spring-security

Commit Graph

Author	SHA1	Message	Date
Josh Cummings	b87d63cb71	Document spring-security-access Closes gh-17847	3 months ago
Josh Cummings	d3b143dab6	Move SAML 2.0 Migration Step Issue gh-17099	4 months ago
Josh Cummings	60c42e3f24	Update SAML 2.0 Documentation to use OpenSAML 5 Closes gh-17707	4 months ago
Josh Cummings	9b724377ce	Rework Saml2 Authentication Statement This commit separates the authentication principal, the assertion details, and the relying party tenant into separate components. This allows the principal to be completely decoupled from how Spring Security triggers and processes SLO. Specifically, it adds Saml2AssertionAuthentication, a new authentication implementation that allows an Object principal and a Saml2ResponseAssertionAccessor credential. It also moves the relying party registration id from Saml2AuthenticatedPrincipal to Saml2AssertionAuthentication. As such, Saml2AuthenticatedPrincipal is now deprecated in favor of placing its assertion components in Saml2ResponseAssertionAccessor and the relying party registration id in Saml2AssertionAuthentication. Closes gh-10820	6 months ago
Josh Cummings	aa3135169d	Polish Documentation Closes gh-14635	6 months ago
Josh Cummings	eaab42a73c	Polish BearerTokenAuthenticationConverter Support - Moved to BearerTokenAuthenticationFilter constructor to align with AuthenticationFilter - Undeprecated BearerTokenResolver to reduce number of migration scenarios - Updated to 7.0 schema - Added migration docs Issue gh-14750	7 months ago
Josh Cummings	492444c588	Update shouldConvertGetRequests Migration Steps Issue gh-17099	7 months ago
Josh Cummings	4ed131f6ab	Add shouldConvertGetRequests Migration Steps Issue gh-17099	7 months ago
Josh Cummings	37a814bc29	Add 7.0 -> 8.0 Migration Guide Closes gh-17182	7 months ago
Josh Cummings	616b43f261	Restore 6.x Migration Steps Issue gh-16873	9 months ago
Josh Cummings	eb313ec901	Link to Messaging SpEL Migration Details Issue gh-12650	1 year ago
Josh Cummings	b919ece045	Change Idempotent to Read-Only Closes gh-13644	2 years ago
Steve Riesenberg	9db33f33c7	Revert unnecessary merges on 6.0.x This commit removes unnecessary main-branch merges starting from `8750608b5b` and adds the following needed commit(s) that were made afterward: - `5dce82c48b`	2 years ago
Kawin Naipongprasit	4b44a2d924	Adapeter to Adapter	2 years ago
Marcus Da Coregio	4c77a550ae	Change to Migrating to 6.2 Issue gh-13552	2 years ago
Josh Cummings	8895a66a2b	Add hasIpAddress Migration Steps Closes gh-13474	2 years ago
delver	2629fb2061	Fix Kotlin typo	3 years ago
delver	77c337bac4	Fix invalid link	3 years ago
Marcus Da Coregio	5c88b95af5	Mention that authorizeHttpRequests does not support GrantedAuthorityDefaults Closes gh-13227	3 years ago
Josh Cummings	68b052218a	Add @EnableTransactionManagement Details Closes gh-13152	3 years ago
daisuzz	734dc98e50	Fix typo in authorization.adoc	3 years ago
Steve Riesenberg	e234f85b2f	Fix hard-coded link in remote build Issue gh-13156	3 years ago
Steve Riesenberg	72d86f1cbc	Update links to 5.8 migration guide Closes gh-13156	3 years ago
Josh Cummings	e5fcf1ebcf	Revisit Request and Method Security Docs Issue gh-13088	3 years ago
Josh Cummings	9244989b2e	Fix allOf/anyOf Abstain Logic Closes gh-13069	3 years ago
Brummolix	a513fc0f38	Fix SecurityWebApplicationInitializer.getSecurityDispatcherTypes example in doc #12939	3 years ago
Marcus Da Coregio	eb58655fa9	Improve Docs by mentioning that Empty SecurityContext should be saved Closes gh-12906	3 years ago
Josh Cummings	35cf52d3bd	Add DefaultMethodSecurityExpressionHandler Closes gh-12356	3 years ago
Josh Cummings	6bf11181ef	Adjust AfterInvocationManager Migration Docs The original documentation only addresses the post-authorize case. Some implementations want also to modify the return type. Issue gh-12620	3 years ago
Steve Riesenberg	bf2951b5af	Add sections for migrating exploit protection in 6.0 Issue gh-12462	3 years ago
Tao Sun	6f5c633241	Fix typo in Authentication Migrations page	3 years ago
Tao Sun	26fc15a8b3	Fix typo in Authentication Migrations page	3 years ago
Steve Riesenberg	45b81b194b	Expand migration docs regarding CSRF Closes gh-12462	3 years ago
Steve Riesenberg	179428f7da	Add section for migrating WebSocket support Issue gh-12378	3 years ago
Steve Riesenberg	33e72b35f9	Add section for migrating WebSocket support Issue gh-12378	3 years ago
Josh Cummings	88a8ef647b	Add Details about @Configuration Closes gh-12486	3 years ago
Marcus Da Coregio	88d50a531b	Add EnableWebSecurity migration steps to 5.8 guide Closes gh-12334	3 years ago
Marc Becker	50da5b6498	Fix securityMatchers code sample Closes gh-12296	3 years ago
Steve Riesenberg	4994e67eda	Add servlet opt out steps for CSRF BREACH Issue gh-12107	3 years ago
Josh Cummings	3f5d8b39ce	Restructure Migration Guide Closes gh-12242	3 years ago
Marcus Da Coregio	1919b4e38b	Migration guide for CAS support removal Issue gh-12163	3 years ago
Josh Cummings	17123a3b0f	Polish JwtAuthenticationConverter Preparation Steps Issue gh-12022	3 years ago
Josh Cummings	63aec87c61	Use Imperative in Headers Issue gh-12224	3 years ago
Josh Cummings	7675874137	Restructure Migration Steps CLoses gh-12224	3 years ago

46 Commits (finalize)