Cwikius-Spring/spring-security
1
0
Fork 0
mirror of synced 2026-05-22 21:33:16 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,297 Commits 54 Branches 379 Tags
e1e5970a246b52083ddb7cc3587698280b31e557
Commit Graph

17297 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Josh Cummings e1e5970a24 Support Serialization for LDAP Components 
Issue gh-16276
 2025-01-23 16:55:30 -07:00
Josh Cummings 36716d12ba Serialization Support of Core Components 
Issue gh-16276
 2025-01-23 16:50:30 -07:00
Josh Cummings 3e4ba737e7 Don't Support Serialzation of Deprecated Access Classes 
Issue gh-16276
 2025-01-23 16:46:38 -07:00
Josh Cummings d7921daa13 Support Serialization for SecurityConfig 
Issue gh-16276
 2025-01-23 16:44:53 -07:00
Josh Cummings d043884e32 Support Serialization 
Issue gh-16276
 2025-01-23 16:44:45 -07:00
Tran Ngoc Nhan e557c7227b Implement Serializable for WebAuthnAuthentication 
Closes gh-16273
Closes gh-16285

Signed-off-by: Tran Ngoc Nhan <ngocnhan.tran1996@gmail.com>
 2025-01-23 13:53:26 -06:00
Rob Winch 751b5580a1 TestOneTimeTokenGenerationSuccessHandler.lastToken to non-static variable 
Previously there were race conditions on the static member lastToken of
TestOneTimeTokenGenerationSuccessHandler. This is because the tests run in
parallel and one test may override the other tests lastToken and thus
make the assertion on it incorrect.

This commit changes lastToken to be a non-static variable to ensure that
each test has it's own lastToken for asserting the expected value.

Closes gh-16471
 2025-01-23 12:43:22 -06:00
Steve Riesenberg d97e01d1de Merge branch '6.3.x' into 6.4.x 
Closes gh-16466
 2025-01-22 17:09:34 -06:00
Steve Riesenberg 211fa52649 Favor provided instances over shared objects 
Prior to this commit, providing oauth2Login() and oauth2Client() with
clientRegistrationRepository() and authorizedClientRepository() caused
objects to be shared across both configurers.

These configurers will now prefer explicitly provided instances of
those objects when they are available.

Closes gh-16105
 2025-01-22 17:07:44 -06:00
Daniel Garnier-Moiroux bb8e757c4b Fix GenerateOneTimeTokenWebFilter double publish of chain.filter(...) 
closes gh-16458

Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
 2025-01-22 16:00:59 -06:00
Daniel Garnier-Moiroux 028c212be4 fix flakey test in WebAuthnWebDriverTests 
Closes gh-16463

Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
 2025-01-22 14:45:44 -06:00
Rob Winch 1cbe6ac932 checkstyleNohttp maxHeapSize=1g 2025-01-21 15:12:41 -06:00
Rob Winch 3209930cca Add TestBytes 
Closes gh-16461
 2025-01-21 15:12:31 -06:00
dependabot[bot] 42a49bbd78 Bump org.springframework.data:spring-data-bom from 2024.1.1 to 2024.1.2 
Bumps [org.springframework.data:spring-data-bom](https://github.com/spring-projects/spring-data-bom) from 2024.1.1 to 2024.1.2.
- [Release notes](https://github.com/spring-projects/spring-data-bom/releases)
- [Commits](https://github.com/spring-projects/spring-data-bom/compare/2024.1.1...2024.1.2)

---
updated-dependencies:
- dependency-name: org.springframework.data:spring-data-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-19 20:16:51 -08:00
dependabot[bot] 331812df16 Bump org.hibernate.orm:hibernate-core from 6.6.4.Final to 6.6.5.Final 
Bumps [org.hibernate.orm:hibernate-core](https://github.com/hibernate/hibernate-orm) from 6.6.4.Final to 6.6.5.Final.
- [Release notes](https://github.com/hibernate/hibernate-orm/releases)
- [Changelog](https://github.com/hibernate/hibernate-orm/blob/6.6.5/changelog.txt)
- [Commits](https://github.com/hibernate/hibernate-orm/compare/6.6.4...6.6.5)

---
updated-dependencies:
- dependency-name: org.hibernate.orm:hibernate-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-19 20:16:43 -08:00
github-actions[bot] 46aa65de59 Merge branch '6.3.x' into 6.4.x 2025-01-20 03:53:17 +00:00
dependabot[bot] 7f410ce5b4 Bump org.springframework.data:spring-data-bom from 2024.0.7 to 2024.0.8 
Bumps [org.springframework.data:spring-data-bom](https://github.com/spring-projects/spring-data-bom) from 2024.0.7 to 2024.0.8.
- [Release notes](https://github.com/spring-projects/spring-data-bom/releases)
- [Commits](https://github.com/spring-projects/spring-data-bom/compare/2024.0.7...2024.0.8)

---
updated-dependencies:
- dependency-name: org.springframework.data:spring-data-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-19 19:52:35 -08:00
Josh Cummings bbe4f87641 Mark Serialization Support for Events 
Issue gh-16276
 2025-01-17 16:08:31 -07:00
Josh Cummings 45da5c94b6 Support Serialization in Test Classes 
Issue gh-16276
 2025-01-17 14:15:30 -07:00
Daniel Garnier-Moiroux 5bf42bb7a8 webauthn: ensure allowCredentials[].id is an ArrayBuffer 
closes gh-16439

Signed-off-by: Daniel Garnier-Moiroux <git@garnier.wf>
 2025-01-17 15:14:33 +01:00
dependabot[bot] 60dbeba985 Bump org.springframework:spring-framework-bom from 6.2.1 to 6.2.2 
Bumps [org.springframework:spring-framework-bom](https://github.com/spring-projects/spring-framework) from 6.2.1 to 6.2.2.
- [Release notes](https://github.com/spring-projects/spring-framework/releases)
- [Commits](https://github.com/spring-projects/spring-framework/compare/v6.2.1...v6.2.2)

---
updated-dependencies:
- dependency-name: org.springframework:spring-framework-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-16 20:00:52 -08:00
Steve Riesenberg b4befb4263 Merge branch '6.3.x' into 6.4.x 
Closes gh-16424
 2025-01-15 11:46:01 -06:00
Steve Riesenberg a3f6825f9c Fix missing GChat notifications with workaround 
This fix was suggested by GitHub Support as a workaround for a bug where
`failure()` is not working for reusable workflows that will be fixed in
a few months.

Closes gh-16423
 2025-01-15 11:42:10 -06:00
dependabot[bot] ce38162c86 Bump io.projectreactor:reactor-bom from 2023.0.13 to 2023.0.14 
Bumps [io.projectreactor:reactor-bom](https://github.com/reactor/reactor) from 2023.0.13 to 2023.0.14.
- [Release notes](https://github.com/reactor/reactor/releases)
- [Commits](https://github.com/reactor/reactor/compare/2023.0.13...2023.0.14)

---
updated-dependencies:
- dependency-name: io.projectreactor:reactor-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-14 20:01:30 -08:00
github-actions[bot] 2e5c5fffc4 Merge branch '6.3.x' into 6.4.x 2025-01-15 03:59:51 +00:00
dependabot[bot] ea0ec9e662 Bump io.projectreactor:reactor-bom from 2023.0.13 to 2023.0.14 
Bumps [io.projectreactor:reactor-bom](https://github.com/reactor/reactor) from 2023.0.13 to 2023.0.14.
- [Release notes](https://github.com/reactor/reactor/releases)
- [Commits](https://github.com/reactor/reactor/compare/2023.0.13...2023.0.14)

---
updated-dependencies:
- dependency-name: io.projectreactor:reactor-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-14 19:59:03 -08:00
Josh Cummings 244fd2eb51 Support Serialization in Exceptions 
Issue gh-16276
 2025-01-14 18:37:53 -07:00
Josh Cummings 8e59fa1719 Don't Support Serialization for Jackson (De)serializers 
Issue gh-16276
 2025-01-14 17:35:33 -07:00
Josh Cummings 8735368d9e Don't Support Serialization of Jackson Modules 
Issu gh-16276
 2025-01-14 17:04:36 -07:00
Josh Cummings feea103050 Formatting 
Issue gh-16276
 2025-01-14 16:28:53 -07:00
Josh Cummings 6f379aa907 Add Serializable to Csrf Components 
Issue gh-16276
 2025-01-14 16:07:20 -07:00
dependabot[bot] ca2c617946 Bump io.micrometer:micrometer-observation from 1.14.2 to 1.14.3 
Bumps [io.micrometer:micrometer-observation](https://github.com/micrometer-metrics/micrometer) from 1.14.2 to 1.14.3.
- [Release notes](https://github.com/micrometer-metrics/micrometer/releases)
- [Commits](https://github.com/micrometer-metrics/micrometer/compare/v1.14.2...v1.14.3)

---
updated-dependencies:
- dependency-name: io.micrometer:micrometer-observation
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-13 20:00:18 -08:00
Toshiaki Maki 5075869418 Fix for JdbcOneTimeTokenService cleanupExpiredTokens failing with PostgreSQL 
Closes gh-16344
 2025-01-13 17:09:57 -06:00
dependabot[bot] b9b29edbeb Bump io.mockk:mockk from 1.13.14 to 1.13.16 
Bumps [io.mockk:mockk](https://github.com/mockk/mockk) from 1.13.14 to 1.13.16.
- [Release notes](https://github.com/mockk/mockk/releases)
- [Commits](https://github.com/mockk/mockk/compare/1.13.14...1.13.16)

---
updated-dependencies:
- dependency-name: io.mockk:mockk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-12 20:34:37 -08:00
Max Batischev decf4def95 Add Support disableDefaultRegistrationPage to WebAuthnDsl 
Closes gh-16395

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-01-12 22:16:55 -06:00
Max Batischev 882766e54f Fix Kotlin webAuthn {} 
Fixes the default configuration for WebAuthn Kotlin DSL

Closes gh-16338

Signed-off-by: Max Batischev <mblancer@mail.ru>
 2025-01-12 22:16:55 -06:00
github-actions[bot] d457e0b59d Merge branch '6.3.x' into 6.4.x 2025-01-13 04:09:13 +00:00
dependabot[bot] 2e9e5d0555 Bump io.mockk:mockk from 1.13.14 to 1.13.16 
Bumps [io.mockk:mockk](https://github.com/mockk/mockk) from 1.13.14 to 1.13.16.
- [Release notes](https://github.com/mockk/mockk/releases)
- [Commits](https://github.com/mockk/mockk/compare/1.13.14...1.13.16)

---
updated-dependencies:
- dependency-name: io.mockk:mockk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-12 20:08:32 -08:00
dependabot[bot] 5fa960d18a Bump ch.qos.logback:logback-classic from 1.5.15 to 1.5.16 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.15 to 1.5.16.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.15...v_1.5.16)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-05 19:59:40 -08:00
github-actions[bot] 2edc7b1f5f Merge branch '6.3.x' into 6.4.x 2025-01-06 03:55:46 +00:00
dependabot[bot] 92161aae2e Bump ch.qos.logback:logback-classic from 1.5.15 to 1.5.16 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.15 to 1.5.16.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.15...v_1.5.16)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-05 19:55:07 -08:00
dependabot[bot] beab697a88 Bump com.webauthn4j:webauthn4j-core 
Bumps [com.webauthn4j:webauthn4j-core](https://github.com/webauthn4j/webauthn4j) from 0.28.3.RELEASE to 0.28.4.RELEASE.
- [Release notes](https://github.com/webauthn4j/webauthn4j/releases)
- [Changelog](https://github.com/webauthn4j/webauthn4j/blob/master/github-release-notes-generator.yml)
- [Commits](https://github.com/webauthn4j/webauthn4j/compare/0.28.3.RELEASE...0.28.4.RELEASE)

---
updated-dependencies:
- dependency-name: com.webauthn4j:webauthn4j-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-01-01 19:50:25 -08:00
github-actions[bot] 292ae2c03d Merge branch '6.3.x' into 6.4.x 2024-12-23 04:02:03 +00:00
dependabot[bot] 3ffda83ba1 Bump ch.qos.logback:logback-classic from 1.5.14 to 1.5.15 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.14 to 1.5.15.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.14...v_1.5.15)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-22 20:01:45 -08:00
dependabot[bot] d44923f64e Bump io.mockk:mockk from 1.13.13 to 1.13.14 
Bumps [io.mockk:mockk](https://github.com/mockk/mockk) from 1.13.13 to 1.13.14.
- [Release notes](https://github.com/mockk/mockk/releases)
- [Commits](https://github.com/mockk/mockk/compare/1.13.13...1.13.14)

---
updated-dependencies:
- dependency-name: io.mockk:mockk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-22 20:01:22 -08:00
dependabot[bot] 811d95ca76 Bump ch.qos.logback:logback-classic from 1.5.14 to 1.5.15 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.14 to 1.5.15.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.14...v_1.5.15)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-22 19:43:04 -08:00
dependabot[bot] 431a60d7f2 Bump io.mockk:mockk from 1.13.13 to 1.13.14 
Bumps [io.mockk:mockk](https://github.com/mockk/mockk) from 1.13.13 to 1.13.14.
- [Release notes](https://github.com/mockk/mockk/releases)
- [Commits](https://github.com/mockk/mockk/compare/1.13.13...1.13.14)

---
updated-dependencies:
- dependency-name: io.mockk:mockk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-22 19:42:32 -08:00
dependabot[bot] e63b031b9b Bump ch.qos.logback:logback-classic from 1.5.13 to 1.5.14 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.13 to 1.5.14.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.13...v_1.5.14)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-19 19:57:43 -08:00
github-actions[bot] b7b650c519 Merge branch '6.3.x' into 6.4.x 2024-12-20 03:43:02 +00:00
dependabot[bot] 15faf0f621 Bump ch.qos.logback:logback-classic from 1.5.13 to 1.5.14 
Bumps [ch.qos.logback:logback-classic](https://github.com/qos-ch/logback) from 1.5.13 to 1.5.14.
- [Commits](https://github.com/qos-ch/logback/compare/v_1.5.13...v_1.5.14)

---
updated-dependencies:
- dependency-name: ch.qos.logback:logback-classic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-19 19:42:17 -08:00