|
There is a newer version available. Please update to Spring Security 5.6! |
What’s New in Spring Security 5.5
Spring Security 5.5 provides a number of new features. Below are the highlights of the release.
Servlet
-
OAuth 2.0 Client
-
Added support for Jwt Client Authentication
private_key_jwtandclient_secret_jwt -
Added Jwt Bearer Authorization Grant support
-
Added R2DBC implementation of
ReactiveOAuth2AuthorizedClientService
-
-
OAuth 2.0 Resource Server
-
Enhanced JWT decoders derivation of signature algorithms
-
Improved content negotation
-
Improved multi-tenancy support
-
-
SAML 2.0 Service Provider
-
Added OpenSAML 4 support
-
Enhanced SAML 2.0 Assertion decryption
-
Added file-based configuration for asserting party metadata
-
Improved
RelyingPartyRegistrationresolution support -
Enhanced relying party metadata support
-
Added support for AP-specified signing methods
-
-
Configuration
-
Introduced DispatcherType request matcher
-
Introduced
AuthorizationManagerfor filter security
-
-
Kotlin DSL
-
Added rememberMe support
-
WebFlux
-
Added Kotlin coroutine support for
EnableReactiveMethodSecurity
Build
The build has been modernized in a number of different ways. Here are a couple of highlights:
-
All sample applications have been moved to a separate project
-
The full build now works with JDK 11