Tree: 885f074ddf

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.1.0-M1

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '885f074ddf'

${ noResults }

Commit Graph

5746 Commits (885f074ddfc5aa32f2ce87dd7fc2b1121fe80bc9)

 

All Branches   

Search

Author	SHA1	Message	Date
Rob Winch	885f074ddf	Fix XsdDocumentedTests	10 years ago
Rob Winch	e297706e8b	Polish allow unlimitted sessions ... Update the rnc file Issue gh-3900	10 years ago
Michael J. Simons	e3ff4130a5	Allow negative values to configure unlimited sessions	10 years ago
Rob Winch	50d7d3287f	Add spring-security-4.2.xsd	10 years ago
Eddú Meléndez	26fa4a4bf0	Prevent HTTP response splitting ... Evaluate if http header value contains CR/LF. Reference: https://www.owasp.org/index.php/HTTP_Response_Splitting Fixes gh-3910	10 years ago
Eddú Meléndez	13b0ddb7e6	Fix test assertions	10 years ago
Rob Winch	b4ab0483b1	Update version to 4.2.0.BUILD-SNAPSHOT	10 years ago
Spring Buildmaster	cc04392d9a	Next development version	10 years ago
Spring Buildmaster	919f000c80	Release version 4.1.1.RELEASE	10 years ago
Johnny Lim	310bb39a0d	Fix typo	10 years ago
Rob Winch	764a4d8414	Fix Error Message typo ... Fixes gh-3953	10 years ago
Jakob Englisch	b17870ee07	LogoutConfigurer: only allow suitable http methods	10 years ago
Rob Winch	8ad91ef6a5	WithSecurityContextTestExecutionListener > SqlScriptsTestExecutionListener ... WithSecurityContextTestExecutionListener should order after SqlScriptsTestExecutionListener so sql can setup the current user's info in the database. Fixes gh-3962	10 years ago
Rob Winch	5f6312c5be	Update to Spring 4.3.1 ... Fixes gh-3963	10 years ago
Rob Winch	9d50944cb2	AntPathRequestMatcher implements RequestVariableExtractor ... Issue gh-3964	10 years ago
Rob Winch	e4c13e3c0e	Add MvcRequestMatcher ... Fixes gh-3964	10 years ago
Rob Winch	13bc70f693	Add CorsFilter support	10 years ago
Rob Winch	c935d857eb	Add mvc namespace to XmlApplicationContext	10 years ago
Rob Winch	843ed3e437	Update to Spring 4.3.1.BUILD-SNAPSHOT	10 years ago
Rob Winch	7f3b3a8b59	Polish ... Issue gh-180	10 years ago
Jakob Englisch	261c932b8e	Upgrade Gradle to 2.14 ... Issue gh-3946	10 years ago
Rob Winch	1b4e20e97f	Fix InsecureApplicationTests package ... Fixes gh-3951	10 years ago
Rob Winch	bd5f71bb0d	Polish ... Fix checkstyle for LDAP JavaConfig Authority mapping Issue gh-2768	10 years ago
Tony Dalbrekt	b76e3be822	LDAP Java Config supports GrantedAuthoritiesMapper ... Fixes gh-2768	10 years ago
Rob Winch	26ad1cb4a5	Polish RememberMe Validation ... Issue gh-3909	10 years ago
Eddú Meléndez	87224f62e4	RememberMe JavaConfig Validation ... Add validation when rememberMeServices and rememberMeCookieName are provided Fixes gh-3909	10 years ago
Rob Winch	8f880aea0e	Polish Pbkdf2PasswordEncoder ... Issue gh-3930	10 years ago
vitaliy_kuzmich	5f658b3ffc	Remove double salt in Pbkdf2PasswordEncoder ... Issue gh-3930	10 years ago
Rob Winch	77a478ba0d	Fix ApacheDSEmbeddedLdifTests checkstyle ... Issue gh-54	10 years ago
Marcin Zajączkowski	a3c4a5fde7	SEC-2387 - add ignored failing test case	10 years ago
Rob Winch	bbeb7f94d7	Fix checkstyle ... Issue gh-3920	10 years ago
Rob Winch	a2a06d19c1	Add formLogin() Accept Test ... Issue gh-3920	10 years ago
Micah Silverman	314828859e	Added accept method call to buildRequest in SecurityMockMvcRequestBuilders with default of MediaType.APPLICATION_FORM_URLENCODED	10 years ago
Rob Winch	66858e22ad	Disable XMLHttpRequest for formLogin entry point ... Previously the following: http http://localhost:8080/user \ "X-Requested-With:XMLHttpRequest" "Accept:text/plain" Produced a 302 instead of a 401 Fixes gh-3887	10 years ago
Rob Winch	2a73f3cdf7	Remove abigious import	10 years ago
Rob Winch	dd9b59ba31	Document Digest is insecure ... Fixes gh-3894	10 years ago
Eddú Meléndez	39ed7d0eca	Propagate rolePrefix to LdapAuthoritiesPopulator ... Previous to this commit, custom rolePrefix was not propagated to LdapAuthoritiesPopulator populating a wrong authority. Now, rolePrefix is propagated and the authority is as expected. Fixes gh-3921	10 years ago
Eddú Meléndez	a2ead4cf7a	Polish ... Fixes gh-3892	10 years ago
Ruben Dijkstra	364db6762e	Add failing test for #3905 Fix Assert usage	10 years ago
Ruben Dijkstra	e8f4ee8a39	Fix Assert usage	10 years ago
Rob Winch	d2b909e7c5	Doc InteractiveAuthenticationEvent doesn't extend AuthentcationEvent ... Document why InteractiveAuthenticationEvent doesn't extend AuthentcationEvent. This is to avoid multiple AuthenticationSuccessEvent from being sent to any listeners. Fixes gh-3857	10 years ago
Shannon Carey	9fa2c64737	Documentation SecurityConfig->WebSecurityConfig ... Rename SecurityConfig to WebSecurityConfig in the documentation. Fixes gh-153	10 years ago
Filip Hanik	6b436ff409	Avoid duplicate attribute search. ... When using search-and-bind strategy, the user attributes are already returned in the first search. If the user happens to not have privileges to perform a search, the second search may fail. (user only has bind privileges) See https://github.com/cloudfoundry/uaa/issues/342	10 years ago
Ruben Dijkstra	ca76e8d784	Remove null-check inside afterPropertiesSet() since it's never null	10 years ago
Rob Winch	2d6051625f	Update pom.xml	10 years ago
Rob Winch	477573b3bc	Fix @EnableGlobalAuthentication & method seucrity on @Configuration class ... Fixes gh-3934	10 years ago
Rob Winch	fa1c484587	AuthenticationConfiguration.getAuthenticationManager() supports recursion ... AuthenticationConfiguration.getAuthenticationManager() now supports recursion. This is necessary in instances where something using @EnableGlobalAuthentication requires an object using method level security. Fixes gh-3935	10 years ago
Rob Winch	9e3d2e2d99	HTTP Basic default logout ignores text/html ... This fixes an issue where Chrome sends an accept header of application/xml which triggers an HTTP 204 to be returned Fixes gh-3902	10 years ago
Rob Winch	e7fd6f6c3f	Remove the CLA confirmation from template ... We now use the new CLA tooling which automates this	10 years ago
Pedro Vilaça	208f898403	Improve csrf login caveats ... Add a suggestion to retrieve a fresh csrf token right before the form submission in order to avoid problems with invalid csrf tokens due session timeouts. Fixes gh-3925	10 years ago