Tree: 22da30df2f

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/6.5.x/io.mockk-mockk-1.14.9

dependabot/gradle/6.5.x/org.hibernate.orm-hibernate-core-6.6.45.Final

dependabot/gradle/main/org.apereo.cas.client-cas-client-core-4.1.0

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

main-using-releases-v1-workflows

revert-18260-gh-18259

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

6.5.8

6.5.9

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.0.3

7.0.4

7.1.0-M1

7.1.0-M2

7.1.0-M3

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '22da30df2f'

${ noResults }

Commit Graph

20416 Commits (22da30df2f2ef14df895d675d4e678739055ce14)

 

All Branches   

Search

Author	SHA1	Message	Date
Tran Ngoc Nhan	22da30df2f	Fallback defaultTargetUrl if refererHeader is empty ... Closes gh-18805 Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	4 weeks ago
Rob Winch	d3474e704f	Merge Add Missing OnCommitedResponseWrapper Header Overrides ... Add Missing OnCommitedResponseWrapper Header Overrides	4 weeks ago
Robert Winch	9cc3161055	Merge Add Missing OnCommitedResponseWrapper Header Overrides	4 weeks ago
Robert Winch	6898de8003	Merge Add Missing OnCommitedResponseWrapper Header Overrides	4 weeks ago
Robert Winch	1dae9aa459	Add Missing OnCommitedResponseWrapper Header Overrides ... Spring Security's `OnCommitedResponseWrapper` does not override the `setHeader`, `setIntHeader`, `addIntHeader` methods. This means that if the `Content-Length` response header is specified using any of those methods then the response body length is not tracked and can be committed before the response headers are written. Spring Security should override the missing methods and track `Content-Length` as is already done for `addHeader`. This issue is the underlying problem for spring-projects/spring-framework#36381 Closes gh-18797	4 weeks ago
Josh Cummings	4b0be84a0e	Merge branch '7.0.x'	4 weeks ago
Josh Cummings	73ee893d98	Merge remote-tracking branch 'origin/6.5.x' into 7.0.x	4 weeks ago
Josh Cummings	bec25edeb0	Merge pull request #18566 from Hann244/docs/gh-16530-jsp-method-attribute ... Clarify need for method attribute in JSP authorize tag	4 weeks ago
Josh Cummings	4d43edfb20	Polish Documentation ... - Combined explanation of method attribute with usage recommendations - Used one sentence per line format Issue gh-16530 Signed-off-by: Josh Cummings <3627351+jzheaux@users.noreply.github.com>	4 weeks ago
onhann	9f9699f8a5	Clarify need for method attribute in JSP authorize tag ... Closes gh-16530 This aligns the JSP documentation with the changes made in gh-16529. Added a NOTE to clarify that the method attribute is required when the underlying RequestMatcher is method-specific. Signed-off-by: onhann <gusgus1467@naver.com>	4 weeks ago
Andrey Litvitski	6d4726bfb7	Mark targetDomainObject as `@Nullable` in PermissionEvaluator ... Closes: gh-18259 Signed-off-by: Andrey Litvitski <andrey1010102008@gmail.com>	4 weeks ago
Robert Winch	d31ca7a758	Fix SecurityContextLogoutHandler.logout @param response Javadoc (cannot be null) ... Closes gh-18357	4 weeks ago
Robert Winch	ac06067d02	Revert "Mark targetDomainObject as `@Nullable` in PermissionEvaluator" ... This reverts commit 9f1381c382.	4 weeks ago
Andrey Litvitski	9f1381c382	Mark targetDomainObject as `@Nullable` in PermissionEvaluator ... Closes: gh-18259 Signed-off-by: Andrey Litvitski <andrey1010102008@gmail.com>	4 weeks ago
dependabot[bot]	f700aeac0f	Bump tools.jackson:jackson-bom from 3.0.4 to 3.1.0 ... Bumps [tools.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 3.0.4 to 3.1.0. - [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-3.0.4...jackson-bom-3.1.0) --- updated-dependencies: - dependency-name: tools.jackson:jackson-bom dependency-version: 3.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	4 weeks ago
dependabot[bot]	41a8d6aca5	Bump org-apache-maven-resolver from 1.9.26 to 1.9.27 ... Bumps `org-apache-maven-resolver` from 1.9.26 to 1.9.27. Updates `org.apache.maven.resolver:maven-resolver-connector-basic` from 1.9.26 to 1.9.27 - [Release notes](https://github.com/apache/maven-resolver/releases) - [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-1.9.26...maven-resolver-1.9.27) Updates `org.apache.maven.resolver:maven-resolver-impl` from 1.9.26 to 1.9.27 - [Release notes](https://github.com/apache/maven-resolver/releases) - [Commits](https://github.com/apache/maven-resolver/compare/maven-resolver-1.9.26...maven-resolver-1.9.27) Updates `org.apache.maven.resolver:maven-resolver-transport-http` from 1.9.26 to 1.9.27 --- updated-dependencies: - dependency-name: org.apache.maven.resolver:maven-resolver-connector-basic dependency-version: 1.9.27 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.apache.maven.resolver:maven-resolver-impl dependency-version: 1.9.27 dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.apache.maven.resolver:maven-resolver-transport-http dependency-version: 1.9.27 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	4 weeks ago
Rob Winch	e81c64b94d	Merge Update servlet/architecture.adoc to use include-code ... Update servlet/architecture.adoc to use include-code	4 weeks ago
Robert Winch	0c394696ce	Fix servlet/architecture.adoc disable Sample ... - Switch `include-java` (does not exist) to `include-code` - Update kotlin to have the `disable` tag - Update to suppress deprecation use for User builder (allowed for samples) Signed-off-by: Robert Winch <362503+rwinch@users.noreply.github.com>	4 weeks ago
Joe Kuhel	62d1bc86e3	Update servlet architecture docs to use include-code ... Also update antora.xml to include-xml in docs/src/test/resources Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>	4 weeks ago
Rob Winch	a4cadb5cc5	Merge Make PublicKeyCredentialCreationOptions Serializable ... Make PublicKeyCredentialCreationOptions Serializable	4 weeks ago
Robert Winch	701736da5d	Fix checkstyle ... Issue gh-18354 Signed-off-by: Robert Winch <362503+rwinch@users.noreply.github.com>	4 weeks ago
Mohammad Amin Pahlevani	9e5a425859	Make PublicKeyCredentialCreationOptions Serializable ... Closes gh-16431 Signed-off-by: Mohammad Amin Pahlevani <pahlevani@live.com>	4 weeks ago
Rob Winch	1ab17d941a	Merge Improve error message for missing access attribute in intercept-url ... Improve error message for missing access attribute in intercept-url	4 weeks ago
Robert Winch	53300be8d7	Fix checkstyle ... Issue gh-18530	4 weeks ago
CHANHAN	d5ba9dcada	Add tests for intercept-url access attribute validation ... Fixes gh-18503 Signed-off-by: CHANHAN <130114269+chanani@users.noreply.github.com>	4 weeks ago
CHANHAN	fa87c78edb	fix missing access attribute validation in FilterInvocationSecurityMetadataSourceParser ... Fixes gh-18503 Signed-off-by: CHANHAN <130114269+chanani@users.noreply.github.com>	4 weeks ago
CHANHAN	f1e367f93d	fix missing access attribute validation in AuthorizationFilterParser ... Fixes gh-18503 Signed-off-by: CHANHAN <130114269+chanani@users.noreply.github.com>	4 weeks ago
Rob Winch	4d0627e6c0	Merge pull request #18721 from coehgns/main ... Add tests for PathPatternRequestMatcher request path caching	1 month ago
Rob Winch	3106f2be7b	Merge pull request #18757 from wonderfulrosemari/gh-4265-csrf-multipart-header ... Document multipart CSRF header option	1 month ago
Rob Winch	b3e5f09eb3	Merge Document Keberose Dependency Coordinates ... Document Keberose Dependency Coordinates	1 month ago
Robert Winch	e1436c39f0	Merge Document Keberose Dependency Coordinates	1 month ago
Robert Winch	311235f39e	Document Keberose Dependency Coordinates ... Closes gh-18773	1 month ago
Robert Winch	fec988c82d	Add Kerberos Migration Section ... This links to the updated dependency coordinates Issue gh-18773 Signed-off-by: Robert Winch <362503+rwinch@users.noreply.github.com>	1 month ago
busoco-sjb	17b434c1c1	Document the change in dependency coordinates with Spring Security 7 ... Signed-off-by: busoco-sjb <169069865+busoco-sjb@users.noreply.github.com>	1 month ago
Rob Winch	b451739b5c	Merge pull request Fix GrantedAuthority.authority null in AuthoritiesAuthorizationManager ... Fix GrantedAuthority.authority null in AuthoritiesAuthorizationManager	1 month ago
Rob Winch	0bb65411be	Merge pull request Fix GrantedAuthority.authority null in AuthoritiesAuthorizationManager ... Fix GrantedAuthority.authority null in AuthoritiesAuthorizationManager	1 month ago
Rob Winch	d29c984881	Merge pull request #18544 from Khyojae/gh-18543 ... Fix GrantedAuthority.authority null in AuthoritiesAuthorizationManager	1 month ago
Robert Winch	cfb3bf38d8	Merge Fix: Handle null authority string in AuthoritiesAuthorizationManager into main	1 month ago
Robert Winch	151bcf3b0b	Merge Fix: Handle null authority string in AuthoritiesAuthorizationManager into 7.0.x	1 month ago
Robert Winch	1116241ee3	Fix Checks for NullPointerException in AuthoritiesAuthorizationManager ... - Fix checkstyle - Fix the test to use Collection that throws NullPointerException on .contains(null) to replicate the reported issue Closes gh-18544 Signed-off-by: Robert Winch <362503+rwinch@users.noreply.github.com>	1 month ago
Khyojae	d87dc9ae57	Fix: Handle null authority string in AuthoritiesAuthorizationManager ... This prevents NPE when GrantedAuthority.getAuthority() returns null. Closes gh-18543 Signed-off-by: Khyojae <khjae201@gmail.com>	1 month ago
Robert Winch	ea1b3d819b	Merge branch '7.0.x'	1 month ago
Robert Winch	2eb948d9b5	Ensure tests clear AuthorizationServerContextHolder ... Closes gh-18768	1 month ago
Robert Winch	881ddf796a	Merge branch '7.0.x'	1 month ago
Robert Winch	f2aef5168c	Merge branch '6.5.x' into 7.0.x	1 month ago
dependabot[bot]	ac556a45f9	Bump org.hibernate.orm:hibernate-core from 6.6.42.Final to 6.6.43.Final ... Bumps [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) from 6.6.42.Final to 6.6.43.Final. - [Release notes](https://github.com/hibernate/hibernate-orm/releases) - [Changelog](https://github.com/hibernate/hibernate-orm/blob/6.6.43/changelog.txt) - [Commits](https://github.com/hibernate/hibernate-orm/compare/6.6.42...6.6.43) --- updated-dependencies: - dependency-name: org.hibernate.orm:hibernate-core dependency-version: 6.6.43.Final dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
dependabot[bot]	c8731a8dc0	Bump com.fasterxml.jackson:jackson-bom from 2.18.5 to 2.18.6 ... Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.18.5 to 2.18.6. - [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.18.5...jackson-bom-2.18.6) --- updated-dependencies: - dependency-name: com.fasterxml.jackson:jackson-bom dependency-version: 2.18.6 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
dependabot[bot]	d62cce5bfb	Bump com.fasterxml.jackson:jackson-bom from 2.21.0 to 2.21.1 ... Bumps [com.fasterxml.jackson:jackson-bom](https://github.com/FasterXML/jackson-bom) from 2.21.0 to 2.21.1. - [Commits](https://github.com/FasterXML/jackson-bom/compare/jackson-bom-2.21.0...jackson-bom-2.21.1) --- updated-dependencies: - dependency-name: com.fasterxml.jackson:jackson-bom dependency-version: 2.21.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
dependabot[bot]	eca68b6cb3	Bump org.seleniumhq.selenium:selenium-java from 4.40.0 to 4.41.0 ... Bumps [org.seleniumhq.selenium:selenium-java](https://github.com/SeleniumHQ/selenium) from 4.40.0 to 4.41.0. - [Release notes](https://github.com/SeleniumHQ/selenium/releases) - [Commits](https://github.com/SeleniumHQ/selenium/compare/selenium-4.40.0...selenium-4.41.0) --- updated-dependencies: - dependency-name: org.seleniumhq.selenium:selenium-java dependency-version: 4.41.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
dependabot[bot]	3e60eeb74c	Bump org.hibernate.orm:hibernate-core from 7.2.4.Final to 7.2.5.Final ... Bumps [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) from 7.2.4.Final to 7.2.5.Final. - [Release notes](https://github.com/hibernate/hibernate-orm/releases) - [Changelog](https://github.com/hibernate/hibernate-orm/blob/7.2.5/changelog.txt) - [Commits](https://github.com/hibernate/hibernate-orm/compare/7.2.4...7.2.5) --- updated-dependencies: - dependency-name: org.hibernate.orm:hibernate-core dependency-version: 7.2.5.Final dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago