⭐ New Features
- Add What's New in 5.4 #9002
- Add What's New in 5.4 Section to Docs #9001
- Add Resource Server Servlet Logging #9000
- Simplify saml2Login Samples #8990
- Remove Framework Tests from saml2Login Sample #8989
- Add authenticationManagerResolver to resource server Kotlin DSL #8981
- Generalize SAML 2.0 Assertion Validation Support #8970
- Update abstract-authentication-processing-filter.adoc #8965
- Add spring-javaformat checkstyle and formatting #8946
- Add hasAnyRole and hasAnyAuthority to authorizeRequests in Kotlin DSL #8926
- Add hasAnyAuthority(String...) and hasAnyRole(String...) to authorizeRequests in Kotlin DSL #8892
- Resolve oauth2 client-id, client-secret placeholders #8880
- Restructure SAML 2.0 documentation #8763
- security:client-registrations doesn't take propertyconfigurer properties #8453
🪲 Bug Fixes
- Clickjacking demo in docs: YouTube link in X-Frame-Options section leads to private video #8986
- NoClassDefFoundError: AuthMetadataFlyweight at o.s.s.r.m.SimpleAuthenticationEncoder #8948
- SAML attributes not parsed correctly with prefixed XML elements #8864
- Don't use oidc scopes_supported for scope as default in ClientRegistrations #8790
- scopes_supported metadata should not be used as default in ClientRegistrations #8514
🔨 Dependency Upgrades
❤️ Contributors
We'd like to thank all the contributors who worked on this release!