Skip to content

Commit

Permalink
Bump version to 3.3.1 (#1380)
Browse files Browse the repository at this point in the history 
* fix the mvn target and source versions

Signed-off-by: liga-oz <[email protected]>

---------

Signed-off-by: Līga  <[email protected]>
Signed-off-by: liga-oz <[email protected]>
Co-authored-by: Līga <[email protected]>
Co-authored-by: liga-oz <[email protected]>
  • Loading branch information
@finkmanAtSap @liga-oz
3 people authored Dec 6, 2023
1 parent 3e29c72 commit 4155c27
Show file tree
Hide file tree
Showing 32 changed files with 65 additions and 53 deletions.
22 changes: 17 additions & 5 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,12 +1,24 @@
# Change Log
All notable changes to this project will be documented in this file.

## 3.3.0
**Breaking Change [java-security-test]**: To validate mocked XSUAA tokens issued by java-security-test module, the UAA_DOMAIN property of the service configuration must now include the port of the Wiremock server.\
Likewise for validating IAS tokens, the trusted *domains* array of the service configuration also needs to include the Wiremock URL including the port.\
The full wiremock URL is available via SecurityTestContext#getWireMockServer#baseUrl.
## 3.3.1
✅ Resolves a Breaking Change introduced in version 3.3.0. Consumers should be able to update to 3.3.1 from a version < 3.3.0 without having to adjust test credentials used in their unit tests when using `java-security-test` or `spring-xsuaa-mock`.

In version 3.3.1, when `java-security-test` is loaded (which should only occur during testing), credentials with `localhost` as the `uaadomain` (XSUAA) or trusted `domains` (IAS) can be used to validate tokens that include a port for `localhost` in their `jku` (XSUAA) or `issuer` (IAS). It's important to note that token validation is less strict in this case and may accept certain edge cases of malicious tokens that would not be accepted in a production environment.

*Note*: If you are building your configuration via SecurityTestContext#getOAuth2ServiceConfigurationBuilderFromFile, this will already be preconfigured correctly, but you must not overwrite these properties with only "localhost".
#### Dependency upgrades
- Bump spring.boot.version from 3.1.5 to 3.1.6
- Bump spring.core.version from 6.0.13 to 6.0.14
- Bump spring.security.version from 6.1.5 to 6.2.0
- Bump apache.httpclient5.version from 5.2.1 to 5.2.3
- Bump wiremock.version from 3.0.0-beta-10 to 3.3.1 and replace org.wiremock.wiremock-standalone with com.github.tomakehurst.wiremock
- Bump logback-core, logback-classic from 1.4.6 to 1.4.14

## 3.3.0
**Breaking Change ⚠️ [java-security-test]** (Resolved in version 3.3.1):
To validate mocked XSUAA tokens issued by java-security-test module, the UAA_DOMAIN property of the service configuration must now include the full address of the Wiremock server in the format *http://localhost:\<PORT\>*.\
Likewise, for validating IAS tokens issued by the java-security-test module, the trusted *domains* array of the service configuration needs to include the Wiremock URL including the port but NOT the protocol, i.e. in the format *localhost:\<PORT\>*.\
The full wiremock URL including *http://* and *\<PORT\>* is available via SecurityTestContext#getWireMockServer#baseUrl.

- [java-security]
- [XSUAA/IAS] Adapt optimized server API
Expand Down
2 changes: 1 addition & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -124,7 +124,7 @@ The SAP Cloud Security Services Integration is published to maven central: https
<dependency>
<groupId>com.sap.cloud.security</groupId>
<artifactId>java-bom</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<scope>import</scope>
<type>pom</type>
</dependency>
Expand Down
8 changes: 4 additions & 4 deletions bom/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@

<groupId>com.sap.cloud.security</groupId>
<artifactId>java-bom</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<packaging>pom</packaging>
<name>java-bom</name>

Expand Down Expand Up @@ -49,10 +49,10 @@
</distributionManagement>

<properties>
<maven.compiler.source>8</maven.compiler.source>
<maven.compiler.target>8</maven.compiler.target>
<maven.compiler.source>17</maven.compiler.source>
<maven.compiler.target>17</maven.compiler.target>
<xsuaa-groupId>com.sap.cloud.security.xsuaa</xsuaa-groupId>
<maven.source.plugin.version>3.3.0</maven.source.plugin.version>
<maven.source.plugin.version>3.2.1</maven.source.plugin.version>
</properties>

<dependencyManagement>
Expand Down
2 changes: 1 addition & 1 deletion env/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<groupId>com.sap.cloud.security</groupId>
Expand Down
2 changes: 1 addition & 1 deletion java-api/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,6 @@
<dependency>
<groupId>com.sap.cloud.security</groupId>
<artifactId>java-api</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</dependency>
```
2 changes: 1 addition & 1 deletion java-api/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<groupId>com.sap.cloud.security</groupId>
Expand Down
2 changes: 1 addition & 1 deletion java-security-it/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<artifactId>parent</artifactId>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<artifactId>java-security-it</artifactId>
Expand Down
2 changes: 1 addition & 1 deletion java-security-test/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ It is pre-configured with a security filter that only accepts valid tokens. Furt
<dependency>
<groupId>com.sap.cloud.security</groupId>
<artifactId>java-security-test</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<scope>test</scope>
</dependency>
```
Expand Down
2 changes: 1 addition & 1 deletion java-security-test/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<groupId>com.sap.cloud.security</groupId>
Expand Down
2 changes: 1 addition & 1 deletion java-security/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,7 @@ To be able to validate tokens it performs the following tasks:
<dependency>
<groupId>com.sap.cloud.security</groupId>
<artifactId>java-security</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</dependency>
<dependency>
<groupId>org.apache.httpcomponents.client5</groupId>
Expand Down
2 changes: 1 addition & 1 deletion java-security/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<groupId>com.sap.cloud.security</groupId>
Expand Down
2 changes: 1 addition & 1 deletion pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@

<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<packaging>pom</packaging>

<name>parent</name>
Expand Down
4 changes: 2 additions & 2 deletions samples/java-security-usage-ias/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,13 +6,13 @@
<modelVersion>4.0.0</modelVersion>
<groupId>com.sap.cloud.security.xssec.samples</groupId>
<artifactId>java-security-usage-ias</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<packaging>war</packaging>

<properties>
<maven.compiler.source>17</maven.compiler.source>
<maven.compiler.target>17</maven.compiler.target>
<sap.cloud.security.version>3.3.0</sap.cloud.security.version>
<sap.cloud.security.version>3.3.1</sap.cloud.security.version>
<slf4j.api.version>2.0.5</slf4j.api.version>
<apache.httpclient.version>4.5.14</apache.httpclient.version>
<jakarta.servlet.api.version>6.0.0</jakarta.servlet.api.version>
Expand Down
4 changes: 2 additions & 2 deletions samples/java-security-usage/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
<modelVersion>4.0.0</modelVersion>
<groupId>com.sap.cloud.security.xssec.samples</groupId>
<artifactId>java-security-usage</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<packaging>war</packaging>

<!--profiles>
Expand All @@ -27,7 +27,7 @@
<properties>
<maven.compiler.source>17</maven.compiler.source>
<maven.compiler.target>17</maven.compiler.target>
<sap.cloud.security.version>3.3.0</sap.cloud.security.version>
<sap.cloud.security.version>3.3.1</sap.cloud.security.version>
<slf4j.api.version>2.0.5</slf4j.api.version>
<apache.httpclient.version>4.5.14</apache.httpclient.version>
<jakarta.servlet.api.version>6.0.0</jakarta.servlet.api.version>
Expand Down
4 changes: 2 additions & 2 deletions samples/java-tokenclient-usage/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,13 +6,13 @@
<modelVersion>4.0.0</modelVersion>
<groupId>com.sap.cloud.security.xssec.samples</groupId>
<artifactId>java-tokenclient-usage</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<packaging>war</packaging>

<properties>
<maven.compiler.source>17</maven.compiler.source>
<maven.compiler.target>17</maven.compiler.target>
<sap.cloud.security.version>3.3.0</sap.cloud.security.version>
<sap.cloud.security.version>3.3.1</sap.cloud.security.version>
<apache.httpclient.version>4.5.14</apache.httpclient.version>
<jakarta.servlet.api.version>6.0.0</jakarta.servlet.api.version>
<slf4j.api.version>2.0.5</slf4j.api.version>
Expand Down
2 changes: 1 addition & 1 deletion samples/sap-java-buildpack-api-usage/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
<modelVersion>4.0.0</modelVersion>
<groupId>com.sap.cloud.security.xssec.samples</groupId>
<artifactId>sap-java-buildpack-api-usage</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<packaging>war</packaging>

<properties>
Expand Down
6 changes: 3 additions & 3 deletions samples/spring-security-basic-auth/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,14 +13,14 @@
</parent>

<artifactId>spring-security-basic-auth</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<name>spring-security-basic-auth</name>

<properties>
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
<java.version>17</java.version>
<sap.cloud.security.version>3.3.0</sap.cloud.security.version>
<sap.cloud.security.version>3.3.1</sap.cloud.security.version>
</properties>

<dependencyManagement>
Expand Down Expand Up @@ -72,7 +72,7 @@
<dependency>
<groupId>com.sap.cloud.security</groupId>
<artifactId>java-security-test</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<scope>test</scope>
</dependency>
</dependencies>
Expand Down
4 changes: 2 additions & 2 deletions samples/spring-security-hybrid-usage/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@

<groupId>com.sap.cloud.security.samples</groupId>
<artifactId>spring-security-hybrid-usage</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>

<properties>
<!--
Expand All @@ -28,7 +28,7 @@
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
<java.version>17</java.version>
<sap.cloud.security.version>3.3.0</sap.cloud.security.version>
<sap.cloud.security.version>3.3.1</sap.cloud.security.version>
<apache.httpclient.version>4.5.14</apache.httpclient.version>
</properties>

Expand Down
4 changes: 2 additions & 2 deletions samples/spring-security-xsuaa-usage/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@

<groupId>com.sap.cloud.security.samples</groupId>
<artifactId>spring-security-xsuaa-usage</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<name>spring-security-xsuaa-usage</name>

<properties>
Expand All @@ -29,7 +29,7 @@
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
<java.version>17</java.version>
<sap.cloud.security.version>3.3.0</sap.cloud.security.version>
<sap.cloud.security.version>3.3.1</sap.cloud.security.version>
<http.client5>5.2.1</http.client5>
</properties>

Expand Down
2 changes: 1 addition & 1 deletion spring-security-compatibility/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<groupId>com.sap.cloud.security.xsuaa</groupId>
Expand Down
2 changes: 1 addition & 1 deletion spring-security-starter/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<groupId>com.sap.cloud.security</groupId>
Expand Down
2 changes: 1 addition & 1 deletion spring-security/Migration_SpringXsuaaProjects.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -157,7 +157,7 @@ It is provided in an extra module. This maven dependency needs to be provided ad
<dependency>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>spring-security-compatibility</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</dependency>
```

Expand Down
2 changes: 1 addition & 1 deletion spring-security/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -66,7 +66,7 @@ These (spring) dependencies need to be provided:
<dependency>
<groupId>com.sap.cloud.security</groupId>
<artifactId>resourceserver-security-spring-boot-starter</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</dependency>
```

Expand Down
4 changes: 2 additions & 2 deletions spring-security/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,13 +9,13 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<groupId>com.sap.cloud.security</groupId>
<artifactId>spring-security</artifactId>
<packaging>jar</packaging>
<version>3.3.0</version>
<version>3.3.1</version>

<dependencies>
<dependency>
Expand Down
4 changes: 2 additions & 2 deletions spring-xsuaa-it/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,12 +14,12 @@

<artifactId>spring-xsuaa-it</artifactId>
<name>spring-xsuaa-it</name>
<version>3.3.0</version>
<version>3.3.1</version>

<properties>
<mockwebserver.version>4.10.0</mockwebserver.version>
<java.version>17</java.version>
<sap.cloud.security.version>3.3.0</sap.cloud.security.version>
<sap.cloud.security.version>3.3.1</sap.cloud.security.version>
</properties>

<dependencyManagement>
Expand Down
2 changes: 1 addition & 1 deletion spring-xsuaa-starter/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<artifactId>xsuaa-spring-boot-starter</artifactId>
Expand Down
2 changes: 1 addition & 1 deletion spring-xsuaa-test/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@ This includes for example a `JwtGenerator` that generates JSON Web Tokens (JWT)
<dependency>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>spring-xsuaa-test</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
<scope>test</scope>
</dependency>

Expand Down
2 changes: 1 addition & 1 deletion spring-xsuaa-test/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<artifactId>spring-xsuaa-test</artifactId>
Expand Down
4 changes: 2 additions & 2 deletions spring-xsuaa/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,7 @@ These (spring) dependencies need to be provided:
<dependency>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>spring-xsuaa</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</dependency>
<dependency> <!-- new with version 1.5.0 -->
<groupId>org.apache.logging.log4j</groupId>
Expand All @@ -53,7 +53,7 @@ These (spring) dependencies need to be provided:
<dependency>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>xsuaa-spring-boot-starter</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</dependency>
```

Expand Down
2 changes: 1 addition & 1 deletion spring-xsuaa/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
<parent>
<groupId>com.sap.cloud.security.xsuaa</groupId>
<artifactId>parent</artifactId>
<version>3.3.0</version>
<version>3.3.1</version>
</parent>

<artifactId>spring-xsuaa</artifactId>
Expand Down
Loading

0 comments on commit 4155c27

Please sign in to comment.