root
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
17,857 Commits 59 Branches 364 Tags 123 MiB
Commit Graph

510 Commits

Author SHA1 Message Date
Josh Cummings 10948b5b7a
Make OpenSamlAssertingPartyDetails Serializable 
Closes gh-17622
 2025-08-14 15:52:58 -06:00
Rob Winch 392129b616
Use 2004-present Copyright Header
CodeQL Advanced / codeql-analysis-call (push) Waiting to run Details
CI / Build (17, ubuntu-latest) (push) Waiting to run Details
CI / Build (17, windows-latest) (push) Waiting to run Details
CI / Test Against Snapshots (17, 17) (push) Waiting to run Details
CI / Test Against Snapshots (21-ea, 21) (push) Waiting to run Details
CI / Check Samples (push) Waiting to run Details
CI / Deploy Artifacts (push) Blocked by required conditions Details
CI / Deploy Docs (push) Blocked by required conditions Details
CI / Deploy Schema (push) Blocked by required conditions Details
CI / Perform Release (push) Blocked by required conditions Details
CI / Send Notification (push) Blocked by required conditions Details
Deploy Docs / build (push) Waiting to run Details 
The Spring portfolio is changing to use <inception-year>-present in
the copyright headers to simplify keeping headers up to date. This
commit updates the headers and the checkstyle accordingly.

The commit updated etc/checkstyle/header.txt

It also updated the copyright headers using the following find/replace:

Find: (Copyright \d{4})\s*(\-\d{4})? the original author or authors.
Replace: Copyright 2004-present the original author or authors.

Closes gh-17633
 2025-07-29 09:45:23 -05:00
Josh Cummings 868342b3a9
Add OpenSAML 5 Test
CI / Build (17, ubuntu-latest) (push) Has been cancelled Details
CI / Build (17, windows-latest) (push) Has been cancelled Details
CI / Test Against Snapshots (17, 17) (push) Has been cancelled Details
CI / Test Against Snapshots (21-ea, 21) (push) Has been cancelled Details
CI / Check Samples (push) Has been cancelled Details
Deploy Docs / build (push) Has been cancelled Details
Trigger Dependabot Auto Merge Forward / Trigger Workflow (push) Has been cancelled Details
CI / Deploy Artifacts (push) Has been cancelled Details
CI / Deploy Docs (push) Has been cancelled Details
CI / Deploy Schema (push) Has been cancelled Details
CI / Perform Release (push) Has been cancelled Details
CI / Send Notification (push) Has been cancelled Details 
Issue gh-17008
 2025-04-28 11:25:31 -06:00
Josh Cummings ce000ed190
Merge branch '6.3.x' into 6.4.x 
Closes gh-17008
 2025-04-28 11:18:46 -06:00
Josh Cummings 5354e4d2c5
Check for Null Issuer
CI / Build (17, ubuntu-latest) (push) Has been cancelled Details
CI / Build (17, windows-latest) (push) Has been cancelled Details
CI / Test Against Snapshots (17, 17) (push) Has been cancelled Details
CI / Test Against Snapshots (21-ea, 21) (push) Has been cancelled Details
CI / Check Samples (push) Has been cancelled Details
Deploy Docs / build (push) Has been cancelled Details
Trigger Dependabot Auto Merge Forward / Trigger Workflow (push) Has been cancelled Details
CI / Deploy Artifacts (push) Has been cancelled Details
CI / Deploy Docs (push) Has been cancelled Details
CI / Deploy Schema (push) Has been cancelled Details
CI / Perform Release (push) Has been cancelled Details
CI / Send Notification (push) Has been cancelled Details 
Closes gh-16989
 2025-04-28 11:18:32 -06:00
Josh Cummings f8d417dc03
Preserve Encrypted Elements 
Closes gh-16367
 2025-04-21 08:32:07 -06:00
Rob Winch 04f530bc1b
opensamlFiveTest.extendsFrom testRuntimeOnly 
Issue gh-16756
 2025-03-17 15:41:07 -05:00
Rob Winch 05116eabbd
Merge branch '6.3.x' into 6.4.x 
- adb303e Add testRuntimeOnly junit-platform-launcher

Closes gh-16756
 2025-03-17 14:18:49 -05:00
Rob Winch adb303e152
Add testRuntimeOnly junit-platform-launcher 
Closes gh-16755
 2025-03-17 14:16:44 -05:00
Josh Cummings 5ff87128b1
Make Saml2AuthenticationToken Serializable 
Issue gh-16286
 2025-02-03 10:13:14 -07:00
Tran Ngoc Nhan bcc4b415b3
Make RelyingPartyRegistration Serializable 
Closes gh-16286
 2025-02-03 10:13:13 -07:00
Josh Cummings 8735368d9e
Don't Support Serialization of Jackson Modules 
Issu gh-16276
 2025-01-14 17:04:36 -07:00
Josh Cummings 841c03fe3b
Add Serializable Compatilibity to Saml 2.0 Exceptions 
Issue gh-16276
 2024-12-17 09:36:29 -07:00
Josh Cummings b9911fd522
Add serialVersionUID to Authentication classes 
Issue gh-16276
 2024-12-13 16:41:32 -07:00
Josh Cummings e3cd4339b2
Add Serial Version 
Closes gh-16163
 2024-12-13 11:53:15 -07:00
Josh Cummings 7e83fd54aa
Add Test Saml 2.0 Test Objects 2024-12-12 18:12:11 -07:00
opensource 7b51eab9fe Initialize OpenSAML in OpenSamlAssertingPartyMetadataRepository 
Closes gh-16042

This commit adds a static initializer block to both OpenSaml4AssertingPartyMetadataRepository
and OpenSaml5AssertingPartyMetadataRepository. This ensures OpenSAML is initialized upon class
loading, preventing failures when methods like withMetadataLocation are invoked without prior
initialization.
 2024-11-11 16:52:47 -07:00
Josh Cummings 726ab52e1a
DefaultSaml2AuthenticatedPrincipal Can Be a Map Key 
Closes gh-15346
 2024-10-25 14:02:06 -06:00
Josh Cummings ecf6cace82
Re-Enable Disabled OpenSAML Tests 
Issue gh-15395
 2024-08-30 10:21:32 -06:00
Josh Cummings c9d083717f
Apply OpenSAML Test Fix to Remaining Test 
There was one test that wasn't converted and now it is.

Issue gh-15395
 2024-08-30 10:21:32 -06:00
Josh Cummings b91f10825e
Disable Flaky Tests 
There was another flaky failure. While it seems clear what
needs to be done to repair it, this commit disables these
tests for now while the CI on a separate branch confirms
after a few days that the tests are stable again.

Issue gh-15395
 2024-08-26 08:58:38 -06:00
Josh Cummings 561c786726
Repair Flaky Tests 
The issue turned out to be that OpenSAML first sends two HEAD
requests before sending a GET to retrieve the metadata. The way
the MockWebServer dispatcher was configured, it would send back
the metadata on each request. This created a situation where sockets
were being closed by the client before the server had sent all the
response, resulting in a broken pipe.

The tests would succeed most of the time due to lucky timing between
the client closing the socket and the server having sent all of its
(unrequested) data.

This version sends an expected HEAD response when requested.

Issue gh-15395
 2024-08-23 15:55:56 -06:00
Marcus Hert Da Coregio 229a8d2fad Remove unused imports 2024-08-21 08:31:11 -03:00
Josh Cummings d7138cdb67
Repair Flaky Tests 
The error between MockWebServer and OpenSAML still happens on
occasion. This commit uses MockWebServer's default queue dispatcher
to remove any customization that might be contributing to
the flakiness.

Issue gh-15395
 2024-08-20 17:58:56 -06:00
Josh Cummings e52c6de39c
Repair Flaky Tests 
- Applying changes to OpenSaml4 tests that were already applied
to OpenSaml5 tests

Issue gh-15395
 2024-08-09 08:22:05 -06:00
Josh Cummings f75cb17f35
Add Missing Delegate Call 
Issue gh-11658
 2024-08-06 18:14:12 -06:00
Josh Cummings 08d1be5774
Fix Build to Add Missing Tests 
Issue gh-11658
 2024-08-06 18:14:12 -06:00
Josh Cummings 1da383b360
Add OpenSAML 5 Support 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings c6d6bfd74f
Move OpenSAML 4 Support to Separate Source Directory 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings 1be596bb2f
Use OpenSAML API for registration 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings 78a0173cc1
Use OpenSAML API for web 
Issue gh-11658
 2024-08-06 18:14:11 -06:00
Josh Cummings bf5b334531
Use OpenSAML API for web.authentication 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings 51fc05630d
Use OpenSAML API for web.authentication.logout 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings ff9a925e88
Use OpenSAML API for metadata 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings 80b31820cd
Use OpenSAML API in authentication 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings 416859e70e
Use OpenSAML API in authentication.logout 
Issue gh-11658
 2024-08-06 18:14:10 -06:00
Josh Cummings 94431d1650
Add Internal OpenSAML API 
This will be useful for exposing OpenSAML functionality at
a higher level. Each OpenSAML major version release should
provide a new implementation.

Issue gh-11658
 2024-08-06 18:14:09 -06:00
Josh Cummings 54a4792b7a
Remove Unneeded OpenSAML 4 References 
This will reduce the number of components that need to be
duplicated between the OpenSAML 4 and 5 support

Issue gh-11658
 2024-08-06 18:14:09 -06:00
Josh Cummings ab842b74b9
Use OpenSAML ParserPool Defaults 
Originally, Spring Security turned off various features
XML parsing feature for the underlying DocumentBuilderFactory
that OpenSAML uses.

Both OpenSAML 4 and 5 set these values by default, so we
can safely accept the defaults at this point.

Issue gh-11658
 2024-08-06 18:14:09 -06:00
Josh Cummings 2f34824d0e Fix Formatting 2024-07-29 14:03:35 -07:00
Sanghyuk Jung 3e3f2ae8f0 Remove Duplicated "the" in JavaDoc 2024-07-29 14:03:35 -07:00
Josh Cummings 335dff63c1
Fix Formatting 2024-07-29 14:54:08 -06:00
Josh Cummings 0b0ffa01f7
Repair Flaky Tests 
- MockWebServer seems to start failing to respond to connections
at a certain frequency of requests. This commit builds in a small
delay of 1 millisecond to address this.

Closes gh-15395
 2024-07-29 14:45:48 -06:00
Josh Cummings 9d8888c5f0 Use AssertingPartyMetadata 
Issue gh-15394
 2024-07-19 18:48:23 -07:00
Josh Cummings dfa67fd8a1 Polish Tests 
- Use test objects
- Ensure assertThat is checked

Issue gh-11725
 2024-07-19 18:48:23 -07:00
Josh Cummings e6dfb63bdf Add OpenSamlAssertingPartyMetadataRepository 
Closes gh-12116
Closes gh-15395
 2024-07-19 18:48:23 -07:00
Josh Cummings 7ad9ee93cf Add AssertingPartyMetadataRepository 
Closes gh-15394
 2024-07-19 18:48:23 -07:00
Josh Cummings 796e4d6b6c
Add query parameter support for authn requests 
Closes gh-15017
 2024-07-13 23:57:57 -06:00
Josh Cummings 161b0f303d
Merge branch '6.3.x' 2024-07-10 17:13:04 -06:00
Josh Cummings 8951b6e0e1
Merge branch '6.2.x' into 6.3.x 2024-07-10 17:12:55 -06:00