首页 发现 帮助
注册 登录
github
/
spring-security
镜像自地址 https://github.com/spring-projects/spring-security
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

What's New in Spring Security 5.1

An initial skeleton pointing to the various sections of Spring
Security that received an update in Spring Security 5.1

Issue: gh-5857
Josh Cummings 7 年之前
父节点
b3d33708d1
当前提交
26afc18b66
共有 1 个文件被更改,包括 29 次插入0 次删除
分列视图 显示文件统计
  1. 29 0
      docs/manual/src/docs/asciidoc/_includes/preface/whats-new.adoc

+ 29 - 0
docs/manual/src/docs/asciidoc/_includes/preface/whats-new.adoc
查看文件 

@@ -14,3 +14,32 @@ For example, `@WithMockUser(setupBefore = TestExecutionEvent.TEST_EXECUTION)` wi
 
 * <<mvc-authentication-principal>>
 
 ** Supports resolving beans in WebFlux (was already supported in Spring MVC)
 
 ** Supports resolving `errorOnInvalidType` in WebFlux (was already supported in Spring MVC)
 
+* OAuth 2.0 Client
 
+* OAuth 2.0 Resource Server
 
+** Supports https://github.com/spring-projects/spring-security/tree/master/samples/boot/oauth2resourceserver[JWT-encoded bearer tokens]
 
+** Supports configuration using an OIDC Provider Configuration endpoint
 
+** Supports custom JWT decoding
 
+** Supports custom authority mapping
 
+** Supports custom JWT validation
 
+** Supports custom error handling
 
+* OAuth 2.0 Resource Server WebFlux
 
+** Supports JWT-encoded bearer tokens
 
+** Supports configuration using an OIDC Provider Configuration endpoint
 
+** Supports custom JWT decoding
 
+** Supports custom authority mapping
 
+** Supports custom JWT validation
 
+** Supports static key configuration
 
+* <<spring-security-core>> - Support was added for `@Transient` authentication tokens
 
+* <<csrf>> - Support was added for disabling csrf by `RequestMatcher`
 
+* <<access-denied-handler>> - Support was added for selecting an `AccessDeniedHandler` by `RequestMatcher`
 
+* <<headers>>
 
+** Support for `Content-Security-Policy` and `Referrer-Policy` were added for WebFlux (already supported in Servlets)
 
+** Support for `Feature-Policy` were added
 
+* <<cors>>
 
+** Support for CORS was added for WebFlux (already supported in Servlets)
 
+* Redirecting to HTTPS
 
+** Support for HTTPS redirect was added
 
+* Web Client
 
+* <<ldap>> - added support for setting up an `LdapContext` from custom environment variables
 
+* <<x509>> - added support for deriving the X.509 principal via a strategy
 
+* The Look and Feel for the default login and logout pages was modernized