e29058c7e4
Add AuthorizeReturnObject Spring Data Hints
...
Issue gh-15709
1 year ago
fd5d03d384
Add AuthorizeReturnObject Hints
...
Closes gh-15709
1 year ago
6428bf2bd8
Add test for rendering "request token" form in OneTimeTokenLoginConfigurerTests
1 year ago
803c32eb4e
Remove unused logger in OneTimeTokenLoginConfigurer
1 year ago
8d47906191
Render default UIs using lightweight templates
1 year ago
a953a3d162
Remove log message
1 year ago
5c20505b0e
Support Class Attributes in Annotation Template Processing
...
Closes gh-15721
1 year ago
81e4c7273a
Add One-Time Token Login support to Kotlin DSL
...
Closes gh-15698
1 year ago
97cefa6830
Update Formatting
...
Issue gh-15714
1 year ago
f836efb912
Address unnecessary method invocation
...
Closes gh-15714
1 year ago
00e4a8fb54
Add support for One-Time Token Login
...
Closes gh-15114
1 year ago
f0f47b54ec
Improve warning message
1 year ago
f372f5cf52
Replace OidcSessionStrategy References with OidcSessionRegistry
1 year ago
5c604b95fb
Correct PostFilterAuthorizationMethodInterceptor Target Type
...
Previously, `postFilterAuthorizationMethodInterceptor` mistakenly
was published as an `Advisor`. Because `MethodSecurityAdvisorRegistrar`
re-publishes each pre/post annotation interceptor also as an `Advisor`,
this resulted in a duplicate advisor for `@PostFilter`.
Closes gh-15651
1 year ago
f398be793d
Simplify AuthorizationAdvisorProxyFactory Configuration
...
Closes gh-15497
1 year ago
ae8e4d148e
Produce Exactly One AuthorizationAdvisor Per Annotation
...
Closes gh-15592
1 year ago
27af1df87d
Simplify Method Interceptor Configuration
...
Simplifies to use only one ObjectProvider for easier
future maintenance
Issue gh-15592
1 year ago
b731623b3a
Fix checkstyle errors with @Deprecated
1 year ago
b92ed92548
Fix checkstyle errors with @Deprecated
1 year ago
79fb0113c8
Bump io-spring-javaformat from 0.0.42 to 0.0.43
...
Bumps `io-spring-javaformat` from 0.0.42 to 0.0.43.
Updates `io.spring.javaformat:spring-javaformat-checkstyle` from 0.0.42 to 0.0.43
- [Release notes](https://github.com/spring-io/spring-javaformat/releases )
- [Commits](spring-io/spring-javaformat@v0.0.42...v0.0.43)
Updates `io.spring.javaformat:spring-javaformat-gradle-plugin` from 0.0.42 to 0.0.43
- [Release notes](https://github.com/spring-io/spring-javaformat/releases )
- [Commits](spring-io/spring-javaformat@v0.0.42...v0.0.43)
---
updated-dependencies:
- dependency-name: io.spring.javaformat:spring-javaformat-checkstyle
dependency-type: direct:production
update-type: version-update:semver-patch
- dependency-name: io.spring.javaformat:spring-javaformat-gradle-plugin
dependency-type: direct:production
update-type: version-update:semver-patch
...
---
Manual updates:
- Adhere to rule where `@Deprecated` annotations and `@deprecated` javadoc comments MUST
be used together
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
2caf1fb6b4
Bump io-spring-javaformat from 0.0.42 to 0.0.43
...
Bumps `io-spring-javaformat` from 0.0.42 to 0.0.43.
Updates `io.spring.javaformat:spring-javaformat-checkstyle` from 0.0.42 to 0.0.43
- [Release notes](https://github.com/spring-io/spring-javaformat/releases )
- [Commits](spring-io/spring-javaformat@v0.0.42...v0.0.43)
Updates `io.spring.javaformat:spring-javaformat-gradle-plugin` from 0.0.42 to 0.0.43
- [Release notes](https://github.com/spring-io/spring-javaformat/releases )
- [Commits](spring-io/spring-javaformat@v0.0.42...v0.0.43)
---
updated-dependencies:
- dependency-name: io.spring.javaformat:spring-javaformat-checkstyle
dependency-type: direct:production
update-type: version-update:semver-patch
- dependency-name: io.spring.javaformat:spring-javaformat-gradle-plugin
dependency-type: direct:production
update-type: version-update:semver-patch
...
---
Manual updates:
- Adhere to rule where `@Deprecated` annotations and `@deprecated` javadoc comments MUST
be used together
Signed-off-by: dependabot[bot] <support@github.com>
1 year ago
ed16c86115
Improve @CurrentSecurityContext meta-annotations
...
Closes gh-15551
1 year ago
59ec1f6480
Revert "Polish AuthorizationAdvisorProxyFactory advisor configuration"
...
This commit had some unintended consequences when the advisor
interceptor was published in a Spring Boot application. As such,
15497 will be reopened to investigate. In the meantime, this commit
reverts the previous change so as to allow the build to pass.
Issue gh-15497
1 year ago
08b8b09066
Update Copyright
...
Issue gh-15286
1 year ago
2b33f6f04a
Add Config Tests for AuthenticationPrincipal Templates
...
Issue gh-15286
1 year ago
e40c98e6d7
Deprecate PrePostTemplateDefaults
...
Since there is nothing specific to configuring pre/post
annotations, there is no need for the extra class.
If a need like this does arise in the future,
either AnnotationTemplateExpressionDefaults can be sub-
classed, or it can have introduced a Map field holding
custom properties.
Issue gh-15286
1 year ago
2c02d8aec7
Update Copyright
1 year ago
895978c818
Auto config AuthenticationPrincipalArgumentResolver When AnnotationTemplateExpressionDefaults bean is Present
1 year ago
3b8cdc323f
Remove unused method
1 year ago
109da2719f
Use explicit types everywhere instead of var
1 year ago
02cca6f737
Polish AuthorizationAdvisorProxyFactory advisor configuration
...
Closes gh-15497
1 year ago
816ebe38b5
Add OpenSAML to Config Build
...
Issue gh-11658
1 year ago
1da383b360
Add OpenSAML 5 Support
...
Issue gh-11658
1 year ago
78a0173cc1
Use OpenSAML API for web
...
Issue gh-11658
1 year ago
51fc05630d
Use OpenSAML API for web.authentication.logout
...
Issue gh-11658
1 year ago
ff9a925e88
Use OpenSAML API for metadata
...
Issue gh-11658
1 year ago
416859e70e
Use OpenSAML API in authentication.logout
...
Issue gh-11658
1 year ago
bc8ba7f3b7
Inline CSS for default login and logout page
...
- Remove the dependency on Bootstrap CSS. Results in faster load times, no failures
in air-gapped or offline scenarios, and no dependency on an external CDN that may
go away some day.
1 year ago
37a2812d1a
Mimic Annotation Fallback Logic
...
For backward compatibility, this commit changes the annotation traversal
logic to match what is found in PrePostAnnotationSecurityMetadataSource.
This reverts gh-13783 which is a feature that unfortunately regressess
pre-existing behavior like that found in gh-15352. As such, that
functionality has been removed.
Issue gh-15352
1 year ago
f20ae1a71c
Revert gh-13783
...
This feature unfortunately regresses pre-existing behavior
like that found in gh-15352. As such, this functionality
has been removed.
Closes gh-15352
1 year ago
304685521c
Fix tags order
1 year ago
3d4bcf1b44
fix: Restrict automatic CORS configuration to UrlBasedCorsConfigurationSource
...
- Update CORS configuration logic to automatically enable .cors() only if a UrlBasedCorsConfigurationSource bean is present.
- Modify applyCorsIfAvailable method to check for UrlBasedCorsConfigurationSource instances.
1 year ago
98af8d1123
Add permissionsPolicyHeader
...
This method is a replacement of `permissionsPolicy(Customizer)` that returns its own configurer instead of `HeadersConfigurer`.
Closes gh-14803
1 year ago
9d8888c5f0
Use AssertingPartyMetadata
...
Issue gh-15394
1 year ago
dab48d25b0
Improve Error Message When Registration Missing
...
Closes gh-15363
1 year ago
796e4d6b6c
Add query parameter support for authn requests
...
Closes gh-15017
1 year ago
7422a1134a
Allow logout+jwt JWT type
...
Closes gh-15003
1 year ago
773e86701e
Add ParameterRequestMatcher
...
Closes gh-15342
1 year ago
aa9c1bab67
Upgrade to Spring Framework 6.2.0-M4
...
Closes gh-15266
2 years ago
0e7566ede3
Adjust any-request check
...
Storing the request matcher outside of the for loop means that
if one of the SecurityFilterChain instances is not of type
DefaultSecurityFilterChain, then the error may print out an
earlier request matcher instead of the current one.
Instead, this commit changes to print out the entire filter chain
so that it can be inside of the for loop, regardless of type.
Issue gh-15220
2 years ago
Josh Cummings
Daniel Garnier-Moiroux
Marcus Hert Da Coregio
DingHao
Max Batischev
tugjg
Yanming Zhou
Hero Wanders
baezzys