From ece5de3f99d2139f28d7071ddf1047155c07d1e7 Mon Sep 17 00:00:00 2001 From: Rob Winch Date: Wed, 19 Sep 2018 09:44:50 -0500 Subject: [PATCH] Polish What's New Issue: gh-5857 --- .../asciidoc/_includes/preface/whats-new.adoc | 26 ++++++++++--------- docs/manual/src/docs/asciidoc/index.adoc | 2 +- 2 files changed, 15 insertions(+), 13 deletions(-) diff --git a/docs/manual/src/docs/asciidoc/_includes/preface/whats-new.adoc b/docs/manual/src/docs/asciidoc/_includes/preface/whats-new.adoc index 310dcea0a5..1558dbb4c2 100644 --- a/docs/manual/src/docs/asciidoc/_includes/preface/whats-new.adoc +++ b/docs/manual/src/docs/asciidoc/_includes/preface/whats-new.adoc @@ -6,24 +6,26 @@ Below are the highlights of the release. === Servlet +* Automatic password storage upgrades through {security-api-url}org/springframework/security/core/userdetails/UserDetailsPasswordService.html[UserDetailsPasswordService] * {gh-samples-url}/boot/oauth2webclient[OAuth 2.0 Client] ** Customizable Authorize and Token requests ** `authorization_code` grant support ** `client_credentials` grant support * OAuth 2.0 Resource Server - support for {gh-samples-url}/boot/oauth2resourceserver[JWT-encoded bearer tokens] -* {gh-samples-url}/boot/oauth2webclient[OAuth 2.0 Web Client Extensions] - Supports `authorization_code`, `client_credentials`, and `refresh_token` grants -* <> - Protection against HTTP Verb Tampering and Cross-site Tracing -* <> - Support for selecting an `AccessDeniedHandler` by `RequestMatcher` -* <> - Support for disabling csrf by `RequestMatcher` -* <> -* <> - Support for `@Transient` authentication tokens +* Added OAuth2 <> integration +* <> protects against HTTP Verb Tampering and Cross-site Tracing +* <> support for selecting an `AccessDeniedHandler` by `RequestMatcher` +* <> support for excluding certain requests +* Added Support for <> +* Added {security-api-url}core/src/main/java/org/springframework/security/core/Transient.java[@Transient] authentication tokens * A modern look-and-feel for the default log in page === WebFlux +* Automatic password storage upgrades through {security-api-url}org/springframework/security/core/userdetails/ReactiveUserDetailsPasswordService.html[ReactiveUserDetailsPasswordService] * Added <> support ** Added <> support -** Added<> support +** Added <> support ** Added OAuth2 <> integration * <> - `@WithUserDetails` now works with `ReactiveUserDetailsService` * Added <> support @@ -32,17 +34,17 @@ Below are the highlights of the release. ** <> ** <> * <> +* Improvements for {security-api-url}org/springframework/security/core/annotation/AuthenticationPrincipal.html[@AuthenticationPrincipal] +** Support for resolving beans +** Support for resolving `errorOnInvalidType` === Integrations -* <> - New service to support password upgrades -* <> - Support for `BadCredentialsException` +* <> works with `BadCredentialsException` * <> - Support for customizing when the `SecurityContext` is setup in the test. For example, `@WithMockUser(setupBefore = TestExecutionEvent.TEST_EXECUTION)` will setup a user after JUnit's `@Before` and before the test executes. * <> - Support for setting up an `LdapContext` from custom environment variables * <> - Support for deriving the X.509 principal via a strategy -* <> -** Support for resolving beans in WebFlux (support already exists for Spring MVC) -** Support for resolving `errorOnInvalidType` in WebFlux (support already exists for Spring MVC) + diff --git a/docs/manual/src/docs/asciidoc/index.adoc b/docs/manual/src/docs/asciidoc/index.adoc index 45ee6e70c7..f870839602 100644 --- a/docs/manual/src/docs/asciidoc/index.adoc +++ b/docs/manual/src/docs/asciidoc/index.adoc @@ -1,7 +1,7 @@ = Spring Security Reference Ben Alex; Luke Taylor; Rob Winch; Gunnar Hillert; Joe Grandja; Jay Bryant :include-dir: _includes -:security-api-url: http://docs.spring.io/spring-security/site/docs/current/apidocs/ +:security-api-url: http://docs.spring.io/spring-security/site/docs/current/api/ :source-indent: 0 :tabsize: 4