Tag: 6.3.6

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/main/io.spring.nullability-io.spring.nullability.gradle.plugin-0.0.10

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependabot/gradle/main/tools.jackson-jackson-bom-3.0.4

dependabot/npm_and_yarn/javascript/lodash-4.17.23

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.1.0-M1

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '6.3.6'

${ noResults }

Commit Graph

1666 Commits (6.3.6)

Author	SHA1	Message	Date
Josh Cummings	3d1e4b5f18	Polish Tests ... Confirm that responses are a valid JSON map Issue gh-16177	1 year ago
Rob Winch	81e74e65d4	Support ServerExchangeRejectedHandler @Bean ... Closes gh-16061	1 year ago
Rob Winch	c24b5ebe98	Support ServerExchangeRejectedHandler @Bean ... Closes gh-15975	1 year ago
Rob Winch	e86d88d0cf	Support ServerExchangeRejectedHandler @Bean ... Closes gh-15975	1 year ago
Cedric Montfort	d9d77bed82	Allow logout+jwt JWT type for reactive ... The OIDC back-channel spec recommends using a logout token typ `logout+jwt` (see [here](https://openid.net/specs/openid-connect-backchannel-1_0-final.html#LogoutToken). Support of this type was recently added [on the servlet side]([on the Servlet side](9101bf1f7d)), so back porting the same on the reactive side to close the gap. Closes gh-15702	1 year ago
Rob Winch	5c2106b22e	Format	1 year ago
Rob Winch	1ba6301afa	Support ServerWebExchangeFirewall @Bean ... Closes gh-15987	1 year ago
Rob Winch	3ba1263d64	Support ServerWebExchangeFirewall @Bean ... Closes gh-15987	1 year ago
Scott Murphy Heiberg	18dba34bde	Make RequestMatcherDelegatingAuthorizationManager Post-Processable ... Closes gh-15948	1 year ago
Rob Winch	e48d6b039b	Support ServerWebExchangeFirewall @Bean ... Closes gh-15974	1 year ago
Josh Cummings	c1857c0308	Fix Formatting ... Issue gh-15771	1 year ago
chao.wang	690e012fb1	Improve OidcBackChannelLogoutTokenValidator error when provider issuer is missing ... Closes gh-15771	1 year ago
DingHao	5c20505b0e	Support Class Attributes in Annotation Template Processing ... Closes gh-15721	1 year ago
Hero Wanders	f372f5cf52	Replace OidcSessionStrategy References with OidcSessionRegistry	1 year ago
Josh Cummings	5c604b95fb	Correct PostFilterAuthorizationMethodInterceptor Target Type ... Previously, `postFilterAuthorizationMethodInterceptor` mistakenly was published as an `Advisor`. Because `MethodSecurityAdvisorRegistrar` re-publishes each pre/post annotation interceptor also as an `Advisor`, this resulted in a duplicate advisor for `@PostFilter`. Closes gh-15651	1 year ago
Josh Cummings	ae8e4d148e	Produce Exactly One AuthorizationAdvisor Per Annotation ... Closes gh-15592	1 year ago
Daniel Garnier-Moiroux	109da2719f	Use explicit types everywhere instead of var	1 year ago
Josh Cummings	f20ae1a71c	Revert gh-13783 ... This feature unfortunately regresses pre-existing behavior like that found in gh-15352. As such, this functionality has been removed. Closes gh-15352	1 year ago
baezzys	3d4bcf1b44	fix: Restrict automatic CORS configuration to UrlBasedCorsConfigurationSource ... - Update CORS configuration logic to automatically enable .cors() only if a UrlBasedCorsConfigurationSource bean is present. - Modify applyCorsIfAvailable method to check for UrlBasedCorsConfigurationSource instances.	2 years ago
Josh Cummings	dab48d25b0	Improve Error Message When Registration Missing ... Closes gh-15363	2 years ago
Josh Cummings	7422a1134a	Allow logout+jwt JWT type ... Closes gh-15003	2 years ago
Josh Cummings	6aabd768a8	Pick MvcRequestMatcher for MockMvc requests ... Closes gh-13849	2 years ago
Josh Cummings	cdd626644e	Use Request-Level Servlet Context ... Spring Security cannot use the ServletContext attached to the ApplicationContext since there may be child ApplicationContext's with their own ServletContext. Because of that, it is necessary to always use the ServletContext attached to the request. Closes gh-14418	2 years ago
Josh Cummings	5a798e93f1	Polish MVC Tests ... Issue gh-14418	2 years ago
Marcus Hert Da Coregio	ddcaeb5c20	Serialize objects from 6.3.x ... Issue gh-3737	2 years ago
Marcus Hert Da Coregio	08f11f06ab	Revert unnecessary commits from main ... Issue gh-15016	2 years ago
Marcus Hert Da Coregio	b3c7f3ff19	Rename CompromisedPasswordCheckResult to CompromisedPasswordDecision ... Issue gh-7395	2 years ago
sheheryarumair	0e211382ee	Remove useBase64 parameter	2 years ago
Josh Cummings	664dfd9b45	Defer Anonymous Filter Construction ... By delaying when the AnonymousAuthenticationFilter is constructed, it's now possible to call the principal and filter methods inside of a custom DSL implementation. This does not extend to setting the key or the authentication provider though, as these must be set during the init phase. Closes gh-14941	2 years ago
Josh Cummings	2bcbef1695	Add Saml2Logout DSL Support ... Closes gh-14935	2 years ago
Josh Cummings	a4dbf458ab	Add relying-party-registrations#id ... Closes gh-14487	2 years ago
Marcus Hert Da Coregio	2fbbcc4bd0	Polish Method Authorization Denied Handling ... - Renamed @AuthorizationDeniedHandler to @HandleAuthorizationDenied - Merged the post processor interface into MethodAuthorizationDeniedHandler , it now has two methods handleDeniedInvocation and handleDeniedInvocationResult - @HandleAuthorizationDenied now handles AuthorizationDeniedException thrown from the method Issue gh-14601	2 years ago
Marcus Hert Da Coregio	61eba00654	Move HaveIBeenPwnedRestApiPasswordChecker to spring-security-web ... Prior to this commit, the implementation was placed in spring-security-core, however we do not want to introduce a dependency on spring-web and spring-webflux for that module. Issue gh-7395	2 years ago
Marcus Hert Da Coregio	8d914ef145	Add @AuthorizationDeniedHandler for Method Authorization Denied Handling ... Issue gh-14601	2 years ago
Marcus Hert Da Coregio	472c9f8275	Avoid initializing raw bean during runtime in native-images ... Closes gh-14825	2 years ago
Steve Riesenberg	39dbd24dcb	Polish gh-14742	2 years ago
Josh Cummings	bb43174752	Fix Bean Name ... Issue gh-14480	2 years ago
Josh Cummings	3f7355abc6	Synthesize all annotation attributes ... Issue gh-14601	2 years ago
sheheryarumair	33ebd5405a	Removed dataSource null validation ... Fixed data source validation	2 years ago
Josh Cummings	6f07d63938	Support SpEL Returning AuthorizationDecision ... Closes gh-14598	2 years ago
Josh Cummings	0a9c482f62	Revert "Support SpEL Returning AuthorizationDecision" ... This reverts commit 77f2977c55.	2 years ago
Josh Cummings	77f2977c55	Support SpEL Returning AuthorizationDecision ... Closes gh-14599	2 years ago
Marcus Hert Da Coregio	d85857f905	Add Authorization Denied Handlers for Method Security ... Closes gh-14601	2 years ago
Marcus Hert Da Coregio	7d66525e23	Add Compromised Password Checker ... Closes gh-7395	2 years ago
Steve Riesenberg	614123e6f9	Update tests that fail on Windows ... Issue gh-14609	2 years ago
Josh Cummings	44033cd8b9	Make Internal Logout URI Configurable ... Closes gh-14609	2 years ago
Josh Cummings	e18ec48134	Fix Test ... Issue gh-14553	2 years ago
Josh Cummings	662cfed349	Make Internal Logout URI Configurable ... Closes gh-14609	2 years ago
Josh Cummings	c95f009b23	Fix Test ... Issue gh-14553	2 years ago
Josh Cummings	9898e0e993	Move AuthorizationAdvisorProxyFactory ... To prevent package tangles Issue gh-14596	2 years ago