Blog post Authors
Josh Cummings

Josh Cummings

Josh has been a software engineer for over 15 years building enterprise applications across multiple industries. He has long been passionate about application security and loves opportunities to mentor and to learn from others about security awareness.

When Josh isn't hacking away at code, he is either running, playing basketball, camping, or reading a Brandon Sanderson novel.

Recent Blog posts by Josh Cummings

Spring Security 5.1.0.RC2 Released

Releases | September 10, 2018 | ...
On behalf of the community I am pleased to announce the release of Spring Security 5.1.0.RC2. This release comes with 50+ tickets closed. As always we look forward to hearing your feedback! You can find the highlights below: Table of Contents Simplified DSL for OAuth2 WebClient Extensions Servlet Enhancements OAuth2 Token Request Configuration More Provider Configuration Metadata Available Resource Server Claims Mapping RestOperations Support Other Improvements X.509 Principal Extractor LDAP Custom Environment Variables WebFlux Enhancements OAuth2 Resource Server OAuth2 Client Redirect to…
Read more

Spring Security OAuth2 Boot Auto-config 2.0.4 & 2.1.0.M2 Released

Releases | August 29, 2018 | ...
I’m pleased to announce on behalf of the community Spring Security OAuth2 Boot Auto-config 2.0.4 and 2.1.0.M2. Both releases primarily deliver bug fixes and dependency version updates along with some minor improvements. Of particular note is that these align with recent releases of Spring Boot. For a complete list of changes, please refer to the 2.0.4 changelog and 2.1.0.M2 changelog. Project Site | Reference | Help
Read more

Spring Security 5.1.0.RC1 Released

Releases | August 21, 2018 | ...
On behalf of the community I am pleased to announce the release of Spring Security 5.1.0.RC1. This release comes with 50+ tickets closed. As always we look forward to hearing your feedback! You can find the highlights below: Table of Contents Servlet OAuth2 Resource Server Open ID Provider Configuration Claim Validation GrantedAuthority Extraction OAuth2 Client Credentials Grant Feature-Policy Secure Header WebFlux OAuth2 Resource Servers OAuth2 Login/Client Authorization Code Grant Authorization Request Resolver Authorized Client Repository Hardening Your Application Secure Headers CORS…
Read more

Spring Security 5.0.7 Released

Releases | July 26, 2018 | ...
On behalf of the community, I am pleased to announce that Spring Security 5.0.7 (changelog) has been released. The release primarily delivers bug fixes and dependency version updates along with some minor improvements. The releases will be found in the upcoming Spring Boot maintenance releases coming later this week. Project Site | Reference | Help
Read more

Spring Security 5.0.5 Released

Releases | May 08, 2018 | ...
2018-05-09 Update: The releases address a vulnerability. Please see this blog post published after the associated Spring Boot 2.0.2 releases. I'm pleased to announce the release of Spring Security 5.0.5. The release primarily delivers bug fixes and dependency version updates along with some minor improvements. For a complete list of changes, please refer to the 5.0.5 changelog. Project Site | Reference | Help
Read more

Get ahead

VMware offers training and certification to turbo-charge your progress.

Learn more

Get support

Tanzu Spring offers support and binaries for OpenJDK™, Spring, and Apache Tomcat® in one simple subscription.

Learn more

Upcoming events

Check out all the upcoming events in the Spring community.

View all