grails-spring-security-core

grails-spring-security-core copied to clipboard

JDK 17 - Spring Security Core 5.0.0 (Latest) "Failed to compile s2-create-role-hierarchy-entry.groovy"

2

### Expected Behavior Able to run the grails cli ### Actual Behaviour JDK 17 (61) is not supported by this plugin for no particularly good reason. Simply adding the plugin...

codeconsole

### Expected Behavior If there is NO any update property on the User object when it's saving, then the isDirty() function should work as expected. The **UserPasswordEncoderListener.class** should prevent any...

pangeaos

5.0.0 cannot be run with Java 17 (DefaultSecurityConfig.groovy - Unsupported class file major version 61)

2

### Expected Behavior We are able to run Grails 5 apps with JDK 17 (`tomcat:9.0.60-jdk17-corretto`) but since using grails-spring-security-core 5.0.0 Java throws an error: ``` BUG! exception in phase 'semantic...

mhuebner

Spring security, hierarchical roles syntax Grails 3 vs Grails 4

2

### Expected Behavior The role hierarchy relationship is specified by the ">" operator: ```groovy grails.plugin.springsecurity.roleHierarchy = ''' ROLE_ADMIN>ROLE_USER ''' ``` This simple hierarchy is working on Grails 3. A user...

fjloma

How to wire in custom WebSecurityConfigurer in grails 5

8

### Issue description I decided to post here, as I am not getting anything from the [Stackoverflow post](https://stackoverflow.com/questions/70861769/how-to-wire-a-custom-websecurityconfigureradapter-in-grails-5). As part of moving our environments to Kubernetes, we are using Ambassador...

ShurikAg

Lots of warnings like 'replaced rule for ...'

10

I increased verbosity of Grails logs and got lots of warnings like this: ``` 2016-12-06 16:02:30,541 [localhost-startStop-1] WARN intercept.AnnotationFilterInvocationDefinition - replaced rule for '/category/addnewcategory' with tokens [IS_AUTHENTICATED_REMEMBERED] with tokens [IS_AUTHENTICATED_REMEMBERED]...

azhuchkov

Bug: removeAll(User u) in UserRole empties whole table

1

### Task List - [X] Steps to reproduce provided - [ ] Stacktrace (if present) provided - [ ] Example that reproduces the problem uploaded to Github - [X] Full...

feuernurmitm

Setting Security Headers like X-Content-Type

1

Setting Security Headers like X-Content-Type I have set the headers in conf/web.xml in Tomcat 8.5.69 but it is not working so found out that we can do it with spring...

samism91

Classloader clash with other plugins using newer (3.x+) version of Ehcache

5

The latest (4.0.0) version of this plugin has a dependency on `net.sf.ehcache:ehcache:2.9.0`. The Ehcache specific classes contained in that dependency are of course contained in the `net.sf.ehcache` package. That version...

jamesdh

Currently, it appears all the tags in the `sec:` taglib very explicitly call `encodeAsHTML()` on any output they return. https://github.com/grails-plugins/grails-spring-security-core/blob/071b036101fc2a20f71816ece9fc603caff74a80/plugin/grails-app/taglib/grails/plugin/springsecurity/SecurityTagLib.groovy#L124 There are uses for having the tags return results in...

U47