03a5de1955
Update Antora Spring UI to v0.4.26
6 days ago
8c3f6ea0d4
Bump @antora/collector-extension from 1.0.2 to 1.0.3 in /docs
...
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
dependency-version: 1.0.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2 weeks ago
706b059ea8
Update logout.adoc
...
Directives should be Directive
Signed-off-by: HaiYan <haiyan_qi@hotmail.com>
2 weeks ago
4501ae7d1c
Update Reactive Resource Server startup exceptations
...
Issue gh-16708
Signed-off-by: Josh Cummings <3627351+jzheaux@users.noreply.github.com>
3 weeks ago
48112d3d74
Polish Resource Server startup expectations
...
Issue gh-16708
Signed-off-by: Josh Cummings <3627351+jzheaux@users.noreply.github.com>
3 weeks ago
b8735abb63
Clarify Resource Server startup expectations
...
Clarify that Spring Boot defers OIDC discovery by default.
Closes gh-16708
Signed-off-by: [CLOUD4] 한현 <gusgus1467@naver.com>
3 weeks ago
68a02ff176
Update Link to CRSF Docs in FAQ
...
Signed-off-by: Guillaume Husta <guillaume.husta@gmail.com>
3 weeks ago
4d43edfb20
Polish Documentation
...
- Combined explanation of method attribute with usage recommendations
- Used one sentence per line format
Issue gh-16530
Signed-off-by: Josh Cummings <3627351+jzheaux@users.noreply.github.com>
3 weeks ago
9f9699f8a5
Clarify need for method attribute in JSP authorize tag
...
Closes gh-16530
This aligns the JSP documentation with the changes made in gh-16529.
Added a NOTE to clarify that the method attribute is required when the underlying RequestMatcher is method-specific.
Signed-off-by: onhann <gusgus1467@naver.com>
3 weeks ago
50fad46df6
Bump @antora/atlas-extension in /docs
...
---
updated-dependencies:
- dependency-name: "@antora/atlas-extension"
dependency-version: 1.0.0-alpha.5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
e28eea208b
Bump @springio/antora-extensions from 1.14.4 to 1.14.7 in /docs
...
Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions ) from 1.14.4 to 1.14.7.
- [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc )
- [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.4...v1.14.7 )
---
updated-dependencies:
- dependency-name: "@springio/antora-extensions"
dependency-version: 1.14.7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
f646392542
Bump @antora/collector-extension from 1.0.1 to 1.0.2 in /docs
...
---
updated-dependencies:
- dependency-name: "@antora/collector-extension"
dependency-version: 1.0.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
52ca16fa4b
Bump antora from 3.2.0-alpha.8 to 3.2.0-alpha.11 in /docs
...
Bumps [antora](https://gitlab.com/antora/antora ) from 3.2.0-alpha.8 to 3.2.0-alpha.11.
- [Changelog](https://gitlab.com/antora/antora/blob/main/CHANGELOG.adoc )
- [Commits](https://gitlab.com/antora/antora/compare/v3.2.0-alpha.8...v3.2.0-alpha.11 )
---
updated-dependencies:
- dependency-name: antora
dependency-version: 3.2.0-alpha.11
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
1 month ago
fee6a9bb0e
docs: add CurrentSecurityContext section and link references
...
Signed-off-by: songhee <songhee9327@gmail.com>
2 months ago
508b3f26e3
docs: Typo in page Preparing for 7.0 / Web (version 6.5)
...
In section 'Include the Servlet Path Prefix in Authorization Rules', `PathPatternRequestParser` should be replaced by `PathPatternRequestMatcher`.
Signed-off-by: Guillaume Husta <guillaume.husta@gmail.com>
2 months ago
e588a3528f
Update Antora Spring UI to v0.4.25
2 months ago
7ea5be4b98
Update Antora Spring UI to v0.4.25
2 months ago
765abe534e
Add Missing Migration Pages to Side Navigation
...
Closes gh-18313
3 months ago
afb0c59875
Add request-matcher XML Migration Steps
...
Closes gh-18211
3 months ago
10edc14d7e
Fix typo in AnnotationTemplateExpressionDefaults
...
The AnnotationTemplateExpressionDeafults was wrong,and right is AnnotationTemplateExpressionDefaults
Signed-off-by: kucoll <kucoll@163.com>
4 months ago
4b227649f0
Fix typo in ldap.adoc
...
Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>
4 months ago
cfc27f8cc3
Fix typo in passkeys.adoc
...
Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>
4 months ago
5baff27ffb
Fix typo in ldap.adoc
...
Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>
4 months ago
39aaf25b60
Fix typo in passkeys.adoc
...
Signed-off-by: Peter Potrowl <peter.potrowl@gmail.com>
4 months ago
fed6df5167
Default WebAuthnConfigurer#rpName to rpId
...
In WebAuthn L3 spec, PublicKeyCredentialEntity.name is deprecated:
> This member is deprecated because many clients do not display it,
> but it remains a required dictionary member for backwards compatibility.
> Relying Parties MAY, as a safe default, set this equal to the RP ID.
Source: https://www.w3.org/TR/webauthn-3/#dictdef-publickeycredentialentity
Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
5 months ago
4feeb0f843
Docs: document effects of disabling CORS configurer
...
Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
5 months ago
dcb4e47cd5
Add Include-Code to the Password Storage page
...
References gh-16226
Signed-off-by: Himanshu Pareek <himanshupareekiit01@gmail.com>
5 months ago
8b2a453301
Advise Favoring PostAuthorize on Reads
...
Closes gh-17797
7 months ago
0404996f87
import Assertions.assertThat
...
This adds a static import for assertThat in the Kotlin docs code
7 months ago
0f63d98c84
Use @EnableMethodSecurity in docs tests
...
Previously parameters were passed in unnecessarily. This removes
the unnecessary paramaters.
7 months ago
fbfbb1e571
Use 2004-present for Copyright
...
Spring Security migrated the copyright to use -present to simplify
the headers. This commit aligns the header.
7 months ago
d002e68231
Update servlet test method docs to use include-code
...
References gh-16226
Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>
7 months ago
62b5b1a77c
import Assertions.assertThat
...
This adds a static import for assertThat in the Kotlin docs code
7 months ago
523222c24d
Use @EnableMethodSecurity in docs tests
...
Previously parameters were passed in unnecessarily. This removes
the unnecessary paramaters.
7 months ago
69f38d4933
Use 2004-present for Copyright
...
Spring Security migrated the copyright to use -present to simplify
the headers. This commit aligns the header.
7 months ago
0179a811c7
Update servlet test method docs to use include-code
...
References gh-16226
Signed-off-by: Joe Kuhel <4983938+jkuhel@users.noreply.github.com>
7 months ago
c963f4250e
Update Angular documentation links in csrf.adoc
...
Replaced `angular.io` links with their corresponding `angular.dev` URLs.
This change ensures that users referencing CSRF documentation are
directed to the most current Angular resources.
Signed-off-by: Michał Sobkiewicz <perceptron8@users.noreply.github.com>
8 months ago
de14fb8f77
Bump @springio/antora-extensions from 1.14.6 to 1.14.7 in /docs
...
Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions ) from 1.14.6 to 1.14.7.
- [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc )
- [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.6...v1.14.7 )
---
updated-dependencies:
- dependency-name: "@springio/antora-extensions"
dependency-version: 1.14.7
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
edcb3b024e
Update Shibboleth repository URL
...
Signed-off-by: Bernie Schelberg <bernard.schelberg@invicara.com>
8 months ago
759736672d
Bump @springio/antora-extensions from 1.14.4 to 1.14.6 in /docs
...
Bumps [@springio/antora-extensions](https://github.com/spring-io/antora-extensions ) from 1.14.4 to 1.14.6.
- [Changelog](https://github.com/spring-io/antora-extensions/blob/main/CHANGELOG.adoc )
- [Commits](https://github.com/spring-io/antora-extensions/compare/v1.14.4...v1.14.6 )
---
updated-dependencies:
- dependency-name: "@springio/antora-extensions"
dependency-version: 1.14.6
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
8 months ago
7960d2803d
Add Migration Steps for PathMatcher Usage
...
Issue gh-17509
8 months ago
4b15b2b94e
Add Migration Steps for Messaging
...
Closes gh-17509
8 months ago
9209a33678
Remove References to Deprecated OpenSaml Components
...
Issue gh-11658
8 months ago
6eee256e12
Demonstrate include-code usage
...
Closes gh-17161
10 months ago
0fecaf4924
Add include-code extension setup for docs
...
Closes gh-17160
10 months ago
a4cd6f4278
Advise Overriding equals() and hashCode() in UserDetails Implementations
...
This commit adds a documentation note explaining the importance of
overriding equals() and hashCode() in custom UserDetails implementations.
The default SessionRegistryImpl in Spring Security uses an in-memory
ConcurrentMap<Object, Set<String>>, Map<String,SessionInformation> to
associate principals with sessions. If a custom UserDetails class does
not properly override equals() and hashCode(), user sessions may not
be tracked or matched correctly.
I believe this helps developers avoid subtle session management issues
when implementing custom authentication logic.
Signed-off-by: Gurunathan <129361658+Gurunathan16@users.noreply.github.com>
10 months ago
eb30fd7f59
Add Missing Header
...
Issue gh-11161
10 months ago
260d298cc5
Add Migration Guide from Spring Security SAML Extension
...
This adds a dedicated migration guide for users moving from the Spring Security SAML Extension to the built-in SAML 2.0 support.
Includes:
- Content migrated from the project wiki
- xref links for `saml2Login`, `saml2Logout`, and `saml2Metadata`
- Metadata example moved to Examples Matrix
- Cleanup and naming per review feedback
Closes gh-11161
Signed-off-by: snowykte0426 <snowykte0426@naver.com>
10 months ago
27319e3f9b
Add missing registration property in YAML listing
...
Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>
10 months ago
ec462e8bc5
Update assertingparty property usage in YAML snippets
...
Spring Boot 2.7 renamed spring.security.saml2.relyingparty.registration.*.identityprovider.*
to spring.security.saml2.relyingparty.registration.*.assertingparty.*.
Closes gh-12810.
Signed-off-by: Danilo Piazzalunga <danilopiazza@gmail.com>
10 months ago
github-actions[bot]
dependabot[bot]
HaiYan
Josh Cummings
[CLOUD4] 한현
Guillaume Husta
Robert Winch
songhee
kucoll
Peter Potrowl
Daniel Garnier-Moiroux
Himanshu Pareek
Joe Kuhel
Michał Sobkiewicz
Bernie Schelberg
Gurunathan
snowykte0426
Danilo Piazzalunga