GitHub-Spring/spring-framework
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-framework.git synced 2026-05-02 20:09:31 +01:00
Code Issues Projects Releases Wiki Activity
7,129 Commits 19 Branches 364 Tags
fb4408c779c0d0050104c5192a45c5dc564c2072
Commit Graph

332 Commits

Author SHA1 Message Date
Rossen Stoyanchev 03f547eb98 Protect against RFD exploits 
Issue: SPR-13548
 2015-10-15 09:32:32 +02:00
Juergen Hoeller daada71c36 Polishing 2015-10-14 14:37:13 +02:00
Juergen Hoeller 8a8225925e Clarified that getBody() never returns null 
As the only place that historically differed, HttpComponents(Async)ClientHttpResponse returns an empty stream instead of null now.

Issue: SPR-13563
(cherry picked from commit ca60d79)
 2015-10-14 14:00:37 +02:00
Juergen Hoeller 73a2407545 DeferredResult accessors based on volatile fields for proper visibility 
Issue: SPR-13451
(cherry picked from commit 045016e)
 2015-10-14 13:58:49 +02:00
Rossen Stoyanchev d875772103 Polish tests 2015-06-30 12:00:12 -04:00
Rossen Stoyanchev 0d394a02f3 Fix test check 2015-06-30 10:00:12 -04:00
Rossen Stoyanchev 5a711c05ec Disable DTD when parsing untrusted XML input 
Issue: SPR-13136
 2015-06-30 07:59:00 -04:00
Juergen Hoeller 1e42464c22 Polishing 2015-06-17 15:50:19 +02:00
Juergen Hoeller d5de3867ca Polishing 
(cherry picked from commit 3c6f1f8)
 2015-05-22 17:50:13 +02:00
Juergen Hoeller e5ccdfb029 Polishing 
(cherry picked from commit ce4e795)
 2015-05-11 20:12:46 +02:00
Juergen Hoeller adb54b2c69 Backported DispatcherServlet and ServletContextResourcePatternResolver refinements 
Issue: SPR-13011
 2015-05-11 19:58:36 +02:00
Juergen Hoeller 3e2491c058 Polishing 2015-03-23 22:43:49 +01:00
Juergen Hoeller 474862a7c9 StandardMultipartFile declares itself as Serializable now 
Issue: SPR-12795
(cherry picked from commit 5ba7b89)
 2015-03-10 15:30:16 +01:00
Juergen Hoeller d879bad248 Polishing 
(cherry picked from commit 7ed7f98)
 2015-03-06 23:47:54 +01:00
Juergen Hoeller 9a7871fb70 Consistent validation logic 
Issue: SPR-12655
 2015-02-20 00:20:07 +01:00
Juergen Hoeller 80128f1992 Polishing 2015-02-19 22:47:26 +01:00
Juergen Hoeller 186fef6808 Revised validation javadoc 
Issue: SPR-12655
 2015-02-19 22:46:29 +01:00
Juergen Hoeller 62a6c3733d Polishing 
(cherry picked from commit e9d24d5)
 2014-12-29 20:06:57 +01:00
Juergen Hoeller 9413204838 Polishing 
(cherry picked from commit 50c578c)
 2014-11-28 22:06:45 +01:00
Juergen Hoeller f6e1856276 Rearranged WebAsyncTask constructor interdependencies and assertions 
Issue: SPR-12457
(cherry picked from commit aadb93f)
 2014-11-22 23:19:41 +01:00
Juergen Hoeller e1d6826fcd Polishing 2014-11-11 03:26:40 +01:00
Juergen Hoeller d5e4592728 Polishing 2014-11-02 11:19:54 +01:00
Juergen Hoeller 4ab27d83a1 Consistently accept empty Content-Type header and empty character encoding 
Issue: SPR-12173
(cherry picked from commit a1c0905)
 2014-10-22 01:58:22 +02:00
Juergen Hoeller b45d08f192 Remove outdated references to ContextLoaderServlet 
Issue: SPR-7725
 2014-09-30 20:56:57 +02:00
Juergen Hoeller 65d47afc11 WebAsyncManager avoids concurrentResult.toString() and builds correct DeferredResultProcessingInterceptor keys 
Issue: SPR-12253
(cherry picked from commit 901346e)
 2014-09-30 20:51:45 +02:00
Juergen Hoeller e819999c08 Polishing 2014-09-17 19:10:33 +02:00
Juergen Hoeller 3a1f7b6d14 Client request implementations enforce RFC 6265 (cookies in a single header) 
Issue: SPR-12196
(cherry picked from commit 26a93b6)
 2014-09-17 18:43:04 +02:00
Juergen Hoeller 44c52a9096 Accept empty Content-Type header 
Issue: SPR-12173
(cherry picked from commit 70412a9)
 2014-09-17 18:17:09 +02:00
Juergen Hoeller 3264437cec Polishing 2014-09-04 02:42:34 +02:00
Juergen Hoeller 21f0057990 Polishing 2014-08-23 00:11:19 +02:00
Juergen Hoeller 3e17331fd9 PropertySource implementations perform conversion to String arrays via StringUtils (getting rid of EMPTY_NAMES_ARRAY) 
(cherry picked from commit b73c531)
 2014-08-22 23:51:39 +02:00
Juergen Hoeller 0c89279d61 Polishing 2014-08-13 15:54:21 +02:00
Juergen Hoeller c0a4631fd1 Polishing 2014-07-29 10:10:48 +02:00
Juergen Hoeller 780ea59ff3 Polishing 2014-07-29 00:46:20 +02:00
Juergen Hoeller e14aad8840 ResourceHttpMessageConverter does not call contentLength() on InputStreamResource 
Issue: SPR-12017
(cherry picked from commit f0bcb77)
 2014-07-29 00:18:16 +02:00
Brian Clozel 8c43fe1796 Fix UriComponentsBuilder.fromUriString parsing error 
This commit fixes cases where part of the URI was mistaken for the
userinfo when:
* the URI did not contain any path
* the query string contained the "@"

Issue: SPR-11970
(cherry picked from commit a4484bb)
 2014-07-29 00:06:26 +02:00
Juergen Hoeller a45d49c857 RestTemplate accepts getMessageConverters() List on setMessageConverters again 
Issue: SPR-11962
(cherry picked from commit 1222ca3)
 2014-07-07 21:05:27 +02:00
Juergen Hoeller fe72fcede5 Polishing 
(cherry picked from commit ede2150)
 2014-07-02 18:18:21 +02:00
Juergen Hoeller c033f889bf Polishing (backported from master) 
(cherry picked from commit 48f753f)
 2014-07-01 14:28:05 +02:00
Juergen Hoeller 44c61e5d5f Consistent declaration of private static final logger variables 
Issue: SPR-11905
(cherry picked from commit c16032b)
 2014-07-01 14:22:56 +02:00
Juergen Hoeller 247771ce91 UriComponentBuilder allows for multiple independent build() calls on same builder instance 
Issue: SPR-11885
(cherry picked from commit c73ac07)
 2014-07-01 14:20:11 +02:00
Juergen Hoeller d96550898f HttpHeaders fails getAllow if set to EmptyCollection 
Prior to this commit, calls to getAllow would fail is setAllow was set
to an EmptyCollection right before.

    java.lang.IllegalArgumentException: No enum constant
    org.springframework.http.HttpMethod

This commit fixes this by testing the header value for an empty value
before trying to use it to get a value from the Enum.

Issue: SPR-11917
(cherry picked from commit 9054f4f)
 2014-07-01 14:17:55 +02:00
Juergen Hoeller 8aabc43dad Servlet 3 multipart request implements getParameterMap defensively as well 
Issue: SPR-11074
(cherry picked from commit c7d1c49)
 2014-05-20 11:28:57 +02:00
Juergen Hoeller 4d3aa59028 Polishing 
(cherry picked from commit 6fef8b9)
 2014-05-20 11:27:55 +02:00
Rossen Stoyanchev c6503ebbf7 Disable URL resolution in DTD declarations 
Issue: SPR-11768
 2014-05-19 22:43:14 -04:00
Juergen Hoeller f42f2231a4 Minor UriComponentsBuilder javadoc revision 
(cherry picked from commit 545c28f)
 2014-05-20 01:06:01 +02:00
Juergen Hoeller 0313222bc7 Consistent use of IllegalStateException instead of InternalError for UnsupportedEncodingException cause 
(cherry picked from commit d9b39ad)
 2014-05-20 01:05:55 +02:00
Juergen Hoeller c7b2ac7bac Backported proper updateAccessedAttributes test 
Issue: SPR-11738
(cherry picked from commit 1bbc032)
 2014-05-19 17:40:11 +02:00
Juergen Hoeller cbff8b01bb Javadoc fixes 2014-05-18 23:55:57 +02:00
Juergen Hoeller faaf43677d Servlet 3 multipart request implements getParameterNames defensively (for WebLogic 12 compatibility) 
This commit also includes lazy resolution support for StandardServletMultipartResolver, along the lines of existing lazy mode in CommonsMultipartResolver.

Issue: SPR-11074
Issue: SPR-11730
(cherry picked from commit 82336c3)
 2014-05-18 20:51:39 +02:00