spring-security

Commit Graph

Author	SHA1	Message	Date
Marcus Hert Da Coregio	5a7f12f1a9	Check for null Authentication Closes gh-14715	2 years ago
Yuanhang Guo	c69df9fba0	Fix javadoc typo in ReactiveAuthorizationManager Closes gh-12978	3 years ago
bist	094bf1b527	Validate hasRole Input There are no check for role prefix in AuthorizeHttpRequestsConfigurer#XXXrole methods. This PR adds check for the same. Now the configuration will fail if role/s start with prefix for hasRole and hasAnyRole methods. Closes #12581	3 years ago
Josh Cummings	14a48ea939	Fix formatting Issue gh-12143	3 years ago
Junsung Cho	709de43e89	Fix typo in JavaDoc Closes gh-12143	3 years ago
Evgeniy Cheban	e01b1e7f38	Polish gh-11188	4 years ago
Evgeniy Cheban	89019fb340	Consider replacing an inner loop with Set of authority strings in AuthorityAuthorizationManager Closes gh-11188	4 years ago
Evgeniy Cheban	286e95893a	@EnableMethodSecurity doesn't resolve Method Security annotations on interfaces through a Proxy Removed proxy unwrapping in case of resolving Method Security annotations, this cause an issue when interfaces which are implemented by the proxy was skipped, resulting in a missing security checks on those methods. Closes gh-11175	4 years ago
Josh Cummings	057f4a86d5	Add default strategy constructor Closes gh-11059	4 years ago
Josh Cummings	061f69eb70	Polish Authorization Event Support - Added spring-security-config support - Renamed classes - Changed contracts to include the authenticated user and secured object - Added method security support Issue gh-9288	4 years ago
Parikshit Dutta	bd9434882f	Add authorization events Closes gh-9288	4 years ago
Norbert Nowak	ac9c29b2a0	Add UsernamePasswordAuthenticationToken factory methods - unauthenticated factory method - authenticated factory method - test for unauthenticated factory method - test for authenticated factory method - make existing constructor protected - use newly factory methods in rest of the project - update copyright dates Closes gh-10790	4 years ago
Josh Cummings	6c3d183a94	Polish Saml2 Jackson Support Issue gh-10905	4 years ago
Ulrich Grave	df84826c95	Add Jackson Support for Saml2 Module Closes gh-10905	4 years ago
Eleftheria Stein	c6b185465d	Add DEFAULT_USER_SCHEMA_DDL_LOCATION constant Closes gh-10837	4 years ago
Rob Winch	70fa8b1fdb	Add Support for @Transient SecurityContext Closes gh-9995	4 years ago
Marcus Da Coregio	e1cb375fbf	Make source code compatible with JDK 8 Closes gh-10695	4 years ago
Marcus Da Coregio	60ed3602f6	Make source code compatible with JDK 8 Closes gh-10695	4 years ago
Guirong Hu	86ed937a47	Fix the bug that the custom GrantedAuthority comparison fails Closes gh-10566	4 years ago
Guirong Hu	22379e79e7	Fix the bug that the custom GrantedAuthority comparison fails Closes gh-10566	4 years ago
Josh Cummings	a68411566e	Polish Memory Leak Mitigation Issue gh-9841	4 years ago
Hiroshi Shirosaki	2bc643d6c8	Address SecurityContextHolder memory leak To get current context without creating a new context. Creating a new context may cause ThreadLocal leak. Closes gh-9841	4 years ago
Eleftheria Stein	bbeca7cd65	Polish LDAP serialization Closes gh-9263	4 years ago
Markus Heiden	3c18278123	Start with LDAP Jackson2 mixins Issue gh-9263	4 years ago
Josh Cummings	7b15098570	Update Spring Security to 5.7 Closes gh-10509	4 years ago
Emil Sierżęga	e0821f2a99	DaoAuthenticationProviderTests#avg returns fraction	4 years ago
Rob Winch	e4a76b0ec9	Checkstyle Fixes - Javadoc tag ordering - Private constructors before inner classes Issue gh-10394	4 years ago
Steve Riesenberg	5e091b94a9	Deprecate RemoteAuthentication* for 5.6 Closes gh-10430	4 years ago
Emil Sierżęga	a188138715	Javadocs author tag doesn't work in methods	4 years ago
Rob Winch	f836897190	Checkstyle Fixes - Javadoc tag ordering - Private constructors before inner classes Issue gh-10394	4 years ago
Marcus Da Coregio	7fa39c8807	Deprecate EhCache2 support Since EhCache 3 is fully JSR-107 compliant, we should remove EhCache2 support and provide JCache implementations Closes gh-10362	4 years ago
Marcus Da Coregio	86c24da38b	Improve Method Security logging Closes gh-10247	4 years ago
Marcus Da Coregio	ef01124eb9	Add reasons to AuthorizationDecisions Closes gh-9287	4 years ago
Marcus Da Coregio	570092c467	Remove trace logs for PrePostAnnotationSecurityMetadataSource Those logs were producing too much noise on the console without adding much value. Issue gh-10247	4 years ago
Alexander Furer	8c74d6cea5	Fix isAssignable order Closes gh-10236	4 years ago
heowc	84d173c310	Fix typo	4 years ago
OllisGit	658aff501c	Assert Error-Messages already includes dashes When the cert-content is not valid, the assert output message is not correct. Because it outputs too many dashes .The const X509- and PKCS8-PEM_HEADER already includes the dashes. I took the output message via copy and paste, but it was still not valid ;-( Only the output is affected, the checks itself is correct.	4 years ago
heowc	dbe2ef8758	Fix typo Closes gh-10276	4 years ago
heowc	31cc0b856e	Fix typo Closes gh-10276	4 years ago
heowc	02060015a5	Fix typo Closes gh-10276	4 years ago
heowc	c9917b3cd0	Fix typo Closes gh-10276	4 years ago
heowc	7b73b94198	Fix typo	4 years ago
Josh Cummings	5da55448f9	Polish SecurityContextChangedEvent - Changed methods to getOldContext and getNewContext Closes gh-10249	4 years ago
Josh Cummings	3e87ef84ae	Replace SecurityContextHolder#addListener Closes gh-10226	4 years ago
Hiroshi Shirosaki	6f3e346b76	Add SecurityContextHolder#addListener Closes gh-10032	5 years ago
Josh Cummings	b8d51725c7	Immutable SecurityContext Issue gh-10032	5 years ago
Josh Cummings	01af7877ea	Polish RsaKeyConverters - Remove potential for returning null - Remove potential for parsing more than one header Issue gh-9736	5 years ago
shazin	5f7d871258	Add X.509 Certificate Support Closes gh-9736	5 years ago
Rob Winch	b6ff4d3674	Fix mockito UnnecessaryStubbingException	5 years ago
Rob Winch	3e93b024d6	openrewrite Junit Migration	5 years ago

1 2 3 4 5 ...

2521 Commits (e48d6b039baf104a6c56f4e62e0c2ff4d35a22bb)