3c46727be1
Transient Authentication Tokens
...
This commit introduces support for transient authentication tokens
which indicate to the filter chain, specifically the
HttpSessionSecurityContextRepository, whether or not the token ought
to be persisted across requests.
To leverage this, simply annotate any Authentication implementation
with @TransientAuthentication , extend from an Authentication that uses
this annotation, or annotate a custom annotation.
Implementations of SecurityContextRepository may choose to not persist
tokens that are marked with @TransientAuthentication in the same way
that HttpSessionSecurityContextRepository does.
Fixes: gh-5481
8 years ago
a3210c96d9
Default Log Out Page
...
Fixes: gh-5516
8 years ago
05ed028f9d
Modernize Default Log In Page
...
Fixes: gh-5515
8 years ago
c3177a84a3
Override toString() in all RequestMatcher
...
It makes it easier to debug having custom
toString().
Fixes: gh-5446
8 years ago
48ef7c966d
DefaultLoginPageGeneratingFilter escapes OAuth2 ClientRegistrations
...
Fixes gh-5394
8 years ago
b3ca598679
Add WebClient Bearer token support
...
Fixes: gh-5389
8 years ago
6a12415d23
Add DelegatingServerLogoutHandler(List<ServerLogoutHandler> delegates)
...
Issue: gh-4839
8 years ago
8c3fdb3bcf
DelegatingServerLogoutHandler
...
Create a ServerLogoutHandler which delegates to a group of
ServerLogoutHandler implementations.
Fixes gh-4839
8 years ago
73345e7434
Add Cross Site Tracing (XST) & HTTP Method Tampering Protection
...
Fixes: gh-5377
8 years ago
f29e4cf91f
LoginPageGeneratingWebFilter conditionally renders formLogin
...
Issue: gh-4807
8 years ago
7013c6fd76
Add OAuth2LoginSpec
...
Issue: gh-4807
8 years ago
ca9cd20832
Add DelegatingServerAuthenticationSuccessHandler
...
Fixes: gh-5332
8 years ago
d874c4954e
AuthenticationWebFilter handle empty Authentication
...
Fixes: gh-5333
8 years ago
e78457d3a1
Fix checkstyle for CsrfServerLogoutHandlerTests
...
Issue: gh-4840
8 years ago
26f53a20b3
Add CsrfServerLogoutHandler
...
Create a CsrfServerLogoutHandler which invalidates the current CsrfToken
Fixes gh-4840
8 years ago
21750242cf
Add HttpStatusReturningServerLogoutSuccessHandler
...
An HttpStatusReturningServerLogoutSuccessHandler is missing on the
reactive side - essentially the reactive equivalent of
HttpStatusReturningLogoutSuccessHandler.
Fixes gh-5081
8 years ago
bc9f8ec430
Add HttpStatusServerEntryPoint
...
An HttpStatusServerEntryPoint is missing on the
reactive side - essentially the reactive equivalent of
HttpStatusEntryPoint.
Fixes gh-5082
8 years ago
902fc0f657
Fixed confused word in the class javadoc
8 years ago
b3c5bfe4db
CookieServerCsrfTokenRepository fails when cookie is null/empty
...
The CookieServerCsrfTokenRepository fails with an IllegalArgumentException
when a cookie is present but the value is null or empty.
Fixes gh-5315
8 years ago
3ba15a16bf
Polish CookieServerCsrfTokenRepository
...
- Only do work if subscribed to
- use test naming conventions
- Refactor tests to avoid extracting
- Uses String for member names which are not type safe
- Uses long argument list which makes assertions difficult to read
Issue: gh-5083
8 years ago
37b1136c0c
Remove CookieServerCsrfTokenRepository builder methods
...
This is inconsistent with the rest of the code base.
Issue: gh-5083
8 years ago
1eaecc12ec
Add CookieServerCsrfTokenRepository
...
A cookie implementation of ServerCsrfTokenRepository (like CookieCsrfTokenRepository)
is missing. In this implementation it would be nice to allow the setting of the domain as well.
Fixes: gh-5083
8 years ago
0570cebbce
Avoid unnecessary grow of ArrayList
...
Adapted ArrayList size in CacheControlHeadersWriter::createHeaders()
8 years ago
3740d33e64
The HttpHeader's ContentLength is a byte unit
8 years ago
23dd136efb
The HttpHeader's ContentLength is a byte unit
8 years ago
9bb841ac67
ExceptionTranslationFilter does not handle committed responses
...
Fixes: gh-5273
8 years ago
afdefe7b13
Fixes: gh-5190
8 years ago
8fbec3f0f1
Polish NegatedServerWebExchangeMatcher
...
Issue: gh-5170
8 years ago
d83b67e4cb
Add NegatedServerWebExchangeMatcher
...
Fixes: gh-5170
8 years ago
fb7394c1de
Polish Javadoc
...
Fixes: gh-5186
8 years ago
3c07d99b0a
Close quoted expected path in log when matching
8 years ago
d20ed9f5c9
Fix @since for StrictHttpFirewall
8 years ago
d07cfe655d
Use Supplier variants of Assert methods
8 years ago
b1d013e8f0
Fix JDK 9
...
Issue: gh-5160
8 years ago
7e6ed52603
CookieClearingLogoutHandler adds uses contextPath + "/"
...
Fixes: gh-2325
8 years ago
d21338d212
Support errorOnInvalidType for Reactive AuthenticationPrincipal
...
Fixes: gh-5096
8 years ago
a2073b2b91
Support BeanResolver for Reactive AuthenticationPrincipal
...
Fixes: gh-4326
8 years ago
949c7d68b8
Fix StrictHttpFirewall rules
...
Fixes: gh-5044
8 years ago
055a2ca917
Polish Javadoc HttpStatusServerAccessDeniedHandler
8 years ago
9f23212e43
HttpStatusServerAccessDeniedHandler use injected HttpStatus
...
Fixes: gh-5078
8 years ago
8d75554b6b
Lazily Create Throwables
...
Fixes: gh-5040
8 years ago
0fc67f765a
Polish StrictHttpFirewall Javadoc
...
Also cleanup DefaultHttpFirewall Javadoc
Issue: gh-5008
8 years ago
fcf967687b
Add FilterSecurityInterceptor once per request test
...
Issue: gh-4997
8 years ago
40a1281c66
FilterSecurityInterceptor once per request set attr
...
Only set the attribute if once per request is true
8 years ago
ce5fb51b20
Remove Mono.defer in ReactorContextWebFilter
...
Fixes: gh-5010
8 years ago
66298dcf5d
Clean ReactorContextWebFilterTests imports
...
Issue: gh-4962
8 years ago
141e3f581f
ReactorContextWebFilter preserves main Context
...
Previously ReactorContextWebFilter overrode
the main Context.
Fixes: gh-4962
8 years ago
c399987450
Polish StrictHttpFirewall Javadoc
...
Fixes: gh-5008
8 years ago
ea3dd336aa
Cache headers only if no cache headers set
...
Fixes: gh-5004
8 years ago
8b7f772761
Update to Jackson 2.9.4
...
Fixes: gh-4985
8 years ago
Josh Cummings
Rob Winch
Joe Grandja
Eric Deandrea
Artyom Emelyanenko
Alexander Münch
XYUU
Tao Qian
Mark Hobson
Johnny Lim
Christoph Dreis
json20080301