New modules
...
Issue list
Jira Legacy | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
|
Across standard modules
AcrossHibernateModule
...
- ehancement: Spring security filter chain is now registered automatically if an AbstractAcrossServletInitializer is used
- it is no longer necessary to provide an AbstractSecurityWebApplicationInitializer in this case
- enhancement: bootstrap gives a warning if no MultipartFilter could be detected
- CSRF protection on multipart file uploads fails unless special care is taken (see also http://docs.spring.io/spring-security/site/docs/current/reference/htmlsingle/#csrf-multipart)
- when auto configuration of multipart resolving is possible on the AcrossWebModule, this should not be an issue
- addition: default AuditableEntityInterceptor that registers the current SecurityPrincipal on Auditable entities when saving or updating
OAuth2Module
- bugix: avoid IncorrectResultSizeDataAccessExceptionhttps://github.com/spring-projects/spring-security-oauth/issues/276
Issue list
Jira Legacy | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
|