Commit Graph

17131 Commits

Author SHA1 Message Date
Stephane Nicoll
fd32ff3a51 Upgrade to XmlUnit2 2.8.4
Closes gh-29131
2021-12-20 10:48:31 +01:00
Stephane Nicoll
fbb7f12f43 Upgrade to XmlUnit2 2.8.4
Closes gh-29123
2021-12-20 10:48:17 +01:00
Stephane Nicoll
64a5415edc Upgrade to Jackson Bom 2.13.1
Closes gh-29129
2021-12-20 10:46:31 +01:00
Stephane Nicoll
d9a970a8e2 Upgrade to Infinispan 12.1.10.Final
Closes gh-29128
2021-12-20 10:46:30 +01:00
Stephane Nicoll
a8fc4e9351 Upgrade to Hibernate 5.6.3.Final
Closes gh-29127
2021-12-20 10:46:29 +01:00
Stephane Nicoll
07c8ab2236 Upgrade to Ehcache3 3.9.9
Closes gh-29126
2021-12-20 10:46:27 +01:00
Stephane Nicoll
9ec44d80cf Upgrade to Dropwizard Metrics 4.2.7
Closes gh-29125
2021-12-20 10:46:25 +01:00
Stephane Nicoll
177fd6c539 Upgrade to DB2 JDBC 11.5.7.0
Closes gh-29124
2021-12-20 10:46:22 +01:00
Stephane Nicoll
620c6ec275 Upgrade to Infinispan 12.1.10.Final
Closes gh-29121
2021-12-20 09:57:12 +01:00
Stephane Nicoll
d0cd7dcf60 Upgrade to Hibernate 5.4.33
Closes gh-29120
2021-12-20 09:57:11 +01:00
Stephane Nicoll
cb81801907 Upgrade to Ehcache3 3.9.9
Closes gh-29119
2021-12-20 09:57:10 +01:00
Stephane Nicoll
d8d97df34a Upgrade to Dropwizard Metrics 4.1.29
Closes gh-29118
2021-12-20 09:57:08 +01:00
Stephane Nicoll
8306287158 Upgrade to DB2 JDBC 11.5.7.0
Closes gh-29117
2021-12-20 09:57:06 +01:00
Stephane Nicoll
bb1a1a0622 Upgrade to Spring LDAP 2.3.5
Closes gh-28972
2021-12-19 18:46:18 +01:00
Stephane Nicoll
f619d66244 Upgrade to Spring LDAP 2.3.5
Closes gh-28963
2021-12-19 18:45:23 +01:00
Stephane Nicoll
aab30b13b3 Start building against Spring Kafka 2.7.10 snapshots
See gh-29114
2021-12-19 18:30:54 +01:00
Stephane Nicoll
2d7e478a55 Merge branch '2.7.x' 2021-12-18 12:25:01 +01:00
Stephane Nicoll
4fa0e87ba1 Merge branch '2.6.x' into 2.7.x 2021-12-18 12:24:51 +01:00
Stephane Nicoll
efa93506e6 Fix checkstyle violations 2021-12-18 12:23:53 +01:00
Stephane Nicoll
d728159b32 Upgrade to Log4j2 2.17.0
Closes gh-28986
2021-12-18 08:54:18 +01:00
Stephane Nicoll
84ef1f7c21 Upgrade to Log4j2 2.17.0
Closes gh-28985
2021-12-18 08:53:36 +01:00
Stephane Nicoll
012fbdd43d Upgrade to Log4j2 2.17.0
Closes gh-28984
2021-12-18 08:53:04 +01:00
Stephane Nicoll
cb02944c71 Upgrade to Log4j2 2.17.0
Closes gh-28983
2021-12-18 08:52:22 +01:00
Madhura Bhave
1c17a851b7 Merge branch '2.7.x' into main 2021-12-17 17:57:45 -08:00
Madhura Bhave
d803c53e02 Merge branch '2.6.x' into 2.7.x
Closes gh-29109
2021-12-17 17:57:33 -08:00
Madhura Bhave
4cc8012bfa Handle WebServerNamespace in CachingOperationInvoker
Fixes gh-28882
2021-12-17 17:55:06 -08:00
Madhura Bhave
48a6470ddb Merge branch '2.7.x' into main 2021-12-17 17:51:48 -08:00
Madhura Bhave
764531c326 Merge branch '2.6.x' into 2.7.x
Closes gh-29108
2021-12-17 17:51:29 -08:00
Madhura Bhave
d9d161cd6b Allow previously authorized users to access the error page
Prior to this commit, the `ErrorPageSecurityFilter` verified if
access to the error page was allowed by invoking the
`WebInvocationPrivilegeEvaluator` with the Authentication from the
`SecurityContextHolder`.
This meant that access to the error page was denied for a `null` Authentication
 or `AnonymousAuthenticationToken` in cases where the error page required
authenticated access. This prevented authorized users from accessing the
error page in case the Authentication wasn't retrievable for the error dispatch,
which is the case for `@Transient` authentication or stateless session policy.

This commit updates the `ErrorPageSecurityFilter` to check access to the error page
only if the error is an authn or authz error in cases where an authentication object
is not found in the SecurityContextHolder. This makes the error response consistent
when bad credentials or no credentials are used while also allowing access to previously
authorized users.

Fixes gh-28953
2021-12-17 16:58:58 -08:00
Stephane Nicoll
c975fbc286 Merge branch '2.7.x' 2021-12-17 16:38:15 +01:00
Stephane Nicoll
64dd1f86c0 Merge branch '2.6.x' into 2.7.x
Closes gh-29104
2021-12-17 16:38:07 +01:00
Stephane Nicoll
c077ebecf7 Merge branch '2.5.x' into 2.6.x
Closes gh-29103
2021-12-17 16:37:53 +01:00
Andy Wilkinson
2fec06ac7e Find annotation without initializing factory beans
Closes gh-28977
2021-12-17 16:08:30 +01:00
Brian Clozel
d13441c009 Merge branch '2.7.x'
Closes gh-29014
2021-12-17 12:16:02 +01:00
Brian Clozel
b04f7904ff Merge branch '2.6.x' into 2.7.x
Closes gh-29013
2021-12-17 12:15:15 +01:00
Brian Clozel
1c35ec2c3c Merge branch '2.5.x' into 2.6.x
Closes gh-29012
2021-12-17 12:14:31 +01:00
Brian Clozel
5d0206320a Upgrade to Logback 1.2.9
Closes gh-29011
2021-12-17 12:13:02 +01:00
Stephane Nicoll
b9057f1957 Merge branch '2.7.x' 2021-12-17 10:50:23 +01:00
Stephane Nicoll
de383fcee0 Merge branch '2.6.x' into 2.7.x
Closes gh-29099
2021-12-17 10:50:15 +01:00
Stephane Nicoll
bcaa59ce73 Merge branch '2.5.x' into 2.6.x
Closes gh-29098
2021-12-17 10:50:07 +01:00
Pavel Anisimov
415c58e21b Polish CacheManager customization section in reference doc
See gh-29094
2021-12-17 10:48:55 +01:00
Stephane Nicoll
a05714ad9f Merge branch '2.6.x' into 2.7.x
Closes gh-29097
2021-12-17 10:30:42 +01:00
Stephane Nicoll
10362a9315 Merge branch '2.5.x' into 2.6.x
Closes gh-29096
2021-12-17 10:30:26 +01:00
Stephane Nicoll
8c9d398422 Test our Gradle plugin against Gradle 7.3.2
Closes gh-29093
2021-12-17 09:11:44 +01:00
Phillip Webb
1015df088d Merge branch '2.6.x' into 2.7.x 2021-12-16 13:55:55 -08:00
Phillip Webb
587d6fa309 Polish 2021-12-16 13:55:42 -08:00
Phillip Webb
003fb229fd Merge branch '2.7.x' 2021-12-16 13:07:22 -08:00
Phillip Webb
f3bcbca841 Update copyright year of changed files 2021-12-16 13:05:17 -08:00
Scott Frederick
b4cdd37e63 Merge branch '2.7.x' 2021-12-16 12:24:25 -06:00
Scott Frederick
4cad4851da Merge branch '2.6.x' into 2.7.x
Closes gh-29088
2021-12-16 12:24:12 -06:00