Tree: 78f85cc129

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

dependabot/gradle/main/io.spring.nullability-io.spring.nullability.gradle.plugin-0.0.8

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

main_update-antora-ui-spring

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '78f85cc129'

${ noResults }

Commit Graph

4967 Commits (78f85cc12911015982e5e34bde77dfbd251c901b)

 

All Branches   

Search

Author	SHA1	Message	Date
Rob Winch	26166ef6e8	SEC-2272: CsrfRequestDataValueProcessor support Spring 4 and Spring 3	12 years ago
Rob Winch	3f69847a4e	SEC-2286: Log invalid CSRF tokens at debug level	12 years ago
Rob Winch	d60108eaf6	SEC-2229: Add optional dependencies to spring-security-config ... spring-tx and spring-jdbc aren't pulled in transitively from spring-security-web now, so we must include them as optional dependencies.	12 years ago
Rob Winch	98bdd32ca0	SEC-2282: Add CSRF documentation to the reference manual	12 years ago
Rob Winch	33db440961	SEC-2129: AntPathRequestMatcher also supports case sensitive comparisions	12 years ago
Rob Winch	7d1d856729	SEC-2229: spring-security-web dependency polish ... - remove direct dependency on spring-aop - spring-tx and spring-jdbc optional	12 years ago
Rob Winch	18bd82e7d4	SEC-2131: Update doc to state session authentication sends 401 if no page	12 years ago
Rob Winch	cd7055f725	SEC-2171: Include Information about pooling in Spring LDAP documentation	12 years ago
Rob Winch	7f2308f46c	SEC-2146: Document AspectJ does not inherit annotations	12 years ago
Rob Winch	534989c8ea	SEC-2103: Fix tests to verify debug logging instead of info	12 years ago
Rob Winch	acb2b680d0	SEC-2103: Change log of no results to debug	13 years ago
Nick Williams	f29505d657	SEC-2280: Fix SessionFixationConfigurer#changeSessionId Javadoc ... The Javadoc for SessionFixationConfigurer#changeSessionId() was copied and pasted from SessionFixationConfigurer#none() and never updated. It is incorrect. This commit fixes that.	13 years ago
Rob Winch	48283ec004	SEC-2276: Delay saving CsrfToken until token is accessed ... This also removed the CsrfToken from the response headers to prevent the token from being saved. If user's wish to return the CsrfToken in the response headers, they should use the CsrfToken found on the request.	13 years ago
Rob Winch	c131fb6379	SEC-2139: named-security-filter are all defined and ordered correctly	13 years ago
Rob Winch	03b235295e	SEC-2270: Remove duplicate version from guides index	13 years ago
Rob Winch	efa9f4db93	SEC-2108: Fix typo in ldap section of manual	13 years ago
Rob Winch	379cbd2a8b	SEC-2274: Add ApplicationContext as HttpSecurity shared object	13 years ago
Rob Winch	e8788f2657	SEC-2269: Fix markup for CSRF link	13 years ago
Rob Winch	17c2a18fee	SEC-2269: Fix CSRF link in appendix	13 years ago
Rob Winch	0247dd124f	SEC-2271: LogoutConfigurer#logoutUrl explains about CSRF	13 years ago
Rob Winch	a3a432f7b6	SEC-2269: Fix additional links	13 years ago
Rob Winch	3b2156969d	SEC-2269: Fix headers link	13 years ago
Rob Winch	f707101fdb	SEC-2269: Fix headers documentation	13 years ago
Rob Winch	eb95c500f5	Remove dockbook-reference from guides	13 years ago
Rob Winch	110e769bd4	SEC-2257: Remove HttpSecurityBuilder#getAuthenticationManager() ... Removed in favor of using shared object.	13 years ago
Hans-Joachim Kliemeck	8b1ab4e85f	SEC-2260 - update pom/gradle to use current cas client library	13 years ago
Rob Winch	658a93178c	SEC-2252: Add custom form guide	13 years ago
Rob Winch	51b9c4a19a	Hide logout in main.jsp if not logged in	13 years ago
Rob Winch	5fe32bb3c8	SEC-2216: Add withObjectPostProcessor	13 years ago
Rob Winch	d62c2e0835	SEC-2244: Defaults based on loginPage are now updated when loginPage changes	13 years ago
Rob Winch	e0cad0d684	SEC-2230: Fix Header tests	13 years ago
Rob Winch	2e852f4613	SEC-2230: Remove stray import	13 years ago
Rob Winch	a469f26b10	SEC-2230: Polish Headers JavaConfig	13 years ago
Rob Winch	e9bb9e766e	SEC-1574: Add CSRF Support	13 years ago
beamerblvd	5f35d9e3ec	SEC-2135: Document HttpServletRequest.changeSessionId() support	13 years ago
Rob Winch	797df51264	SEC-2135: Support HttpServletRequest#changeSessionId()	13 years ago
Rob Winch	75fb971d23	SEC-2221: Fix the ignored media types to use includes instead of equals	13 years ago
Rob Winch	54c2166567	SEC-2194: Remove unnecessary MessageSecurityWebApplicationInitializer from helloworld	13 years ago
Rob Winch	fea4d01aad	SEC-2194: hello samples displays username and logout properly	13 years ago
Rob Winch	b5ecaf61ed	SEC-2194: Remove samples errors/tabs folders	13 years ago
Rob Winch	f036970f8b	SEC-2194: Add margin to links in header of samples	13 years ago
Rob Winch	2feded5fc5	SEC-2194: Update samples to have jsp-api	13 years ago
Rob Winch	485676be8c	SEC-2251: Polish Hello World guides ... * Correct how to add username and logout to mvc * Externalize :revnumber:	13 years ago
Rob Winch	22e4d1646a	SEC-2194: Remove login page from hellomvc and insecuremvc	13 years ago
Rob Winch	13da42ca1b	SEC-2137: Allow disabling session fixation and enable concurrency control	13 years ago
Rob Winch	867f02e8ac	SEC-2249: AbstractSecurityWebApplicationInitializer does not delegate WebApplicationInitializer ... Previously AbstractSecurityWebApplicationInitializer delegated to a WebApplicationInitializer, but it caused issues in some instances where a container would pass the annonymous inner class to SpringServletContainerInitializer which caused errors on startup. Now AbstractSecurityWebApplicationInitializer registers the ContextLoaderListener on its own instead of delegating.	13 years ago
Rob Winch	e1dfa81a0f	GRADLE-1116: Add back workaround for depending on test sources	13 years ago
Rob Winch	337c3cf96c	SEC-2255: Update to Gradle 1.7	13 years ago
Rob Winch	54bf6c846b	SEC-2097: Remove configure() blocks from gradle/*.gradle	13 years ago
Rob Winch	e0cb931f69	SEC-2251: Create Hello World Java Configuration guides	13 years ago