Vaadin Spring Add-on 12.4.1 for Vaadin 14

This is a minor maintenance release for the Vaadin Spring add-on, built on Flow 2.7.4 for Vaadin 14.7.

Changes since 12.4.0

• Spring Boot 2.6 compatibility (#944) (#948)

List of all changes compared to 12.4.0

Vaadin Spring add-on 19.0.0 for Vaadin 22

Spring add-on for Vaadin 22.0.0.

Fixes since 19.0.0.rc1

• Spring Boot 2.6 compatibility (Issue #941, PR #944)

Vaadin Spring add-on 19.0.0.rc1 for Vaadin 22

Release candidate for Vaadin 22.0.0.rc1.

Fixes since 19.0.0.beta3

• Expose VaadinStatelessSecurityConfigurer (#931)
• Make vaadin.blacklisted-packages specifiable with packages (#935)

Vaadin Spring add-on 19.0.0.beta3 for Vaadin 22

Beta release for Vaadin 22.0.0.beta2.

Fixes since 19.0.0.beta2

• fix: Launch browser only if requested, not by default (#932)

Vaadin Spring add-on 19.0.0.beta2 for Vaadin 22

Beta release for Vaadin 22.0.0.beta2.

Fixes since 19.0.0.beta1

• feat: Launch a browser automatically when starting an app in development mode (#873)
• update testbench version (#929)

Vaadin Spring add-on 19.0.0.beta1 for Vaadin 22

Beta release for Vaadin 22.0.0.beta1.

Fixes since 19.0.0.alpha5

• fix: configure 401 unauthorized response for endpoints (#925) Fixes #924

19.0.0.alpha5

Prerelease for Vaadin 22 on top of Flow 9.0.0.alpha11

Fixes since 19.0.0.alpha4

No user-facing changes. Fixed compatibility issue with Flow 9.0.0.alpha11.

To see what is included, take a look at the changes since version 19.0.0.alpha4

19.0.0.alpha4

Prerelease for Vaadin 22 on top of Flow 9.0.0.alpha10

Fixes since 19.0.0.alpha3

• Ensure CSRF is compatible with stateless authentication (#918)

To see what is included, take a look at the changes since version 19.0.0.alpha3

19.0.0.alpha3

Prerelease for Vaadin 22 on top of Flow 9.0.0.alpha9

New Features since 19.0.0.alpha2

• Don't ignore endpoint request for Spring CSRF check (#908)

  Vaadin Fusion endpoint requests are no longer ignored in Spring Security CSRF configuration, as they are now compatible.

Fixes since 19.0.0.alpha2

• Take into account that a VaadinSession can be detached from the HTTP session (#911)

  Fixes NPE from VaadinAwareSecurityContextHolderStrategy when logging out, see #910.

To see what is included, take a look at the changes since version 19.0.0.alpha2

19.0.0.alpha2

Prerelease for Vaadin 22 on top of Flow 9.0.0.alpha6

New Features since 19.0.0.alpha1

Stateless authentication with Spring Security (#900)

User can use JWT-based authentication with the VaadinWebSecurityConfigurerAdap.setStatelessAuthentication() methods. Note, need to add spring-security-oauth2-resource-server and spring-security-oauth2-jose dependencies.

Always use the security context from VaadinSession when one is available (#907)

This ensures that the security context is the expected (the one from the UI you run access() on) if you run UI.access from a request to another VaadinSession.

To see what is included, take a look at the changes since version 19.0.0.alpha1