Tree: b8735abb63

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/github_actions/6.5.x/spring-io/spring-security-release-tools-1.0.15

dependabot/github_actions/6.5.x/spring-io/spring-security-release-tools/dot-github/workflows/build.yml-1.0.15

dependabot/github_actions/6.5.x/spring-io/spring-security-release-tools/dot-github/workflows/deploy-artifacts.yml-1.0.15

dependabot/github_actions/6.5.x/spring-io/spring-security-release-tools/dot-github/workflows/deploy-schema.yml-1.0.15

dependabot/github_actions/6.5.x/spring-io/spring-security-release-tools/dot-github/workflows/test.yml-1.0.15

dependabot/github_actions/7.0.x/spring-io/spring-security-release-tools/dot-github/workflows/update-scheduled-release-version.yml-1.0.15

dependabot/gradle/6.5.x/io.mockk-mockk-1.14.9

dependabot/gradle/6.5.x/io.spring.gradle-spring-security-release-plugin-1.0.15

dependabot/gradle/docs-build/gradle-wrapper-9.4.1

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependabot/npm_and_yarn/docs-build/springio/antora-extensions-1.14.9

dependabot/npm_and_yarn/docs/6.5.x/springio/antora-extensions-1.14.9

dependabot/npm_and_yarn/docs/6.5.x/springio/asciidoctor-extensions-1.0.0-alpha.18

dependabot/npm_and_yarn/docs/7.0.x/springio/antora-extensions-1.14.9

dependabot/npm_and_yarn/docs/7.0.x/springio/asciidoctor-extensions-1.0.0-alpha.18

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

main-using-releases-v1-workflows

revert-18260-gh-18259

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

6.5.8

6.5.9

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.0.3

7.0.4

7.1.0-M1

7.1.0-M2

7.1.0-M3

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'b8735abb63'

${ noResults }

Commit Graph

2589 Commits (b8735abb6366b366fc43e4bb91c2ba6e4d626bc4)

Author	SHA1	Message	Date
[CLOUD4] 한현	b8735abb63	Clarify Resource Server startup expectations ... Clarify that Spring Boot defers OIDC discovery by default. Closes gh-16708 Signed-off-by: [CLOUD4] 한현 <gusgus1467@naver.com>	3 weeks ago
Guillaume Husta	68a02ff176	Update Link to CRSF Docs in FAQ ... Signed-off-by: Guillaume Husta <guillaume.husta@gmail.com>	3 weeks ago
Josh Cummings	4d43edfb20	Polish Documentation ... - Combined explanation of method attribute with usage recommendations - Used one sentence per line format Issue gh-16530 Signed-off-by: Josh Cummings <3627351+jzheaux@users.noreply.github.com>	3 weeks ago
onhann	9f9699f8a5	Clarify need for method attribute in JSP authorize tag ... Closes gh-16530 This aligns the JSP documentation with the changes made in gh-16529. Added a NOTE to clarify that the method attribute is required when the underlying RequestMatcher is method-specific. Signed-off-by: onhann <gusgus1467@naver.com>	3 weeks ago
Robert Winch	50fad46df6	Bump @antora/atlas-extension in /docs ... --- updated-dependencies: - dependency-name: "@antora/atlas-extension" dependency-version: 1.0.0-alpha.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
dependabot[bot]	e28eea208b	Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs ... Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.4 to 1.14.7. - [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc) - [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.4...v1.14.7) --- updated-dependencies: - dependency-name: "@springio/antora-extensions" dependency-version: 1.14.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
dependabot[bot]	f646392542	Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs ... --- updated-dependencies: - dependency-name: "@antora/collector-extension" dependency-version: 1.0.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
dependabot[bot]	52ca16fa4b	Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs ... Bumps [antora](https://gitlab.com/antora/antora) from 3.2.0-alpha.8 to 3.2.0-alpha.11. - [Changelog](https://gitlab.com/antora/antora/blob/main/CHANGELOG.adoc) - [Commits](https://gitlab.com/antora/antora/compare/v3.2.0-alpha.8...v3.2.0-alpha.11) --- updated-dependencies: - dependency-name: antora dependency-version: 3.2.0-alpha.11 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	1 month ago
songhee	fee6a9bb0e	docs: add CurrentSecurityContext section and link references ... Signed-off-by: songhee <songhee9327@gmail.com>	2 months ago
Guillaume Husta	508b3f26e3	docs: Typo in page Preparing for 7.0 / Web (version 6.5) ... In section 'Include the Servlet Path Prefix in Authorization Rules', `PathPatternRequestParser` should be replaced by `PathPatternRequestMatcher`. Signed-off-by: Guillaume Husta <guillaume.husta@gmail.com>	2 months ago
github-actions[bot]	e588a3528f	Update Antora Spring UI to v0.4.25	2 months ago
github-actions[bot]	7ea5be4b98	Update Antora Spring UI to v0.4.25	2 months ago
Josh Cummings	765abe534e	Add Missing Migration Pages to Side Navigation ... Closes gh-18313	3 months ago
Josh Cummings	afb0c59875	Add request-matcher XML Migration Steps ... Closes gh-18211	3 months ago
kucoll	10edc14d7e	Fix typo in AnnotationTemplateExpressionDefaults ... The AnnotationTemplateExpressionDeafults was wrong，and right is AnnotationTemplateExpressionDefaults Signed-off-by: kucoll <kucoll@163.com>	4 months ago
Peter Potrowl	4b227649f0	Fix typo in ldap.adoc ... Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	cfc27f8cc3	Fix typo in passkeys.adoc ... Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	5baff27ffb	Fix typo in ldap.adoc ... Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	39aaf25b60	Fix typo in passkeys.adoc ... Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Daniel Garnier-Moiroux	fed6df5167	Default WebAuthnConfigurer#rpName to rpId ... In WebAuthn L3 spec, PublicKeyCredentialEntity.name is deprecated: > This member is deprecated because many clients do not display it, > but it remains a required dictionary member for backwards compatibility. > Relying Parties MAY, as a safe default, set this equal to the RP ID. Source: https://www.w3.org/TR/webauthn-3/#dictdef-publickeycredentialentity Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	5 months ago
Daniel Garnier-Moiroux	4feeb0f843	Docs: document effects of disabling CORS configurer ... Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	5 months ago
Himanshu Pareek	dcb4e47cd5	Add Include-Code to the Password Storage page ... References gh-16226 Signed-off-by: Himanshu Pareek <himanshupareekiit01@gmail.com>	5 months ago
Josh Cummings	8b2a453301	Advise Favoring PostAuthorize on Reads ... Closes gh-17797	7 months ago
Rob Winch	0404996f87	import Assertions.assertThat ... This adds a static import for assertThat in the Kotlin docs code	7 months ago
Rob Winch	0f63d98c84	Use @EnableMethodSecurity in docs tests ... Previously parameters were passed in unnecessarily. This removes the unnecessary paramaters.	7 months ago
Rob Winch	fbfbb1e571	Use 2004-present for Copyright ... Spring Security migrated the copyright to use -present to simplify the headers. This commit aligns the header.	7 months ago
Joe Kuhel	d002e68231	Update servlet test method docs to use include-code ... References gh-16226 Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>	7 months ago
Rob Winch	62b5b1a77c	import Assertions.assertThat ... This adds a static import for assertThat in the Kotlin docs code	7 months ago
Rob Winch	523222c24d	Use @EnableMethodSecurity in docs tests ... Previously parameters were passed in unnecessarily. This removes the unnecessary paramaters.	7 months ago
Rob Winch	69f38d4933	Use 2004-present for Copyright ... Spring Security migrated the copyright to use -present to simplify the headers. This commit aligns the header.	7 months ago
Joe Kuhel	0179a811c7	Update servlet test method docs to use include-code ... References gh-16226 Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>	7 months ago
Michał Sobkiewicz	c963f4250e	Update Angular documentation links in csrf.adoc ... Replaced `angular.io` links with their corresponding `angular.dev` URLs. This change ensures that users referencing CSRF documentation are directed to the most current Angular resources. Signed-off-by: Michał Sobkiewicz <perceptron8@users.noreply.github.com>	8 months ago
dependabot[bot]	de14fb8f77	Bump @springio/antora-extensions from 1.14.6 to 1.14.7 in /docs ... Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.6 to 1.14.7. - [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc) - [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.6...v1.14.7) --- updated-dependencies: - dependency-name: "@springio/antora-extensions" dependency-version: 1.14.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	8 months ago
Bernie Schelberg	edcb3b024e	Update Shibboleth repository URL ... Signed-off-by: Bernie Schelberg <bernard.schelberg@invicara.com>	8 months ago
dependabot[bot]	759736672d	Bump @springio/antora-extensions from 1.14.4 to 1.14.6 in /docs ... Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions) from 1.14.4 to 1.14.6. - [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc) - [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.4...v1.14.6) --- updated-dependencies: - dependency-name: "@springio/antora-extensions" dependency-version: 1.14.6 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	8 months ago
Josh Cummings	7960d2803d	Add Migration Steps for PathMatcher Usage ... Issue gh-17509	8 months ago
Josh Cummings	4b15b2b94e	Add Migration Steps for Messaging ... Closes gh-17509	8 months ago
Josh Cummings	9209a33678	Remove References to Deprecated OpenSaml Components ... Issue gh-11658	8 months ago
Rob Winch	6eee256e12	Demonstrate include-code usage ... Closes gh-17161	10 months ago
Rob Winch	0fecaf4924	Add include-code extension setup for docs ... Closes gh-17160	10 months ago
Gurunathan	a4cd6f4278	Advise Overriding equals() and hashCode() in UserDetails Implementations ... This commit adds a documentation note explaining the importance of overriding equals() and hashCode() in custom UserDetails implementations. The default SessionRegistryImpl in Spring Security uses an in-memory ConcurrentMap<Object, Set<String>>, Map<String,SessionInformation> to associate principals with sessions. If a custom UserDetails class does not properly override equals() and hashCode(), user sessions may not be tracked or matched correctly. I believe this helps developers avoid subtle session management issues when implementing custom authentication logic. Signed-off-by: Gurunathan <129361658+Gurunathan16@users.noreply.github.com>	10 months ago
Josh Cummings	eb30fd7f59	Add Missing Header ... Issue gh-11161	10 months ago
snowykte0426	260d298cc5	Add Migration Guide from Spring Security SAML Extension ... This adds a dedicated migration guide for users moving from the Spring Security SAML Extension to the built-in SAML 2.0 support. Includes: - Content migrated from the project wiki - xref links for `saml2Login`, `saml2Logout`, and `saml2Metadata` - Metadata example moved to Examples Matrix - Cleanup and naming per review feedback Closes gh-11161 Signed-off-by: snowykte0426 <snowykte0426@naver.com>	10 months ago
Danilo Piazzalunga	27319e3f9b	Add missing registration property in YAML listing ... Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>	10 months ago
Danilo Piazzalunga	ec462e8bc5	Update assertingparty property usage in YAML snippets ... Spring Boot 2.7 renamed spring.security.saml2.relyingparty.registration.*.identityprovider.* to spring.security.saml2.relyingparty.registration.*.assertingparty.*. Closes gh-12810. Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>	10 months ago
Joe Grandja	e3c39f02bc	Add documentation for DPoP support ... Closes gh-17072	10 months ago
Josh Cummings	211b1b7285	Update Method Security Migration Steps	11 months ago
Josh Cummings	84db5bb312	Add Cookie Customizer Migration Steps	11 months ago
Josh Cummings	74a25c3fc1	Add shouldFilterAllDispatcherTypes Migration Steps	11 months ago
Josh Cummings	084990736e	Move Opaque Token Migration Steps	11 months ago