root
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Actions 6 Packages Projects Releases Wiki Activity
17,333 Commits 48 Branches 362 Tags 122 MiB
Commit Graph

2839 Commits

Author SHA1 Message Date
Max Batischev 879b44f9a1 Make PublicKeyCredentialRequestOptions Serializable 
Closes gh-16432

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-02-13 17:17:16 -07:00
Josh Cummings 4776446b14
Add Missing Serialzed AuthorizationDeniedException 
Issue gh-16544
 2025-02-05 15:48:55 -07:00
Josh Cummings b4c7795699
Support Serialization for Authorization Components 
Closes gh-16544
 2025-02-05 13:58:32 -07:00
Josh Cummings 5ff87128b1
Make Saml2AuthenticationToken Serializable 
Issue gh-16286
 2025-02-03 10:13:14 -07:00
Tran Ngoc Nhan bcc4b415b3
Make RelyingPartyRegistration Serializable 
Closes gh-16286
 2025-02-03 10:13:13 -07:00
Josh Cummings 28615e7f64
Remove Stray Import 2025-01-24 11:47:40 -07:00
Josh Cummings e1e5970a24
Support Serialization for LDAP Components 
Issue gh-16276
 2025-01-23 16:55:30 -07:00
Josh Cummings 36716d12ba
Serialization Support of Core Components 
Issue gh-16276
 2025-01-23 16:50:30 -07:00
Josh Cummings d7921daa13
Support Serialization for SecurityConfig 
Issue gh-16276
 2025-01-23 16:44:53 -07:00
Josh Cummings d043884e32
Support Serialization 
Issue gh-16276
 2025-01-23 16:44:45 -07:00
Tran Ngoc Nhan e557c7227b
Implement Serializable for WebAuthnAuthentication 
Closes gh-16273
Closes gh-16285

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-01-23 13:53:26 -06:00
Rob Winch 751b5580a1
TestOneTimeTokenGenerationSuccessHandler.lastToken to non-static variable 
Previously there were race conditions on the static member lastToken of
TestOneTimeTokenGenerationSuccessHandler. This is because the tests run in
parallel and one test may override the other tests lastToken and thus
make the assertion on it incorrect.

This commit changes lastToken to be a non-static variable to ensure that
each test has it's own lastToken for asserting the expected value.

Closes gh-16471
 2025-01-23 12:43:22 -06:00
Steve Riesenberg d97e01d1de
Merge branch '6.3.x' into 6.4.x 
Closes gh-16466
 2025-01-22 17:09:34 -06:00
Steve Riesenberg 211fa52649
Favor provided instances over shared objects 
Prior to this commit, providing oauth2Login() and oauth2Client() with
clientRegistrationRepository() and authorizedClientRepository() caused
objects to be shared across both configurers.

These configurers will now prefer explicitly provided instances of
those objects when they are available.

Closes gh-16105
 2025-01-22 17:07:44 -06:00
Daniel Garnier-Moiroux 028c212be4
fix flakey test in WebAuthnWebDriverTests 
Closes gh-16463

Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
 2025-01-22 14:45:44 -06:00
Josh Cummings bbe4f87641
Mark Serialization Support for Events 
Issue gh-16276
 2025-01-17 16:08:31 -07:00
Josh Cummings 244fd2eb51
Support Serialization in Exceptions 
Issue gh-16276
 2025-01-14 18:37:53 -07:00
Josh Cummings feea103050
Formatting 
Issue gh-16276
 2025-01-14 16:28:53 -07:00
Josh Cummings 6f379aa907
Add Serializable to Csrf Components 
Issue gh-16276
 2025-01-14 16:07:20 -07:00
Max Batischev decf4def95 Add Support disableDefaultRegistrationPage to WebAuthnDsl 
Closes gh-16395

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-01-12 22:16:55 -06:00
Max Batischev 882766e54f Fix Kotlin webAuthn {} 
Fixes the default configuration for WebAuthn Kotlin DSL

Closes gh-16338

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-01-12 22:16:55 -06:00
Josh Cummings 05076db53a
Merge branch '6.3.x' into 6.4.x 2024-12-19 08:55:35 -07:00
Josh Cummings a9f8a23e50
Merge branch '6.2.x' into 6.3.x 2024-12-19 08:55:25 -07:00
Josh Cummings 643a3f1206
Test Setting logoutRequestRepository 
Issue gh-16093
 2024-12-19 08:55:18 -07:00
Steven Williams 7aafe2ed5a
Set Saml2RelyingPartyInitiatedLogoutSuccessHandler#logoutRequestRepository 
Closes gh-16093
 2024-12-19 08:53:02 -07:00
Josh Cummings 27c2a8ad11
Add Serializable Compatibility to Web Authentication Exceptions 
Issue gh-16276
 2024-12-17 13:05:23 -07:00
Josh Cummings 841c03fe3b
Add Serializable Compatilibity to Saml 2.0 Exceptions 
Issue gh-16276
 2024-12-17 09:36:29 -07:00
Josh Cummings 5ee1586a5a
Remove Unexposed Inner Classes from Serialization Test 
The following inner classes are used only internally by a non-Serializable component

Issue gh-16276
 2024-12-13 18:18:09 -07:00
Josh Cummings 018e1ae1a4
Added Serialization Values 
Issue gh-16276
 2024-12-13 16:41:32 -07:00
Josh Cummings b9911fd522
Add serialVersionUID to Authentication classes 
Issue gh-16276
 2024-12-13 16:41:32 -07:00
Josh Cummings e3cd4339b2
Add Serial Version 
Closes gh-16163
 2024-12-13 11:53:15 -07:00
Daniel Garnier-Moiroux fb954063bf Fix WebAuthnWebdriverTests 
Closes gh-16279
 2024-12-13 10:08:27 -06:00
Rob Winch 2a76a09552 Disable Flaky WebAuthnWebDriverTests 2024-12-12 22:21:36 -06:00
Josh Cummings 7592483654
Add Test to Report Missing serialVersionUID 
Issue gh-16276
 2024-12-12 18:12:11 -07:00
Josh Cummings f7b9b7228f
Include Classes Listed in Generator Map 
This allows testing of classes that are serializable,
but do not use Security's serialVersionUID.

Issue gh-16276
 2024-12-12 18:07:53 -07:00
Josh Cummings 82cc3ad5ec
Arrange Class Generators by Module 
Issue gh-16276
 2024-12-12 18:07:52 -07:00
Josh Cummings 47b5ab400a
Add 6.4.x Serialization Files 
Closes gh-16274
 2024-12-12 18:07:52 -07:00
Daniel Garnier-Moiroux 99cc65d74c webauthn: add webdriver test 
- These tests verify the full end-to-end flow, including the javascript
  code bundled in the default login and logout pages. They require a full
  web browser, with support for Virtual Authenticators for automated testing.
  At this point in time, only Chrome supports virutal authenticators.
 2024-12-11 16:53:38 -06:00
Josh Cummings 4cbaabb239 Added Testing 
Issue gh-16177
 2024-12-10 14:09:46 -07:00
Josh Cummings aa85ebc65f
Remove Extraneous Field 
Issue gh-15678
 2024-12-09 08:00:22 -07:00
Josh Cummings 4dd00fe146
Merge branch '6.3.x' 2024-12-06 15:19:19 -07:00
Josh Cummings dd8ee38194
Merge branch '6.2.x' into 6.3.x 
Closes gh-16229
 2024-12-06 15:18:42 -07:00
Josh Cummings 87de6cea1b
Use Reactive JSON Encoder 
Closes gh-16177
 2024-12-06 15:14:07 -07:00
Josh Cummings 3d1e4b5f18
Polish Tests 
Confirm that responses are a valid JSON map

Issue gh-16177
 2024-12-06 15:14:07 -07:00
Josh Cummings 3e20f7b5b5 Polish Error Messages 
- aligned the grammar
- formatted using gradlew format
- updated copyright year

Issue gh-16193
 2024-12-05 17:37:46 -07:00
Dmitry Spikhalsky 32e1d4c990 Improve AuthorizationManager configuration error messages 
Closes gh-16193
 2024-12-05 17:37:46 -07:00
Tran Ngoc Nhan 39cd8d9faf Update copyright headers 2024-12-05 14:52:59 -07:00
Josh Cummings 96b3c77ce0
Merge branch '6.3.x' 2024-12-05 12:30:37 -07:00
DingHao ef7b11ac01 Delay initialization UserDetailsService in Global Authentication 2024-12-05 12:26:04 -07:00
Tran Ngoc Nhan 5966baf9bf Update copyright headers 2024-12-04 16:51:05 -07:00