Spring Security 5.2.0.M4 released, this version of the main updates include:
OAuth 2.0
- gh-6811 for Servlets - 引入 OAuth2AuthorizedClient Manager/Provider
- 6886-GH - custom claims can not obtain the OpenID Connect Userinfo
- GH-7033 -添加Resource Server Played Sample
- 7034-GH - the Nimbus Jwt decoder should not compel SignedJWT
Core
- 6506-GH - New Generic
AuthenticationFilter
- 5300-GH - SessionAuthenticationStrategy configured for allowing CSRF
- 5557-GH - HTTP security for the DSL nesting builder
- 7082-GH - Add Chinese Traditional news
- 7042-GH - allow upgrade between different coding BCrypt
- 7057-GH - allow upgrade between different coding SCrypt
- From the beginning 5.2.0.M3 before adding nohttp build
Web
- 4310-GH - StrictHttpFirewall new Hostname Features
- 7168-GH - the BASIC authentication is case-sensitive
WebFlux
Dependencies and CI
Release Notes:
https://spring.io/blog/2019/08/05/spring-security-5-2-0-m4-released