On behalf of the community, I'm pleased to announce the release of Spring Session 1.1.0.M1. The release can be found in the Spring Milestone Repository (https://repo.spring.io/milestone/).

This release contains lots of fixes and new features. You can find a complete list in the changelog. The highlights have been included below:

• Support for search for session by username
• Support Customize Cookie Creation. Thanks to everyone who provided PRs and feedback for this feature!
• Add HttpSessionListener support
• Allow override default RedisSerializer
• Added comprehensive Hazelcast and configuration support. Thanks @_mark_a and @tommyludwig!
• Performance improvements
• Allow scoping the session in Redis using redisNamespace. Thanks fstegmann!
• Add ExpiringSession.setLastAccessedTime(long)
…

I’m pleased to announce the release of Spring Security 3.2.9.RELEASE. This release provides bug fixes and minor enhancements. For complete details on the release, refer to the Change Log.

Highlights of the release include:

• SEC-2190 - Fixing integration with the JSP tag libraries when Spring Security is registered in a child ApplicationContext
• SEC-2521 - Removal of synchronized in StandardPasswordEncoder which drastically improves performance
• SEC-3108 - Fix potential race condition in DigestAuthenticationFilter
• SEC-3109 - DelegatingSecurityContextExecutor works with Concurrent/ThreadPoolTaskScheduler
…

I’m pleased to announce the release of Spring Security 4.0.3.RELEASE. This release provides bug fixes and minor enhancements. For complete details on the release, refer to the Change Log.

Highlights of the release include:

• SEC-3063 - Fixes for Spring Boot 1.3
• SEC-2190 - Fixing integration with the JSP tag libraries when Spring Security is registered in a child ApplicationContext
• SEC-2521 - Removal of synchronized in StandardPasswordEncoder which drastically improves performance
• SEC-3108 - Fix potential race condition in DigestAuthenticationFilter
• SEC-3109 - DelegatingSecurityContextExecutor works with Concurrent/ThreadPoolTaskScheduler
…

I’m pleased to announce the release of Spring LDAP 2.0.4.RELEASE. The highlights of this release include:

LDAP-333 - Support for Spring Data Commons 1.11 (Spring Data Gosling) LDAP-334 - Compatibility with Spring IO Platform 2.0 LDAP-335 - Fix NoClassDefFoundError: RepositoryConfigurationExtension

For additional information on the release, refer to the changelog.

Project Site | Reference | Issues

I'm pleased to announce the release of Spring Session 1.0.2.RELEASE. You can find the release in Maven Central.

This release fixes 20+ tickets. The general goal was to close out bugs before we start working on Spring Session 1.1. You can find the highlights below:

Highlights

The highlights of Spring Session 1.0.2 are available below:

• ERROR dispatch can cause two sessions to be created (#229)
• CookieHttpSessionStrategy can write the same Session id twice (#251)
• Updates to previous HttpSession references are not reflected after changeSessionId() invoked (#227)
• Official support for Spring Framework 4.2 (#120)
• Our samples remove Embedded Redis (#248)
• Documentation improvements and fixes
…

On behalf of the Spring Security Kerberos team, I'm pleased to announce the release of Spring Security Kerberos 1.0.1. The highlights of the release are:

• Support Spring Security 4
• Support Spring LDAP 2.0
• Fix SPNEGO auth fails if client proposes MS krb5 OID #34

Project Site | Reference | Changelog

I'm pleased to announce the release of Spring Security 4.0.2.RELEASE. This release is the second maintenance release of the 4.0 line and focusses on fixing any major issues that were found in the new release. For complete details on the release, refer to the Change Log.

Along with lots of bug fixes, the highlights of this release include:

Support for Spring Framework 4.2

Spring Framework 4.2 GA is just around the corner. Spring Security 4.0.2 fixes some issues when running with Spring Framework 4.2. We are also rerunning our entire test suite using Spring Framework 4.2.

Minor Improvements to…

I'm pleased to announce the release of Spring Security 3.2.8.RELEASE. This release focusses on fixing major issues. For complete details on the release, refer to the Change Log.

While we will continue to support the 3.2.x line for some time, we encourage everyone to update to 4.x. To make this transition easy, we have a very detailed migration guide complete with sample migrations and a diff. If you have any problems migrating, create a StackOverflow question with the spring-security tag. If you don't get a response within a reasonable amount of time feel free to ping me at @rob_winch or in…

I'm pleased to announce the release of Spring Test HtmlUnit 1.0.0 RC1. The highlights of the release can be found below:

Migration Guide

A detailed migration guide from 1.0.0.M2 to 1.0.0.RC1 was added.

New Maven Coordinates

We have changed the maven group id. For details refer to Updating Dependencies

Default Context Path is ""

Based upon community feedback, the default context path is now "". This means if you are using a previous release, you will need to update the URL that is configured.

For details refer to Default Context Path is now ""

MockMvc WebClient & WebDriver Builders

This release…

I'm pleased to announce the release of Spring Security SAML 1.0.1. This release is passive to 1.0.0 the highlights of which are:

• Added support for Spring Security 4.0
• Added integration guide with Okta
• MaxAuthenticationAge time supports longer expiration times than 21 days
• Deployment without JKS keystore is now supported
• Service provider can now define multiple assertion consumer endpoints with same binding
• Minor fixes and documentation improvements

Project Site | Documentation | Changelog