6ad567f0fa
Polish gh-11367
4 years ago
8c634f8a9d
Set permissions for GitHub actions
...
Restrict the GitHub token permissions only to the required ones; this
way, even if the attackers will succeed in compromising your workflow,
they won’t be able to do much.
- Included permissions for the action.
https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests
https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
Closes gh-11367
4 years ago
a996dfc55b
Add Deprecated annotation to WebSecurity#securityInterceptor
...
Closes gh-11634
4 years ago
ad9e737bf2
Fix Snapshot Sources/Javadoc
...
This commit merges a workaround to an issue in JFrog's Gradle plugin
which causes SNAPSHOT javadoc and sources to become out of sync and thus
prevents users from being able to download either.
Closes gh-10602
4 years ago
06aa3362dd
"Well-Know" should be "Well-Known"
4 years ago
7c7751635d
Add Kotlin example for WebTestClient setup docs
...
Closes gh-9998
4 years ago
bced37f6a7
Merge Same-named Attribute Elements
...
Closes gh-11042
4 years ago
fbc5839890
Build only on branches
...
Issue gh-11480
4 years ago
d76c321f8c
Backport release automation and github actions
...
Closes gh-11500
4 years ago
37d856dca4
Correct input validation for 31 rounds
...
Closes gh-11470
4 years ago
c57853e5fa
Document sagan Release tasks require read:org scope
...
Closes gh-11423
4 years ago
6f275deb55
Next Development Version
4 years ago
c40f65f5a2
Release 5.7.2
4 years ago
bca43af9bb
Update org.opensaml:opensaml-core4 to 4.1.1
...
Closes gh-11410
4 years ago
d9b8882fa8
Update spring-ldap-core to 2.4.1
...
Closes gh-11409
4 years ago
7358c65a8c
Update org.springframework.data to 2021.2.1
...
Closes gh-11408
4 years ago
e02d5f2dd7
Update org.springframework to 5.3.21
...
Closes gh-11407
4 years ago
91a965c6db
Update org.jetbrains.kotlinx to 1.6.3
...
Closes gh-11406
4 years ago
0e88064942
Update hibernate-entitymanager to 5.6.9.Final
...
Closes gh-11405
4 years ago
641b9ef83b
Update io.projectreactor to 2020.0.20
...
Closes gh-11403
4 years ago
6f43d234dc
Update aspectj-plugin to 6.4.3.1
...
Closes gh-11402
4 years ago
d7819ea4da
Update jackson-bom to 2.13.3
...
Closes gh-11399
4 years ago
37ee70ae86
Add dependency update exclusion for spring-javaformat-checkstyle
4 years ago
8ea37360ac
Add dependency exclusion rules
4 years ago
29db051f7a
Cache SecurityContextRepository.loadContext(HttpServletRequest) Result
...
Closes gh-11390
4 years ago
f035c30edb
Encode postLogoutRedirectUri query params
...
Closes gh-11379
4 years ago
d22277ce36
Add missing KeyInfo
...
Closes gh-11354
4 years ago
bd60a0f8c9
Add OpenSamlSigningUtilsTests
...
Issue gh-11354
4 years ago
d882bfcf2b
Reverse content type check
...
When MultipartFormData is enabled currently the CsrfWebFilter compares
the content-type header against MULTIPART_FORM_DATA MediaType which
leads to NullPointerExecption when there is no content-type header.
This commit reverse the check to compare the MULTIPART_FORM_DATA
MediaType against the content-type which contains null check and avoids
the exception.
closes gh-11204
Closes gh-11205
4 years ago
6c3f53ac0a
Fix typo in BasicLookupStrategy Javadoc
...
Issue gh-11336
4 years ago
b274431c07
Fix typo in BasicLookupStrategy Javadoc
...
Closes gh-11336
4 years ago
3d5e5ff556
Enable BackportBot on 5.7.x
4 years ago
a3e996a66b
Fix title render issue of Digest Authentication document
...
Closes gh-11272
4 years ago
0c31cb21dc
Update opaque-token.adoc
...
Fixing yaml sample in Servlet and Reactive pages
4 years ago
c39d39b35f
Use 'md:' prefix in EntityDescriptor XML
...
Create the EntityDescriptor object with
EntityDescriptor.DEFAULT_ELEMENT_NAME instead of
EntityDescriptor.ELEMENT_QNAME. That ensures the EntityDescriptor tag
is marshalled to xml with the 'md:' prefix, consistent with all other
metadata tags.
Closes #11283
4 years ago
292585080a
Correct access(String) reference
...
Closes gh-11280
4 years ago
8690accd57
Improve ContextConfiguration Docs
...
Point to updated Spring Reference
Issue gh-10934
4 years ago
e3c15260e7
Polish ExtendWith Docs
...
Use spring-framework-reference-url placeholder
Issue gh-10934
4 years ago
9625382b22
Update JUnit 5 annotations in documentation
...
- replace Before with BeforeEach
- replace RunWith with ExtendWith
Closes gh-10934
4 years ago
48ef3f4719
Some Security Expressions cause NPE when used within Query annotation
...
Added trustResolver, roleHierarchy, permissionEvaluator, defaultRolePrefix
fields to SecurityEvaluationContextExtension.
Closes gh-11196
Closes gh-11289
4 years ago
d0da160007
Use Base64 encoder with no CRLF in output for SAML 2.0 messages
...
Closes gh-11262
4 years ago
4caf53e96d
Next Development Version
4 years ago
22a1c99b9e
Release 5.7.1
4 years ago
e2eed33eca
Add StrictHttpFirewall.allow* new lines and separators
...
Issue gh-11264
4 years ago
5bf478e72e
Fix Formatting
...
Issue gh-11264
4 years ago
e0a6a9efa9
StrictHttpFirewall allows CJKV characters
...
Issue gh-11264
4 years ago
5155719877
Next Development Version
4 years ago
3497b0ed68
Release 5.7.0
4 years ago
1229b27b87
Improve Upgrading
4 years ago
ee28896f42
AntRegexRequestMatcher Optimization
...
Closes gh-11234
4 years ago
Steve Riesenberg
naveen
Marcus Da Coregio
Rob Winch
Desmond Silveira
Yuriy Savchenko
Josh Cummings
Joe Grandja
Zhivko Delchev
shirohoo
sKai.fun
André Luis Gomes
Claudio Consolmagno
nor-ek
Evgeniy Cheban
Juny Tse