e6008b6067
Add RedirectToHttps to XML
...
Closes gh-16775
2025-03-19 15:26:05 -06:00
0938ca01a4
Add support for automatic context-propagation with Micrometer
...
Closes gh-16665
2025-03-13 15:29:08 -05:00
56d255018c
Fix ordering for security filter configuration
...
Signed-off-by: Matthew Greene <mgreene57005@gmail.com>
Signed-off-by: mgreene57005 <mgreene57005@gmail.com>
2025-03-07 14:00:22 -07:00
19a5a9c970
Update logout.adoc
...
typos
Signed-off-by: Juha-1 <52188855+Juha-1@users.noreply.github.com>
2025-03-07 13:59:05 -07:00
be23268c37
Add redirectToHttps DSL Configurer
...
Closes gh-16679
2025-02-28 09:38:07 -07:00
ab43a660b9
Add RFC 9068 Support
...
Closes gh-13185
2025-02-27 12:40:01 -07:00
9417f02790
Deprecate PortResolver
...
Closes gh-15972
2025-02-26 16:13:10 -06:00
e64102b83c
Fix migration source type
...
Previously the migration-7/web.adoc source type was kotlin for the xml
source. This commit fixes that.
Closes gh-16662
2025-02-26 16:13:09 -06:00
3e0be28602
Ad section summary toc
...
Closes gh-16663
2025-02-26 16:13:09 -06:00
ba273aba43
Merge branch '6.4.x'
2025-02-24 12:54:21 -07:00
71e12bb42e
Fix @PostResult example in method-security
...
Replace @PreFilter with @Postfilter in example
Signed-off-by: Olivier <Kuba15@users.noreply.github.com>
2025-02-24 12:54:05 -07:00
55b83a0346
Merge branch '6.4.x'
2025-02-24 12:50:11 -07:00
d607364b50
Merge branch '6.3.x' into 6.4.x
2025-02-24 12:49:42 -07:00
a0cfb2777c
Fix typo
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
2025-02-24 12:49:18 -07:00
7d301f87d6
Add Opt-in PathPattern Strategy
...
Closes gh-16573
2025-02-21 13:40:24 -07:00
588220a020
Add PathPatterRequestMatcher
...
Closes gh-16429
Clsoes gh-16430
2025-02-21 13:40:23 -07:00
7fc5d50adf
Polish gh-16551
2025-02-19 13:53:30 -06:00
0ccbd20f0a
Add Support ServerFormPostRedirectStrategy
...
Closes gh-16542
Signed-off-by: Max Batischev <mblancer@mail.ru>
2025-02-19 13:53:30 -06:00
92c2e21522
Use Spring Framework Url attribute
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
2025-02-14 09:56:22 -07:00
396b04f355
Update reference Spring Framwork links
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
2025-02-14 09:56:22 -07:00
839269dbf5
Update Spring Security javadocs
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
2025-02-13 16:19:56 -07:00
238f47ce5e
One Time Token login registers the default login page
...
closes gh-16414
Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
2025-02-10 09:55:51 -06:00
be81377235
Add Support ServerGenerateOneTimeTokenRequestResolver
...
Closes gh-16488
Signed-off-by: Max Batischev <mblancer@mail.ru>
2025-02-05 14:14:16 -07:00
54a6a19e05
Polish gh-16214
...
This commit applies the following changes:
* Added local Content-Security-Policy with script-src nonce directive
* Removed form-redirect.js and associated changes
* Renamed to FormPostRedirectStrategy
* Removed HtmlUtils usage
* Moved to same package as DefaultRedirectStrategy
2025-02-03 14:52:30 -06:00
58534e7f60
Add FormRedirectStrategy to enable POST OIDC Logout
...
FormRedirectStrategy redirects using an autosubmitting HTML form using the POST method versus DefaultRedirectStrategy which redirects using the GET method.
Can be used to implement POST binding for relying party initiated OIDC logout by setting FormRedirectStrategy as the redirection strategy on OidcClientInitiatedLogoutSuccessHandler.
Closes gh-13002
Signed-off-by: Craig Andrews <candrews@integralblue.com>
2025-02-03 14:52:30 -06:00
474b5e151a
Add Support GenerateOneTimeTokenRequestResolver
...
Closes gh-16291
Signed-off-by: Max Batischev <mblancer@mail.ru>
2025-01-22 17:09:55 -06:00
d3332e1956
Document JDBC Persistence for WebAuthn
...
Issue gh-16282
2025-01-17 21:37:27 -06:00
1f9845485c
Document custom HttpMessageConverter support for WebAuthn
...
Issue gh-16397
2025-01-17 21:08:16 -06:00
718c90d7ad
Document PublicKeyCredentialCreationOptionsRepository
...
Issue gh-16396
2025-01-17 20:51:43 -06:00
85d7cc1335
Document requireProofKey
...
Issue gh-16386
2025-01-17 17:26:48 -06:00
aea7f333f7
Document OpaqueTokenIntrospector Migration
...
Issue gh-15988
2025-01-16 20:41:56 -07:00
a5af8503df
Update OpaqueTokenIntrospector Documentation
...
Issue gh-15988
2025-01-16 16:46:46 -07:00
7c4448c588
Fix broken link to MockMvc documentation
...
Link to Test chapter of Spring Framework documentation is broken,
this commit fixes it.
Signed-off-by: Marco Haase <marco.haase@de.bosch.com>
2025-01-16 16:30:47 -07:00
352a6a0d53
Add Breaking Change Section for 6.5
...
Issue gh-16422
2025-01-16 14:30:12 -07:00
38006fea2c
Fix broken link
...
Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
2025-01-16 14:24:07 -07:00
7b8ff72c4e
Fix MVC Documentation for Kotlin
...
Closes gh-16426
2025-01-15 17:45:05 -07:00
b7b915d7c9
Improved sentence phrasing in the docs.
2025-01-12 22:25:22 -06:00
a78e888ce0
Fixed grammatical mistakes in the docs.
2025-01-12 22:25:22 -06:00
fdd50ca3bf
Fixed a grammatical mistake in the docs.
2025-01-12 22:25:22 -06:00
980564838d
method-security: fix invalid Kotlin syntax
...
val/var on function parameters is invalid Kotlin syntax. It has been removed quite some time ago. This change updates the method-security page to reflect that.
Signed-off-by: Simão Gomes Viana <simao.gomes@toowoxx.de>
2025-01-08 09:53:42 -06:00
0e3cfd1efb
Fix logout code snippet for Kotlin: Corrected deleteCookies syntax
2025-01-07 15:36:52 -06:00
e67b5f8356
Fix incorrect rendering of SpEL expression example tabs
2025-01-07 15:29:17 -06:00
5fdacef398
Remove obsolete typo in OAuth 2.0 Client page
2025-01-07 14:05:45 -06:00
29997d8980
Change deprecated FilterSecurityInterceptor to AuthorizationFilter with a link to authorization page.
2025-01-07 13:35:01 -06:00
4bc6e5b9d2
Fix missing space in documentation
2025-01-07 11:40:31 -06:00
1104b45832
Polish SessionLimit
...
- Move to the web.authentication.session package since it is only needed
by web.authentication.session elements and does not access any other web
element itself.
- Add Kotlin support
- Add documentation
Issue gh-16206
2024-12-18 18:32:28 -07:00
1864577e98
Address SessionLimitStrategy
...
Closes gh-16206
2024-12-18 18:32:12 -07:00
3eeb4317f6
Add setFavorRelativeUris
...
This places the new functionality behind a setting so that
we can remain passive until we can change the setting in
the next major release.
Issue gh-7273
2024-12-17 22:35:41 -07:00
b9f3a28678
Add UserDetailsService Constructor
...
Closes gh-15973
2024-12-16 17:59:16 -07:00
2fcd305509
Increment to 6.5.0-SNAPSHOT
...
Closes gh-16221
2024-12-12 21:47:11 -06:00
ee1ede8b2d
Update document regarding PublicKeyCredentialCreationOptions.attestation value
...
Follow up for #16252
2024-12-12 09:02:42 -06:00
55ea78d441
Update GA Release Guidance
2024-12-10 20:08:19 -07:00
a731af103e
Polish
...
Issue gh-16228
2024-12-10 20:08:19 -07:00
d1a4fac520
Use Tabs for Maven and Gradle Snippets
...
Closes gh-16228
2024-12-10 20:08:19 -07:00
40f8ac642a
Fix Documentation Typos
2024-12-09 17:56:00 -07:00
a18475c6cc
Merge branch '6.3.x'
2024-12-09 15:26:20 -07:00
7873ab8601
Merge branch '6.2.x' into 6.3.x
2024-12-09 15:26:04 -07:00
348f064df1
Merge branch '5.8.x' into 6.2.x
2024-12-09 15:25:50 -07:00
8b9fe13c88
Document Messaging SpEL Migration
...
Issue gh-12650
2024-12-09 15:25:33 -07:00
a4469686c7
Fix phrasing for clarity in the docs.
2024-12-05 17:38:21 -07:00
05ffdcafff
Fix phrasing for clarity in the docs.
2024-12-05 17:38:21 -07:00
cc2506b0c1
Fix: Correct OpenSAML 5.x Documentation
...
- Fixed invalid XML tags in dependency examples.
- Corrected typo in `<artifactId>` ("opensaml-saml-imple" -> "opensaml-saml-impl").
- Excluded all OpenSAML 4.x dependencies.
- Removed redundant dependencies (`opensaml-core-api` and `opensaml-core-impl`) as they are transitively included in `opensaml-saml-api` and `opensaml-saml-impl`.
Closes gh-16191
2024-12-04 13:42:03 -07:00
c97edf2bd0
Fix typo in documentation: change 'select the write' to 'select the right. Closes gh-16178
2024-12-02 11:01:36 -06:00
f5eccf7cd3
Fix OAuth2 documentation: Corrected OAuth2ClientHttpRequestInterceptor usage
...
Closes gh-16165
2024-11-26 12:18:19 -06:00
14be74051e
Merge branch '6.3.x'
...
Closes gh-16176
2024-11-26 12:12:49 -06:00
21ac1022ef
Merge branch '6.2.x' into 6.3.x
...
Closes gh-16175
2024-11-26 12:12:18 -06:00
68d91916e2
Polish Dark Mode for CSRF and Method Security diagrams
...
Closes gh-16151
2024-11-26 01:53:56 +05:30
aa635b02a8
Another spelling issue
2024-11-22 17:18:46 -07:00
d1e6806464
Spelling error in opensaml.adoc
2024-11-22 17:18:46 -07:00
24ccac3555
Fix typo in documentation
2024-11-21 15:18:01 -07:00
30c9860fc3
Add What's New Link to Landing Pages
...
- to the README
- to the Reference index page
2024-11-18 15:51:25 -07:00
4787efb40b
Update What's New
2024-11-18 15:51:24 -07:00
5c7237be79
Merge branch '6.3.x'
2024-11-18 12:13:20 -07:00
1414b88ef3
Merge branch '6.2.x' into 6.3.x
2024-11-18 12:13:05 -07:00
ba520db7f7
Merge branch '5.8.x' into 6.2.x
2024-11-18 12:12:46 -07:00
85248083c0
Add Dark Mode CSS Style
...
Closes gh-14834
2024-11-18 12:10:48 -07:00
cd609acafc
Document passkeys dependencies
...
Closes gh-16107
2024-11-15 17:44:42 -06:00
f1159842f4
Polish gh-15554
...
Closes gh-15398
2024-11-13 15:18:53 -06:00
e5529fffea
Improve documentation about CredentialsContainer
...
Issue gh-15398
2024-11-13 15:18:53 -06:00
5a95952c95
Merge branch '6.3.x'
...
Closes gh-16063
2024-11-11 15:17:02 -06:00
e1ad989d38
Merge branch '6.2.x' into 6.3.x
...
Closes gh-16062
2024-11-11 14:58:39 -06:00
81e74e65d4
Support ServerExchangeRejectedHandler @Bean
...
Closes gh-16061
2024-11-11 14:58:00 -06:00
c24b5ebe98
Support ServerExchangeRejectedHandler @Bean
...
Closes gh-15975
2024-11-11 14:42:19 -06:00
4ec5beb509
Update authentication.adoc
2024-11-04 12:09:18 -06:00
ea5bc28773
Polish OAuth2 docs
2024-10-28 16:06:50 -05:00
d5cb41156c
Update reactive OAuth2 docs
...
Issue gh-15938
2024-10-28 16:06:48 -05:00
a36756929b
Polish Filter Chain Documentation
...
Closes gh-15893
2024-10-24 17:09:21 -06:00
4ac092c803
Update logout.adoc: Fix Customizing Logout Success Example
2024-10-23 10:16:09 -07:00
fc5719d8d6
Merge branch '6.3.x'
...
Add Firewall for WebFlux
Closes gh-15967
2024-10-21 12:11:42 -05:00
1528c421bd
Merge branch '6.2.x' into 6.3.x
...
Add Firewall for WebFlux
Closes gh-15967
2024-10-21 09:43:48 -05:00
0e257b56ce
Add Firewall for WebFlux
...
Closes gh-15967
2024-10-21 09:42:24 -05:00
542071b1f8
Merge Add Firewall for WebFlux
...
Closes gh-15967
2024-10-21 08:56:42 -05:00
4ce7cde155
Add Firewall for WebFlux
...
Closes gh-15967
2024-10-21 08:46:13 -05:00
ae606d51f4
Add Passkeys to What's New
2024-10-20 23:01:13 -05:00
b0e8730d70
Add Passkeys Support
...
Closes gh-13305
2024-10-20 22:54:53 -05:00
8982851355
Document RestClient-based implementations
...
Closes gh-15938
2024-10-18 12:24:17 -05:00
d0fc4fe4dc
Document RestClient integration
...
Closes gh-15894
2024-10-18 12:24:17 -05:00
9b89fc2f1f
Add example for setting up client credentials
...
Closes gh-15304
2024-10-18 12:24:16 -05:00
d37d41c130
Polish One-Time Token API Names and Doc
...
The names of variables and methods have been adjusted in accordance with the names of the one-time token login API components.
Issue gh-15114
2024-10-15 14:04:56 -07:00
c40334317d
Polish One-Time Token Component Names
...
Aligning parts of speech so that names are using nouns/verbs
where comparable components are using nouns/verbs.
Issue gh-15114
2024-10-14 14:07:47 -06:00
Josh Cummings
Steve Riesenberg
mgreene57005
Juha-1
Rob Winch
Olivier
Tran Ngoc Nhan
Max Batischev
Daniel Garnier-Moiroux
Craig Andrews
Marco Haase
Muhammad N. Fadhil
Simão Gomes Viana
mskim
Meehdi
Mehdi Rahimi
wndyd
Claudenir Machado
Josh Cummings
Yoshikazu Nojima
Harpreet Singh
Mohammed Fadhil
James Howe
Martin Tarjányi
chu3la
Junkyu Lim
ImHyuk