spring-security

Commit Graph

Author	SHA1	Message	Date
Rob Winch	9fed1ac8c3	New line per sentence Signed-off-by: Rob Winch <362503+rwinch@users.noreply.github.com>	2 weeks ago
Josh Cummings	9dbe3bdcc0	Polish Session Management Persistence Docs Signed-off-by: Josh Cummings <3627351+jzheaux@users.noreply.github.com>	2 weeks ago
sankranti	d547ae0181	Fix defaults description in Session Management doc Corrected that starting from Spring Security 6 security context is not automatically saved by default. Signed-off-by: sankranti <sankranty@gmail.com>	2 weeks ago
Robert Winch	ea2f2302da	Add MultiFactorCondition.WEBAUTHN_REGISTERED Closes gh-18923	2 weeks ago
Robert Winch	bd7171140e	Support Customizer<AdditionalRequiredFactorsBuilder<Object>>> Closes gh-18922	2 weeks ago
Robert Winch	28acf62936	AuthorizationManagerFactories.when Closes gh-18920	2 weeks ago
Robert Winch	26937bf06c	Remove unnecessary webauthn4j dependency	4 weeks ago
Tran Ngoc Nhan	8e8e1a80a9	Add Passkeys webauthn in example Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	4 weeks ago
Tran Ngoc Nhan	89260a3a9c	Use reference links from attributes Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	1 month ago
HaiYan	706b059ea8	Update logout.adoc Directives should be Directive Signed-off-by: HaiYan <haiyan_qi@hotmail.com>	1 month ago
Tran Ngoc Nhan	7c3c8bbdcb	Update Remember-Me example Closes gh-18639 Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	1 month ago
busoco-sjb	17b434c1c1	Document the change in dependency coordinates with Spring Security 7 Signed-off-by: busoco-sjb <169069865+busoco-sjb@users.noreply.github.com>	1 month ago
Vincent Stradiot	075c48c0d8	Fix typo in documentation Signed-off-by: Vincent Stradiot <vincentstradiot@hotmail.com>	2 months ago
songhee	fee6a9bb0e	docs: add CurrentSecurityContext section and link references Signed-off-by: songhee <songhee9327@gmail.com>	3 months ago
Tran Ngoc Nhan	cfe13c7c76	Fix typos Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	3 months ago
Robert Winch	2344fe5ebb	Use proper xref syntax Incldue the required resource id and required # of the fragment. See - https://docs.antora.org/antora/latest/page/xref/#xref-macro - https://docs.antora.org/antora/latest/page/resource-id-coordinates/#id-resource	3 months ago
Tran Ngoc Nhan	ba18f681e5	Use xref anchor id Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	3 months ago
Tran Ngoc Nhan	3d9bc6a5cf	Update mfa.adoc Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	3 months ago
Martin Boulais	1d8ea63a9e	Fix typo in HTTP Basic Auth Provider documentation The documentation states that setting the header `X-Requested-By` will remove the `WWW-Authenticate` header from the response. However, after testing this and reading the library code it looks like the header to set is `X-Requested-With` (X-Requested-By is mentioned nowhere except in this documentation file), so I propose this simple PR to fix this. Signed-off-by: Martin Boulais <31805063+martinboulais@users.noreply.github.com>	3 months ago
Peter Potrowl	d84d0ca22e	Fix typo in ldap.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	f1793f5047	Fix typo in passkeys.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	4b227649f0	Fix typo in ldap.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	cfc27f8cc3	Fix typo in passkeys.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	5baff27ffb	Fix typo in ldap.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Peter Potrowl	39aaf25b60	Fix typo in passkeys.adoc Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>	4 months ago
Daniel Garnier-Moiroux	fed6df5167	Default WebAuthnConfigurer#rpName to rpId In WebAuthn L3 spec, PublicKeyCredentialEntity.name is deprecated: > This member is deprecated because many clients do not display it, > but it remains a required dictionary member for backwards compatibility. > Relying Parties MAY, as a safe default, set this equal to the RP ID. Source: https://www.w3.org/TR/webauthn-3/#dictdef-publickeycredentialentity Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>	5 months ago
Rob Winch	884cf0d62e	EnableGlobalMultiFactorAuthentication->EnableMultiFactorAuthentication Closes gh-18127	5 months ago
Rob Winch	78701f94ee	Document RequiredFactor Valid Duration Issue gh-17997	6 months ago
Rob Winch	702878acae	Create AuthorizationManagerFactories.multiFactor Closes gh-18032	6 months ago
Rob Winch	d18431a78d	Move FACTOR_ constants to FactorGrantedAuthority Previously GrantedAuthorities had an implicit package tangle because it was located in ~.core and FactorGrantedAuthority is in ~.core.authority and FactorGrantedAuthority's authority property was implicitly expected to be constants found in `GrantedAuthorities`. This commit moves the constants to the FactorGrantedAuthority which resolves this tangle. It wasn't initially done because FactorGrantedAuthority did not exist at that time. Closes gh-18030	6 months ago
Rob Winch	e290c98e97	Document Multi-Factor Simple to Complex This reworks the Multi-Factor documentation to start with the simplest scenario and work to progressively more complex requirements. Closes gh-18029	6 months ago
Rob Winch	f652920bb3	Add @EnableGlobalMultiFactorAuthentication Closes gh-17954	6 months ago
Josh Cummings	bbba2930e9	Add Initial Documentation Issue gh-17934	6 months ago
Josh Cummings	1e1cb0097a	Document Authentication Factors Issue gh-17933	7 months ago
Rob Winch	1b263cfafb	Fix Keberos Docs http:// Issue gh-17879	7 months ago
Rob Winch	f5fb127c8c	Add Spring Security Kerberos Move the Spring Security Kerberos Extension into Spring Security Closes gh-17879	7 months ago
Josh Cummings	b09afb34cc	Document Authentication.Builder The commit documents the new Authentication Builder interface and its usage in the security filter chain. Closes gh-17861 Closes gh-17862	7 months ago
Tran Ngoc Nhan	371bee685f	Polish `User#withDefaultPasswordEncoder` Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	8 months ago
Marcin Lewandowski	f61a8deccc	Update index.adoc Signed-off-by: Marcin Lewandowski <marcin@ravendb.net>	8 months ago
Tran Ngoc Nhan	242956a63c	Remove deprecated elements from DaoAuthenticationProvider Closes gh-17298 Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	9 months ago
Josh Cummings	c43afbf5e1	Format Lambda Expressions This commit updats lambda expressions so that their variable is surrounded in parentheses. Issue gh-13067	10 months ago
Josh Cummings	09983e2349	Add ApacheDS Migration Steps Issue gh-13852	10 months ago
Josh Cummings	6ddb964c61	Remove ApacheDS Support Closes gh-13852	10 months ago
Rob Winch	e3add59550	Update x509 Reference - Use include-code - Demo how to customize SubjectX500PrincipalExtractor	10 months ago
Gurunathan	a4cd6f4278	Advise Overriding equals() and hashCode() in UserDetails Implementations This commit adds a documentation note explaining the importance of overriding equals() and hashCode() in custom UserDetails implementations. The default SessionRegistryImpl in Spring Security uses an in-memory ConcurrentMap<Object, Set<String>>, Map<String,SessionInformation> to associate principals with sessions. If a custom UserDetails class does not properly override equals() and hashCode(), user sessions may not be tracked or matched correctly. I believe this helps developers avoid subtle session management issues when implementing custom authentication logic. Signed-off-by: Gurunathan <129361658+Gurunathan16@users.noreply.github.com>	11 months ago
Tran Ngoc Nhan	505fe3abed	Correct method name Closes gh-17031 Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	11 months ago
Josh Cummings	51239359ed	Fix ClearSiteData Code Snippet Closes gh-16948	11 months ago
Soumik Sarker	bcef6ed74f	Reformatted lines in x509 overview documentation Signed-off-by: Soumik Sarker <ronodhirsoumik@gmail.com>	11 months ago
Tran Ngoc Nhan	ee84d37435	Use SpringCacheBasedTicketCache Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>	1 year ago
Steve Riesenberg	6745576186	Polish basic.adoc Signed-off-by: Steve Riesenberg <5248162+sjohnr@users.noreply.github.com>	1 year ago

1 2 3 4 5 ...

273 Commits (bc4cc434feef4cdccabb45f0ed591ea6ac2d005e)