spring-security

Commit Graph

Author	SHA1	Message	Date
Josh Cummings	20d21f8eeb	Invert Log Messages Closes gh-10909	4 years ago
Josh Cummings	a99a04f050	Update JavaDoc Issue gh-10564	4 years ago
Yuriy Savchenko	d6cbacb27a	Make WebAuthenticationDetails constructor public Closes gh-10564	4 years ago
Josh Cummings	84616543a3	Polish ignoring() log messaging - Public API remains unchanged Issue gh-9334	4 years ago
Manuel Jordan	6ae651bd67	Print ignore message DefaultSecurityFilterChain When either `web.ignoring().mvcMatchers(...)` or `web.ignoring().antMatchers(...)` methods are used, for all their variations, the DefaultSecurityFilterChain class now indicates correctly through its ouput what paths are ignored according the `ignoring()` settings. Closes gh-9334	4 years ago
Rob Winch	6f0029fc44	Add Support for @Transient SecurityContext Closes gh-9995	4 years ago
Marcus Da Coregio	0048805c2a	RequestMatcherDelegatingWebInvocationPrivilegeEvaluator doesn't provided access to the ServletContext Closes gh-10779	4 years ago
Josh Cummings	08821369a3	Add Request-based AuthenticationManagerResolvers Closes gh-6762	4 years ago
Rob Winch	f94090a59b	Remove spring-security-openid Closes gh-10773	4 years ago
Juan Carlos	2624150052	Add serialVersionUID to DefaultSavedRequest and SavedCookie Closes gh-10594	4 years ago
Josh Cummings	feff747669	Polish multiple RequestRejectedHandlers support Issue gh-10603	4 years ago
Adam Ostrožlík	27cfb9c89d	Support multiple RequestRejectedHandler beans Closes gh-10603	4 years ago
Josh Cummings	b2fe9149cf	Use noNullElements Collection#contains(null) does not work for all collection types Issue gh-10703	4 years ago
heowc	6c5fd38a3f	Fix typo	4 years ago
Marcus Da Coregio	750dcafbd2	Fix @since tag Issue gh-10590, gh-10554	4 years ago
Marcus Da Coregio	d884d9a461	Configure WebInvocationPrivilegeEvaluator bean for multiple filter chains Closes gh-10554	4 years ago
Marcus Da Coregio	51b4bd67c9	Add RequestMatcherEntry	4 years ago
Marcus Da Coregio	eda346863d	Introduce AuthorizationManagerWebInvocationPrivilegeEvaluator Closes gh-10590	4 years ago
Eleftheria Stein	c68a75bcde	Correct imports to jakarta Issue gh-9385, gh-10118	4 years ago
Marcus Da Coregio	0beb725259	Add Cross Origin Policies headers Add DSL support for Cross-Origin-Opener-Policy, Cross-Origin-Embedder-Policy and Cross-Origin-Resource-Policy headers Closes gh-9385, gh-10118	4 years ago
Steve Riesenberg	aa3c883f87	Use BDD in tests	4 years ago
Steve Riesenberg	d37ff18b69	Polish gh-9597	4 years ago
Karl Tinawi	c57fc309c2	Set details on authentication token created by HttpServlet3RequestFactory Currently the login mechanism when triggered by executing HttpServlet3RequestFactory#login does not set any details on the underlying authentication token that is authenticated. This change adds an AuthenticationDetailsSource on the HttpServlet3RequestFactory, which defaults to a WebAuthenticationDetailsSource. Closes gh-9579	4 years ago
Steve Riesenberg	5dd2565348	Update copyright year Issue gh-10557	4 years ago
Steve Riesenberg	41c6776455	Fix case sensitive headers comparison Closes gh-10557	4 years ago
Josh Cummings	7e55c84cfc	Add Missing Since Issue gh-10482	4 years ago
Igor Pelesic	72109e2921	PermitAllSupport supports AuthorizeHttpRequestsConfigurer PermitAllSupport supports either an ExpressionUrlAuthorizationConfigurer or an AuthorizeHttpRequestsConfigurer. If none or both are configured an error message is thrown. Closes gh-10482	4 years ago
Steve Riesenberg	898ba67098	Polish gh-10007	4 years ago
Guirong Hu	9f51240bf1	Support IP whitelist for Spring Security Webflux Closes gh-7765	4 years ago
Steve Riesenberg	9a9136d96d	Fix import spacing	4 years ago
Steve Riesenberg	c6a27d44e5	Remove failing test due to HttpMethod changes Closes gh-10569	4 years ago
Marcus Da Coregio	25feedb870	Fix removal of framework deprecated code Issue https://github.com/spring-projects/spring-framework/issues/27686	4 years ago
Rob Winch	bd34d70f97	Prevent Save @Transient Authentication with existing HttpSession Previously, @Transient Authentication would get saved if an existing HttpSession existed but it shouldn't. This commit always prevents @Transient Authentication from being saved. Closes gh-9992	4 years ago
Marcus Da Coregio	db60df2f9c	Update to Spring Framework 6.0 Issue gh-10360	4 years ago
Marcus Da Coregio	caad3d57e2	Improve log message when no CSRF token found Closes gh-10436	4 years ago
Emil Sierżęga	04b47c5928	Fixed various broken links in Javadocs	4 years ago
Emil Sierżęga	a188138715	Javadocs author tag doesn't work in methods	4 years ago
Rob Winch	f836897190	Checkstyle Fixes - Javadoc tag ordering - Private constructors before inner classes Issue gh-10394	4 years ago
Rob Winch	e1f4ec1137	Fix Jackson	4 years ago
Marcus Da Coregio	faec20bc69	Update DefaultWebInvocationPrivilegeEvaluator to use current ServletContext Closes gh-10208	5 years ago
Josh Cummings	7b98c2ea95	Restructure SwitchUserFilter Logs Issue gh-6311	5 years ago
Marcus Da Coregio	02b2fcc6f0	Restore ManagementConfigurationPlugin Issue gh-9615	5 years ago
Marcus Da Coregio	d2e5f2ae0d	Update Gradle to 7.2 Closes gh-9615	5 years ago
Eleftheria Stein	7d81a52780	Allow AuthenticationPrincipal argument type to be primitive Closes gh-10172	5 years ago
heowc	84d173c310	Fix typo	5 years ago
Bogdan Ilchyshyn	a4c088a3b3	Introducing WebSessionServerLogoutHandler Closes gh-4838	5 years ago
Hiroshi Shirosaki	6f3e346b76	Add SecurityContextHolder#addListener Closes gh-10032	5 years ago
Josh Cummings	b8d51725c7	Immutable SecurityContext Issue gh-10032	5 years ago
Rob Winch	f73f213f50	Remove DependencySetPlugin Closes gh-10070	5 years ago
Rob Winch	f800d2c993	Add hamcrest dependency	5 years ago

1 2 3 4 5 ...

1181 Commits (346038d66cbff109aeb8bf91c0055039fa47607e)