Tree: f977a2594d

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/6.5.x/io.mockk-mockk-1.14.9

dependabot/gradle/main/ch.qos.logback-logback-classic-1.5.27

dependabot/gradle/main/io.spring.nullability-io.spring.nullability.gradle.plugin-0.0.11

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.1.0-M1

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'f977a2594d'

${ noResults }

Commit Graph

7615 Commits (f977a2594de455e0db4a1210b2fa25f4ccd9af0a)

 

All Branches   

Search

Author	SHA1	Message	Date
Rob Winch	ef7cc40389	SEC-2282: Polish CSRF Documentation	13 years ago
Rob Winch	d16106ef56	SEC-2309: Document CSRF multipart/form-data	13 years ago
Rob Winch	b591881e95	SEC-2302: Provide beforeSpringSecurityFilterChain hook ... This allows inserting filters before the springSecurityFilterChain.	13 years ago
Rob Winch	88f41cdf62	SEC-2341: Update to Gradle 1.8 ... Some dependencies were necessary to update due to issues with JUnit integration.	13 years ago
Rob Winch	a888ddf8b3	SEC-2307: JavaConfig RequestCache ignores favicon.ico	13 years ago
Rob Winch	ddc0ef7ab3	SEC-2339: Added Logical (Or, And, Negated) RequestMatchers	13 years ago
Rob Winch	28fb6ba14b	SEC-2328: Add hasAnyRole to ExpressionUrlAuthorizationConfiguration	13 years ago
Rob Winch	b16c17f70b	SEC-2301: Remove invalid import	13 years ago
Rob Winch	a3d112979f	SEC-2301: GlobalMethodSecurityConfiguration sets DefaultWebSecurityExpressionHandler BeanResolver	13 years ago
Rob Winch	f294480e6b	SEC-2329: JC @Autowire(required=false) AuthenticationTrustResolver ... Java Configuration now allows optional @Autowire of AuthenticationTrustResolver. In the WebSecurityConfigurerAdapter this is done by populating AuthenticationTrustResolver as a sharedObject.	13 years ago
Rob Winch	788ba9a1fa	SEC-2329: Allow injecting of AuthenticationTrustResolver	13 years ago
Rob Winch	7537dfc33a	SEC-2304: rm duplicate MethodExpressionHandler from GlobalMethodSecurityConfiguration	13 years ago
Rob Winch	5082a04626	SEC-2311: LogoutConfigurer allows other HTTP methods if CSRF is disabled	13 years ago
Rob Winch	9133c33f1d	SEC-2246: HttpSessionRequestCache.getRequest casts to RequestCache ... The method getRequest use to cast to DefaultRequestCache, but this is not necessary. Now the cast is to SavedRequest.	13 years ago
Rob Winch	8f8c6169e8	SEC-2331: Cache Control now includes Expires: 0	13 years ago
Rob Winch	c5c1419521	SEC-2332: GlobalMethodSecurityConfiguration includes proper voters ... Previously GlobalMethodSecurityConfiguration did not include the correct voters. This updates the code and the tests to ensure that the proper voters are added. Note this got past testing previously due to all the voters abstaining, so tests were added for ensuring that methods could also be invoked sucessfully using the configured annotation.	13 years ago
Rob Winch	d33b9e2854	SEC-2324: Update Spring Security tld version	13 years ago
Rob Winch	c156716be8	Ensure single version of org.slf4j	13 years ago
Rob Winch	0114b457c0	SEC-2330: CacheControlHeadersWriter use a single header	13 years ago
Rob Winch	05a7c58daa	SEC-2228: Change openid4j to optional in template.mf	13 years ago
Rob Winch	e5804d323b	SEC-2256: Fix intercept-url doc precidence statement ... Previously the documentation incorrectly stated "If a request matches multiple patterns, the method-specific match will take precedence regardless of ordering." This has now been removed and InterceptUrlConfigTests was added previously to ensure this was true.	13 years ago
Rob Winch	be8aad8306	SEC-2196: Demonstrate Method Security works on Generic methods	13 years ago
Rob Winch	d9c9cd7f84	Remove warnings from defaultSpringSecurityContextSource	13 years ago
Rob Winch	b4cbcee7f0	SEC-2308: DefaultSpringSecurityContextSource allow empty baseUrl	13 years ago
Rob Winch	f6587c8697	SEC-2312: Update javadoc link to Spring 3.2.x	13 years ago
Rob Winch	32e9239fd2	SEC-2320: AuthenticationPrincipal can be null on invalid type ... Previously a ClassCastException was thrown if the type was invalid. Now a flag exists on AuthenticationPrincipal which indicates if a ClassCastException should be thrown or not with the default being no error.	13 years ago
Rob Winch	b22acd0768	SEC-2314: AbstractSecurityWebApplicationInitializer.getSessionTrackingModes() uses EnumSet	13 years ago
Rob Winch	53a0db6be1	SEC-2313: Gradle javadoc hotfix	13 years ago
Rob Winch	662bb24370	SEC-1937: Added test to demonstrate SEC-1937 was invalid	13 years ago
Rob Winch	3c82e63ded	Formatting cleanup	13 years ago
Rob Winch	8e74407381	SEC-2296: HttpServletRequest.login should throw ServletException if already authenticated ... See throws documentation at http://docs.oracle.com/javaee/6/api/javax/servlet/http/HttpServletRequest.html#login%28java.lang.String,%20java.lang.String%29	13 years ago
Rob Winch	e8ac11641b	SEC-2297: Add DispatchType.ASYNC as default for AbstractSecurityWebApplicationInitializer	13 years ago
Rob Winch	7203faf34f	SEC-2300: Update Spring LDAP version to 1.3.2.RELEASE	13 years ago
Rob Winch	3d2f23602f	SEC-2294: Update Spring Version to 3.2.4.RELEASE	13 years ago
Rob Winch	43f4d01cf3	SEC-2292: Add test to assert CSRF bypass of methods is case sensitive ... HTTP methods should be case sensitive, so add test to ensure that this is the case http://www.w3.org/Protocols/rfc2616/rfc2616-sec5.html#sec5.1.1	13 years ago
Rob Winch	6e9fb7930b	SEC-2298: Add AuthenticationPrincipalArgumentResolver	13 years ago
Rob Winch	98fe2322cd	SEC-2095: Fix Servlet API doc ids	13 years ago
Scott Andrews	fc16450344	Demonstrate rest.js CSRF support in reference docs ... rest.js 0.9.4 added support for applying the CSRF header and token to Ajax requests.	13 years ago
Rob Winch	246c632f3a	SEC-2095: Document Servlet API support	13 years ago
Rob Winch	664220f304	SEC-2295: Remove error logging when Spring version equals Spring Security	13 years ago
Rob Winch	86340b8016	SEC-2283: Polish headers doc	13 years ago
Rob Winch	ae368829f4	Tweak PermGen for tests	13 years ago
Rob Winch	d89cf6db29	SEC-2283: Update headers documentation and tests	13 years ago
Rob Winch	4761614c9f	SEC-2291: Fix internal links within reference ... Instead of using xlink:href="# use linkend="	13 years ago
Rob Winch	69aac09e1d	SEC-2285: Added headers to to reference	13 years ago
Rob Winch	9483226d02	SEC-2282: Polish CSRF doc	13 years ago
Rob Winch	aca2e4ff3a	SEC-2289: Add spring4Test	13 years ago
Rob Winch	086056f191	SEC-2289: Make compatible with Spring 4 as well ... There are a few subtle changes in Spring 4 that this commit addresses	13 years ago
Rob Winch	26166ef6e8	SEC-2272: CsrfRequestDataValueProcessor support Spring 4 and Spring 3	13 years ago
Rob Winch	3f69847a4e	SEC-2286: Log invalid CSRF tokens at debug level	13 years ago