root
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Actions 13 Packages Projects Releases Wiki Activity
17,268 Commits 36 Branches 348 Tags 116 MiB
Commit Graph

17268 Commits

Author SHA1 Message Date
github-actions[bot] 345ecca2d0 Merge branch '6.3.x' 2024-11-04 00:45:08 +00:00
dependabot[bot] f532481841 Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 16:44:17 -08:00
dependabot[bot] 421430330a Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 16:34:33 -08:00
github-actions[bot] 9384030f4d Merge branch '6.3.x' 2024-11-04 00:25:09 +00:00
github-actions[bot] 1da930ec6e Merge branch '6.2.x' into 6.3.x 2024-11-04 00:25:08 +00:00
dependabot[bot] fed3c99c1d Bump @antora/collector-extension in /docs 
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-03 16:24:16 -08:00
Josh Cummings 8a6e1297a1
Add Warning Message for Missing Leading Slashes 
Closes gh-16020
 2024-10-31 12:22:17 -06:00
dependabot[bot] 1d32263a83 Bump org.seleniumhq.selenium:selenium-java from 4.25.0 to 4.26.0 
Bumps [org.seleniumhq.selenium:selenium-java](https://github.com/SeleniumHQ/selenium) from 4.25.0 to 4.26.0.
- [Release notes](https://github.com/SeleniumHQ/selenium/releases)
- [Commits](https://github.com/SeleniumHQ/selenium/compare/selenium-4.25.0...selenium-4.26.0)

---
updated-dependencies:
- dependency-name: org.seleniumhq.selenium:selenium-java
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-30 20:57:53 -07:00
dependabot[bot] 7ba8986506 Bump org-bouncycastle from 1.78.1 to 1.79 
Bumps `org-bouncycastle` from 1.78.1 to 1.79.

Updates `org.bouncycastle:bcpkix-jdk18on` from 1.78.1 to 1.79
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

Updates `org.bouncycastle:bcprov-jdk18on` from 1.78.1 to 1.79
- [Changelog](https://github.com/bcgit/bc-java/blob/main/docs/releasenotes.html)
- [Commits](https://github.com/bcgit/bc-java/commits)

---
updated-dependencies:
- dependency-name: org.bouncycastle:bcpkix-jdk18on
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.bouncycastle:bcprov-jdk18on
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-29 20:21:11 -07:00
dependabot[bot] 178266835a Bump com.fasterxml.jackson:jackson-bom from 2.18.0 to 2.18.1 
Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.18.0 to 2.18.1.
- [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.0...jackson-bom-2.18.1)

---
updated-dependencies:
- dependency-name: com.fasterxml.jackson:jackson-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-28 20:50:09 -07:00
Josh Cummings a793dca1a7 Merge branch '6.3.x' 2024-10-28 14:57:05 -07:00
Cedric Montfort d9d77bed82 Allow logout+jwt JWT type for reactive 
The OIDC back-channel spec recommends using a logout token typ `logout+jwt`
(see [here](https://openid.net/specs/openid-connect-backchannel-1_0-final.html#LogoutToken).

Support of this type was recently added [on the servlet side]([on the Servlet side](9101bf1f7d)), so back
porting the same on the reactive side to close the gap.

Closes gh-15702
 2024-10-28 14:21:48 -07:00
Steve Riesenberg ea5bc28773
Polish OAuth2 docs 2024-10-28 16:06:50 -05:00
Steve Riesenberg d5cb41156c
Update reactive OAuth2 docs 
Issue gh-15938
 2024-10-28 16:06:48 -05:00
github-actions[bot] 9d2ca3da6a Merge branch '6.3.x' 2024-10-28 04:01:04 +00:00
dependabot[bot] 40da492609 Bump ch.qos.logback:logback-classic from 1.5.11 to 1.5.12 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.11 to 1.5.12.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.11...v_1.5.12)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-27 21:00:21 -07:00
dependabot[bot] 0356c34b7b Bump ch.qos.logback:logback-classic from 1.5.11 to 1.5.12 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.11 to 1.5.12.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.11...v_1.5.12)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-27 20:25:01 -07:00
Josh Cummings 27294b2e11
Allow RelyingPartyRegistration Placeholder Resolution in XML 
Closes gh-14645
 2024-10-25 16:12:27 -06:00
Tran Ngoc Nhan 689a4141df Remove unused import 2024-10-25 13:42:33 -07:00
Tran Ngoc Nhan ab93541926 Simplify condition in some methods 2024-10-25 13:42:33 -07:00
Tran Ngoc Nhan e76de931ce Polish Optional usage 2024-10-25 13:42:33 -07:00
Tran Ngoc Nhan ffed4ea1dc Polish diamond usage 2024-10-25 13:42:33 -07:00
Max Batischev 9cb81f8ad5 Polish JdbcOneTimeTokenService 2024-10-25 13:26:52 -07:00
Josh Cummings 726ab52e1a
DefaultSaml2AuthenticatedPrincipal Can Be a Map Key 
Closes gh-15346
 2024-10-25 14:02:06 -06:00
Rob Winch 5c2106b22e Format 2024-10-25 12:24:54 -05:00
Rob Winch df7732d6db Merge branch '6.3.x' 2024-10-25 12:14:08 -05:00
Rob Winch a9be3840f8 Merge branch '6.2.x' into 6.3.x 2024-10-25 12:13:54 -05:00
Rob Winch 1ba6301afa Support ServerWebExchangeFirewall @Bean 
Closes gh-15987
 2024-10-25 12:13:41 -05:00
Rob Winch 48241deba3 Merge branch '5.7.x' into 5.8.x 
Support ServerWebExchangeFirewall @Bean

Closes gh-15977
 2024-10-25 12:11:57 -05:00
Rob Winch 9cc11be9f3 Merge branch '5.7.x' (early part) into 5.8.x 2024-10-25 12:11:51 -05:00
Rob Winch 8d5fddda9d Merge branch '6.3.x' 
Support ServerWebExchangeFirewall @Bean

Closes gh-15974in 6.4.x
 2024-10-25 12:07:01 -05:00
Rob Winch adc66e134b Merge branch '6.2.x' into 6.3.x 
Support ServerWebExchangeFirewall @Bean

Closes gh-15991
 2024-10-25 11:56:53 -05:00
Daniel Garnier-Moiroux a5edcba324 github-actions: configure PR workflow to publish anonymous build scans 2024-10-25 11:23:13 -05:00
dependabot[bot] dfdf6e0597 Bump org.springframework:spring-framework-bom 
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.2.0-RC2 to 6.2.0-RC3.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.2.0-RC2...v6.2.0-RC3)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-10-24 20:54:07 -07:00
Josh Cummings 981fbd5c2c Polish Tests 
Closes gh-14768
 2024-10-24 20:51:34 -07:00
Josh Cummings 6dbbe89b83
Merge remote-tracking branch 'origin/6.3.x' 2024-10-24 21:48:10 -06:00
DingHao 308e408b13 Polish DelegatingAuthenticationConverter 2024-10-24 20:47:46 -07:00
Josh Cummings a36756929b
Polish Filter Chain Documentation 
Closes gh-15893
 2024-10-24 17:09:21 -06:00
Rob Winch 3ba1263d64 Support ServerWebExchangeFirewall @Bean 
Closes gh-15987
 2024-10-24 16:47:36 -05:00
Josh Cummings cf03f2fed9
Merge branch '6.3.x' 2024-10-24 11:57:13 -06:00
Josh Cummings 5048a68ab7
Merge branch '6.2.x' into 6.3.x 
Closes gh-15986
 2024-10-24 11:56:41 -06:00
Josh Cummings addc7c53b2
Merge branch '5.8.x' into 6.2.x 
Closes gh-15985
 2024-10-24 11:56:16 -06:00
DingHao 1399a82ea9 Return Null Request When Cookie Is Malformed 
Closes gh-15905
 2024-10-24 10:55:36 -07:00
Tomasz Letachowicz b2e0539ff5 Add localization to DefaultLoginPageConfigurerTests test in order to avoid failure when system language is different 2024-10-24 11:34:34 -05:00
Steve Riesenberg 9a9926eaff
Merge branch '6.3.x' 2024-10-24 11:17:11 -05:00
Steve Riesenberg 0106e4b299
Merge branch '6.2.x' into 6.3.x 2024-10-24 11:17:02 -05:00
Steve Riesenberg 3592253b8e
Merge branch '5.8.x' into 6.2.x 2024-10-24 11:16:49 -05:00
github-actions[bot] 22dad10f5a
Update Antora Spring UI to v0.4.17 2024-10-24 11:15:07 -05:00
github-actions[bot] 9558b70616
Update Antora Spring UI to v0.4.17 2024-10-24 11:14:55 -05:00
github-actions[bot] 0b83830fb3
Update Antora Spring UI to v0.4.17 2024-10-24 11:14:43 -05:00