e11e8fe414
Bump io.spring.gradle:spring-security-release-plugin
...
Bumps [io.spring.gradle:spring-security-release-plugin](https://github.com/spring-io/spring-security-release-tools ) from 1.0.6 to 1.0.10.
- [Release notes](https://github.com/spring-io/spring-security-release-tools/releases )
- [Commits](https://github.com/spring-io/spring-security-release-tools/compare/v1.0.6...v1.0.10 )
---
updated-dependencies:
- dependency-name: io.spring.gradle:spring-security-release-plugin
dependency-version: 1.0.10
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:48:41 +00:00
7432554fa8
Bump org.gretty:gretty from 4.1.6 to 4.1.7
...
Bumps [org.gretty:gretty](https://github.com/gretty-gradle-plugin/gretty ) from 4.1.6 to 4.1.7.
- [Release notes](https://github.com/gretty-gradle-plugin/gretty/releases )
- [Changelog](https://github.com/gretty-gradle-plugin/gretty/blob/master/changes.md )
- [Commits](https://github.com/gretty-gradle-plugin/gretty/compare/v4.1.6...v4.1.7 )
---
updated-dependencies:
- dependency-name: org.gretty:gretty
dependency-version: 4.1.7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:48:30 +00:00
ff0b8f0138
Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9
...
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework ) from 6.2.8 to 6.2.9.
- [Release notes](https://github.com/spring-projects/spring-framework/releases )
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.2.8...v6.2.9 )
---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
dependency-version: 6.2.9
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:48:20 +00:00
9300146b99
Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11
...
Bumps org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11.
---
updated-dependencies:
- dependency-name: org.apache.maven:maven-resolver-provider
dependency-version: 3.9.11
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:48:04 +00:00
176c3b8457
Bump io.spring.nullability:io.spring.nullability.gradle.plugin
...
Bumps [io.spring.nullability:io.spring.nullability.gradle.plugin](https://github.com/spring-gradle-plugins/nullability-plugin ) from 0.0.1 to 0.0.2.
- [Release notes](https://github.com/spring-gradle-plugins/nullability-plugin/releases )
- [Commits](https://github.com/spring-gradle-plugins/nullability-plugin/compare/v0.0.1...v0.0.2 )
---
updated-dependencies:
- dependency-name: io.spring.nullability:io.spring.nullability.gradle.plugin
dependency-version: 0.0.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:26:45 +00:00
7e1a92b091
Bump io.spring.develocity.conventions from 0.0.23 to 0.0.24
...
Bumps [io.spring.develocity.conventions](https://github.com/spring-io/develocity-conventions ) from 0.0.23 to 0.0.24.
- [Release notes](https://github.com/spring-io/develocity-conventions/releases )
- [Commits](https://github.com/spring-io/develocity-conventions/compare/v0.0.23...v0.0.24 )
---
updated-dependencies:
- dependency-name: io.spring.develocity.conventions
dependency-version: 0.0.24
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:26:41 +00:00
48533ede45
Bump com.fasterxml.jackson:jackson-bom from 2.19.1 to 2.19.2
...
Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom ) from 2.19.1 to 2.19.2.
- [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.19.1...jackson-bom-2.19.2 )
---
updated-dependencies:
- dependency-name: com.fasterxml.jackson:jackson-bom
dependency-version: 2.19.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:26:22 +00:00
614763041e
Bump io.spring.gradle:spring-security-release-plugin
...
Bumps [io.spring.gradle:spring-security-release-plugin](https://github.com/spring-io/spring-security-release-tools ) from 1.0.6 to 1.0.10.
- [Release notes](https://github.com/spring-io/spring-security-release-tools/releases )
- [Commits](https://github.com/spring-io/spring-security-release-tools/compare/v1.0.6...v1.0.10 )
---
updated-dependencies:
- dependency-name: io.spring.gradle:spring-security-release-plugin
dependency-version: 1.0.10
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:26:09 +00:00
b672aae640
Bump org.gretty:gretty from 4.1.6 to 4.1.7
...
Bumps [org.gretty:gretty](https://github.com/gretty-gradle-plugin/gretty ) from 4.1.6 to 4.1.7.
- [Release notes](https://github.com/gretty-gradle-plugin/gretty/releases )
- [Changelog](https://github.com/gretty-gradle-plugin/gretty/blob/master/changes.md )
- [Commits](https://github.com/gretty-gradle-plugin/gretty/compare/v4.1.6...v4.1.7 )
---
updated-dependencies:
- dependency-name: org.gretty:gretty
dependency-version: 4.1.7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-23 03:26:06 +00:00
79cd982341
Extract spring-security-webauthn
...
Closes gh-17586
2025-07-22 17:18:38 -05:00
7c887d2da1
Add nullability to spring-security-core
...
Closes gh-17534
2025-07-22 16:29:13 -05:00
9db1ffbd79
Add Nullability to spring-security-crypto
...
Closes gh-17533
2025-07-22 16:29:13 -05:00
bc4ec39fa5
Add spring nullability
...
Issue gh-16882
2025-07-22 16:28:40 -05:00
fca30e3d25
Update What's New in Spring Security 7
...
CodeQL Advanced / codeql-analysis-call (push) Has been cancelled
Details
CI / Build (17, ubuntu-latest) (push) Has been cancelled
Details
CI / Build (17, windows-latest) (push) Has been cancelled
Details
Deploy Docs / build (push) Has been cancelled
Details
CI / Deploy Artifacts (push) Has been cancelled
Details
CI / Deploy Docs (push) Has been cancelled
Details
CI / Deploy Schema (push) Has been cancelled
Details
CI / Perform Release (push) Has been cancelled
Details
CI / Send Notification (push) Has been cancelled
Details
Closes gh-17582
2025-07-21 15:00:47 -06:00
7da30c27e4
Next development version
CodeQL Advanced / codeql-analysis-call (push) Has been cancelled
Details
CI / Build (17, ubuntu-latest) (push) Has been cancelled
Details
CI / Build (17, windows-latest) (push) Has been cancelled
Details
CI / Test Against Snapshots (17, 17) (push) Has been cancelled
Details
CI / Test Against Snapshots (21-ea, 21) (push) Has been cancelled
Details
CI / Check Samples (push) Has been cancelled
Details
Deploy Docs / build (push) Has been cancelled
Details
CI / Deploy Artifacts (push) Has been cancelled
Details
CI / Deploy Docs (push) Has been cancelled
Details
CI / Deploy Schema (push) Has been cancelled
Details
CI / Perform Release (push) Has been cancelled
Details
CI / Send Notification (push) Has been cancelled
Details
2025-07-21 19:13:12 +00:00
50586dff07
Next development version
CodeQL Advanced / codeql-analysis-call (push) Has been cancelled
Details
CI / Build (17, ubuntu-latest) (push) Has been cancelled
Details
CI / Build (17, windows-latest) (push) Has been cancelled
Details
CI / Test Against Snapshots (17, 17) (push) Has been cancelled
Details
CI / Test Against Snapshots (21-ea, 21) (push) Has been cancelled
Details
CI / Check Samples (push) Has been cancelled
Details
Deploy Docs / build (push) Has been cancelled
Details
CI / Deploy Artifacts (push) Has been cancelled
Details
CI / Deploy Docs (push) Has been cancelled
Details
CI / Deploy Schema (push) Has been cancelled
Details
CI / Perform Release (push) Has been cancelled
Details
CI / Send Notification (push) Has been cancelled
Details
2025-07-21 19:12:47 +00:00
4fe9d915b6
Release 6.4.8
2025-07-21 18:34:22 +00:00
3512fc76f3
Release 6.5.2
2025-07-21 18:34:18 +00:00
84d54b94c9
Next development version
CodeQL Advanced / codeql-analysis-call (push) Waiting to run
Details
CI / Build (17, ubuntu-latest) (push) Waiting to run
Details
CI / Build (17, windows-latest) (push) Waiting to run
Details
CI / Deploy Artifacts (push) Blocked by required conditions
Details
CI / Deploy Docs (push) Blocked by required conditions
Details
CI / Deploy Schema (push) Blocked by required conditions
Details
CI / Perform Release (push) Blocked by required conditions
Details
CI / Send Notification (push) Blocked by required conditions
Details
Deploy Docs / build (push) Waiting to run
Details
2025-07-21 15:50:52 +00:00
02b922ce5a
Release 7.0.0-M1
2025-07-21 15:25:10 +00:00
ef77d3f0cf
Merge branch '6.5.x'
2025-07-21 09:43:08 -05:00
90584ef8ce
Merge branch '6.4.x' into 6.5.x
2025-07-21 09:42:59 -05:00
7b606362f8
Fix samples branch
2025-07-21 09:42:51 -05:00
e38c059e7c
Fix samples branch
2025-07-21 09:42:08 -05:00
85dc06bbdf
Merge branch '6.5.x'
...
Closes gh-17581
2025-07-21 09:30:11 -05:00
80ccb9b3cf
Merge branch '6.4.x' into 6.5.x
...
Closes gh-17580
2025-07-21 09:29:20 -05:00
829af961f0
Use Meaningful Configurer Names in Test
...
This just renames the Configurer names used in
AbstractConfiguredSecurityBuilderTests to be more meaningful.
Issue gh-17020 gh-17011
Signed-off-by: Rob Winch <362503+rwinch@users.noreply.github.com>
2025-07-21 09:27:36 -05:00
fca704e61f
Fix getConfigurersInInitializing Semantics
...
A getter should not mutate state. This removes getConfigurersInInitializing
in favor of inline code since this is just used once.
Issue gh-17020 gh-17011
Signed-off-by: Rob Winch <362503+rwinch@users.noreply.github.com>
2025-07-21 09:27:36 -05:00
ea9dd2728e
Support add nested security configurers during builder initialization
...
Closes gh-17011
Signed-off-by: DingHao <dh.hiekn@gmail.com>
2025-07-21 09:27:27 -05:00
4fa2d323fd
Merge branch '6.5.x'
2025-07-21 08:20:45 -05:00
409f845db2
Merge branch '6.4.x' into 6.5.x
2025-07-21 08:20:35 -05:00
258aa66f0d
Merge branch '6.3.x' into 6.4.x
2025-07-21 08:20:16 -05:00
f2886f0ffc
Bump com.fasterxml.jackson:jackson-bom from 2.19.1 to 2.19.2
2025-07-21 08:19:48 -05:00
fbaa15bae1
Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9
2025-07-21 08:18:52 -05:00
e21a80a96d
Bump org.springframework.data:spring-data-bom from 2024.1.7 to 2024.1.8
2025-07-21 08:18:49 -05:00
236ef46cf8
Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9
2025-07-21 08:18:47 -05:00
a0b0d02965
Bump org.hibernate.orm:hibernate-core from 6.6.20.Final to 6.6.22.Final
2025-07-21 08:18:45 -05:00
97e5b103e8
Bump io.mockk:mockk from 1.14.4 to 1.14.5
2025-07-21 08:18:42 -05:00
d5d31a0892
Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11
2025-07-21 08:11:46 -05:00
1b3f8435ce
Bump org.hibernate.orm:hibernate-core from 6.6.20.Final to 6.6.22.Final
2025-07-21 08:11:44 -05:00
22fbbb9365
Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9
2025-07-21 08:11:41 -05:00
f1622351e5
Bump org.springframework.data:spring-data-bom from 2024.1.7 to 2024.1.8
2025-07-21 08:11:39 -05:00
e5c45c9dda
Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9
2025-07-21 08:11:37 -05:00
82fa658c9b
Bump org.apache.maven:maven-resolver-provider from 3.9.10 to 3.9.11
CodeQL Advanced / codeql-analysis-call (push) Has been cancelled
Details
CI / Build (17, ubuntu-latest) (push) Has been cancelled
Details
CI / Build (17, windows-latest) (push) Has been cancelled
Details
CI / Test Against Snapshots (17, 17) (push) Has been cancelled
Details
CI / Test Against Snapshots (21-ea, 21) (push) Has been cancelled
Details
CI / Check Samples (push) Has been cancelled
Details
Deploy Docs / build (push) Has been cancelled
Details
CI / Deploy Artifacts (push) Has been cancelled
Details
CI / Deploy Docs (push) Has been cancelled
Details
CI / Deploy Schema (push) Has been cancelled
Details
CI / Perform Release (push) Has been cancelled
Details
CI / Send Notification (push) Has been cancelled
Details
2025-07-21 07:52:56 -05:00
23cf29ba17
UnboundIdContainer Disables Pauses for Ephemeral Port
...
Closes gh-17543
2025-07-21 07:30:59 -05:00
63e0a56bee
Add setBasePath
...
CodeQL Advanced / codeql-analysis-call (push) Waiting to run
Details
CI / Build (17, ubuntu-latest) (push) Waiting to run
Details
CI / Build (17, windows-latest) (push) Waiting to run
Details
CI / Deploy Artifacts (push) Blocked by required conditions
Details
CI / Deploy Docs (push) Blocked by required conditions
Details
CI / Deploy Schema (push) Blocked by required conditions
Details
CI / Perform Release (push) Blocked by required conditions
Details
CI / Send Notification (push) Blocked by required conditions
Details
Deploy Docs / build (push) Waiting to run
Details
Originally, it was thought that this feature would be rather uncommon;
however, given some feedback from the Boot team, it makes sense to make
this easier to configure.
Of specific note is migrating from an earlier version were the
servlet path did not need to be specified in authorizeHttpRequests.
Since it does in 7, this will be a significant migration for those
who have a servlet path configured. This setter simplifies that a great
deal, including simplifying Boot's support of it.
Closes gh-17579
2025-07-20 22:57:06 -06:00
51a703a291
Bump org.springframework:spring-framework-bom from 6.2.8 to 6.2.9
...
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework ) from 6.2.8 to 6.2.9.
- [Release notes](https://github.com/spring-projects/spring-framework/releases )
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.2.8...v6.2.9 )
---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
dependency-version: 6.2.9
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 04:43:53 +00:00
ae689cd220
Bump org.springframework.data:spring-data-bom from 2024.1.7 to 2024.1.8
...
Bumps [org.springframework.data:spring-data-bom](https://github.com/spring-projects/spring-data-bom ) from 2024.1.7 to 2024.1.8.
- [Release notes](https://github.com/spring-projects/spring-data-bom/releases )
- [Commits](https://github.com/spring-projects/spring-data-bom/compare/2024.1.7...2024.1.8 )
---
updated-dependencies:
- dependency-name: org.springframework.data:spring-data-bom
dependency-version: 2024.1.8
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 04:41:51 +00:00
2a3d1340d1
Bump io.micrometer:micrometer-observation from 1.14.8 to 1.14.9
...
Bumps [io.micrometer:micrometer-observation](https://github.com/micrometer-metrics/micrometer ) from 1.14.8 to 1.14.9.
- [Release notes](https://github.com/micrometer-metrics/micrometer/releases )
- [Commits](https://github.com/micrometer-metrics/micrometer/compare/v1.14.8...v1.14.9 )
---
updated-dependencies:
- dependency-name: io.micrometer:micrometer-observation
dependency-version: 1.14.9
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 04:40:58 +00:00
9f40a72f19
Bump org.hibernate.orm:hibernate-core from 6.6.20.Final to 6.6.22.Final
...
Bumps [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm ) from 6.6.20.Final to 6.6.22.Final.
- [Release notes](https://github.com/hibernate/hibernate-orm/releases )
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/6.6.22/changelog.txt )
- [Commits](https://github.com/hibernate/hibernate-orm/compare/6.6.20...6.6.22 )
---
updated-dependencies:
- dependency-name: org.hibernate.orm:hibernate-core
dependency-version: 6.6.22.Final
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 04:36:16 +00:00
dependabot[bot]
Rob Winch
Josh Cummings
github-actions[bot]