root
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Actions 4 Packages Projects Releases Wiki Activity
18,021 Commits 40 Branches 343 Tags 124 MiB
Commit Graph

789 Commits

Author SHA1 Message Date
Marco Haase 7c4448c588 Fix broken link to MockMvc documentation 
Link to Test chapter of Spring Framework documentation is broken,
this commit fixes it.

Signed-off-by: Marco Haase <marco.haase@de.bosch.com>
 2025-01-16 16:30:47 -07:00
Tran Ngoc Nhan 38006fea2c Fix broken link 
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-01-16 14:24:07 -07:00
Josh Cummings 7b8ff72c4e
Fix MVC Documentation for Kotlin 
Closes gh-16426
 2025-01-15 17:45:05 -07:00
Muhammad N. Fadhil b7b915d7c9 Improved sentence phrasing in the docs. 2025-01-12 22:25:22 -06:00
Muhammad N. Fadhil a78e888ce0 Fixed grammatical mistakes in the docs. 2025-01-12 22:25:22 -06:00
Muhammad N. Fadhil fdd50ca3bf Fixed a grammatical mistake in the docs. 2025-01-12 22:25:22 -06:00
Simão Gomes Viana 980564838d method-security: fix invalid Kotlin syntax 
val/var on function parameters is invalid Kotlin syntax. It has been removed quite some time ago. This change updates the method-security page to reflect that.

Signed-off-by: Simão Gomes Viana <simao.gomes@toowoxx.de>
 2025-01-08 09:53:42 -06:00
mskim 0e3cfd1efb Fix logout code snippet for Kotlin: Corrected deleteCookies syntax 2025-01-07 15:36:52 -06:00
Meehdi e67b5f8356 Fix incorrect rendering of SpEL expression example tabs 2025-01-07 15:29:17 -06:00
Tran Ngoc Nhan 5fdacef398 Remove obsolete typo in OAuth 2.0 Client page 2025-01-07 14:05:45 -06:00
Mehdi Rahimi 29997d8980 Change deprecated FilterSecurityInterceptor to AuthorizationFilter with a link to authorization page. 2025-01-07 13:35:01 -06:00
wndyd 4bc6e5b9d2 Fix missing space in documentation 2025-01-07 11:40:31 -06:00
Josh Cummings 1104b45832
Polish SessionLimit 
- Move to the web.authentication.session package since it is only needed
by web.authentication.session elements and does not access any other web
element itself.
- Add Kotlin support
- Add documentation

Issue gh-16206
 2024-12-18 18:32:28 -07:00
Claudenir Machado 1864577e98 Address SessionLimitStrategy 
Closes gh-16206
 2024-12-18 18:32:12 -07:00
Josh Cummings b9f3a28678 Add UserDetailsService Constructor 
Closes gh-15973
 2024-12-16 17:59:16 -07:00
Rob Winch 2fcd305509 Increment to 6.5.0-SNAPSHOT 
Closes gh-16221
 2024-12-12 21:47:11 -06:00
Yoshikazu Nojima ee1ede8b2d Update document regarding PublicKeyCredentialCreationOptions.attestation value 
Follow up for #16252
 2024-12-12 09:02:42 -06:00
Tran Ngoc Nhan 40f8ac642a Fix Documentation Typos 2024-12-09 17:56:00 -07:00
Josh Cummings a18475c6cc
Merge branch '6.3.x' 2024-12-09 15:26:20 -07:00
Josh Cummings 7873ab8601
Merge branch '6.2.x' into 6.3.x 2024-12-09 15:26:04 -07:00
Josh Cummings 348f064df1
Merge branch '5.8.x' into 6.2.x 2024-12-09 15:25:50 -07:00
Josh Cummings 8b9fe13c88
Document Messaging SpEL Migration 
Issue gh-12650
 2024-12-09 15:25:33 -07:00
Harpreet Singh cc2506b0c1 Fix: Correct OpenSAML 5.x Documentation 
- Fixed invalid XML tags in dependency examples.
- Corrected typo in `<artifactId>` ("opensaml-saml-imple" -> "opensaml-saml-impl").
- Excluded all OpenSAML 4.x dependencies.
- Removed redundant dependencies (`opensaml-core-api` and `opensaml-core-impl`) as they are transitively included in `opensaml-saml-api` and `opensaml-saml-impl`.

Closes gh-16191
 2024-12-04 13:42:03 -07:00
Harpreet Singh Bhullar f5eccf7cd3
Fix OAuth2 documentation: Corrected OAuth2ClientHttpRequestInterceptor usage 
Closes gh-16165
 2024-11-26 12:18:19 -06:00
Steve Riesenberg 14be74051e
Merge branch '6.3.x' 
Closes gh-16176
 2024-11-26 12:12:49 -06:00
Steve Riesenberg 21ac1022ef
Merge branch '6.2.x' into 6.3.x 
Closes gh-16175
 2024-11-26 12:12:18 -06:00
Harpreet Singh 68d91916e2 Polish Dark Mode for CSRF and Method Security diagrams 
Closes gh-16151
 2024-11-26 01:53:56 +05:30
James Howe aa635b02a8 Another spelling issue 2024-11-22 17:18:46 -07:00
James Howe d1e6806464 Spelling error in opensaml.adoc 2024-11-22 17:18:46 -07:00
Josh Cummings 4787efb40b
Update What's New 2024-11-18 15:51:24 -07:00
Josh Cummings 5c7237be79
Merge branch '6.3.x' 2024-11-18 12:13:20 -07:00
Josh Cummings 1414b88ef3
Merge branch '6.2.x' into 6.3.x 2024-11-18 12:13:05 -07:00
Josh Cummings ba520db7f7
Merge branch '5.8.x' into 6.2.x 2024-11-18 12:12:46 -07:00
Josh Cummings 85248083c0
Add Dark Mode CSS Style 
Closes gh-14834
 2024-11-18 12:10:48 -07:00
Rob Winch cd609acafc Document passkeys dependencies 
Closes gh-16107
 2024-11-15 17:44:42 -06:00
Steve Riesenberg f1159842f4 Polish gh-15554 
Closes gh-15398
 2024-11-13 15:18:53 -06:00
chu3la e5529fffea Improve documentation about CredentialsContainer 
Issue gh-15398
 2024-11-13 15:18:53 -06:00
Junkyu Lim 4ec5beb509 Update authentication.adoc 2024-11-04 12:09:18 -06:00
Steve Riesenberg ea5bc28773
Polish OAuth2 docs 2024-10-28 16:06:50 -05:00
Josh Cummings a36756929b
Polish Filter Chain Documentation 
Closes gh-15893
 2024-10-24 17:09:21 -06:00
ImHyuk 4ac092c803 Update logout.adoc: Fix Customizing Logout Success Example 2024-10-23 10:16:09 -07:00
Rob Winch b0e8730d70 Add Passkeys Support 
Closes gh-13305
 2024-10-20 22:54:53 -05:00
Steve Riesenberg 8982851355
Document RestClient-based implementations 
Closes gh-15938
 2024-10-18 12:24:17 -05:00
Steve Riesenberg d0fc4fe4dc
Document RestClient integration 
Closes gh-15894
 2024-10-18 12:24:17 -05:00
Steve Riesenberg 9b89fc2f1f
Add example for setting up client credentials 
Closes gh-15304
 2024-10-18 12:24:16 -05:00
Max Batischev d37d41c130 Polish One-Time Token API Names and Doc 
The names of variables and methods have been adjusted in accordance with the names of the one-time token login API components.

Issue gh-15114
 2024-10-15 14:04:56 -07:00
Josh Cummings c40334317d
Polish One-Time Token Component Names 
Aligning parts of speech so that names are using nouns/verbs
where comparable components are using nouns/verbs.

Issue gh-15114
 2024-10-14 14:07:47 -06:00
Tran Ngoc Nhan 35cc794e80 Add whitespace to improve readability 2024-10-14 11:39:04 -07:00
Rob Winch 1dd79c379b Add JdbcOneTimeTokenService 
Closes gh-15735
 2024-10-02 14:42:13 -05:00
Rob Winch f002fedb73 Document JdbcOneTimeTokenService 
Issue gh-15735
 2024-10-02 14:41:06 -05:00
nima 8a5a603c1d Fix SecurityContextPersistenceRepository Typo 2024-09-30 16:56:17 -07:00
nima cb4a85a74c Clarify UsernamePasswordAuthenticationFilter Workflow 2024-09-30 16:56:17 -07:00
Josh Cummings b49051a1e6
Merge branch '6.2.x' into 6.3.x 2024-09-26 13:08:34 -06:00
Tran Ngoc Nhan f7b85ed314
Fix Broken Resource Server Doc Links 2024-09-26 13:08:12 -06:00
Tran Ngoc Nhan 4e2cb8bc25 Fix Broken Resource Server Doc Links 2024-09-26 12:07:40 -07:00
Josh Cummings d6b620b9f7
Make Observations Selectable 
Closes gh-15678
 2024-09-26 11:30:40 -06:00
jinia91 b205436948 fix minor error in docs 2024-09-23 16:12:21 -07:00
Steve Riesenberg 5d8cf6a8bc
Polish gh-13588 2024-09-19 12:08:48 -05:00
ReGius-igmt 4a9a350ed0 Update websocket integration docs 2024-09-18 11:50:57 -07:00
Josh Cummings e27e8dfcd5
Merge branch '6.3.x' 2024-09-17 18:25:42 -06:00
Josh Cummings dfce3a280d
Merge branch '6.2.x' into 6.3.x 
Closes gh-15822
 2024-09-17 18:25:29 -06:00
Josh Cummings 1a0203ecf6
Fix AuthorizationManager API Documentation Typo 
Closes gh-15704
 2024-09-17 18:25:08 -06:00
Josh Cummings 8bb5875595 Expose OidcBackChannelLogoutHandler 
This component already uses by default a URI that doesn't require
a CSRF token and aalready allows for configuring a cookie name.

So, by making it public and configurable in the DSL, both
of these tickets quite naturally close.

Closes gh-13841
Closes gh-14904
 2024-09-15 21:30:55 -07:00
Steve Riesenberg a939c100fc
Merge branch '6.2.x' into 6.3.x 
Closes gh-15808
 2024-09-13 16:08:33 -05:00
Steve Riesenberg 1782f17e7f
Merge branch '5.8.x' into 6.2.x 
Closes gh-15807
 2024-09-13 16:08:04 -05:00
Steve Riesenberg 0a4eb0f09a
Update credential erasure examples 
Closes gh-15683
 2024-09-13 16:07:47 -05:00
Steve Riesenberg 243f0f87cd
Update credential erasure examples 
Closes gh-15683
 2024-09-13 16:06:01 -05:00
Steve Riesenberg 8bab9bcce8
Polish whats-new.adoc 2024-09-13 11:28:39 -05:00
Marcus Hert Da Coregio 0618d4e03f Provide Runtime Hints for Beans used in Pre/PostAuthorize Expressions 
Closes gh-14652
 2024-09-13 08:42:14 -03:00
Josh Cummings fd5d03d384 Add AuthorizeReturnObject Hints 
Closes gh-15709
 2024-09-10 11:57:31 -07:00
Josh Cummings 9b6ac637c9
Merge branch '6.3.x' 2024-09-10 12:51:08 -06:00
Josh Cummings 01eb41cac4
Merge branch '6.2.x' into 6.3.x 2024-09-10 12:50:48 -06:00
Tran Ngoc Nhan b9f051d15b docs: update 2024-09-10 11:50:11 -07:00
Xi Minghui 64920c12de Correct Title in logout.adoc 2024-09-06 11:29:43 -07:00
Marcus Hert Da Coregio 6417eb7159 Document how to customize OneTimeTokenService 
Closes gh-15743
 2024-09-06 09:39:25 -03:00
Max Batischev 81e4c7273a Add One-Time Token Login support to Kotlin DSL 
Closes gh-15698
 2024-09-04 09:13:38 -03:00
Xi Minghui 0b98eb4139 Correct ObservationRegistry Type Reference 2024-09-03 14:28:00 -07:00
Tran Ngoc Nhan febe5e6ddf docs: update 2024-09-03 13:51:47 -07:00
Xi Minghui d23f283598 Corrected AuthenticationEventPublisher Type 2024-09-03 13:24:09 -07:00
Marcus Hert Da Coregio 00e4a8fb54 Add support for One-Time Token Login 
Closes gh-15114
 2024-09-03 10:07:56 -03:00
Josh Cummings add5c56136
Update AuthorizeReturnObject Jackson Docs 
Now instructs to use MethodAuthorizationDeniedHandler

Issue gh-14601
 2024-08-30 11:43:47 -06:00
DingHao fd05c5ad76 Remove Advised Methods from Authorization Proxy Objects 
Closes gh-15561
 2024-08-30 10:40:25 -07:00
Xi Minghui e39b39dada Corrected Reference to HttpServletRequest#authenticate 2024-08-26 15:35:13 -07:00
Josh Cummings d2e8c19789
Merge branch '6.3.x' 2024-08-26 16:33:04 -06:00
Josh Cummings 279cb89eac
Merge branch '6.2.x' into 6.3.x 2024-08-26 16:32:58 -06:00
Hero Wanders 2ba9b6821a Fix OIDC Logout Code Snippets 2024-08-26 15:32:35 -07:00
Hero Wanders f372f5cf52 Replace OidcSessionStrategy References with OidcSessionRegistry 2024-08-26 15:32:35 -07:00
Josh Cummings f0f04e490e
Merge branch '6.3.x' 2024-08-26 16:25:27 -06:00
Josh Cummings 6ea33ceaea
Merge branch '6.2.x' into 6.3.x 2024-08-26 16:25:12 -06:00
Junhyunny 47723f6d39 Fix code format in OIDC Logout docs 2024-08-26 15:14:02 -07:00
Josh Cummings 06febf7857
Update What's New 2024-08-21 18:19:18 -06:00
Steve Riesenberg e3c19ba86c Add RestClient interceptor 
Closes gh-13588
 2024-08-16 17:15:18 -05:00
Robert Danczak 12a9f9240c Fix: Adjusted code formatting to remaining code examples. 2024-08-12 12:59:36 -03:00
Josh Cummings e40c98e6d7 Deprecate PrePostTemplateDefaults 
Since there is nothing specific to configuring pre/post
annotations, there is no need for the extra class.

If a need like this does arise in the future,
either AnnotationTemplateExpressionDefaults can be sub-
classed, or it can have introduced a Map field holding
custom properties.

Issue gh-15286
 2024-08-10 11:46:51 -06:00
Josh Cummings f4d9d0d54f Document @AuthenticationPrincipal meta-annotations 
Issue gh-15286
 2024-08-10 11:46:51 -06:00
Josh Cummings 96682a1d5c
Document OpenSAML 4 vs OpenSAML 5 Support 
Closes gh-11658
 2024-08-06 18:14:12 -06:00
Josh Cummings 1da383b360
Add OpenSAML 5 Support 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings 1be596bb2f
Use OpenSAML API for registration 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings 51fc05630d
Use OpenSAML API for web.authentication.logout 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings ef35c4a64a
Merge branch '6.3.x' 2024-07-29 15:10:50 -06:00