Tree: 360db53dd2

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.1.0-M1

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '360db53dd2'

${ noResults }

Commit Graph

1011 Commits (360db53dd24d2d12316dcbdaaa7bc4cba59ea0a5)

Author	SHA1	Message	Date
Craig Andrews	efb6953017	Reject the NULL character in paths in StrictHttpFirewall ... Adds `setAllowNull` By default, denies null in paths	6 years ago
Rob Winch	ccbad61ae8	Change blacklist to blocklist ... Closes gh-8676	6 years ago
Rob Winch	ca1252be94	Replace whitelist with allowlist ... Issue gh-8676	6 years ago
Rob Winch	a907026eae	Deprecate X-FRAME-OPTIONS ALLOW-FROM Directive ... Closes gh-8677	6 years ago
Joe Grandja	da4b626bf1	OAuth2LoginAuthenticationWebFilter should handle OAuth2AuthorizationException ... Issue gh-8609	6 years ago
Eleftheria Stein	0a42aa26c8	Mock request with non-standard HTTP method in test ... Fixes gh-8594	6 years ago
Astushi Yoshikawa	f08ca4e688	Throw exception if URL does not include context path when context relative ... Issue: gh-8399	6 years ago
Rob Winch	dc514b369e	FilterInvocation Support Default Methods on HttpServletRequest ... Closes gh-8566	6 years ago
cbornet	bfb401eeed	Create the CSRF token on the bounded elactic scheduler ... The CSRF token is created with a call to UUID.randomUUID which is blocking. This change ensures this blocking call is done on the bounded elastic scheduler which supports blocking calls. Fixes gh-8128	6 years ago
Mathieu Ouellet	cd08102b93	Add debug logging ... Goal is to provide insight to devs on: - Authentication & Authorization success/failures - WebSession & SecurityContext - Request matchers, cache & authn/authz flow Fixes gh-5758	6 years ago
Rob Winch	4473dca022	Polish matchesRequireCsrfProtectionWhenNonStandardHTTPMethodIsUsed ... Issue gh-8149	6 years ago
Parikshit Dutta	0f92415395	Fix non-standard HTTP method for CsrfWebFilter ... Closes gh-8149	6 years ago
Artyom Tarynin	6db514a4e2	Update AntPathRequestMatcher.java ... Fixed typo in JavaDoc. Actually, In these two cases, we are calling the constructor with a `boolean caseSensitive` which is equal to true. This means case sensitive	6 years ago
Joe Grandja	86ca6b013c	Unlock dependencies ... This reverts commit 206960cf44.	6 years ago
Joe Grandja	206960cf44	Lock dependencies for 5.4.0-M1	6 years ago
Rob Winch	0483b3e042	Polish RequestRejectedHandler ... Issue gh-5007	6 years ago
Leonard Brünings	b826c798f7	Add RequestRejectedHandler ... Closes gh-5007	6 years ago
Oh Myung Woon	b7d3acc02c	Add constructors to AbstractAuthenticationProcessingFilter ... Closes gh-8309	6 years ago
Mustafa Ulu	6bdd5f710f	Fix example in javadoc of FilterChainProxy	6 years ago
Rob Winch	91728ef53b	Fix HttpServlet3RequestFactory Logout Handlers ... Previously there was a problem with Servlet API logout integration when Servlet API was configured before log out. This ensures that logout handlers is a reference to the logout handlers vs copying the logout handlers. This ensures that the ordering does not matter. Closes gh-4760	6 years ago
Josh Cummings	eed71243cb	SwitchUserFilter Defaults to POST ... Fixes gh-4183	6 years ago
Zeeshan Adnan	935c547dde	Fix exception for empty basic auth header token ... fixes spring-projectsgh-7976	6 years ago
Eleftheria Stein	47011eb9e2	Polish transfer session's max inactive interval ... Issue: gh-2693	6 years ago
Venkata Jaswanth U	02b7d04027	Transfer session's max inactive interval ... Fixes: gh-2693	6 years ago
Eleftheria Stein	b2ea0ba775	Polish SessionIdChangedEvent ... Add AbstractSessionEvent; clean up license headers and Javadocs Fixes: gh-5438	6 years ago
Venkata Jaswanth	5fc6414377	SessionRegistryImpl is now aware of SessionIdChangedEvent	6 years ago
Eleftheria Stein	ae532c080c	Add server request cache that uses cookie ... Fixes: gh-8033	6 years ago
Eleftheria Stein	38979b1b09	Add test for ServerRequestCacheWebFilter	6 years ago
Josh Cummings	6eadf7b140	Unlock dependencies for 5.3.0.RELEASE ... This reverts commit 147d7dadd7.	6 years ago
Josh Cummings	147d7dadd7	Lock dependencies for 5.3.0.RELEASE	6 years ago
AmitB	2ce9eef95e	Fix typo in AntPathRequestMatcher contructor comment	6 years ago
Joe Grandja	82cd203791	Remove unnecessary mocking ... Fixes gh-8012	6 years ago
Josh Cummings	5bdf57d1e5	Remove Groovy and Spock Dependencies ... Fixes gh-4939	6 years ago
Josh Cummings	bae50ecc05	AbstractSecurityWebApplicationInitializerTests groovy->java ... Issue gh-4939	6 years ago
Eleftheria Stein	84b8a5abd7	Unlock dependencies for next development version ... This reverts commit 064616f1ef.	6 years ago
Eleftheria Stein	064616f1ef	Lock dependencies for 5.3.0.RC1	6 years ago
Josh Cummings	cb9fd09150	Change AuthenticationWebFilter's constructor ... Fixes gh-7872	6 years ago
Peter Keller	e62fb755e8	Set charset of BasicAuthenticationFilter converter ... Allow BasicAuthenticationFilter to pick up the given credentials charset. Fixes: gh-7835	6 years ago
Onur Kağan Özcan	1f6381d970	Set secure on cookie when logging out ... Mark cookie secure flag to ensure cookie identity is the same	6 years ago
Rob Winch	ffccec953f	Fix HttpHeaderWriterWebFilterTests ... Ensure setComplete() is subscribed to	6 years ago
Eleftheria Stein	fcc6457bef	Unlock dependencies for next development version ... This reverts commit 93acf8f0f1.	6 years ago
Eleftheria Stein	93acf8f0f1	Lock dependencies for 5.3.0.M1	6 years ago
Onur Kağan Özcan	2015f392ef	Set secure when cancelling remember-me cookie ... AbstractRememberMeServices is setting remember-me cookie with checking request is secure or secure usage is independently set to a fixed flag. But when cancelling a cookie, cookie is not being marked secure or not. It produces an inconsistency when using secure flag as a part to identity of cookie.	6 years ago
Rob Winch	a8331ba7ed	CompositeServerHttpHeadersWriter Executes Sequentially ... Fixes gh-7731	6 years ago
David Herberth	64e063d948	switches web authentication principal resolver to use reactive context ... gh #6598 Signed-off-by: David Herberth <github@dav1d.de>	6 years ago
Rob Winch	8e53c3f269	DelegatingServerAuthenticationSuccessHandler Executes Sequentially ... Fixes gh-7728	6 years ago
Rob Winch	73babc3314	DelegatingServerLogoutHandler Executes Sequentially ... Fixes gh-7723	6 years ago
Joe Grandja	4d9cee116c	Display general error message when WebFlux oauth2Login() fails ... Issue gh-5562 gh-6484	6 years ago
Filip Hrisafov	796859333f	Log full failed authentication exception in BasicAuthenticationFilter	6 years ago
Josh Cummings	5f17032ffd	Restore Removed Throws Clauses ... In a recent clean-up, certain exceptions were removed from various throws clauses. This PR re-introduces throws clauses that are important for one of the following reasons: 1. It's a method on a public interface 2. It's a method clearly designed for inheritance, for example, a method stub, an abstract method, or indicated as such in the docs. Fixes gh-7541	6 years ago