1c17a851b7
Merge branch '2.7.x' into main
2021-12-17 17:57:45 -08:00
d803c53e02
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29109
2021-12-17 17:57:33 -08:00
4cc8012bfa
Handle WebServerNamespace in CachingOperationInvoker
...
Fixes gh-28882
2021-12-17 17:55:06 -08:00
48a6470ddb
Merge branch '2.7.x' into main
2021-12-17 17:51:48 -08:00
764531c326
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29108
2021-12-17 17:51:29 -08:00
d9d161cd6b
Allow previously authorized users to access the error page
...
Prior to this commit, the `ErrorPageSecurityFilter` verified if
access to the error page was allowed by invoking the
`WebInvocationPrivilegeEvaluator` with the Authentication from the
`SecurityContextHolder`.
This meant that access to the error page was denied for a `null` Authentication
or `AnonymousAuthenticationToken` in cases where the error page required
authenticated access. This prevented authorized users from accessing the
error page in case the Authentication wasn't retrievable for the error dispatch,
which is the case for `@Transient` authentication or stateless session policy.
This commit updates the `ErrorPageSecurityFilter` to check access to the error page
only if the error is an authn or authz error in cases where an authentication object
is not found in the SecurityContextHolder. This makes the error response consistent
when bad credentials or no credentials are used while also allowing access to previously
authorized users.
Fixes gh-28953
2021-12-17 16:58:58 -08:00
c975fbc286
Merge branch '2.7.x'
2021-12-17 16:38:15 +01:00
64dd1f86c0
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29104
2021-12-17 16:38:07 +01:00
c077ebecf7
Merge branch '2.5.x' into 2.6.x
...
Closes gh-29103
2021-12-17 16:37:53 +01:00
2fec06ac7e
Find annotation without initializing factory beans
...
Closes gh-28977
2021-12-17 16:08:30 +01:00
d13441c009
Merge branch '2.7.x'
...
Closes gh-29014
2021-12-17 12:16:02 +01:00
b04f7904ff
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29013
2021-12-17 12:15:15 +01:00
1c35ec2c3c
Merge branch '2.5.x' into 2.6.x
...
Closes gh-29012
2021-12-17 12:14:31 +01:00
5d0206320a
Upgrade to Logback 1.2.9
...
Closes gh-29011
2021-12-17 12:13:02 +01:00
b9057f1957
Merge branch '2.7.x'
2021-12-17 10:50:23 +01:00
de383fcee0
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29099
2021-12-17 10:50:15 +01:00
bcaa59ce73
Merge branch '2.5.x' into 2.6.x
...
Closes gh-29098
2021-12-17 10:50:07 +01:00
415c58e21b
Polish CacheManager customization section in reference doc
...
See gh-29094
2021-12-17 10:48:55 +01:00
a05714ad9f
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29097
2021-12-17 10:30:42 +01:00
10362a9315
Merge branch '2.5.x' into 2.6.x
...
Closes gh-29096
2021-12-17 10:30:26 +01:00
8c9d398422
Test our Gradle plugin against Gradle 7.3.2
...
Closes gh-29093
2021-12-17 09:11:44 +01:00
1015df088d
Merge branch '2.6.x' into 2.7.x
2021-12-16 13:55:55 -08:00
587d6fa309
Polish
2021-12-16 13:55:42 -08:00
003fb229fd
Merge branch '2.7.x'
2021-12-16 13:07:22 -08:00
f3bcbca841
Update copyright year of changed files
2021-12-16 13:05:17 -08:00
b4cdd37e63
Merge branch '2.7.x'
2021-12-16 12:24:25 -06:00
4cad4851da
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29088
2021-12-16 12:24:12 -06:00
92b096abbf
Fix message interpolation when code is used as default message
...
When `setUseCodeAsDefaultMessage(true)` was set on a message source,
attempting to interpolate the default message returned from the message
source would result in the code being unusable by upstream message
resolvers.
Fixes gh-28930
2021-12-16 12:20:37 -06:00
f2efe56a18
Upgrade to Spring Framework 5.3.14
2021-12-16 17:51:27 +01:00
a7a37f4ad6
Upgrade to Spring Framework 5.3.14
...
Closes gh-28970
2021-12-16 17:50:53 +01:00
b8bf2cbbc7
Upgrade to Spring Framework 5.3.14
...
Closes gh-28961
2021-12-16 17:50:18 +01:00
75d2c36846
Merge branch '2.7.x'
2021-12-16 17:30:45 +01:00
63427b77d1
Merge branch '2.6.x' into 2.7.x
...
Closes gh-29086
2021-12-16 17:30:36 +01:00
55859ea64c
Stop accessing the datasource if initialization mode is set to never
...
Closes gh-28931
2021-12-16 16:50:22 +01:00
4b1c0e5a03
Start building against Spring Framework 5.3.14 snapshots
2021-12-15 16:52:41 +01:00
035adf4f05
Merge branch '2.7.x'
2021-12-15 16:41:27 +01:00
38aeeee381
Merge branch '2.6.x' into 2.7.x
2021-12-15 16:41:19 +01:00
3b4d27e4d3
Merge branch '2.5.x' into 2.6.x
2021-12-15 16:41:09 +01:00
30ebb17b2b
Polish
2021-12-15 16:38:27 +01:00
a5734ef194
Upgrade to Reactor 2020.0.14
...
Closes gh-28969
2021-12-15 15:12:20 +01:00
28214e1e8c
Upgrade to Reactor 2020.0.14
...
Closes gh-28960
2021-12-15 15:11:38 +01:00
4f14428351
Upgrade to Undertow 2.2.14.Final
...
Closes gh-29072
2021-12-15 15:11:24 +01:00
a4fbc98667
Upgrade to Thymeleaf 3.0.14.RELEASE
...
Closes gh-29070
2021-12-15 15:11:21 +01:00
45e8711b5b
Upgrade to Spring WS 3.1.2
...
Closes gh-29069
2021-12-15 15:11:20 +01:00
3bbc4649b7
Upgrade to MSSQL JDBC 9.4.1.jre8
...
Closes gh-29068
2021-12-15 15:11:19 +01:00
36332d42b8
Upgrade to JUnit Jupiter 5.8.2
...
Closes gh-29066
2021-12-15 15:11:16 +01:00
657f6e0010
Upgrade to Jedis 3.7.1
...
Closes gh-29065
2021-12-15 15:11:15 +01:00
afd254424b
Upgrade to JDOM2 2.0.6.1
...
Closes gh-29064
2021-12-15 15:11:14 +01:00
7156e3fb23
Upgrade to HttpCore 4.4.15
...
Closes gh-29063
2021-12-15 15:11:13 +01:00
0219408b7e
Upgrade to HttpAsyncClient 4.1.5
...
Closes gh-29062
2021-12-15 15:11:11 +01:00
Madhura Bhave
Stephane Nicoll
Andy Wilkinson
Brian Clozel
Pavel Anisimov
Phillip Webb
Scott Frederick