diff --git a/CHANGELOG.md b/CHANGELOG.md
index 047c05605..b9f0e80a8 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,14 @@
All notable changes to this project will be documented in this file.
+## 3.4.2
+
+- [spring-security]
+ - fixes a NPE bug introduced in the `HybridJwtDecoder` when the incoming request does not
+ contain `x-forwarded-client-cert` header
+ - `SecurityContextAutoConfiguration` which synchronises all SecurityContexts is now enabled by default. To disable it
+ set the `sap.spring.security.hybrid.sync_securitycontext` spring property to false
+
## 3.4.1
- [spring-security] fixes a NPE bug introduced in the `IasJwtDecoder` when the incoming request does not
diff --git a/README.md b/README.md
index d298ce6db..0ad4cc6a9 100644
--- a/README.md
+++ b/README.md
@@ -126,7 +126,7 @@ The SAP Cloud Security Services Integration is published to maven central: https
com.sap.cloud.security
java-bom
- 3.4.1
+ 3.4.2
import
pom
diff --git a/bom/pom.xml b/bom/pom.xml
index d8e1e2f17..2f61b4646 100644
--- a/bom/pom.xml
+++ b/bom/pom.xml
@@ -8,7 +8,7 @@
com.sap.cloud.security
java-bom
- 3.4.1
+ 3.4.2
pom
java-bom
diff --git a/env/pom.xml b/env/pom.xml
index 920e6a7d0..266712435 100644
--- a/env/pom.xml
+++ b/env/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
com.sap.cloud.security
diff --git a/java-api/README.md b/java-api/README.md
index ab076a5c3..aea232e91 100644
--- a/java-api/README.md
+++ b/java-api/README.md
@@ -5,6 +5,6 @@
com.sap.cloud.security
java-api
- 3.4.1
+ 3.4.2
```
diff --git a/java-api/pom.xml b/java-api/pom.xml
index 3f9d0dd08..f3d4f01a6 100644
--- a/java-api/pom.xml
+++ b/java-api/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
com.sap.cloud.security
diff --git a/java-security-it/pom.xml b/java-security-it/pom.xml
index 8d3237143..4bcecf07e 100644
--- a/java-security-it/pom.xml
+++ b/java-security-it/pom.xml
@@ -9,7 +9,7 @@
parent
com.sap.cloud.security.xsuaa
- 3.4.1
+ 3.4.2
java-security-it
diff --git a/java-security-test/README.md b/java-security-test/README.md
index 4eecba9ac..9572d6173 100644
--- a/java-security-test/README.md
+++ b/java-security-test/README.md
@@ -39,9 +39,9 @@ It is pre-configured with a security filter that only accepts valid tokens. Furt
```xml
com.sap.cloud.security
- java-security-test
- 3.4.1
- test
+ java-security-test
+ 3.4.2
+ test
```
diff --git a/java-security-test/pom.xml b/java-security-test/pom.xml
index 80cd5295d..907c19d8f 100644
--- a/java-security-test/pom.xml
+++ b/java-security-test/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
com.sap.cloud.security
diff --git a/java-security/README.md b/java-security/README.md
index 3dfbcc77b..027f614cb 100644
--- a/java-security/README.md
+++ b/java-security/README.md
@@ -67,7 +67,7 @@ To be able to validate tokens it performs the following tasks:
com.sap.cloud.security
java-security
- 3.4.1
+ 3.4.2
org.apache.httpcomponents
diff --git a/java-security/pom.xml b/java-security/pom.xml
index 65025d403..340aa579e 100644
--- a/java-security/pom.xml
+++ b/java-security/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
com.sap.cloud.security
diff --git a/pom.xml b/pom.xml
index 613d25cfc..500707e59 100644
--- a/pom.xml
+++ b/pom.xml
@@ -7,7 +7,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
pom
parent
diff --git a/samples/java-security-usage-ias/pom.xml b/samples/java-security-usage-ias/pom.xml
index 613a38def..7ff53483c 100755
--- a/samples/java-security-usage-ias/pom.xml
+++ b/samples/java-security-usage-ias/pom.xml
@@ -6,13 +6,13 @@
4.0.0
com.sap.cloud.security.xssec.samples
java-security-usage-ias
- 3.4.1
+ 3.4.2
war
17
17
- 3.4.1
+ 3.4.2
2.0.5
4.5.14
6.0.0
diff --git a/samples/java-security-usage/pom.xml b/samples/java-security-usage/pom.xml
index d50205b28..9fbd88dcf 100755
--- a/samples/java-security-usage/pom.xml
+++ b/samples/java-security-usage/pom.xml
@@ -6,7 +6,7 @@
4.0.0
com.sap.cloud.security.xssec.samples
java-security-usage
- 3.4.1
+ 3.4.2
war
diff --git a/spring-xsuaa-it/pom.xml b/spring-xsuaa-it/pom.xml
index 5f4494c70..2be47ab24 100644
--- a/spring-xsuaa-it/pom.xml
+++ b/spring-xsuaa-it/pom.xml
@@ -14,12 +14,12 @@
spring-xsuaa-it
spring-xsuaa-it
- 3.4.1
+ 3.4.2
4.10.0
17
- 3.4.1
+ 3.4.2
diff --git a/spring-xsuaa-starter/pom.xml b/spring-xsuaa-starter/pom.xml
index c25c7566c..a4857c0f0 100644
--- a/spring-xsuaa-starter/pom.xml
+++ b/spring-xsuaa-starter/pom.xml
@@ -16,7 +16,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
xsuaa-spring-boot-starter
diff --git a/spring-xsuaa-test/README.md b/spring-xsuaa-test/README.md
index b416dc3ff..f6e387e50 100644
--- a/spring-xsuaa-test/README.md
+++ b/spring-xsuaa-test/README.md
@@ -31,7 +31,7 @@ This includes for example a `JwtGenerator` that generates JSON Web Tokens (JWT)
com.sap.cloud.security.xsuaa
spring-xsuaa-test
- 3.4.1
+ 3.4.2
test
diff --git a/spring-xsuaa-test/pom.xml b/spring-xsuaa-test/pom.xml
index 6aab73d71..948de584a 100644
--- a/spring-xsuaa-test/pom.xml
+++ b/spring-xsuaa-test/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
spring-xsuaa-test
diff --git a/spring-xsuaa/README.md b/spring-xsuaa/README.md
index e907a99cc..afe6f6cce 100644
--- a/spring-xsuaa/README.md
+++ b/spring-xsuaa/README.md
@@ -39,7 +39,7 @@ These (spring) dependencies need to be provided:
com.sap.cloud.security.xsuaa
spring-xsuaa
- 3.4.1
+ 3.4.2
org.apache.logging.log4j
@@ -53,7 +53,7 @@ These (spring) dependencies need to be provided:
com.sap.cloud.security.xsuaa
xsuaa-spring-boot-starter
- 3.4.1
+ 3.4.2
```
diff --git a/spring-xsuaa/pom.xml b/spring-xsuaa/pom.xml
index a1101a985..f891801ef 100644
--- a/spring-xsuaa/pom.xml
+++ b/spring-xsuaa/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
spring-xsuaa
diff --git a/token-client/README.md b/token-client/README.md
index 54a9ba22c..944471221 100644
--- a/token-client/README.md
+++ b/token-client/README.md
@@ -49,7 +49,7 @@ In context of a Spring Boot application you can leverage autoconfiguration provi
com.sap.cloud.security
resourceserver-security-spring-boot-starter
- 3.4.1
+ 3.4.2
```
In context of Spring Applications you will need the following dependencies:
@@ -57,7 +57,7 @@ In context of Spring Applications you will need the following dependencies:
com.sap.cloud.security.xsuaa
token-client
- 3.4.1
+ 3.4.2
org.apache.httpcomponents
@@ -124,7 +124,7 @@ See the [OAuth2ServiceConfiguration](#oauth2serviceconfiguration) section and [H
com.sap.cloud.security.xsuaa
token-client
- 3.4.1
+ 3.4.2
org.apache.httpcomponents
diff --git a/token-client/pom.xml b/token-client/pom.xml
index b38ebe9a3..71c25acc4 100644
--- a/token-client/pom.xml
+++ b/token-client/pom.xml
@@ -9,7 +9,7 @@
com.sap.cloud.security.xsuaa
parent
- 3.4.1
+ 3.4.2
token-client