16dc6be3c8
Update copyright year
...
Issue gh-14329
2 years ago
c88aaedb48
Updated broken documentation link in javadocs
2 years ago
92af758f1f
Make springSecurityHandlerMappingIntrospectorBeanDefinitionRegistryPostProcessor passive
...
Instead of excluding the bean from AOT processing, we avoid redefining the beans if they are present or in the expected state.
Issue gh-14362
2 years ago
778a63a763
Revert "Exclude SpringSecurityHandlerMappingIntrospectorBeanDefinitionRegistryPostProcessor from AOT processing"
...
This reverts commit 8a93178da712867420e0fbe01eeaa8e82f33a3f2.
2 years ago
7cd626fe25
Fix FilterChainProxy cannot be found when @EnableWebSecurity(debug = true)
...
Closes gh-14370
2 years ago
364bc10e78
Add hints for CompositeFilterChainProxy
...
Closes gh-14359
2 years ago
8a93178da7
Exclude SpringSecurityHandlerMappingIntrospectorBeanDefinitionRegistryPostProcessor from AOT processing
...
Closes gh-14362
2 years ago
ec02c22459
Add Request Path Extraction Support
...
Closes gh-13256
2 years ago
99218db84a
Add order offset to @EnableMethodSecurity
...
Closes gh-13214
2 years ago
e058b559b8
Polish Method Security Eager-Loading
...
Issue gh-11596
2 years ago
9a5d991383
Address eager-loading of infrastructure beans
...
Closes gh-11596
2 years ago
33800c0124
Address eager-loading of infrastructure beans
...
Closes gh-11596
2 years ago
fc007aa373
Check OpenSAML Version in XML Support
...
Closes gh-12483
2 years ago
eaaa813ede
Fix header value typo
...
Closes gh-11948
2 years ago
8a34e32a24
Polish IpAddressAuthorizationManager
...
Closes gh-10577
2 years ago
ea7c720ce7
Add hasIpAddress to Kotlin DSL
...
Closes gh-10577
2 years ago
142b268a21
Use CompositeFilterChainProxy
...
By extending FilterChainProxy CompositeFilterChainProxy is more passive since
users often depend on the type of the springSecurityFilterChain Bean being
FilterChainProxy (even though it can already be other types - when debug is
enabled).
Issue gh-14128
2 years ago
70dfb3d391
Add HandlerMappingIntrospector Caching
...
Closes gh-14128
2 years ago
57ab15127a
Add Max Sessions on WebFlux
...
Closes gh-6192
2 years ago
e6bea1cfa1
Polish RoleHierarchy Bean Usage
...
Issue gh-12783
2 years ago
b76f7c029d
Use available RoleHierachy Bean for MethodSecurity Config
...
Closes gh-12783
2 years ago
bb6b55aca3
Add Not Support
...
Closes gh-14058
2 years ago
d50698a269
Prepare for Spring Security 6.3
...
Closes gh-14210
2 years ago
c623303ca5
Add Logging
...
Now if the ServletRegistration API available message is shown, it will
also be accompanied with a startup warning in the logs.
Closes gh-14221
2 years ago
a98baa7522
Polish ServletRegistration API Deferral
...
Tomcat uses different ServletContext instances from startup- and request-time.
This commit ensures that if the programmatic API isn't available at startup-time,
then use the ServletContext attached to the HttpServletRequest at runtime.
Issue gh-13794
2 years ago
d961307044
Polish RequestMatcher Description
...
Issue gh-13794
2 years ago
4131a38f9e
Revert "Add forServletPattern"
...
This reverts commit 762319b6bea04027ee83208f9e66073ab081bc40.
2 years ago
4ca54683ae
Defer requestMatchers Validation to Runtime
...
Closes gh-13794
2 years ago
00da9c9092
Use assertj assertions
2 years ago
e3ab1c94d7
Use assertj assertions
2 years ago
a7da9491d9
Use assertj assertions
2 years ago
97516727a4
Add Coroutine Support
...
Closes gh-12080
2 years ago
77acaaa3b7
Use bean factory method
...
Closes gh-14094
2 years ago
ffd12ee3b9
Refine requestMatcher Validation Rules
...
Closes gh-14078
2 years ago
9db33f33c7
Revert unnecessary merges on 6.0.x
...
This commit removes unnecessary main-branch merges starting from
8750608b5bca45525c99d0a41a20ed02de93d8c7 and adds the following
needed commit(s) that were made afterward:
- 5dce82c48bc0b174838501c5a111b2de70822914
2 years ago
96ebab324c
Remove Type Parameter
...
Closes gh-14012
2 years ago
8f829dd1d7
Refine requestMatcher Validation Rules
...
Closes gh-13850
2 years ago
762319b6be
Add forServletPattern
...
Closes gh-13562
2 years ago
64e2a2ff8b
Apply updated Code Style
...
Closes gh-13881
2 years ago
ff374935fb
Verify ReactorContext when using Virtual Threads
...
Closes gh-12791
2 years ago
d48b8697bd
Fix mockito usage
...
Issue gh-13810
2 years ago
cb33fd7850
Add OIDC Back-Channel Logout Support
...
Closes gh-12570
2 years ago
5b293d2116
Automate spring-security.xsd
...
Closes gh-13819
2 years ago
aeafcc1377
Defer MethodSecurityExpressionHandler Resolution
...
When using Spring Security ACL and compiling to Native, in order to create the '*AuthorizationMethodInterceptor' Proxy beans during build time, Spring tries to resolve the DataSource bean since the DataSource can be a dependency of some AclService implementations, and fails because some required data source properties are not available during build time.
This commit defers the initialization of the MethodSecurityExpressionHandler to the runtime.
Closes gh-12653
2 years ago
9df9cb5aed
refactor: AssertJ best practices
...
Use this link to re-run the recipe: https://app.moderne.io/recipes/builder/bGVuS?organizationId=RGVmYXVsdA%3D%3D
Co-authored-by: Moderne <team@moderne.io>
2 years ago
92256f0522
Support nested suspend calls for Kotlin coroutines
...
Closes gh-13764
2 years ago
1a45602dbb
Fix mockito usage
2 years ago
ea1ec646b2
Fix test failures related to response headers
...
These tests began failing on snapshots after changes in
Spring Framework's `DispatcherServlet` to reset the response
on an error.
For now, we can have these tests operate with a 200 OK response.
An issue was opened in the spring-framework issuer tracker to
discuss this and address `CorsFilter` (and any other filter) that
writes headers that would be cleared on an error.
See spring-projects/spring-framework#31154
2 years ago
28f98b3351
Improve Error Message
...
Closes gh-13667
3 years ago
ed96e2cddf
Ignore Unmappable Servlets
...
Closes gh-13666
3 years ago
Steve Riesenberg
Geir Hedemark
Marcus Hert Da Coregio
DingHao
Taehong Kim
Yan Kardziyaka
Josh Cummings
brunodmartins
Rob Winch
DerChris173
kandaguru17
Steve Riesenberg
Tim te Beek