Tag: 6.1.4

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/main/io.spring.nullability-io.spring.nullability.gradle.plugin-0.0.10

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependabot/gradle/main/tools.jackson-jackson-bom-3.0.4

dependabot/npm_and_yarn/javascript/lodash-4.17.23

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.1.0-M1

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '6.1.4'

${ noResults }

Commit Graph

1606 Commits (6.1.4)

Author	SHA1	Message	Date
Marcus Da Coregio	18e88366d2	Resolve The matchingRequestParameterName From The Query String ... Prior to this commit, the ServletRequest#getParameter method was used in order to verify if the matchingRequestParameterName was present in the request. That method has some side effects like interfering in the execution of the ServletRequest#getInputStream and ServletRequest#getReader method when the request is an HTTP POST (if those methods are invoked after getParameter, or vice-versa, the content won't be available). This commit makes that we only use the query string to check for the parameter, avoiding draining the request's input stream. Closes gh-13731	2 years ago
Marcus Da Coregio	ce012a4661	CookieRequestCache Should Preserve Request Locale ... Closes gh-13792	2 years ago
Marcus Da Coregio	96d1763fc4	WWW-Authenticate header should not be added twice ... Closes gh-13737	2 years ago
Josh Cummings	a4d8c62ad7	withHttpOnlyCookie defaults to false ... Closes gh-13659	2 years ago
Seongguk Jeong	bcd4dcc15c	Refactor equals method ... Using the accessor method for fields instead of directly access	2 years ago
Seongguk Jeong	ea19f82b8a	Using pattern matching for instanceof	2 years ago
Marcus Da Coregio	7813a9ba26	Use default PathPatternParser instance	3 years ago
Josh Cummings	40d61743b9	Replace Existing Continue Parameter ... Closes gh-13438	3 years ago
Marcus Da Coregio	863aa5f65f	Fix Documented Default Value for AuthorizationFilter properties ... Closes gh-13456	3 years ago
Christoph Zuleger	06e58e4c34	Update JavaDoc of BasicAuthenticationFilter ... Remove deprecated hint to use Digest Auth in favor of Basic Auth.	3 years ago
Marcus Da Coregio	a53cbb838b	Polish ... Issue gh-13155	3 years ago
joerg-richter-5234	8287289bcb	Fix XContentTypeOptionsServerHttpHeadersWriter ... set constant value to X-Content-Type-Options Closes gh-13155	3 years ago
Josh Cummings	4c5bf3bdf5	Polish ... Use StringUtils#hasText PR gh-13179	3 years ago
Dennis Frommknecht	af233a2a00	Use consistent list of micrometer tags in web observation handler ... The tag `spring.security.reached.filter.name` is only set if a filter-name is available, otherwise the tag is omitted entirely. This leads to issues with metric-exporters that don't support dynamic tags, but rather expect tag-names of a metric to be always the same. The most prominent example is the Prometheus-exporter. Instead of omitting the tag if no filer-name is set, a none-value is applied instead, making the tag-list consistent in all cases Closes gh-13179	3 years ago
Josh Cummings	e033e347b4	Remove Redundant Close ... Closes gh-12787	3 years ago
Josh Cummings	5d903b5b71	Enforce start happens-before stop ... Closes gh-13133	3 years ago
Steve Riesenberg	07b884a2cb	Add Set-Cookie header value for XSRF-TOKEN ... This commit fixes an issue where using HttpServletResponse#setHeader causes previous header values to be overwritten. Closes gh-13075	3 years ago
Marcus Da Coregio	2d52fb8e4b	Clear Repository on Logout	3 years ago
Marcus Da Coregio	01d1e20dc3	Deprecate shouldFilterAllDispatcherTypes ... Closes gh-12138	3 years ago
Josh Cummings	02345b97ff	Polish Observation Event Names ... Issue gh-12811	3 years ago
bvn13	59ba7f5388	Shorten Observation Event Names ... Closes gh-12811	3 years ago
Christian Marck	442faccb5f	Avoid NPE in FilterInvocation ... Handle unknown headers in dummy request wrapper. Closes gh-12998	3 years ago
Josh Cummings	6db2b0dcd0	Align Filter Chain Observability Lineage ... Closes gh-12849	3 years ago
Christian Schuster	6791f3208e	Add factory class for RequestMatcher composition ... Closes gh-12751	3 years ago
Marcus Da Coregio	8d664bc4c2	DelegatingSecurityContextRepository should call loadContext ... Closes gh-12314	3 years ago
Josh Cummings	3fbb64db96	Fix javax package	3 years ago
twosom	3d7e22a4e9	Add test to SimpleUrlAuthenticationSuccessHandlerTests	3 years ago
twosom	abd51f7b63	Polished DefaultLoginPageGeneratingFilterTests Validation ... Closes gh-12694	3 years ago
Josh Cummings	9bba1a1c6b	Propagate Variables in And and OrRequestMatcher ... Closes gh-12847	3 years ago
Marcus Da Coregio	84cca81edf	Use HttpSessionSecurityContextRepository by default in SwitchUserFilter ... Closes gh-12834	3 years ago
Josh Cummings	c06e604278	Address Observability Thread Safety ... Closes gh-12829	3 years ago
twosom	28d353d731	Extract errorMessage from generateLoginPageHtml	3 years ago
twosom	ae23e3f5f4	Use instanceof pattern matching in initAuthFilter	3 years ago
twosom	99eacf2f0b	Change private static method to private methods	3 years ago
Josh Cummings	8ca726f4fa	Specify query string ... Issue gh-12665	3 years ago
Josh Cummings	0d4c619648	Include continue in query string ... Closes gh-12665	3 years ago
twosom	073dab3bf6	Refactor SavedCookie for Cookie's deprecated method ... Closes gh-12454	3 years ago
twosom	a855b33535	fix typo in RememberMeAuthenticationFilter	3 years ago
Steve Riesenberg	c306df9b46	Add XorCsrfChannelInterceptor ... Issue gh-12378	3 years ago
Josh Cummings	879770a0f6	Polish AbstractAuthenticationTargetUrlHandler ... Issue gh-12344	3 years ago
Dayan Kodippily	6b8a778da8	Rework determineTargetUrl for Readability ... Closes gh-12344	3 years ago
Dayan Kodippily	58e948a781	Test AbstractAuthenticationTargetUrlRequestHandler ... Issue gh-12344	3 years ago
Steve Riesenberg	62b58d2c92	Polish gh-12530	3 years ago
Onur Kagan Ozcan	c77c76e722	Relax final modifiers on AbstractRememberMeServices methods ... Closes gh-12145	3 years ago
Josh Cummings	4d2dab9b6b	Lookup Parent Observation ... Closes gh-12524	3 years ago
Steve Riesenberg	4e80338a9b	Polish gh-12466	3 years ago
Wellington Domiciano	2c8854bb7f	Adjusts setRequestHandler javadoc in CsrfFilter ... Adjusts setRequestHandler method javadoc in CsrfFilter class to reflect changes in 6.0. In 6.0, the default CsrfTokenRequestHandler changed to XorCsrfTokenRequestAttributeHandler, however, the javadoc for the setRequestHandler method still said it was CsrfTokenRequestAttributeHandler. This change adjusts the information to make it more accurate, because, although XorCsrfTokenRequestAttributeHandler is a subclass of CsrfTokenRequestAttributeHandler, the behavior is quite different. Closes gh-12464	3 years ago
Marcus Da Coregio	ffdb397830	Save the SecurityContext when switching user ... Closes gh-12504	3 years ago
Josh Cummings	c308e4665a	Polish Event Name ... Provide a name with no spaces separate from the human-friendly one with spaces. Closes gh-12490	3 years ago
Wellington Domiciano	27b3f4d403	Adjusts setRequestHandler javadoc in CsrfWebFilter ... Adjusts setRequestHandler method javadoc in CsrfWebFilter class to reflect changes in 6.0. In 6.0, the default ServerCsrfTokenRequestHandler changed to XorServerCsrfTokenRequestAttributeHandler, however, the javadoc for the setRequestHandler method still said it was ServerCsrfTokenRequestAttributeHandler. This change adjusts the information to make it more accurate, because, although XorServerCsrfTokenRequestAttributeHandler is a subclass of ServerCsrfTokenRequestAttributeHandler, the behavior is quite different. Closes gh-12465	3 years ago