Skip to content

Commit 9a23773

Browse files
iain-hendersoniain-henderson
authored
Merge branch 'spring-projects:main' into feature/reactive-oauth2-token-validator
2 parents 8f73bbd + 036ccff commit 9a23773

1,318 files changed

Lines changed: 22533 additions & 5554 deletions

File tree

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

.github/dependabot.yml

Lines changed: 72 additions & 43 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,10 @@
11
version: 2
22
registries:
3-
spring-milestones:
4-
type: maven-repository
5-
url: https://repo.spring.io/milestone
63
shibboleth:
74
type: maven-repository
85
url: https://build.shibboleth.net/maven/releases
96
updates:
7+
# 6.5.x
108
- package-ecosystem: gradle
119
target-branch: 6.5.x
1210
directory: /
@@ -17,7 +15,6 @@ updates:
1715
labels:
1816
- 'type: dependency-upgrade'
1917
registries:
20-
- spring-milestones
2118
- shibboleth
2219
ignore:
2320
- dependency-name: com.nimbusds:nimbus-jose-jwt
@@ -34,8 +31,28 @@ updates:
3431
update-types:
3532
- version-update:semver-major
3633
- version-update:semver-minor
34+
- package-ecosystem: npm
35+
target-branch: 6.5.x
36+
directory: /docs
37+
schedule:
38+
interval: weekly
39+
labels:
40+
- 'type: task'
41+
- 'type: dependency-upgrade'
42+
- 'in: build'
43+
- package-ecosystem: github-actions
44+
target-branch: 6.5.x
45+
directory: /
46+
schedule:
47+
interval: weekly
48+
labels:
49+
- 'type: task'
50+
- 'type: dependency-upgrade'
51+
- 'in: build'
52+
53+
# 7.0.x
3754
- package-ecosystem: gradle
38-
target-branch: 6.4.x
55+
target-branch: 7.0.x
3956
directory: /
4057
schedule:
4158
interval: daily
@@ -44,10 +61,10 @@ updates:
4461
labels:
4562
- 'type: dependency-upgrade'
4663
registries:
47-
- spring-milestones
4864
- shibboleth
4965
ignore:
5066
- dependency-name: com.nimbusds:nimbus-jose-jwt
67+
- dependency-name: io.spring.nullability:*
5168
- dependency-name: org.python:jython
5269
- dependency-name: org.apache.directory.server:*
5370
- dependency-name: org.apache.directory.shared:*
@@ -57,13 +74,36 @@ updates:
5774
- dependency-name: org.mockito:mockito-bom
5875
update-types:
5976
- version-update:semver-major
77+
- dependency-name: com.gradle.enterprise
78+
update-types:
79+
- version-update:semver-major
80+
- version-update:semver-minor
6081
- dependency-name: '*'
6182
update-types:
6283
- version-update:semver-major
6384
- version-update:semver-minor
85+
- package-ecosystem: npm
86+
target-branch: 7.0.x
87+
directory: /docs
88+
schedule:
89+
interval: weekly
90+
labels:
91+
- 'type: task'
92+
- 'type: dependency-upgrade'
93+
- 'in: build'
94+
- package-ecosystem: github-actions
95+
target-branch: 7.0.x
96+
directory: /
97+
schedule:
98+
interval: weekly
99+
labels:
100+
- 'type: task'
101+
- 'type: dependency-upgrade'
102+
- 'in: build'
64103

104+
# main
65105
- package-ecosystem: gradle
66-
target-branch: 7.0.x
106+
target-branch: main
67107
directory: /
68108
schedule:
69109
interval: daily
@@ -72,7 +112,6 @@ updates:
72112
labels:
73113
- 'type: dependency-upgrade'
74114
registries:
75-
- spring-milestones
76115
- shibboleth
77116
ignore:
78117
- dependency-name: com.nimbusds:nimbus-jose-jwt
@@ -92,10 +131,28 @@ updates:
92131
- dependency-name: '*'
93132
update-types:
94133
- version-update:semver-major
95-
- version-update:semver-minor
134+
- package-ecosystem: npm
135+
target-branch: main
136+
directory: /docs
137+
schedule:
138+
interval: weekly
139+
labels:
140+
- 'type: task'
141+
- 'type: dependency-upgrade'
142+
- 'in: build'
143+
- package-ecosystem: github-actions
144+
target-branch: main
145+
directory: /
146+
schedule:
147+
interval: weekly
148+
labels:
149+
- 'type: task'
150+
- 'type: dependency-upgrade'
151+
- 'in: build'
96152

153+
# docs-build
97154
- package-ecosystem: gradle
98-
target-branch: main
155+
target-branch: docs-build
99156
directory: /
100157
schedule:
101158
interval: daily
@@ -104,7 +161,6 @@ updates:
104161
labels:
105162
- 'type: dependency-upgrade'
106163
registries:
107-
- spring-milestones
108164
- shibboleth
109165
ignore:
110166
- dependency-name: com.nimbusds:nimbus-jose-jwt
@@ -124,48 +180,21 @@ updates:
124180
- dependency-name: '*'
125181
update-types:
126182
- version-update:semver-major
127-
128183
- package-ecosystem: npm
129184
target-branch: docs-build
130185
directory: /
131186
schedule:
132187
interval: weekly
133188
labels:
134189
- 'type: task'
190+
- 'type: dependency-upgrade'
135191
- 'in: build'
136-
137-
- package-ecosystem: npm
138-
target-branch: main
139-
directory: /docs
140-
schedule:
141-
interval: weekly
142-
labels:
143-
- 'type: task'
144-
- 'in: build'
145-
146-
- package-ecosystem: 7.0.x
147-
target-branch: main
148-
directory: /docs
149-
schedule:
150-
interval: weekly
151-
labels:
152-
- 'type: task'
153-
- 'in: build'
154-
155-
- package-ecosystem: 6.5.x
156-
target-branch: main
157-
directory: /docs
158-
schedule:
159-
interval: weekly
160-
labels:
161-
- 'type: task'
162-
- 'in: build'
163-
164-
- package-ecosystem: 6.4.x
165-
target-branch: main
166-
directory: /docs
192+
- package-ecosystem: github-actions
193+
target-branch: docs-build
194+
directory: /
167195
schedule:
168196
interval: weekly
169197
labels:
170198
- 'type: task'
199+
- 'type: dependency-upgrade'
171200
- 'in: build'

.github/workflows/auto-merge-dependabot.yml

Lines changed: 17 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,17 @@
1+
name: Merge Dependabot PR
2+
3+
on:
4+
pull_request:
5+
branches:
6+
- main
7+
- '*.x'
8+
- 'docs-build'
9+
10+
run-name: Merge Dependabot PR ${{ github.ref_name }}
11+
12+
jobs:
13+
merge-dependabot-pr:
14+
permissions: write-all
15+
uses: spring-io/spring-github-workflows/.github/workflows/spring-merge-dependabot-pr.yml@v7
16+
with:
17+
mergeArguments: --auto --rebase

.github/workflows/check-snapshots.yml

Lines changed: 5 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -14,17 +14,15 @@ permissions:
1414
jobs:
1515
snapshot-test:
1616
name: Test Against Snapshots
17-
uses: spring-io/spring-security-release-tools/.github/workflows/test.yml@v1
17+
uses: spring-io/spring-security-release-tools/.github/workflows/test.yml@b92832ecbc7cbe969201e6beafbde0ee400cf095 # v1.0.15
1818
strategy:
1919
matrix:
2020
include:
21-
- java-version: 21-ea
22-
toolchain: 21
23-
- java-version: 17
24-
toolchain: 17
21+
- java-version: 25
22+
toolchain: 25
2523
with:
2624
java-version: ${{ matrix.java-version }}
27-
test-args: --refresh-dependencies -PforceMavenRepositories=snapshot,https://oss.sonatype.org/content/repositories/snapshots -PisOverrideVersionCatalog -PtestToolchain=${{ matrix.toolchain }} -PspringFrameworkVersion=7.+ -PreactorVersion=2025.+ -PspringDataVersion=2025.+ --stacktrace
25+
test-args: --refresh-dependencies -PforceMavenRepositories=snapshot,https://oss.sonatype.org/content/repositories/snapshots -PisOverrideVersionCatalog -PtestToolchain=${{ matrix.toolchain }} -PspringFrameworkVersion=7.0.+ -PreactorVersion=2025.+ -PspringDataVersion=2025.+ --stacktrace
2826
secrets: inherit
2927
send-notification:
3028
name: Send Notification
@@ -33,6 +31,6 @@ jobs:
3331
runs-on: ubuntu-latest
3432
steps:
3533
- name: Send Notification
36-
uses: spring-io/spring-security-release-tools/.github/actions/send-notification@v1
34+
uses: spring-io/spring-security-release-tools/.github/actions/send-notification@b92832ecbc7cbe969201e6beafbde0ee400cf095 # v1.0.15
3735
with:
3836
webhook-url: ${{ secrets.SPRING_SECURITY_CI_GCHAT_WEBHOOK_URL }}

.github/workflows/continuous-integration-workflow.yml

Lines changed: 9 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -17,11 +17,11 @@ permissions:
1717
jobs:
1818
build:
1919
name: Build
20-
uses: spring-io/spring-security-release-tools/.github/workflows/build.yml@v1
20+
uses: spring-io/spring-security-release-tools/.github/workflows/build.yml@b92832ecbc7cbe969201e6beafbde0ee400cf095 # v1.0.15
2121
strategy:
2222
matrix:
2323
os: [ ubuntu-latest, windows-latest ]
24-
jdk: [ 17 ]
24+
jdk: [ 25 ]
2525
with:
2626
runs-on: ${{ matrix.os }}
2727
java-version: ${{ matrix.jdk }}
@@ -30,29 +30,32 @@ jobs:
3030
deploy-artifacts:
3131
name: Deploy Artifacts
3232
needs: [ build]
33-
uses: spring-io/spring-security-release-tools/.github/workflows/deploy-artifacts.yml@v1
33+
uses: spring-io/spring-security-release-tools/.github/workflows/deploy-artifacts.yml@b92832ecbc7cbe969201e6beafbde0ee400cf095 # v1.0.15
3434
with:
3535
should-deploy-artifacts: ${{ needs.build.outputs.should-deploy-artifacts }}
3636
default-publish-milestones-central: true
37+
java-version: 25
3738
secrets: inherit
3839
deploy-schema:
3940
name: Deploy Schema
4041
needs: [ build ]
41-
uses: spring-io/spring-security-release-tools/.github/workflows/deploy-schema.yml@v1
42+
uses: spring-io/spring-security-release-tools/.github/workflows/deploy-schema.yml@b92832ecbc7cbe969201e6beafbde0ee400cf095 # v1.0.15
4243
with:
4344
should-deploy-schema: ${{ needs.build.outputs.should-deploy-artifacts }}
45+
java-version: 25
4446
secrets: inherit
4547
perform-release:
4648
name: Perform Release
4749
needs: [ deploy-artifacts, deploy-schema ]
48-
uses: spring-io/spring-security-release-tools/.github/workflows/perform-release.yml@v1
50+
uses: spring-io/spring-security-release-tools/.github/workflows/perform-release.yml@b92832ecbc7cbe969201e6beafbde0ee400cf095 # v1.0.15
4951
with:
5052
should-perform-release: ${{ needs.deploy-artifacts.outputs.artifacts-deployed }}
5153
project-version: ${{ needs.deploy-artifacts.outputs.project-version }}
5254
milestone-repo-url: https://repo1.maven.org/maven2
5355
release-repo-url: https://repo1.maven.org/maven2
5456
artifact-path: org/springframework/security/spring-security-core
5557
slack-announcing-id: spring-security-announcing
58+
java-version: 25
5659
secrets: inherit
5760
send-notification:
5861
name: Send Notification
@@ -61,6 +64,6 @@ jobs:
6164
runs-on: ubuntu-latest
6265
steps:
6366
- name: Send Notification
64-
uses: spring-io/spring-security-release-tools/.github/actions/send-notification@v1
67+
uses: spring-io/spring-security-release-tools/.github/actions/send-notification@b92832ecbc7cbe969201e6beafbde0ee400cf095 # v1.0.15
6568
with:
6669
webhook-url: ${{ secrets.SPRING_SECURITY_CI_GCHAT_WEBHOOK_URL }}

.github/workflows/defer-issues.yml

Lines changed: 76 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,76 @@
1+
name: Defer Issues
2+
3+
on:
4+
workflow_dispatch:
5+
6+
permissions:
7+
contents: read
8+
9+
jobs:
10+
defer-issues:
11+
name: Defer Issues
12+
runs-on: ubuntu-latest
13+
if: github.repository_owner == 'spring-projects'
14+
permissions:
15+
issues: write
16+
steps:
17+
- name: Checkout
18+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
19+
- name: Compute Version
20+
id: compute-version
21+
uses: spring-io/spring-release-actions/compute-version@0.0.3
22+
- name: Get Today's Release Version
23+
id: todays-release
24+
uses: spring-io/spring-release-actions/get-todays-release-version@0.0.3
25+
with:
26+
snapshot-version: ${{ steps.compute-version.outputs.version }}
27+
milestone-repository: ${{ github.repository }}
28+
milestone-token: ${{ secrets.GITHUB_TOKEN }}
29+
- name: Compute Next Version
30+
id: next-version
31+
uses: spring-io/spring-release-actions/compute-next-version@0.0.3
32+
with:
33+
version: ${{ steps.todays-release.outputs.release-version }}
34+
- name: Schedule Next Milestone
35+
uses: spring-io/spring-release-actions/schedule-milestone@0.0.3
36+
with:
37+
version: ${{ steps.next-version.outputs.version }}
38+
version-date: ${{ steps.next-version.outputs.version-date }}
39+
repository: ${{ github.repository }}
40+
token: ${{ secrets.GITHUB_TOKEN }}
41+
- name: Move Open Issues to Next Milestone
42+
env:
43+
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
44+
CURRENT_MILESTONE: ${{ steps.todays-release.outputs.release-version }}
45+
NEXT_MILESTONE: ${{ steps.next-version.outputs.version }}
46+
run: |
47+
current_milestone_number=$(gh api repos/${{ github.repository }}/milestones \
48+
--jq ".[] | select(.title == \"$CURRENT_MILESTONE\") | .number")
49+
if [ -z "$current_milestone_number" ]; then
50+
echo "No milestone found for $CURRENT_MILESTONE"
51+
exit 0
52+
fi
53+
next_milestone_number=$(gh api repos/${{ github.repository }}/milestones \
54+
--jq ".[] | select(.title == \"$NEXT_MILESTONE\") | .number")
55+
if [ -z "$next_milestone_number" ]; then
56+
echo "No milestone found for $NEXT_MILESTONE"
57+
exit 1
58+
fi
59+
echo "Moving open issues from milestone '$CURRENT_MILESTONE' (#$current_milestone_number) to '$NEXT_MILESTONE' (#$next_milestone_number)"
60+
page=1
61+
while true; do
62+
issues=$(gh api "repos/${{ github.repository }}/issues?milestone=$current_milestone_number&state=open&per_page=100&page=$page" \
63+
--jq '.[].number')
64+
if [ -z "$issues" ]; then
65+
break
66+
fi
67+
for issue in $issues; do
68+
echo "Moving issue/PR #$issue to milestone $NEXT_MILESTONE"
69+
gh api repos/${{ github.repository }}/issues/$issue \
70+
--method PATCH \
71+
--field milestone=$next_milestone_number \
72+
--silent
73+
done
74+
page=$((page + 1))
75+
done
76+
echo "Done."

.github/workflows/deploy-docs.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ jobs:
1717
if: github.repository_owner == 'spring-projects'
1818
steps:
1919
- name: Checkout
20-
uses: actions/checkout@v4
20+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
2121
with:
2222
ref: docs-build
2323
fetch-depth: 1

0 commit comments

Comments
 (0)