spring-projects/spring-security 5.6.0-M3

on GitHub

⭐ New Features

• Update Saml2LoginConfigurer to pick up Saml2AuthenticationTokenConverter bean #10275
• LDIF file in integration tests should be compatible with UnboundID #10274
• Minor documentation fixes #10271
• Add Saml2ParameterNames #10270
• Saml2LoginConfigurer should pick up Saml2AuthenticationTokenConverter bean #10268
• Rename SecurityContextChangedEvent.getCurrentContext() for better clarity #10249
• Replace SecurityContextHolder#addListener #10246
• Replace SecurityContextHolder#addListener with SecurityContextHolder#setSecurityContextHolderStrategy #10226
• Default principalClaimName to SUB #10217
• Principal claim name in JwtAuthenticationConverter is null but documented default #10214
• Fix oauth2 issuer treatment and exception handling #10175
• Make AuthorizationGrantTypeConverter support custom grant type #10155
• Replace static "ROLE_" with customized role prefix #10078
• Propagate TestSecurityContextHolder to SecurityContextHolder #9737
• Propagate TestSecurityContextHolder to SecurityContextHolder after MockMvc calls #9565
• Add SAML SLO DSL support #9497
• Saml2Authentication should have registration id #9487
• RelyingPartyRegistrationResolvers should allow for the registration id to be specified #9486
• Incomplete documentation about session management using java configuration #8979
• Support sending SAML 2.0 LogoutRequest to the IdP (Single Logout) #8731

🪲 Bug Fixes

• Saml2LoginConfigurer relyingPartyRegistrationRepository method does not return correct type #10245
• Fix typo in index.adoc #10244
• Added exception to error message #10224
• Update a broken link to Spring Boot documentation #10177
• Documentation should point to spring-security-samples #9784

🔨 Dependency Upgrades

• Update org.springframework to 5.3.10 #10297
• Update org.mockito to 3.12.4 #10296
• Update org.junit.jupiter to 5.8.0 #10295
• Update junit-bom to 5.8.0 #10294
• Update org.jetbrains.kotlinx to 1.5.2 #10293
• Update org.jetbrains.kotlin to 1.5.30 #10292
• Update hibernate-entitymanager to 5.5.7.Final #10291
• Update io.spring.nohttp to 0.0.10 #10290
• Update reactor-netty to 1.0.11 #10289
• Update io.projectreactor to 2020.0.11 #10288
• Update com.nimbusds to 9.15 #10287
• Update nebula-project-plugin to 8.2.0 #10286
• Update jackson-datatype-jsr310 to 2.12.5 #10285
• Update jackson-databind to 2.12.5 #10284
• Update jackson-bom to 2.12.5 #10283
• Update logback-classic to 1.2.6 #10282

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @djechelon
• @jzheaux
• @quaff
• @1993heqiang
• @chenrujun
• @akohli96
• @ascopes
• @marcusdacoregio
• @di72nn
• @YevheniiLutsyshyn