Cwikius-Spring/spring-security
1
0
Fork 0
mirror of synced 2026-05-22 21:33:16 +00:00
Code Issues Packages Projects Releases Wiki Activity
19,162 Commits 54 Branches 379 Tags
08fca57d129aa7b305ad38500bae9aa001c19dbd
Commit Graph

1983 Commits

Author SHA1 Message Date
Max Batischev 47630ca354 Fix JdbcUserCredentialRepository Save 
Closes gh-16620

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-03-07 13:57:41 -07:00
Max Batischev 58a665e5aa Add Support SingleResultAuthorizationManager 
Closes gh-16590

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-03-07 13:46:23 -07:00
yelm-212 cfefccad1f Update Http403ForbiddenEntryPoint to Use HttpStatus 
Closes gh-16615

Signed-off-by: yelm-212 <21yrshin@naver.com>
 2025-03-07 12:17:14 -05:00
Josh Cummings ab52fd858a Deprecate ChannelDecisionManager 
Closes gh-16681
 2025-02-28 12:35:21 -07:00
Josh Cummings 2d96fba5cf Add HttpsRedirectFilter 
Closes gh-16678
 2025-02-28 09:30:53 -07:00
Josh Cummings e569c7a39e Fix Tests 
Issue gh-16517
 2025-02-27 14:07:49 -07:00
topiam 85f0f3f34a Support Custom RequestMatchers for WebAuthn 
Closes gh-16517

Signed-off-by: topiam <support@topiam.cn>
 2025-02-27 14:07:49 -07:00
Rob Winch 9417f02790 Deprecate PortResolver 
Closes gh-15972
 2025-02-26 16:13:10 -06:00
Rob Winch 5f5427bd03 PortResolver.NO_OP 
Closes gh-16666
 2025-02-26 16:13:10 -06:00
Josh Cummings 588220a020 Add PathPatterRequestMatcher 
Closes gh-16429
Clsoes gh-16430
 2025-02-21 13:40:23 -07:00
Steve Riesenberg 7fc5d50adf Polish gh-16551 2025-02-19 13:53:30 -06:00
Max Batischev 0ccbd20f0a Add Support ServerFormPostRedirectStrategy 
Closes gh-16542

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-02-19 13:53:30 -06:00
Borghi 0bc9313fdd Fix bug PublicKeyCredentialUserEntityRepository saves anonymousUser 
Issue gh-16385

Signed-off-by: Borghi <137845283+Borghii@users.noreply.github.com>
 2025-02-16 22:50:34 -03:00
tejas-teju c4b223266c Return Invalid Credentials message on login error 
Closes gh-16484

Signed-off-by: tejas-teju <tejas8196@gmail.com>
 2025-02-14 16:01:22 -07:00
Josh Cummings e42865b926 Merge branch '6.4.x' 2025-02-14 13:08:17 -07:00
Josh Cummings 946812691e Make AuthenticatorAttestation Serializable 
Issue gh-16481
 2025-02-14 13:07:56 -07:00
Max Batischev b5a4218a0b Make WebAuthnAuthenticationRequestToken Serializable 
Closes gh-16481

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-02-14 11:51:46 -07:00
Max Batischev 879b44f9a1 Make PublicKeyCredentialRequestOptions Serializable 
Closes gh-16432

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-02-13 17:17:16 -07:00
ying.li 6494ea9b18 fix for typo 2025-02-10 12:22:57 -06:00
Daniel Garnier-Moiroux 238f47ce5e One Time Token login registers the default login page 
closes gh-16414

Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
 2025-02-10 09:55:51 -06:00
Daniel Garnier-Moiroux 5ee6b83953 Introduce OneTimeTokenAuthenticationFilter 
closes gh-16539

Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
 2025-02-10 09:55:51 -06:00
Max Batischev be81377235 Add Support ServerGenerateOneTimeTokenRequestResolver 
Closes gh-16488

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-02-05 14:14:16 -07:00
Steve Riesenberg 54a6a19e05 Polish gh-16214 
This commit applies the following changes:

* Added local Content-Security-Policy with script-src nonce directive
* Removed form-redirect.js and associated changes
* Renamed to FormPostRedirectStrategy
* Removed HtmlUtils usage
* Moved to same package as DefaultRedirectStrategy
 2025-02-03 14:52:30 -06:00
Craig Andrews 58534e7f60 Add FormRedirectStrategy to enable POST OIDC Logout 
FormRedirectStrategy redirects using an autosubmitting HTML form using the POST method versus DefaultRedirectStrategy which redirects using the GET method.

Can be used to implement POST binding for relying party initiated OIDC logout by setting FormRedirectStrategy as the redirection strategy on OidcClientInitiatedLogoutSuccessHandler.

Closes gh-13002

Signed-off-by: Craig Andrews <candrews@integralblue.com>
 2025-02-03 14:52:30 -06:00
Max Batischev 61d92e9db9 Fix assertion message in DefaultGenerateOneTimeTokenRequestResolver 
Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-02-03 12:15:20 -07:00
Josh Cummings 0f8e1936ff Merge branch '6.4.x' 2025-02-03 10:19:31 -07:00
NeoTraveler e31f04bebc withValue used incorrectly 
Closes gh-16525
Closes gh-16527

Signed-off-by: NeoTraveler <55753029+NeoTraveler@users.noreply.github.com>
 2025-02-03 10:18:33 -07:00
Steve Riesenberg b32f4f1afc Polish gh-16502 2025-02-03 09:21:53 -06:00
earlgrey02 1fa1848f9f Add HttpStatusAccessDeniedHandler 
Signed-off-by: earlgrey02 <san06036@naver.com>
 2025-02-03 09:21:53 -06:00
Max Batischev c7bc4c98db Make PublicKeyCredentialRequestOptions Serializable 
Closes gh-16432

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-01-23 20:13:10 -06:00
Josh Cummings e1a42db845 Merge branch '6.4.x' 2025-01-23 17:03:53 -07:00
Josh Cummings d043884e32 Support Serialization 
Issue gh-16276
 2025-01-23 16:44:45 -07:00
Rob Winch 177ce59a4b Merge branch '6.4.x' 
Implement Serializable for WebAuthnAuthentication

Closes gh-16474
 2025-01-23 14:12:30 -06:00
Tran Ngoc Nhan e557c7227b Implement Serializable for WebAuthnAuthentication 
Closes gh-16273
Closes gh-16285

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-01-23 13:53:26 -06:00
Max Batischev 474b5e151a Add Support GenerateOneTimeTokenRequestResolver 
Closes gh-16291

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-01-22 17:09:55 -06:00
Rob Winch dddab8e356 Merge branch '6.4.x' 
Closes gh-16465
 2025-01-22 16:04:19 -06:00
Daniel Garnier-Moiroux bb8e757c4b Fix GenerateOneTimeTokenWebFilter double publish of chain.filter(...) 
closes gh-16458

Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
 2025-01-22 16:00:59 -06:00
Rob Winch 081dee042e Merge branch '6.4.x' 
Add TestBytes

Closes gh-16462
 2025-01-21 15:12:49 -06:00
Rob Winch 3209930cca Add TestBytes 
Closes gh-16461
 2025-01-21 15:12:31 -06:00
Max Batischev 80e8e14500 Add GenerateOneTimeTokenFilterTests 2025-01-21 10:59:57 -06:00
DingHao f4491f388e Set PublicKeyCredentialCreationOptionsRepository by DSL or Bean 
Closes gh-16369

Signed-off-by: DingHao <dh.hiekn@gmail.com>
 2025-01-17 18:57:08 -06:00
DingHao 8181cec06c Set HttpMessageConverter by DSL 
Closes gh-16369

Signed-off-by: DingHao <dh.hiekn@gmail.com>
 2025-01-17 18:29:23 -06:00
Josh Cummings c2a5709e0f Merge branch '6.4.x' 2025-01-17 16:09:01 -07:00
Josh Cummings bbe4f87641 Mark Serialization Support for Events 
Issue gh-16276
 2025-01-17 16:08:31 -07:00
DingHao 45f22a46e3 Use spring.security prefix instead of security.security 
Closes gh-16422

Signed-off-by: DingHao <dh.hiekn@gmail.com>
 2025-01-16 14:29:25 -07:00
Josh Cummings 443af32314 Move Servlet Mocks to Web 
Issue gh-13551
 2025-01-15 17:32:58 -07:00
Josh Cummings 6019803064 Merge branch '6.4.x' 2025-01-14 18:38:14 -07:00
Josh Cummings 244fd2eb51 Support Serialization in Exceptions 
Issue gh-16276
 2025-01-14 18:37:53 -07:00
Josh Cummings acd1bb1777 Merge branch '6.4.x' 2025-01-14 17:35:45 -07:00
Josh Cummings 8e59fa1719 Don't Support Serialization for Jackson (De)serializers 
Issue gh-16276
 2025-01-14 17:35:33 -07:00