Bump springsecurityVersion from 6.0.2 to 6.1.0

[dependabot]

Bumps springsecurityVersion from 6.0.2 to 6.1.0.
Updates org.springframework.security:spring-security-config from 6.0.2 to 6.1.0

Release notes

Sourced from org.springframework.security:spring-security-config's releases.

6.1.0

⭐ New Features

• Explain the rational about deprecating .and() and non-lambda DSL methods #13094
• Revisit CSRF Documentation #13089

🪲 Bug Fixes

• AffirmativeBased vs. AuthorizationManagers.anyOf(...) documentation #13087
• AuthorizationAnnotationUtils.findUniqueAnnotation broken for synthetic methods #13154
• Clarify that Kotlin DSL needs an import #13103
• CookieCsrfTokenRepository overwrites previous Set-Cookie response headers #13075
• Fix code snippets in Authorize HttpServletRequest #13126
• Fix invalid link in ref doc #12573
• fix javadoc typo #12884
• Fix typo cas.adoc #13116
• Links between migration docs are out of date #13157
• RememberMeAuthenticationFilter does not use SecurityContextRepository configured in HttpSecurity #13128
• rolePrefix with empty string returns HTTP 400 as of version 6.0.3 #13083
• SAML login fails in Internet Explorer 11 #13142
• SimpleAroundFilterObservation.wrap calls scope.close() duplicated #13150
• Spring Boot 3.0 application failing to start with oauth2-resource-server and spring actuator #13122
• Update acls.adoc #13078
• Update architecture.adoc #13077
• Web Security Expression section of Documentation is obsolete or it does not work #12974

🔨 Dependency Upgrades

• Update com.nimbusds to 9.43.2 #13165
• Update io.projectreactor to 2022.0.7 #13167
• Update jackson-bom to 2.14.3 #13162
• Update jackson-databind to 2.14.3 #13163
• Update jackson-datatype-jsr310 to 2.14.3 #13164
• Update junit-bom to 5.9.3 #13170
• Update junit-platform-launcher to 1.9.3 #13172
• Update logback-classic to 1.4.7 #13161
• Update micrometer-observation to 1.10.7 #13166
• Update org.jetbrains.kotlin to 1.8.21 #13169
• Update org.junit.jupiter to 5.9.3 #13171
• Update org.springframework to 6.0.9 #13173
• Update org.springframework.data to 2022.0.6 #13174
• Update reactor-netty to 1.1.7 #13168
• Update Spring Boot to 3.0.6 #13177
• Update spring-ldap-core to 3.0.3 #13175

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​SeasonPanPan

... (truncated)

Commits

• ad2b1d4 Release 6.1.0
• f54c344 Move imports to code section
• ab519a9 Update What's New
• 66c7927 Update What's New
• 491041d Merge branch '6.0.x'
• ae70367 Merge branch '5.8.x' into 6.0.x
• e234f85 Fix hard-coded link in remote build
• 0c3bafb Fix hard-coded link in remote build
• ac7fbea Add nohttp exclusions
• e96a5e9 Merge branch '6.0.x'
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-core from 6.0.2 to 6.1.0

Release notes

Sourced from org.springframework.security:spring-security-core's releases.

6.1.0

⭐ New Features

• Explain the rational about deprecating .and() and non-lambda DSL methods #13094
• Revisit CSRF Documentation #13089

🪲 Bug Fixes

• AffirmativeBased vs. AuthorizationManagers.anyOf(...) documentation #13087
• AuthorizationAnnotationUtils.findUniqueAnnotation broken for synthetic methods #13154
• Clarify that Kotlin DSL needs an import #13103
• CookieCsrfTokenRepository overwrites previous Set-Cookie response headers #13075
• Fix code snippets in Authorize HttpServletRequest #13126
• Fix invalid link in ref doc #12573
• fix javadoc typo #12884
• Fix typo cas.adoc #13116
• Links between migration docs are out of date #13157
• RememberMeAuthenticationFilter does not use SecurityContextRepository configured in HttpSecurity #13128
• rolePrefix with empty string returns HTTP 400 as of version 6.0.3 #13083
• SAML login fails in Internet Explorer 11 #13142
• SimpleAroundFilterObservation.wrap calls scope.close() duplicated #13150
• Spring Boot 3.0 application failing to start with oauth2-resource-server and spring actuator #13122
• Update acls.adoc #13078
• Update architecture.adoc #13077
• Web Security Expression section of Documentation is obsolete or it does not work #12974

🔨 Dependency Upgrades

• Update com.nimbusds to 9.43.2 #13165
• Update io.projectreactor to 2022.0.7 #13167
• Update jackson-bom to 2.14.3 #13162
• Update jackson-databind to 2.14.3 #13163
• Update jackson-datatype-jsr310 to 2.14.3 #13164
• Update junit-bom to 5.9.3 #13170
• Update junit-platform-launcher to 1.9.3 #13172
• Update logback-classic to 1.4.7 #13161
• Update micrometer-observation to 1.10.7 #13166
• Update org.jetbrains.kotlin to 1.8.21 #13169
• Update org.junit.jupiter to 5.9.3 #13171
• Update org.springframework to 6.0.9 #13173
• Update org.springframework.data to 2022.0.6 #13174
• Update reactor-netty to 1.1.7 #13168
• Update Spring Boot to 3.0.6 #13177
• Update spring-ldap-core to 3.0.3 #13175

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​SeasonPanPan

... (truncated)

Commits

• ad2b1d4 Release 6.1.0
• f54c344 Move imports to code section
• ab519a9 Update What's New
• 66c7927 Update What's New
• 491041d Merge branch '6.0.x'
• ae70367 Merge branch '5.8.x' into 6.0.x
• e234f85 Fix hard-coded link in remote build
• 0c3bafb Fix hard-coded link in remote build
• ac7fbea Add nohttp exclusions
• e96a5e9 Merge branch '6.0.x'
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-ldap from 6.0.2 to 6.1.0

Release notes

Sourced from org.springframework.security:spring-security-ldap's releases.

6.1.0

⭐ New Features

• Explain the rational about deprecating .and() and non-lambda DSL methods #13094
• Revisit CSRF Documentation #13089

🪲 Bug Fixes

• AffirmativeBased vs. AuthorizationManagers.anyOf(...) documentation #13087
• AuthorizationAnnotationUtils.findUniqueAnnotation broken for synthetic methods #13154
• Clarify that Kotlin DSL needs an import #13103
• CookieCsrfTokenRepository overwrites previous Set-Cookie response headers #13075
• Fix code snippets in Authorize HttpServletRequest #13126
• Fix invalid link in ref doc #12573
• fix javadoc typo #12884
• Fix typo cas.adoc #13116
• Links between migration docs are out of date #13157
• RememberMeAuthenticationFilter does not use SecurityContextRepository configured in HttpSecurity #13128
• rolePrefix with empty string returns HTTP 400 as of version 6.0.3 #13083
• SAML login fails in Internet Explorer 11 #13142
• SimpleAroundFilterObservation.wrap calls scope.close() duplicated #13150
• Spring Boot 3.0 application failing to start with oauth2-resource-server and spring actuator #13122
• Update acls.adoc #13078
• Update architecture.adoc #13077
• Web Security Expression section of Documentation is obsolete or it does not work #12974

🔨 Dependency Upgrades

• Update com.nimbusds to 9.43.2 #13165
• Update io.projectreactor to 2022.0.7 #13167
• Update jackson-bom to 2.14.3 #13162
• Update jackson-databind to 2.14.3 #13163
• Update jackson-datatype-jsr310 to 2.14.3 #13164
• Update junit-bom to 5.9.3 #13170
• Update junit-platform-launcher to 1.9.3 #13172
• Update logback-classic to 1.4.7 #13161
• Update micrometer-observation to 1.10.7 #13166
• Update org.jetbrains.kotlin to 1.8.21 #13169
• Update org.junit.jupiter to 5.9.3 #13171
• Update org.springframework to 6.0.9 #13173
• Update org.springframework.data to 2022.0.6 #13174
• Update reactor-netty to 1.1.7 #13168
• Update Spring Boot to 3.0.6 #13177
• Update spring-ldap-core to 3.0.3 #13175

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​SeasonPanPan

... (truncated)

Commits

• ad2b1d4 Release 6.1.0
• f54c344 Move imports to code section
• ab519a9 Update What's New
• 66c7927 Update What's New
• 491041d Merge branch '6.0.x'
• ae70367 Merge branch '5.8.x' into 6.0.x
• e234f85 Fix hard-coded link in remote build
• 0c3bafb Fix hard-coded link in remote build
• ac7fbea Add nohttp exclusions
• e96a5e9 Merge branch '6.0.x'
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-web from 6.0.2 to 6.1.0

Release notes

Sourced from org.springframework.security:spring-security-web's releases.

6.1.0

⭐ New Features

• Explain the rational about deprecating .and() and non-lambda DSL methods #13094
• Revisit CSRF Documentation #13089

🪲 Bug Fixes

• AffirmativeBased vs. AuthorizationManagers.anyOf(...) documentation #13087
• AuthorizationAnnotationUtils.findUniqueAnnotation broken for synthetic methods #13154
• Clarify that Kotlin DSL needs an import #13103
• CookieCsrfTokenRepository overwrites previous Set-Cookie response headers #13075
• Fix code snippets in Authorize HttpServletRequest #13126
• Fix invalid link in ref doc #12573
• fix javadoc typo #12884
• Fix typo cas.adoc #13116
• Links between migration docs are out of date #13157
• RememberMeAuthenticationFilter does not use SecurityContextRepository configured in HttpSecurity #13128
• rolePrefix with empty string returns HTTP 400 as of version 6.0.3 #13083
• SAML login fails in Internet Explorer 11 #13142
• SimpleAroundFilterObservation.wrap calls scope.close() duplicated #13150
• Spring Boot 3.0 application failing to start with oauth2-resource-server and spring actuator #13122
• Update acls.adoc #13078
• Update architecture.adoc #13077
• Web Security Expression section of Documentation is obsolete or it does not work #12974

🔨 Dependency Upgrades

• Update com.nimbusds to 9.43.2 #13165
• Update io.projectreactor to 2022.0.7 #13167
• Update jackson-bom to 2.14.3 #13162
• Update jackson-databind to 2.14.3 #13163
• Update jackson-datatype-jsr310 to 2.14.3 #13164
• Update junit-bom to 5.9.3 #13170
• Update junit-platform-launcher to 1.9.3 #13172
• Update logback-classic to 1.4.7 #13161
• Update micrometer-observation to 1.10.7 #13166
• Update org.jetbrains.kotlin to 1.8.21 #13169
• Update org.junit.jupiter to 5.9.3 #13171
• Update org.springframework to 6.0.9 #13173
• Update org.springframework.data to 2022.0.6 #13174
• Update reactor-netty to 1.1.7 #13168
• Update Spring Boot to 3.0.6 #13177
• Update spring-ldap-core to 3.0.3 #13175

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​SeasonPanPan

... (truncated)

Commits

• ad2b1d4 Release 6.1.0
• f54c344 Move imports to code section
• ab519a9 Update What's New
• 66c7927 Update What's New
• 491041d Merge branch '6.0.x'
• ae70367 Merge branch '5.8.x' into 6.0.x
• e234f85 Fix hard-coded link in remote build
• 0c3bafb Fix hard-coded link in remote build
• ac7fbea Add nohttp exclusions
• e96a5e9 Merge branch '6.0.x'
• Additional commits viewable in compare view

Updates org.springframework.security:spring-security-oauth2-jose from 6.0.2 to 6.1.0

Release notes

Sourced from org.springframework.security:spring-security-oauth2-jose's releases.

6.1.0

⭐ New Features

• Explain the rational about deprecating .and() and non-lambda DSL methods #13094
• Revisit CSRF Documentation #13089

🪲 Bug Fixes

• AffirmativeBased vs. AuthorizationManagers.anyOf(...) documentation #13087
• AuthorizationAnnotationUtils.findUniqueAnnotation broken for synthetic methods #13154
• Clarify that Kotlin DSL needs an import #13103
• CookieCsrfTokenRepository overwrites previous Set-Cookie response headers #13075
• Fix code snippets in Authorize HttpServletRequest #13126
• Fix invalid link in ref doc #12573
• fix javadoc typo #12884
• Fix typo cas.adoc #13116
• Links between migration docs are out of date #13157
• RememberMeAuthenticationFilter does not use SecurityContextRepository configured in HttpSecurity #13128
• rolePrefix with empty string returns HTTP 400 as of version 6.0.3 #13083
• SAML login fails in Internet Explorer 11 #13142
• SimpleAroundFilterObservation.wrap calls scope.close() duplicated #13150
• Spring Boot 3.0 application failing to start with oauth2-resource-server and spring actuator #13122
• Update acls.adoc #13078
• Update architecture.adoc #13077
• Web Security Expression section of Documentation is obsolete or it does not work #12974

🔨 Dependency Upgrades

• Update com.nimbusds to 9.43.2 #13165
• Update io.projectreactor to 2022.0.7 #13167
• Update jackson-bom to 2.14.3 #13162
• Update jackson-databind to 2.14.3 #13163
• Update jackson-datatype-jsr310 to 2.14.3 #13164
• Update junit-bom to 5.9.3 #13170
• Update junit-platform-launcher to 1.9.3 #13172
• Update logback-classic to 1.4.7 #13161
• Update micrometer-observation to 1.10.7 #13166
• Update org.jetbrains.kotlin to 1.8.21 #13169
• Update org.junit.jupiter to 5.9.3 #13171
• Update org.springframework to 6.0.9 #13173
• Update org.springframework.data to 2022.0.6 #13174
• Update reactor-netty to 1.1.7 #13168
• Update Spring Boot to 3.0.6 #13177
• Update spring-ldap-core to 3.0.3 #13175

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​SeasonPanPan

... (truncated)

Commits

• ad2b1d4 Release 6.1.0
• f54c344 Move imports to code section
• ab519a9 Update What's New
• 66c7927 Update What's New
• 491041d Merge branch '6.0.x'
• ae70367 Merge branch '5.8.x' into 6.0.x
• e234f85 Fix hard-coded link in remote build
• 0c3bafb Fix hard-coded link in remote build
• ac7fbea Add nohttp exclusions
• e96a5e9 Merge branch '6.0.x'
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Dependabot tried to add @planetf1 as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/bogdan-sava/egeria/pulls/1684/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the bogdan-sava/egeria repository. // See: https://docs.github.com/rest/reference/pulls#request-reviewers-for-a-pull-request