spring-security

Commit Graph

Author	SHA1	Message	Date
Rob Winch	1d9b0760d5	ServerRequestCache uses URI Issue: gh-4789	8 years ago
Rob Winch	942b51dba7	Reactive Basic does not create session by default Fixes: gh-4825	8 years ago
Rob Winch	5f79fdd3eb	requiresLogoutMatcher naming polish Issue: gh-4822	8 years ago
Rob Winch	c1f94156f9	serverWebExchange->exchange Issue: gh-4822	8 years ago
Rob Winch	11f6e0477c	serverLogoutSuccessHandler->logoutSuccessHandler Issue: gh-4822	8 years ago
Rob Winch	bf570854b8	serverLogoutHandler->logoutHandler Issue: gh-4822	8 years ago
Rob Winch	1c977ca15f	serverRedirectStrategy->redirectStrategy Issue: gh-4822	8 years ago
Rob Winch	2cbdb4ba02	serverCsrfTokenRepository->csrfTokenRepository Issue: gh-4822	8 years ago
Rob Winch	3bfda6cff7	serverAccessDeniedHandler->accessDeniedHandler Issue: gh-4822	8 years ago
Rob Winch	9e82fc0b83	serverAuthenticationEntryPoint->authenticationEntryPoint Issue: gh-4822	8 years ago
Rob Winch	9cf0dc6b38	serverWebExchange->webExchange Issue: gh-4822	8 years ago
Rob Winch	520e0a5a68	serverAuthenticationSuccessHandler->authenticationSuccessHandler Issue: gh-4822	8 years ago
Rob Winch	5c83f92ddc	serverAuthenticationFailureHandler->authenticationFailureHandler Issue: gh-4822	8 years ago
Rob Winch	692233e431	ServerSecurityContextRepository members to securityContextRepository Issue: gh-4822	8 years ago
Johnny Lim	d900f2a623	Remove unused imports This commit also adds UnusedImportsCheck Checkstyle module.	8 years ago
Rob Winch	1b70efce2b	Add ServerRequestCache Fixes: gh-4789	8 years ago
Rob Winch	8f6491b281	Add RedirectServerAuthenticationFailureHandler Fixes gh-4816	8 years ago
Rob Winch	060d8689fe	Make RedirectServer*Tests less specific Issue: gh-4816	8 years ago
Johnny Lim	99df632f24	Add missing @Override annotations This commit also adds MissingOverrideCheck module to Checkstyle configuration.	8 years ago
Rob Winch	676020321e	Add reactive CsrfRequestDataValueProcessor Fixes gh-4762	8 years ago
Rob Winch	7622826b69	WebSessionServerCsrfTokenRepository saves on getToken Fixes gh-4801	8 years ago
Rob Winch	776364d403	ServerCsrfTokenRepository.saveToken return Mono<CsrfToken> Fixes gh-4800	8 years ago
Rob Winch	3f18881493	Remove additional attribute name from CsrfWebFilter Fixes gh-4799	8 years ago
Frank Pavageau	35706ad60a	Deserialize the principal in a neutral way When the principal of the Authentication is an object, it is not necessarily an User: it could be another implementation of UserDetails, or even a completely unrelated type. Since the type of the object is serialized as a property and used by the deserialization anyway, there's no point in enforcing a stricter type.	9 years ago
Frank Pavageau	6fd9ff254b	Map values directly from the JSON nodes Not only is it more efficient without converting to an intermediate String, using JsonNode.toString() may not even produce valid JSON according to its Javadoc (ObjectMapper.writeValueAsString() should be used).	9 years ago
SignleMR	a1fdb7dcb3	Update AbstractRememberMeServices.java this file`s file encode is unkown,maybe is "Eddu Melendez"	9 years ago
Jeremy Waters	832f5c39c1	SEC-3190: Add support for colons in remember-me token values We have an issue where token strings that contain a colon break the existing decoding strategy, which tokenizes on colons. so this change urlencodes the individual tokens when creating the cookie string; and urldecodes them decoding the cookie and extracting the tokens. This also eliminates the need for existing code to deal with openid tokens which contain urls, and thus colons.	9 years ago
Rob Winch	93ac706d86	Polish XFrameOptionsHeaderWriter Issue: gh-4559	9 years ago
Nathan Wong	02a78b17b9	Add check to see if return value is DENY Originally, if the return from getAllowFromValue(request) is "DENY", then the X-Frame-Options header's value will proceed to be written as "ALLOW FROM DENY" - an invalid value. This commit adds a condition in the if clause that checks whether allowFromValue is "DENY". This way, the X-Frame-Options header will be written as "ALLOW FROM origin" or "DENY".	9 years ago
Antoine	bed4ec7d18	Fix leading space characters reported by checkstyle	9 years ago
Antoine	0771778b81	Polish more AssertJ assertions	9 years ago
Antoine	e0aca04a28	Polish AssertJ assertions Polish AssertJ assertions	9 years ago
Rob Winch	5a5ec58ca4	Add LogoutPageGeneratingWebFilter Fixes gh-4735	9 years ago
Rob Winch	0734d70d02	Logout requires POST Issue: gh-4734	9 years ago
Rob Winch	8da2c7f657	Add WebFlux CSRF Protection Fixes gh-4734	9 years ago
Rob Winch	192776858d	HttpStatusServerAccessDeniedHandler write error message	9 years ago
Rob Winch	e63c53e267	Add AuthorizationWebFilterTests	9 years ago
Rob Winch	2060125ebd	ServerWebExchangeAttributeServerSecurityContextRepository->NoOpNoOpServerSecurityContextRepository Issue: gh-4719	9 years ago
Rob Winch	4777a869bc	Logout at the end of logout method Issue: gh-4719	9 years ago
Rob Winch	5bcf3c559b	Remove wrappedExchange from AuthenticationWebFilter Issue: gh-4719	9 years ago
Rob Winch	437ba56415	ReactorContextWebFilter & SecurityContextServerWebExchangeWebFilter Issue: gh-4719	9 years ago
Rob Winch	c63b258b16	AuthorizeWebFilter uses ReactiveSecurityContextHolder Issue gh-4719	9 years ago
Rob Winch	747473257f	Use ReactorSecurityContextHolder Issue gh-4713	9 years ago
Rob Winch	44b41e78cd	Flux member variables in favor of Collections Fix gh-4694	9 years ago
Rob Winch	fcc1152f78	WebFilterChainProxy not matched continues WebFilterChain Fixes gh-4668	9 years ago
Rob Winch	b81c1ce2c0	Move spring-security-webflux into spring-security-web Fixes gh-4662	9 years ago
Rob Winch	a74f7c6faa	Fix CSRF / DefaultLoginPageGeneratingFilter package tangle Issue: gh-4636	9 years ago
Andreas Gebhardt	0c830f9ba8	fix JavaDoc typo on `BasicAuthenticationEntryPoint`	9 years ago
Rob Winch	23f56f568c	Update MockitJunitRunner import Issue: gh-4608	9 years ago
Rob Winch	445834784a	Update to Mockito 2.10.0 Issue: gh-4608	9 years ago

1 2 3 4 5 ...

653 Commits (dd33f0a7dedfc6ec5affc486c8c40a03372fc211)