Tree: 820e3f5750

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/6.5.x/io.mockk-mockk-1.14.9

dependabot/gradle/main/ch.qos.logback-logback-classic-1.5.27

dependabot/gradle/main/io.spring.nullability-io.spring.nullability.gradle.plugin-0.0.11

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.1.0-M1

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '820e3f5750'

${ noResults }

Commit Graph

2645 Commits (820e3f57504a7fb8fcc8a74e06a481ab47a10ea2)

Author	SHA1	Message	Date
Rob Winch	51171efa7a	SEC-2357: Move *RequestMatcher to .matcher package	12 years ago
Rob Winch	14b9050616	SEC-2357: Move *RequestMatchers to .matchers package	12 years ago
Rob Winch	f2b44e6beb	Fix javadoc whitespace issue in HttpBasicConfigurer	12 years ago
Rob Winch	4ef0460ef6	SEC-2321: Improve Java Config defaults for JavaScript clients	12 years ago
Rob Winch	5f10d84bf5	SEC-2303: WebSecurity sets the Bean resolver	13 years ago
Rob Winch	dd1c2483b5	SEC-2349: Fix documentation tests	13 years ago
Rob Winch	8087cde628	SEC-2331: Include Expires: 0 in xsd and appendix	13 years ago
Rob Winch	17efd25717	SEC-2331: Include Expires: 0 in security headers documentation	13 years ago
Rob Winch	614c94187e	SEC-2305: GlobalMethodSecurityConfiguration autowire PermissionEvaluator ... If a single PermissionEvaluator bean is found the DefaultMethodSecurityExpressionHandler is configured with the PermissionEvaluator. If multiple PermissionEvaluator beans are found, the beans are ignored.	13 years ago
Rob Winch	a09756745f	SEC-2151: Support binding method arguments with Annotations ... This allow utilizing method arguments for method access control on interfaces prior to JDK 8.	13 years ago
Rob Winch	cea0cf9260	SEC-2243: Remove additional Debug Filter	13 years ago
Rob Winch	56ce7d284c	SEC-2336: WebSecurityConfigurerAdapter#registerAuthentication javadoc fixes	13 years ago
Rob Winch	88f41cdf62	SEC-2341: Update to Gradle 1.8 ... Some dependencies were necessary to update due to issues with JUnit integration.	13 years ago
Rob Winch	a888ddf8b3	SEC-2307: JavaConfig RequestCache ignores favicon.ico	13 years ago
Rob Winch	ddc0ef7ab3	SEC-2339: Added Logical (Or, And, Negated) RequestMatchers	13 years ago
Rob Winch	28fb6ba14b	SEC-2328: Add hasAnyRole to ExpressionUrlAuthorizationConfiguration	13 years ago
Rob Winch	b16c17f70b	SEC-2301: Remove invalid import	13 years ago
Rob Winch	a3d112979f	SEC-2301: GlobalMethodSecurityConfiguration sets DefaultWebSecurityExpressionHandler BeanResolver	13 years ago
Rob Winch	f294480e6b	SEC-2329: JC @Autowire(required=false) AuthenticationTrustResolver ... Java Configuration now allows optional @Autowire of AuthenticationTrustResolver. In the WebSecurityConfigurerAdapter this is done by populating AuthenticationTrustResolver as a sharedObject.	13 years ago
Rob Winch	7537dfc33a	SEC-2304: rm duplicate MethodExpressionHandler from GlobalMethodSecurityConfiguration	13 years ago
Rob Winch	5082a04626	SEC-2311: LogoutConfigurer allows other HTTP methods if CSRF is disabled	13 years ago
Rob Winch	8f8c6169e8	SEC-2331: Cache Control now includes Expires: 0	13 years ago
Rob Winch	c5c1419521	SEC-2332: GlobalMethodSecurityConfiguration includes proper voters ... Previously GlobalMethodSecurityConfiguration did not include the correct voters. This updates the code and the tests to ensure that the proper voters are added. Note this got past testing previously due to all the voters abstaining, so tests were added for ensuring that methods could also be invoked sucessfully using the configured annotation.	13 years ago
Rob Winch	0114b457c0	SEC-2330: CacheControlHeadersWriter use a single header	13 years ago
Rob Winch	05a7c58daa	SEC-2228: Change openid4j to optional in template.mf	13 years ago
Rob Winch	be8aad8306	SEC-2196: Demonstrate Method Security works on Generic methods	13 years ago
Rob Winch	662bb24370	SEC-1937: Added test to demonstrate SEC-1937 was invalid	13 years ago
Rob Winch	3c82e63ded	Formatting cleanup	13 years ago
Rob Winch	7203faf34f	SEC-2300: Update Spring LDAP version to 1.3.2.RELEASE	13 years ago
Rob Winch	3d2f23602f	SEC-2294: Update Spring Version to 3.2.4.RELEASE	13 years ago
Rob Winch	6e9fb7930b	SEC-2298: Add AuthenticationPrincipalArgumentResolver	13 years ago
Rob Winch	ae368829f4	Tweak PermGen for tests	13 years ago
Rob Winch	d89cf6db29	SEC-2283: Update headers documentation and tests	13 years ago
Rob Winch	4761614c9f	SEC-2291: Fix internal links within reference ... Instead of using xlink:href="# use linkend="	13 years ago
Rob Winch	26166ef6e8	SEC-2272: CsrfRequestDataValueProcessor support Spring 4 and Spring 3	13 years ago
Rob Winch	d60108eaf6	SEC-2229: Add optional dependencies to spring-security-config ... spring-tx and spring-jdbc aren't pulled in transitively from spring-security-web now, so we must include them as optional dependencies.	13 years ago
Rob Winch	18bd82e7d4	SEC-2131: Update doc to state session authentication sends 401 if no page	13 years ago
Nick Williams	f29505d657	SEC-2280: Fix SessionFixationConfigurer#changeSessionId Javadoc ... The Javadoc for SessionFixationConfigurer#changeSessionId() was copied and pasted from SessionFixationConfigurer#none() and never updated. It is incorrect. This commit fixes that.	13 years ago
Rob Winch	48283ec004	SEC-2276: Delay saving CsrfToken until token is accessed ... This also removed the CsrfToken from the response headers to prevent the token from being saved. If user's wish to return the CsrfToken in the response headers, they should use the CsrfToken found on the request.	13 years ago
Rob Winch	c131fb6379	SEC-2139: named-security-filter are all defined and ordered correctly	13 years ago
Rob Winch	379cbd2a8b	SEC-2274: Add ApplicationContext as HttpSecurity shared object	13 years ago
Rob Winch	0247dd124f	SEC-2271: LogoutConfigurer#logoutUrl explains about CSRF	13 years ago
Rob Winch	110e769bd4	SEC-2257: Remove HttpSecurityBuilder#getAuthenticationManager() ... Removed in favor of using shared object.	13 years ago
Rob Winch	5fe32bb3c8	SEC-2216: Add withObjectPostProcessor	13 years ago
Rob Winch	d62c2e0835	SEC-2244: Defaults based on loginPage are now updated when loginPage changes	13 years ago
Rob Winch	e0cad0d684	SEC-2230: Fix Header tests	13 years ago
Rob Winch	2e852f4613	SEC-2230: Remove stray import	13 years ago
Rob Winch	a469f26b10	SEC-2230: Polish Headers JavaConfig	13 years ago
Rob Winch	e9bb9e766e	SEC-1574: Add CSRF Support	13 years ago
Rob Winch	797df51264	SEC-2135: Support HttpServletRequest#changeSessionId()	13 years ago