Rob Winch
Rob Winch
We should consider what happens to the CsrfToken.getParameterName() for this. Note that the Javadoc states it cannot be null. We should also consider how the taglibs support is impacted. It...
I'd like to see this implemented as well. Ideally it would be implemented using the entire GAV (group:artifact:version) and not just the version. The reason is that some projects have...
Thinking about it a bit more it is likely that the strategy needs to be able to be customized for a multi-module build to work. Perhaps it should default to...
These changes make sense and are a step in the right direction, but we need additional changes to be able to test and for the tests to pass. For example,...
@fernanfs You are right that if you want to support authenticating over HTTP and WebSocket you will need to provide configuration for both options. Since there is no support for...
Can you help me understand what you mean?
Thank you @bclozel. That helps quite a bit.
I've put together a prototype of Spring Security support that demonstrates how this could work https://github.com/rwinch/spring-graphql/tree/gh-116-security-schema-directive. For now the code is entirely placed in the webflux-security sample to make trying...
Thank you for the report, but AntPathRequestMatcher is implemented using AntPathMatcher which is a Framework bit of code. Any changes would need to happen in Spring Framework.
Thanks @thomasdarimont!