⭐ New Features
- Add link to docs zip file to the reference #16799
- Fix attribute name in
http.adoc#16784 - Update ServerOAuth2AuthorizedClientExchangeFilterFunction javadoc #16783
🪲 Bug Fixes
- [Docs] Broken link on Spring MVC Test Integration page #16785
ServerBearerTokenAuthenticationConvertervalidates parameters when not enabled #16901- Clarify WebInvocationPrivilegeEvaluator JavaDoc #16782
- CookieServerCsrfTokenRepository.withHttpOnlyFalse() ineffective if setCookieCustomizer() is used #16862
- Correct closing tag in default PassKey HTML form #16601
- Fix WebAuthn saves Anonymous PublicKeyCredentialUserEntity #16606
- OpenSaml support should preserve encrypted elements for further analysis #16367
- Sorting in AuthorizationAdvisorProxyFactory should be thread-safe #16837
- WebFlux reference links to Servlet docs #16786
- XML config does not apply
request-handler-reftoCsrfAuthenticationStrategy#16844
🔨 Dependency Upgrades
- Bump ch.qos.logback:logback-classic from 1.5.17 to 1.5.18 #16767
- Bump io.micrometer:micrometer-observation from 1.14.5 to 1.14.6 #16938
- Bump io.projectreactor:reactor-bom from 2023.0.16 to 2023.0.17 #16944
- Bump io.spring.gradle:spring-security-release-plugin from 1.0.3 to 1.0.4 #16919
- Bump org-aspectj from 1.9.22.1 to 1.9.24 #16928
- Bump org-eclipse-jetty from 11.0.24 to 11.0.25 #16758
- Bump org.hibernate.orm:hibernate-core from 6.6.12.Final to 6.6.13.Final #16895
- Bump org.springframework.ldap:spring-ldap-core from 3.2.11 to 3.2.12 #16960
- Bump org.springframework:spring-framework-bom from 6.2.5 to 6.2.6 #16959
🔩 Build Updates
❤️ Contributors
Thank you to all the contributors who worked on this release:
@AB-xdev, @Borghii, and @dependabot[bot]
Contributors
dependabot, AB-xdev, and Borghii