close

Steve Riesenberg

Steve Riesenberg

Spring Security committer

Papillion, Nebraska

Blog Posts by Steve Riesenberg

Spring Authorization Server 0.3.0 available now

On behalf of the team and everyone who has contributed, it is my pleasure to announce the general availability of Spring Authorization Server 0.3.0.

You can download it from Maven Central by using the module coordinates:

implementation 'org.springframework.security:spring-security-oauth2-authorization-server:0.3.0'

See the release notes for complete details.

With this release, you can view the initial version of the reference documentation and the new project page on spring.io.

To get started using Spring Authorization Server, see the Getting Started chapter of the reference documentation and the samples to become familiar with setup and configuration.

Read more...

Spring Security 6.0.0-M5 available now

On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Security 6.0.0-M5 is available now.

This release includes dependency upgrades, bug fixes, and minor enhancements as well as a fix for a bug where the StrictHttpFirewall incorrectly rejects valid CJKV characters. The milestone contains a few noteworthy changes:

  • Authorization on Every Dispatch Type

  • Change the default of shouldFilterAllDispatchTypes to true

  • Default to SecurityContextHolderFilter instead of SecurityContextPersistenceFilter

  • Remove SAML Deprecations

Read more...

Spring Security 6.0.0-M3 and 5.7.0-M3 available now

On behalf of the team and everyone who has contributed, I am pleased to announce that Spring Security 6.0.0-M3 and 5.7.0-M3 are available now.

This third 6.0 milestone covers build and release enhancements as well as the deprecation of WebSecurityConfigurerAdapter that was already released with 5.7.0-M2. The third 5.7 milestone covers several enhancements to SAML 2.0 and OAuth 2.0 support as well as a change to use UTF-8 by default for HTTP Basic credentials in Spring WebFlux.

For the release changes, please refer to the releases page.

Read more...

Spring Security 5.6.0-M3 released

On behalf of the community, I’m pleased to announce the release of Spring Security 5.6.0-M3!

In addition to dependency upgrades and minor enhancements, the milestone contains a few noteworthy changes:

  • Introduced SecurityContextChangedListener

  • Added SAML 2.0 Single Logout Support

  • Added RelyingPartyRegistrationResolver

  • Added support to propagate the TestSecurityContextHolder to SecurityContextHolder

You can find the complete details in the release notes.

Read more...