spring-security

Commit Graph

Author	SHA1	Message	Date
Guillaume Husta	508b3f26e3	docs: Typo in page Preparing for 7.0 / Web (version 6.5) In section 'Include the Servlet Path Prefix in Authorization Rules', `PathPatternRequestParser` should be replaced by `PathPatternRequestMatcher`. Signed-off-by: Guillaume Husta <guillaume.husta@gmail.com>	2 months ago
github-actions[bot]	7ea5be4b98	Update Antora Spring UI to v0.4.25	2 months ago
Josh Cummings	765abe534e	Add Missing Migration Pages to Side Navigation Closes gh-18313	3 months ago
Josh Cummings	afb0c59875	Add request-matcher XML Migration Steps Closes gh-18211	3 months ago
kucoll	10edc14d7e	Fix typo in AnnotationTemplateExpressionDefaults The AnnotationTemplateExpressionDeafults was wrong，and right is AnnotationTemplateExpressionDefaults Signed-off-by: kucoll <kucoll@163.com>	4 months ago
Peter Potrowl	4b227649f0	Fix typo in ldap.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	cfc27f8cc3	Fix typo in passkeys.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	5baff27ffb	Fix typo in ldap.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	39aaf25b60	Fix typo in passkeys.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Daniel Garnier-Moiroux	fed6df5167	Default WebAuthnConfigurer#rpName to rpId In WebAuthn L3 spec, PublicKeyCredentialEntity.name is deprecated: > This member is deprecated because many clients do not display it, > but it remains a required dictionary member for backwards compatibility. > Relying Parties MAY, as a safe default, set this equal to the RP ID. Source: https://www.w3.org/TR/webauthn-3/#dictdef-publickeycredentialentity Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	4 months ago
Daniel Garnier-Moiroux	4feeb0f843	Docs: document effects of disabling CORS configurer Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	4 months ago
Himanshu Pareek	dcb4e47cd5	Add Include-Code to the Password Storage page References gh-16226 Signed-off-by: Himanshu Pareek <himanshupareekiit01@gmail.com>	5 months ago
Josh Cummings	8b2a453301	Advise Favoring PostAuthorize on Reads Closes gh-17797	7 months ago
Rob Winch	0404996f87	import Assertions.assertThat This adds a static import for assertThat in the Kotlin docs code	7 months ago
Rob Winch	0f63d98c84	Use @EnableMethodSecurity in docs tests Previously parameters were passed in unnecessarily. This removes the unnecessary paramaters.	7 months ago
Rob Winch	fbfbb1e571	Use 2004-present for Copyright Spring Security migrated the copyright to use -present to simplify the headers. This commit aligns the header.	7 months ago
Joe Kuhel	d002e68231	Update servlet test method docs to use include-code References gh-16226 Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>	7 months ago
Rob Winch	62b5b1a77c	import Assertions.assertThat This adds a static import for assertThat in the Kotlin docs code	7 months ago
Rob Winch	523222c24d	Use @EnableMethodSecurity in docs tests Previously parameters were passed in unnecessarily. This removes the unnecessary paramaters.	7 months ago
Rob Winch	69f38d4933	Use 2004-present for Copyright Spring Security migrated the copyright to use -present to simplify the headers. This commit aligns the header.	7 months ago
Joe Kuhel	0179a811c7	Update servlet test method docs to use include-code References gh-16226 Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>	7 months ago
Michał Sobkiewicz	c963f4250e	Update Angular documentation links in csrf.adoc Replaced `angular.io` links with their corresponding `angular.dev` URLs. This change ensures that users referencing CSRF documentation are directed to the most current Angular resources. Signed-off-by: Michał Sobkiewicz <perceptron8@users.noreply.github.com>	8 months ago
dependabot[bot]	de14fb8f77	Bump @springio/antora-extensions from 1.14.6 to 1.14.7 in /docs Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.6 to 1.14.7. - [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc) - [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.6...v1.14.7) --- updated-dependencies: - dependency-name: "@springio/antora-extensions" dependency-version: 1.14.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	8 months ago
Bernie Schelberg	edcb3b024e	Update Shibboleth repository URL Signed-off-by: Bernie Schelberg <bernard.schelberg@invicara.com>	8 months ago
dependabot[bot]	759736672d	Bump @springio/antora-extensions from 1.14.4 to 1.14.6 in /docs Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.4 to 1.14.6. - [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc) - [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.4...v1.14.6) --- updated-dependencies: - dependency-name: "@springio/antora-extensions" dependency-version: 1.14.6 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	8 months ago
Josh Cummings	7960d2803d	Add Migration Steps for PathMatcher Usage Issue gh-17509	8 months ago
Josh Cummings	4b15b2b94e	Add Migration Steps for Messaging Closes gh-17509	8 months ago
Josh Cummings	9209a33678	Remove References to Deprecated OpenSaml Components Issue gh-11658	8 months ago
Rob Winch	6eee256e12	Demonstrate include-code usage Closes gh-17161	10 months ago
Rob Winch	0fecaf4924	Add include-code extension setup for docs Closes gh-17160	10 months ago
Gurunathan	a4cd6f4278	Advise Overriding equals() and hashCode() in UserDetails Implementations This commit adds a documentation note explaining the importance of overriding equals() and hashCode() in custom UserDetails implementations. The default SessionRegistryImpl in Spring Security uses an in-memory ConcurrentMap<Object, Set<String>>, Map<String,SessionInformation> to associate principals with sessions. If a custom UserDetails class does not properly override equals() and hashCode(), user sessions may not be tracked or matched correctly. I believe this helps developers avoid subtle session management issues when implementing custom authentication logic. Signed-off-by: Gurunathan <129361658+Gurunathan16@users.noreply.github.com>	10 months ago
Josh Cummings	eb30fd7f59	Add Missing Header Issue gh-11161	10 months ago
snowykte0426	260d298cc5	Add Migration Guide from Spring Security SAML Extension This adds a dedicated migration guide for users moving from the Spring Security SAML Extension to the built-in SAML 2.0 support. Includes: - Content migrated from the project wiki - xref links for `saml2Login`, `saml2Logout`, and `saml2Metadata` - Metadata example moved to Examples Matrix - Cleanup and naming per review feedback Closes gh-11161 Signed-off-by: snowykte0426 <snowykte0426@naver.com>	10 months ago
Danilo Piazzalunga	27319e3f9b	Add missing registration property in YAML listing Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>	10 months ago
Danilo Piazzalunga	ec462e8bc5	Update assertingparty property usage in YAML snippets Spring Boot 2.7 renamed spring.security.saml2.relyingparty.registration..identityprovider. to spring.security.saml2.relyingparty.registration..assertingparty.. Closes gh-12810. Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>	10 months ago
Joe Grandja	e3c39f02bc	Add documentation for DPoP support Closes gh-17072	10 months ago
Josh Cummings	211b1b7285	Update Method Security Migration Steps	11 months ago
Josh Cummings	84db5bb312	Add Cookie Customizer Migration Steps	11 months ago
Josh Cummings	74a25c3fc1	Add shouldFilterAllDispatcherTypes Migration Steps	11 months ago
Josh Cummings	084990736e	Move Opaque Token Migration Steps	11 months ago
Josh Cummings	c6bba38458	Update SAML 2.0 Migration Steps	11 months ago
Josh Cummings	45b453f59b	Add ACL Migration Steps	11 months ago
Tran Ngoc Nhan	505fe3abed	Correct method name Closes gh-17031 Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	11 months ago
Josh Cummings	51239359ed	Fix ClearSiteData Code Snippet Closes gh-16948	11 months ago
Soumik Sarker	bcef6ed74f	Reformatted lines in x509 overview documentation Signed-off-by: Soumik Sarker <ronodhirsoumik@gmail.com>	11 months ago
Yanming Zhou	9c76ab69f0	Use proper configuration key the getter method is `getOpaquetoken()` not `getOpaqueToken()` See `c6045c3111/spring-boot-project/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/security/oauth2/resource/OAuth2ResourceServerProperties.java (L51)` Signed-off-by: Yanming Zhou <zhouyanming@gmail.com>	11 months ago
Yanming Zhou	ce5a12b2f7	Revise document to replace outdated NimbusOpaqueTokenIntrospector with SpringOpaqueTokenIntrospector Signed-off-by: Yanming Zhou <zhouyanming@gmail.com>	11 months ago
Josh Cummings	61d6fbc2a9	Update Documentation for PathPatternRequestMatcher Issue gh-16765	11 months ago
Steve Riesenberg	15c2b156f1	Update Client Authentication examples Closes gh-16925 987d9c9788ba0343f543083c87613fb5	11 months ago
Josh Cummings	6438603cb6	Pick Up TargetVisitor Beans Closes gh-16923	11 months ago

1 2 3 4 5 ...

2576 Commits (508b3f26e37db136f2102906af5ad2dc69f04d5e)