00
rsocket Add subscriberContext to PayloadSocketAcceptor delegate.accept 2020-06-05 12:22:19 -05:00
saml2/saml2-service-provider Add TestSaml2AuthenticationRequestContexts 2020-05-18 21:08:03 -06:00
samples Remove @MockBean ClientRegistrationRepository 2020-05-28 10:33:02 -06:00
scripts Add custom release notes configuration file 2019-12-31 14:19:40 -05:00
taglibs Unlock dependencies 2020-05-06 17:27:35 -04:00
test Inject TestOAuth2AuthorizedClientRepository 2020-05-28 10:33:02 -06:00
web Mock request with non-standard HTTP method in test 2020-05-26 10:16:56 -04:00
.editorconfig Use UTF-8 for Java sources and XML 2019-08-14 08:47:00 -05:00
.gitignore Ignore Lock Files 2020-02-07 13:59:05 -06:00
.travis.yml Improve Build Performance 2020-03-13 13:26:06 -05:00
CONTRIBUTING.adoc Fix mismatch between CONTRIBUTING.adoc and .editorconfig 2020-04-20 13:03:55 -05:00
Jenkinsfile Explicitly set useSuffixPatternMatch for Tests 2020-05-08 16:43:56 -05:00
LICENSE.txt Add LICENSE.txt 2020-04-15 16:44:13 -05:00
README.adoc Documented dependencies opaque Resource Server 2020-04-17 16:25:14 -05:00
build.gradle Update to spring-build-conventions:0.0.32.RELEASE 2020-05-06 17:39:22 -05:00
class_mapping_from_2.0.x.txt SEC-1148: Simple classname mapping from 2.0 to 3.0 2009-12-02 22:44:30 +00:00
gradle.properties Update to Spring Boot 2.3.0 2020-05-27 16:12:23 -06:00
gradlew Update to Gradle 6.1.1 2020-02-04 23:36:47 -06:00
gradlew.bat Update to Gradle 5.5 2019-07-11 22:15:42 -04:00
notice.txt URL Cleanup 2019-03-19 23:53:23 -05:00
settings.gradle Upgrade to Gradle Enterprise Plugin 3.2 2020-03-27 12:44:12 -05:00

README.adoc 

image::https://badges.gitter.im/Join%20Chat.svg[Gitter,link=https://gitter.im/spring-projects/spring-security?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge]

image:https://travis-ci.org/spring-projects/spring-security.svg?branch=master["Build Status", link="https://travis-ci.org/spring-projects/spring-security"]

= Spring Security

Spring Security provides security services for the https://docs.spring.io[Spring IO Platform]. Spring Security 5.0 requires Spring 5.0 as
a minimum and also requires Java 8.

For a detailed list of features and access to the latest release, please visit https://spring.io/projects[Spring projects].

== Code of Conduct
Please see our https://github.com/spring-projects/.github/blob/master/CODE_OF_CONDUCT.md[code of conduct]

== Downloading Artifacts
See https://github.com/spring-projects/spring-framework/wiki/Downloading-Spring-artifacts[downloading Spring artifacts] for Maven repository information.

== Documentation
Be sure to read the https://docs.spring.io/spring-security/site/docs/current/reference/htmlsingle/[Spring Security Reference].
Extensive JavaDoc for the Spring Security code is also available in the https://docs.spring.io/spring-security/site/docs/current/api/[Spring Security API Documentation].

== Quick Start
We recommend you visit https://docs.spring.io/spring-security/site/docs/current/reference/htmlsingle/[Spring Security Reference] and read the "Getting Started" page.

== Building from Source
Spring Security uses a https://gradle.org[Gradle]-based build system.
In the instructions below, https://vimeo.com/34436402[`./gradlew`] is invoked from the root of the source tree and serves as
a cross-platform, self-contained bootstrap mechanism for the build.

=== Prerequisites
https://help.github.com/set-up-git-redirect[Git] and the https://www.oracle.com/technetwork/java/javase/downloads[JDK8 build].

Be sure that your `JAVA_HOME` environment variable points to the `jdk1.8.0` folder extracted from the JDK download.

=== Check out sources
[indent=0]
----
git clone git@github.com:spring-projects/spring-security.git
----

=== Install all spring-\* jars into your local Maven cache
[indent=0]
----
./gradlew install
----

=== Compile and test; build all jars, distribution zips, and docs
[indent=0]
----
./gradlew build
----

Discover more commands with `./gradlew tasks`.
See also the https://github.com/spring-projects/spring-framework/wiki/Gradle-build-and-release-FAQ[Gradle build and release FAQ].

== Getting Support
Check out the https://stackoverflow.com/questions/tagged/spring-security[Spring Security tags on Stack Overflow].
https://spring.io/services[Commercial support] is available too.

== Contributing
https://help.github.com/articles/creating-a-pull-request[Pull requests] are welcome; see the https://github.com/spring-projects/spring-security/blob/master/CONTRIBUTING.adoc[contributor guidelines] for details.

== License
Spring Security is Open Source software released under the
https://www.apache.org/licenses/LICENSE-2.0.html[Apache 2.0 license].