spring-security

Commit Graph

Author	SHA1	Message	Date
Marcus Hert Da Coregio	820ce4ea7a	Merge branch '6.3.x'	1 year ago
Marcus Hert Da Coregio	25ddc2acfc	Merge branch '6.2.x' into 6.3.x	1 year ago
Bryan Kelly	69231c5853	Avoid running the VerifyDependenciesVersionsTask and CheckExpecedBranchVersionTask when inputs are stable #15713	1 year ago
Yanming Zhou	f0f47b54ec	Improve warning message	1 year ago
Josh Cummings	add5c56136	Update AuthorizeReturnObject Jackson Docs Now instructs to use MethodAuthorizationDeniedHandler Issue gh-14601	1 year ago
DingHao	fd05c5ad76	Remove Advised Methods from Authorization Proxy Objects Closes gh-15561	1 year ago
Josh Cummings	ecf6cace82	Re-Enable Disabled OpenSAML Tests Issue gh-15395	1 year ago
Josh Cummings	c9d083717f	Apply OpenSAML Test Fix to Remaining Test There was one test that wasn't converted and now it is. Issue gh-15395	1 year ago
Josh Cummings	626610a975	Polish Annotation API Rename to a class that isn't focused on the synthesis implementation detail. Also add Security to the front of the name to clarify that it is only intended for security annotations, reminiscent of SecurityMetadataSource. Refine method signatures to better articulate supported use cases. Issue gh-15286	1 year ago
Josh Cummings	cc6de8fa5d	Hide MergedAnnotation Implementation Details Issue gh-15286	1 year ago
Ilpyo-Yang	095929f6e8	Include FilterChain in SessionInformationExpiredEvent Closes gh-14077	1 year ago
dependabot[bot]	3117feff61	Bump org.seleniumhq.selenium:selenium-java from 4.23.1 to 4.24.0 Bumps [org.seleniumhq.selenium:selenium-java](https://github.com/SeleniumHQ/selenium) from 4.23.1 to 4.24.0. - [Release notes](https://github.com/SeleniumHQ/selenium/releases) - [Commits](https://github.com/SeleniumHQ/selenium/commits/selenium-4.24.0) --- updated-dependencies: - dependency-name: org.seleniumhq.selenium:selenium-java dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
dependabot[bot]	373508bd20	Bump org.mockito:mockito-bom from 5.12.0 to 5.13.0 Bumps [org.mockito:mockito-bom](https://github.com/mockito/mockito) from 5.12.0 to 5.13.0. - [Release notes](https://github.com/mockito/mockito/releases) - [Commits](https://github.com/mockito/mockito/compare/v5.12.0...v5.13.0) --- updated-dependencies: - dependency-name: org.mockito:mockito-bom dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
DingHao	84fc5a70ee	Fix variable targetClassToUse not used Closes gh-15567	1 year ago
Xi Minghui	e39b39dada	Corrected Reference to HttpServletRequest#authenticate	1 year ago
Josh Cummings	d2e8c19789	Merge branch '6.3.x'	1 year ago
Josh Cummings	279cb89eac	Merge branch '6.2.x' into 6.3.x	1 year ago
Hero Wanders	2ba9b6821a	Fix OIDC Logout Code Snippets	1 year ago
Hero Wanders	f372f5cf52	Replace OidcSessionStrategy References with OidcSessionRegistry	1 year ago
Josh Cummings	f0f04e490e	Merge branch '6.3.x'	1 year ago
Josh Cummings	6ea33ceaea	Merge branch '6.2.x' into 6.3.x	1 year ago
Junhyunny	47723f6d39	Fix code format in OIDC Logout docs	1 year ago
github-actions[bot]	52b6de262a	Merge branch '6.3.x'	1 year ago
github-actions[bot]	2041d30201	Merge branch '6.2.x' into 6.3.x	1 year ago
dependabot[bot]	5c84d505d9	Bump jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api Bumps [jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api](https://github.com/eclipse-ee4j/jstl-api) from 3.0.1 to 3.0.2. - [Release notes](https://github.com/eclipse-ee4j/jstl-api/releases) - [Commits](https://github.com/eclipse-ee4j/jstl-api/commits) --- updated-dependencies: - dependency-name: jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
dependabot[bot]	c3a5cf54d4	Bump jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api Bumps [jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api](https://github.com/eclipse-ee4j/jstl-api) from 3.0.1 to 3.0.2. - [Release notes](https://github.com/eclipse-ee4j/jstl-api/releases) - [Commits](https://github.com/eclipse-ee4j/jstl-api/commits) --- updated-dependencies: - dependency-name: jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
dependabot[bot]	aef2068f76	Bump jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api Bumps [jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api](https://github.com/eclipse-ee4j/jstl-api) from 3.0.1 to 3.0.2. - [Release notes](https://github.com/eclipse-ee4j/jstl-api/releases) - [Commits](https://github.com/eclipse-ee4j/jstl-api/commits) --- updated-dependencies: - dependency-name: jakarta.servlet.jsp.jstl:jakarta.servlet.jsp.jstl-api dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
Josh Cummings	78fd8bf3b7	Specify Labels for npm Updates This brings the labels in line with the other dependency updates that aren't of interest for the release notes. It also avoids adding labels that aren't already defined by the project.	1 year ago
Josh Cummings	b91f10825e	Disable Flaky Tests There was another flaky failure. While it seems clear what needs to be done to repair it, this commit disables these tests for now while the CI on a separate branch confirms after a few days that the tests are stable again. Issue gh-15395	1 year ago
Josh Cummings	561c786726	Repair Flaky Tests The issue turned out to be that OpenSAML first sends two HEAD requests before sending a GET to retrieve the metadata. The way the MockWebServer dispatcher was configured, it would send back the metadata on each request. This created a situation where sockets were being closed by the client before the server had sent all the response, resulting in a broken pipe. The tests would succeed most of the time due to lucky timing between the client closing the socket and the server having sent all of its (unrequested) data. This version sends an expected HEAD response when requested. Issue gh-15395	1 year ago
dependabot[bot]	e90a6b66fe	Bump com.gradle.develocity from 3.17.6 to 3.18 Bumps com.gradle.develocity from 3.17.6 to 3.18. --- updated-dependencies: - dependency-name: com.gradle.develocity dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
Josh Cummings	4635dabf87	Merge branch '6.3.x'	1 year ago
Josh Cummings	d134b0a4f4	Merge branch '6.2.x' into 6.3.x Closes gh-15681	1 year ago
Josh Cummings	a3b88a8d4b	Enable Runtime Method Parameter Reflection Several method security tests rely on method parameters being preserved, in order to demonstrate the difference between relying on runtime reflection and using the @P annotation. Closes gh-15680	1 year ago
Josh Cummings	dff3780c5e	Merge branch '6.3.x'	1 year ago
Josh Cummings	4c0d969f1f	Merge branch '6.2.x' into 6.3.x Closes gh-15676	1 year ago
Josh Cummings	3ee5a96e53	Merge branch '5.8.x' into 6.2.x Closes gh-15675	1 year ago
Steve Riesenberg	8318a42959	Update What's New for 6.4 Issue gh-15437	1 year ago
Josh Cummings	5c604b95fb	Correct PostFilterAuthorizationMethodInterceptor Target Type Previously, `postFilterAuthorizationMethodInterceptor` mistakenly was published as an `Advisor`. Because `MethodSecurityAdvisorRegistrar` re-publishes each pre/post annotation interceptor also as an `Advisor`, this resulted in a duplicate advisor for `@PostFilter`. Closes gh-15651	1 year ago
dependabot[bot]	09785a3845	Bump org-eclipse-jetty from 11.0.22 to 11.0.23 Bumps `org-eclipse-jetty` from 11.0.22 to 11.0.23. Updates `org.eclipse.jetty:jetty-server` from 11.0.22 to 11.0.23 Updates `org.eclipse.jetty:jetty-servlet` from 11.0.22 to 11.0.23 --- updated-dependencies: - dependency-name: org.eclipse.jetty:jetty-server dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: org.eclipse.jetty:jetty-servlet dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago
Steve Riesenberg	fd991aaf9e	Revert "Bump com.gradle.develocity from 3.17.6 to 3.18" This reverts commit `430874c6`	1 year ago
Marcus Hert Da Coregio	1531acd2a8	Merge branch '6.3.x'	1 year ago
Marcus Hert Da Coregio	548e1c3649	Revert "Log command for debugging" This reverts commit `f1802be73a`.	1 year ago
Marcus Hert Da Coregio	9791801bc6	Merge branch '6.2.x' into 6.3.x	1 year ago
Marcus Hert Da Coregio	c06543daf3	Merge branch '5.8.x' into 6.2.x	1 year ago
github-actions[bot]	037ccecdaa	Next development version	1 year ago
github-actions[bot]	de8dbf9560	Release 6.4.0-M3	1 year ago
Marcus Hert Da Coregio	e92a945a2d	Replace Env Variable with Expression Issue gh-15659	1 year ago
github-actions[bot]	596ab18adb	Merge branch '6.3.x'	1 year ago
dependabot[bot]	a203ab9651	Bump org.jfrog.buildinfo:build-info-extractor-gradle Bumps [org.jfrog.buildinfo:build-info-extractor-gradle](https://github.com/jfrog/build-info) from 4.33.20 to 4.33.21. - [Release notes](https://github.com/jfrog/build-info/releases) - [Changelog](https://github.com/jfrog/build-info/blob/master/RELEASE.md) - [Commits](https://github.com/jfrog/build-info/compare/build-info-gradle-extractor-4.33.20...build-info-gradle-extractor-4.33.21) --- updated-dependencies: - dependency-name: org.jfrog.buildinfo:build-info-extractor-gradle dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 year ago

1 2 3 4 5 ...

16575 Commits (820ce4ea7a8cf1ac2d91ff71891d04f2f7b05e2e) All Branches Search

16575 Commits (820ce4ea7a8cf1ac2d91ff71891d04f2f7b05e2e)

All Branches