spring-security

Commit Graph

Author	SHA1	Message	Date
Josh Cummings	82083d9112	Write Security Headers Before Servlet Include HeaderWriterFilter wraps request dispatcher so it can write security headers before the include occurs. Fixes: gh-5499	8 years ago
Rob Winch	566fb939ca	Fix SwitchUserFilter matchers Fixes: gh-4249	8 years ago
Rob Winch	5b26158f4d	AntPathRequestMatcher supports UrlPathHelper Fixes: gh-5846	8 years ago
Rob Winch	8170e47ff2	Fix OptimizeAntPathRequestMatcher Previously the logic for determining if the pathInfo should be appended was inverted. This correctly concatenates url + pathInfo if url is a non empty String. Fixes: gh-5473	8 years ago
Christoph Dreis	c408fb7edf	Optimize AntPathRequestMatcher.getRequestPath()	8 years ago
Josh Cummings	4ff0fdfff9	Polish Commit on Reactive Http Basic Test	8 years ago
Tim Koopman	47b82ccd83	Reactive HttpBasic Support For Coloned Passwords This makes so that reactive httpBasic supports passwords containing one or more colons.	8 years ago
Rob Winch	4b407189c2	ServerHttpBasicAuthenticationConverter Validates Scheme Name Fixes: gh-5615	8 years ago
Rob Winch	96c944c4fc	BasicAuthenticationFilter case insenstive Fixes: gh-5616	8 years ago
Rob Winch	ecaa2c5b1c	Cache Control disabled for 304 Fixes: gh-5534	8 years ago
Joe Grandja	e04b29426b	DefaultLoginPageGeneratingFilter escapes OAuth2 ClientRegistrations Fixes gh-5394	8 years ago
Alexander Münch	c30e218f1f	Avoid unnecessary grow of ArrayList Adapted ArrayList size in CacheControlHeadersWriter::createHeaders() Fixes: gh-5310	8 years ago
XYUU	70d284865f	DefaultLoginPageGeneratingFilter should calculate ContentLength using UTF-8 Fixes: gh-5309	8 years ago
Rob Winch	32f5fb5eb2	ExceptionTranslationFilter does not handle committed responses Fixes: gh-5273	8 years ago
Rob Winch	5b751baf61	Fixes: gh-5190	8 years ago
Rob Winch	151b545ed0	Polish Javadoc Fixes: gh-5186	8 years ago
Rob Winch	6729c39905	Fix JDK 9 Issue: gh-5160	8 years ago
Rob Winch	bfada59a1e	CookieClearingLogoutHandler adds uses contextPath + "/" Fixes: gh-5140	8 years ago
Rob Winch	8f8deac0f4	Fix StrictHttpFirewall rules Fixes: gh-5092	8 years ago
Rob Winch	4d410b0b61	Polish Javadoc HttpStatusServerAccessDeniedHandler	8 years ago
Rob Winch	24a4fbfe56	HttpStatusServerAccessDeniedHandler use injected HttpStatus Fixes: gh-5078	8 years ago
Rob Winch	8d75554b6b	Lazily Create Throwables Fixes: gh-5040	8 years ago
Rob Winch	0fc67f765a	Polish StrictHttpFirewall Javadoc Also cleanup DefaultHttpFirewall Javadoc Issue: gh-5008	8 years ago
Rob Winch	fcf967687b	Add FilterSecurityInterceptor once per request test Issue: gh-4997	8 years ago
json20080301	40a1281c66	FilterSecurityInterceptor once per request set attr Only set the attribute if once per request is true	8 years ago
Rob Winch	ce5fb51b20	Remove Mono.defer in ReactorContextWebFilter Fixes: gh-5010	8 years ago
Rob Winch	66298dcf5d	Clean ReactorContextWebFilterTests imports Issue: gh-4962	8 years ago
Rob Winch	141e3f581f	ReactorContextWebFilter preserves main Context Previously ReactorContextWebFilter overrode the main Context. Fixes: gh-4962	8 years ago
Rob Winch	c399987450	Polish StrictHttpFirewall Javadoc Fixes: gh-5008	8 years ago
Rob Winch	ea3dd336aa	Cache headers only if no cache headers set Fixes: gh-5004	8 years ago
Rob Winch	8b7f772761	Update to Jackson 2.9.4 Fixes: gh-4985	8 years ago
Rob Winch	0eef5b4b42	Add StrictHttpFirewall	8 years ago
Rob Winch	6a0833165a	AuthorizationWebFilter handles null Authentication If the AuthorizationManager used the Authentication and the Authentication was null the AuthorizationWebFilter would produce a NullPointerException This commit fixes the test to ensure that Authentication is subscribed to and ensures that the Authentication is not null Fixes: gh-4966	8 years ago
Johnny Lim	921157cdcd	Remove explicit super() calls	8 years ago
Johnny Lim	57353d18e5	Use diamond type	8 years ago
Eddú Meléndez	c16456623f	Remove unused imports	8 years ago
Rob Winch	70be0f3619	Mono<CsrfToken> saveToken->Mono<Void> Issue: gh-4856	8 years ago
Rob Winch	d55db837e1	CsrfWebFilter places Mono<CsrfToken> Fixes: gh-4855	8 years ago
Johnny Lim	701933c7f7	Fix copyright start years See gh-4655 See gh-4725	8 years ago
Johnny Lim	5f518d00e5	Apply Checkstyle EmptyStatementCheck module This commit adds Checkstyle `EmptyStatementCheck` module and aligns code with it.	8 years ago
Rob Winch	be397b8b33	WebSessionServerSecurityContextRepository Polish - map(WebSession::getAttributes) - use Mono.justOrEmpty Issue: gh-4843	8 years ago
Rob Winch	8d30d6110b	WebSessionSecurityContextRepository custom session attribute name Fixes: gh-4843	8 years ago
Rob Winch	b7529be3d0	WebSessionSecurityContextRepository changes session id Fixes: gh-4842	8 years ago
Rob Winch	b19e14330f	WebSessionServerCsrfTokenRepository session fixation protection Issue: gh-4842	8 years ago
Rob Winch	75a7c5268a	ServerRequestCache.removeMatchingRequest Issue: gh-4789	8 years ago
Benedikt Ritter	fffd781b03	Add localization to error messages from ExceptionTranslationFilter Fixes gh-4504	8 years ago
Johnny Lim	b6895e6359	Apply Checkstyle WhitespaceAfterCheck module	8 years ago
Rob Winch	64ad08e96d	ServerRedirectCache.getRequest->getRedirectUri Issue: gh-4789	8 years ago
Rob Winch	1d9b0760d5	ServerRequestCache uses URI Issue: gh-4789	8 years ago
Rob Winch	942b51dba7	Reactive Basic does not create session by default Fixes: gh-4825	8 years ago

1 2 3 4 5 ...

788 Commits (0aedbf44963cda50ca541aa655a8af264e896231)