Cwikius-Spring/spring-security
1
0
Fork 0
mirror of synced 2026-05-22 21:33:16 +00:00
Code Issues Packages Projects Releases Wiki Activity

Move InetAddressMatcher to spring-security-core

Browse Source 
Closes gh-18979
This commit is contained in:
Robert Winch
2026-03-25 15:25:40 -05:00
parent c6e60c84f9
commit 51ce11cbd2
11 changed files with 56 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files
web/src/main/java/org/springframework/security/web/util/matcher/InetAddressMatcher.java → core/src/main/java/org/springframework/security/util/matcher/InetAddressMatcher.java
+1 -1
View File
@@ -14,7 +14,7 @@
* limitations under the License.
*/
package org.springframework.security.web.util.matcher;
package org.springframework.security.util.matcher;
import java.net.InetAddress;
web/src/main/java/org/springframework/security/web/util/matcher/InetAddressMatchers.java → core/src/main/java/org/springframework/security/util/matcher/InetAddressMatchers.java
+13 -1
View File
@@ -14,7 +14,7 @@
* limitations under the License.
*/
package org.springframework.security.web.util.matcher;
package org.springframework.security.util.matcher;
import java.net.InetAddress;
import java.util.ArrayList;
@@ -66,6 +66,18 @@ public final class InetAddressMatchers {
return builder().matchAll(InternalInetAddressMatcher.getInstance());
}
/**
* Creates an {@link InetAddressMatcher} that matches a specific IP address or subnet
* using CIDR notation (e.g., {@code 192.168.1.0/24}).
* <p>
* Both IPv4 and IPv6 addresses are supported.
* @param ipAddress the IP address or CIDR range to match against
* @return an {@link InetAddressMatcher} for the given IP address pattern
*/
public static InetAddressMatcher fromIpAddress(String ipAddress) {
return new IpInetAddressMatcher(ipAddress);
}
/**
* A builder for constructing {@link InetAddressMatcher} instances with various
* matching rules.
web/src/main/java/org/springframework/security/web/util/matcher/InetAddressParser.java → core/src/main/java/org/springframework/security/util/matcher/InetAddressParser.java
+1 -1
View File
@@ -14,7 +14,7 @@
* limitations under the License.
*/
package org.springframework.security.web.util.matcher;
package org.springframework.security.util.matcher;
import java.net.InetAddress;
import java.net.UnknownHostException;
web/src/main/java/org/springframework/security/web/util/matcher/IpInetAddressMatcher.java → core/src/main/java/org/springframework/security/util/matcher/IpInetAddressMatcher.java
+5 -5
View File
@@ -14,7 +14,7 @@
* limitations under the License.
*/
package org.springframework.security.web.util.matcher;
package org.springframework.security.util.matcher;
import java.net.InetAddress;
import java.net.UnknownHostException;
@@ -34,18 +34,18 @@ import org.springframework.util.StringUtils;
* Both IPv4 and IPv6 addresses are supported. The matcher can be configured with either a
* specific IP address or a subnet using CIDR notation.
* <p>
* The logic from this class was migrated from {@link IpAddressMatcher} to provide a more
* general API that did not depend on the servlet APIs (e.g. HttpServletRequest).
* The logic from this class was migrated from
* {@code org.springframework.security.web.util.matcher.IpAddressMatcher} to provide a
* more general API that did not depend on the servlet APIs (e.g. HttpServletRequest).
*
* @author Luke Taylor
* @author Steve Riesenberg
* @author Andrey Litvitski
* @since 7.1
* @see IpAddressMatcher
*/
final class IpInetAddressMatcher implements InetAddressMatcher {
private static final Log logger = LogFactory.getLog(IpAddressMatcher.class);
private static final Log logger = LogFactory.getLog(IpInetAddressMatcher.class);
private final InetAddress requiredAddress;
core/src/main/java/org/springframework/security/util/matcher/package-info.java
+23
View File
@@ -0,0 +1,23 @@
/*
* Copyright 2004-present the original author or authors.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* https://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
/**
* General utility classes for matching IP addresses.
*/
@NullMarked
package org.springframework.security.util.matcher;
import org.jspecify.annotations.NullMarked;
web/src/test/java/org/springframework/security/web/util/matcher/InetAddressMatcherTests.java → core/src/test/java/org/springframework/security/util/matcher/InetAddressMatcherTests.java
+1 -1
View File
@@ -14,7 +14,7 @@
* limitations under the License.
*/
package org.springframework.security.web.util.matcher;
package org.springframework.security.util.matcher;
import org.junit.jupiter.api.Test;
web/src/test/java/org/springframework/security/web/util/matcher/InetAddressMatchersTests.java → core/src/test/java/org/springframework/security/util/matcher/InetAddressMatchersTests.java
+1 -1
View File
@@ -14,7 +14,7 @@
* limitations under the License.
*/
package org.springframework.security.web.util.matcher;
package org.springframework.security.util.matcher;
import java.net.InetAddress;
import java.util.List;
web/src/test/java/org/springframework/security/web/util/matcher/IpInetAddressMatcherTests.java → core/src/test/java/org/springframework/security/util/matcher/IpInetAddressMatcherTests.java
+1 -1
View File
@@ -14,7 +14,7 @@
* limitations under the License.
*/
package org.springframework.security.web.util.matcher;
package org.springframework.security.util.matcher;
import java.net.InetAddress;
docs/modules/ROOT/pages/whats-new.adoc
+4 -2
View File
@@ -1,9 +1,11 @@
[[new]]
= What's New in Spring Security 7.1
== Web
== Core
* https://github.com/spring-projects/spring-security/pull/18634[gh-18634] - Added javadoc:org.springframework.security.web.util.matcher.InetAddressMatcher[]
* https://github.com/spring-projects/spring-security/pull/18634[gh-18634] - Added javadoc:org.springframework.security.util.matcher.InetAddressMatcher[]
== Web
* https://github.com/spring-projects/spring-security/issues/18755[gh-18755] - Include `charset` in `WWW-Authenticate` header
* Added xref:servlet/authorization/architecture.adoc#authz-conditional-authorization-manager[ConditionalAuthorizationManager]
* Added `when` and `withWhen` conditions to `AuthorizationManagerFactories.multiFactor()` for xref:servlet/authentication/mfa.adoc#programmatic-mfa[Programmatic MFA]
web/src/main/java/org/springframework/security/web/server/util/matcher/IpAddressServerWebExchangeMatcher.java
+2 -2
View File
@@ -20,8 +20,8 @@ import java.util.List;
import reactor.core.publisher.Mono;
import org.springframework.security.web.util.matcher.InetAddressMatcher;
import org.springframework.security.web.util.matcher.InetAddressMatchers;
import org.springframework.security.util.matcher.InetAddressMatcher;
import org.springframework.security.util.matcher.InetAddressMatchers;
import org.springframework.util.Assert;
import org.springframework.web.server.ServerWebExchange;
web/src/main/java/org/springframework/security/web/util/matcher/IpAddressMatcher.java
+4 -1
View File
@@ -19,6 +19,9 @@ package org.springframework.security.web.util.matcher;
import jakarta.servlet.http.HttpServletRequest;
import org.jspecify.annotations.Nullable;
import org.springframework.security.util.matcher.InetAddressMatcher;
import org.springframework.security.util.matcher.InetAddressMatchers;
/**
* Matches a request based on IP Address or subnet mask matching against the remote
* address.
@@ -42,7 +45,7 @@ public final class IpAddressMatcher implements RequestMatcher {
* come.
*/
public IpAddressMatcher(String ipAddress) {
this.matcher = new IpInetAddressMatcher(ipAddress);
this.matcher = InetAddressMatchers.fromIpAddress(ipAddress);
}
@Override