Update README: bump Spring Boot badge to 3.5.6 and normalize Markdown tables/whitespace

Author: devondragon

README.md

@@ -2,7 +2,7 @@
 
 [![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)
 [![Java Version](https://img.shields.io/badge/Java-17%2B-brightgreen)](https://www.oracle.com/java/technologies/javase/jdk17-archive-downloads.html)
-[![Spring Boot](https://img.shields.io/badge/Spring%20Boot-3.4.4-green)](https://spring.io/projects/spring-boot)
+[![Spring Boot](https://img.shields.io/badge/Spring%20Boot-3.5.6-green)](https://spring.io/projects/spring-boot)
 [![Gradle](https://img.shields.io/badge/Gradle-8.0%2B-blue)](https://gradle.org/)
 [![Docker](https://img.shields.io/badge/Docker-Supported-blue)](https://www.docker.com/)
 [![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg)](contributing)
@@ -126,7 +126,7 @@ docker-compose up --build
    Then edit the copied file as needed.
 
 4. **Run the application**
-   
+
    Choose one of the following:
      - Using Gradle:
        ```bash
@@ -202,24 +202,24 @@ The application provides REST API endpoints for user management and event operat
 
 ### User Management API
 
-| Endpoint | Method | Description | Authentication |
-|----------|--------|-------------|---------------|
-| `/api/users` | GET | List all users | Admin |
-| `/api/users/{id}` | GET | Get user by ID | User/Admin |
-| `/api/users` | POST | Create new user | Public |
-| `/api/users/{id}` | PUT | Update user | User/Admin |
-| `/api/users/{id}` | DELETE | Delete user | User/Admin |
-| `/api/auth/login` | POST | User login | Public |
-| `/api/auth/logout` | POST | User logout | Authenticated |
+| Endpoint           | Method | Description     | Authentication |
+| ------------------ | ------ | --------------- | -------------- |
+| `/api/users`       | GET    | List all users  | Admin          |
+| `/api/users/{id}`  | GET    | Get user by ID  | User/Admin     |
+| `/api/users`       | POST   | Create new user | Public         |
+| `/api/users/{id}`  | PUT    | Update user     | User/Admin     |
+| `/api/users/{id}`  | DELETE | Delete user     | User/Admin     |
+| `/api/auth/login`  | POST   | User login      | Public         |
+| `/api/auth/logout` | POST   | User logout     | Authenticated  |
 
 ### Event Management API
 
-| Endpoint | Method | Description | Authentication |
-|----------|--------|-------------|---------------|
-| `/api/events` | GET | List events | Public |
-| `/api/events/{id}` | GET | Get event details | Public |
-| `/api/events` | POST | Create event | Admin |
-| `/api/events/{id}/register` | POST | Register for event | User |
+| Endpoint                    | Method | Description        | Authentication |
+| --------------------------- | ------ | ------------------ | -------------- |
+| `/api/events`               | GET    | List events        | Public         |
+| `/api/events/{id}`          | GET    | Get event details  | Public         |
+| `/api/events`               | POST   | Create event       | Admin          |
+| `/api/events/{id}/register` | POST   | Register for event | User           |
 
 ### Response Format
 
@@ -267,12 +267,12 @@ For detailed API documentation, start the application and visit `/swagger-ui.htm
 
 The application supports multiple configuration profiles:
 
-| Profile | Purpose | Database | Use Case |
-|---------|---------|----------|----------|
-| `local` | Local development | MariaDB/MySQL | Development with persistent database |
-| `test` | Testing | H2 (in-memory) | Automated testing |
-| `dev` | Development server | MariaDB/MySQL | Shared development environment |
-| `docker-keycloak` | Docker with Keycloak | MariaDB + Keycloak | OIDC authentication testing |
+| Profile           | Purpose              | Database           | Use Case                             |
+| ----------------- | -------------------- | ------------------ | ------------------------------------ |
+| `local`           | Local development    | MariaDB/MySQL      | Development with persistent database |
+| `test`            | Testing              | H2 (in-memory)     | Automated testing                    |
+| `dev`             | Development server   | MariaDB/MySQL      | Shared development environment       |
+| `docker-keycloak` | Docker with Keycloak | MariaDB + Keycloak | OIDC authentication testing          |
 
 ### Quick Configuration Setup
 
@@ -380,7 +380,7 @@ export SPRING_SECURITY_FAILED_LOGIN_ATTEMPTS=5
 ### Important Security Settings
 
 - **BCrypt Strength**: Set to `12` or higher for production
-- **Session Timeout**: Default `30m`, adjust based on security requirements  
+- **Session Timeout**: Default `30m`, adjust based on security requirements
 - **Account Lockout**: Configure failed login attempts and lockout duration
 - **CSRF Protection**: Enabled by default, ensure proper configuration for APIs
 
@@ -506,7 +506,7 @@ docker-compose -f docker-compose-keycloak.yml up --build
 ### Performance and Monitoring
 
 - **Application Metrics**: `/actuator/metrics`
-- **Health Check**: `/actuator/health` 
+- **Health Check**: `/actuator/health`
 - **Database Console**: `/h2-console` (when using H2)
 - **Log Levels**: Configure in `application.yml` or via `/actuator/loggers`
 
@@ -568,16 +568,16 @@ This project supports **Spring Boot DevTools** for live reload and auto-restart.
 
 ### Technology Stack
 
-| Layer | Technology | Purpose |
-|-------|------------|---------|
-| **Frontend** | Thymeleaf + Bootstrap | Server-side rendering with responsive UI |
-| **Backend** | Spring Boot 3.4+ | Application framework and dependency injection |
-| **Security** | Spring Security | Authentication, authorization, CSRF protection |
-| **Data** | Spring Data JPA + Hibernate | Object-relational mapping and data access |
-| **Database** | MariaDB/MySQL | Primary data persistence |
-| **Testing** | JUnit 5 + Selenide | Unit, integration, and UI testing |
-| **Build** | Gradle | Dependency management and build automation |
-| **Containers** | Docker + Docker Compose | Development and deployment |
+| Layer          | Technology                  | Purpose                                        |
+| -------------- | --------------------------- | ---------------------------------------------- |
+| **Frontend**   | Thymeleaf + Bootstrap       | Server-side rendering with responsive UI       |
+| **Backend**    | Spring Boot 3.4+            | Application framework and dependency injection |
+| **Security**   | Spring Security             | Authentication, authorization, CSRF protection |
+| **Data**       | Spring Data JPA + Hibernate | Object-relational mapping and data access      |
+| **Database**   | MariaDB/MySQL               | Primary data persistence                       |
+| **Testing**    | JUnit 5 + Selenide          | Unit, integration, and UI testing              |
+| **Build**      | Gradle                      | Dependency management and build automation     |
+| **Containers** | Docker + Docker Compose     | Development and deployment                     |
 
 ---
 

build.gradle

@@ -40,7 +40,7 @@ repositories {
 dependencies {
     // DigitalSanctuary Spring User Framework
     implementation 'com.digitalsanctuary:ds-spring-user-framework:3.5.1'
-
+l
     // Spring Boot starters
     implementation 'org.springframework.boot:spring-boot-starter-actuator'
     implementation 'org.springframework.boot:spring-boot-starter-data-jpa'

src/main/resources/application.yml

@@ -117,7 +117,7 @@ user:
     bcryptStrength: 12 # The bcrypt strength to use for password hashing.  The higher the number, the longer it takes to hash the password.  The default is 12.  The minimum is 4.  The maximum is 31.
     testHashTime: true # If true, the test hash time will be logged to the console on startup.  This is useful for determining the optimal bcryptStrength value.
     defaultAction: deny # The default action for all requests.  This can be either deny or allow.
-    unprotectedURIs: /,/index.html,/favicon.ico,/apple-touch-icon-precomposed.png,/css/*,/js/*,/js/user/*,/js/event/*,/img/**,/user/registration,/user/resendRegistrationToken,/user/resetPassword,/user/registrationConfirm,/user/changePassword,/user/savePassword,/oauth2/authorization/*,/login,/user/login,/user/login.html,/swagger-ui.html,/swagger-ui/**,/v3/api-docs/**,/event/,/event/list.html,/event/**,/about.html,error.html # A comma delimited list of URIs that should not be protected by Spring Security if the defaultAction is deny.
+    unprotectedURIs: /,/index.html,/favicon.ico,/apple-touch-icon-precomposed.png,/css/*,/js/*,/js/user/*,/js/event/*,/img/**,/user/registration,/user/resendRegistrationToken,/user/resetPassword,/user/registrationConfirm,/user/changePassword,/user/savePassword,/oauth2/authorization/*,/login,/user/login,/user/login.html,/swagger-ui.html,/swagger-ui/**,/v3/api-docs/**,/event/,/event/list.html,/event/**,/about.html,error.htmla # A comma delimited list of URIs that should not be protected by Spring Security if the defaultAction is deny.
     protectedURIs: /protected.html # A comma delimited list of URIs that should be protected by Spring Security if the defaultAction is allow.
     disableCSRFdURIs: /no-csrf-test # A comma delimited list of URIs that should not be protected by CSRF protection. This may include API endpoints that need to be called without a CSRF token.