github spring-projects/spring-security 5.5.4
on GitHub

latest releases: 6.4.0-RC1, 5.7.13, 5.8.15...
2 years ago

🪲 Bug Fixes

  • Documentation has wrong code example in the 'Customizing OpenSAML’s AuthnRequest Instance' section #10527
  • Invalid_request failures in JwtTokenValidators are always turned into invalid_token errors #10561
  • MissingCsrfTokenException message is misleading when not storing the CSRF tokens in the session #10531
  • Multi-tenancy Documentation - com.nimbusds.jwt.proc.JWTProcessor does not have a setJWTClaimSetJWSKeySelector method #10520
  • Multi-tenancy Documentation - JwtDecoder sample has multiple errors #10516
  • Oauth2 Resource Server will not retry on first failure with Multi-tenancy #10484
  • StaticServerHttpHeadersWriter should work with case-insensitive header names #10582
  • WebInvocationPrivilegeEvaluator does not provide a way to pass a ServletContext #10435

🔨 Dependency Upgrades

  • Update cas-client-core to 3.6.4 #10637
  • Update hibernate-entitymanager to 5.4.33 #10635
  • Update hsqldb to 2.6.1 #10636
  • Update io.projectreactor to 2020.0.14 #10633
  • Update io.spring.javaformat to 0.0.29 #10411
  • Update jackson-bom to 2.12.6 #10630
  • Update jackson-databind to 2.12.6 #10631
  • Update jackson-datatype-jsr310 to 2.12.6 #10632
  • Update logback-classic to 1.2.9 #10629
  • Update org.jetbrains.kotlin to 1.5.32 #10638
  • Update org.springframework to 5.3.14 #10639
  • Update org.springframework.data to 2021.0.7 #10640
  • Update reactor-netty to 1.0.14 #10634
  • Update spring-ldap-core to 2.3.5.RELEASE #10641
Check out latest releases or
releases around spring-projects/spring-security 5.5.4

Don't miss a new spring-security release

NewReleases is sending notifications on new releases.

Get notifications