From aed95a4dd6dea8b8123241f4a90bce8de6dd7b93 Mon Sep 17 00:00:00 2001
From: Josh Cummings <3627351+jzheaux@users.noreply.github.com>
Date: Thu, 12 Dec 2024 11:43:42 -0700
Subject: [PATCH] Add serialVersionUID to Authentication classes

Issue gh-16276
---
 .../OidcBackChannelLogoutAuthentication.java  |   4 +
 .../client/OidcLogoutAuthenticationToken.java |   5 ++
 .../OidcBackChannelLogoutAuthentication.java  |   4 +
 .../server/OidcLogoutAuthenticationToken.java |   5 ++
 ...gSecurityCoreVersionSerializableTests.java |  85 ++++++++++++++++++
 ...on.AnonymousAuthenticationToken.serialized | Bin 0 -> 787 bytes
 ...tion.TestingAuthenticationToken.serialized | Bin 0 -> 534 bytes
 ...OneTimeTokenAuthenticationToken.serialized | Bin 0 -> 699 bytes
 ....ldap.userdetails.LdapAuthority.serialized | Bin 0 -> 265 bytes
 ...tication.logout.OidcLogoutToken.serialized | Bin 0 -> 895 bytes
 ....session.OidcSessionInformation.serialized | Bin 0 -> 2430 bytes
 ...ultOAuth2AuthenticatedPrincipal.serialized | Bin 0 -> 1225 bytes
 ...y.oauth2.core.OAuth2AccessToken.serialized | Bin 0 -> 733 bytes
 ...ty.oauth2.core.OAuth2DeviceCode.serialized | Bin 0 -> 313 bytes
 ....oauth2.core.OAuth2RefreshToken.serialized | Bin 0 -> 322 bytes
 ...rity.oauth2.core.OAuth2UserCode.serialized | Bin 0 -> 311 bytes
 ...ty.oauth2.core.oidc.OidcIdToken.serialized | Bin 0 -> 682 bytes
 ....core.oidc.user.DefaultOidcUser.serialized | Bin 0 -> 2051 bytes
 ...ore.oidc.user.OidcUserAuthority.serialized | Bin 0 -> 1313 bytes
 ...amework.security.oauth2.jwt.Jwt.serialized | Bin 0 -> 831 bytes
 ...ospectionAuthenticatedPrincipal.serialized | Bin 0 -> 1434 bytes
 ...hentication.Saml2Authentication.serialized | Bin 0 -> 1187 bytes
 ....Saml2PostAuthenticationRequest.serialized | Bin 0 -> 417 bytes
 ...l2RedirectAuthenticationRequest.serialized | Bin 0 -> 473 bytes
 ...ation.logout.Saml2LogoutRequest.serialized | Bin 0 -> 736 bytes
 .../ott/OneTimeTokenAuthenticationToken.java  |   4 +
 .../ldap/userdetails/LdapAuthority.java       |   2 +
 .../logout/OidcLogoutToken.java               |   4 +
 .../oidc/session/OidcSessionInformation.java  |   4 +
 .../DefaultOAuth2AuthenticatedPrincipal.java  |   4 +
 .../oauth2/core/OAuth2AccessToken.java        |   4 +
 .../oauth2/core/OAuth2DeviceCode.java         |   4 +
 .../oauth2/core/OAuth2RefreshToken.java       |   4 +
 .../security/oauth2/core/OAuth2UserCode.java  |   4 +
 .../oauth2/core/oidc/OidcIdToken.java         |   4 +
 .../core/oidc/user/DefaultOidcUser.java       |   4 +
 .../core/oidc/user/OidcUserAuthority.java     |   4 +
 .../security/oauth2/jwt/Jwt.java              |   4 +
 .../server/resource/BearerTokenError.java     |   5 ++
 .../BearerTokenAuthentication.java            |   8 ++
 ...h2IntrospectionAuthenticatedPrincipal.java |   4 +
 .../authentication/Saml2Authentication.java   |   4 +
 .../Saml2AuthenticationToken.java             |   4 +
 .../Saml2PostAuthenticationRequest.java       |   5 ++
 .../Saml2RedirectAuthenticationRequest.java   |   5 ++
 .../logout/Saml2LogoutRequest.java            |   4 +
 46 files changed, 192 insertions(+)
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.AnonymousAuthenticationToken.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.TestingAuthenticationToken.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.ott.OneTimeTokenAuthenticationToken.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.ldap.userdetails.LdapAuthority.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.client.oidc.authentication.logout.OidcLogoutToken.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.client.oidc.session.OidcSessionInformation.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.DefaultOAuth2AuthenticatedPrincipal.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2AccessToken.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2DeviceCode.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2RefreshToken.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2UserCode.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.OidcIdToken.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.user.DefaultOidcUser.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.user.OidcUserAuthority.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.jwt.Jwt.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.server.resource.introspection.OAuth2IntrospectionAuthenticatedPrincipal.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2Authentication.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2PostAuthenticationRequest.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2RedirectAuthenticationRequest.serialized
 create mode 100644 config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.logout.Saml2LogoutRequest.serialized

diff --git a/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcBackChannelLogoutAuthentication.java b/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcBackChannelLogoutAuthentication.java
index 73f76bffd78..4b8e1f74328 100644
--- a/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcBackChannelLogoutAuthentication.java
+++ b/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcBackChannelLogoutAuthentication.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.config.annotation.web.configurers.oauth2.client;
 
+import java.io.Serial;
 import java.util.Collections;
 
 import org.springframework.security.authentication.AbstractAuthenticationToken;
@@ -36,6 +37,9 @@
  */
 class OidcBackChannelLogoutAuthentication extends AbstractAuthenticationToken {
 
+	@Serial
+	private static final long serialVersionUID = 9095810699956350287L;
+
 	private final OidcLogoutToken logoutToken;
 
 	private final ClientRegistration clientRegistration;
diff --git a/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcLogoutAuthenticationToken.java b/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcLogoutAuthenticationToken.java
index 4a227e3be8e..3706151e1f4 100644
--- a/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcLogoutAuthenticationToken.java
+++ b/config/src/main/java/org/springframework/security/config/annotation/web/configurers/oauth2/client/OidcLogoutAuthenticationToken.java
@@ -16,6 +16,8 @@
 
 package org.springframework.security.config.annotation.web.configurers.oauth2.client;
 
+import java.io.Serial;
+
 import org.springframework.security.authentication.AbstractAuthenticationToken;
 import org.springframework.security.core.authority.AuthorityUtils;
 import org.springframework.security.oauth2.client.registration.ClientRegistration;
@@ -29,6 +31,9 @@
  */
 class OidcLogoutAuthenticationToken extends AbstractAuthenticationToken {
 
+	@Serial
+	private static final long serialVersionUID = -1568528983223505540L;
+
 	private final String logoutToken;
 
 	private final ClientRegistration clientRegistration;
diff --git a/config/src/main/java/org/springframework/security/config/web/server/OidcBackChannelLogoutAuthentication.java b/config/src/main/java/org/springframework/security/config/web/server/OidcBackChannelLogoutAuthentication.java
index f7dd4b2e098..6a8ee20b110 100644
--- a/config/src/main/java/org/springframework/security/config/web/server/OidcBackChannelLogoutAuthentication.java
+++ b/config/src/main/java/org/springframework/security/config/web/server/OidcBackChannelLogoutAuthentication.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.config.web.server;
 
+import java.io.Serial;
 import java.util.Collections;
 
 import org.springframework.security.authentication.AbstractAuthenticationToken;
@@ -36,6 +37,9 @@
  */
 class OidcBackChannelLogoutAuthentication extends AbstractAuthenticationToken {
 
+	@Serial
+	private static final long serialVersionUID = 9095810699956350287L;
+
 	private final OidcLogoutToken logoutToken;
 
 	private final ClientRegistration clientRegistration;
diff --git a/config/src/main/java/org/springframework/security/config/web/server/OidcLogoutAuthenticationToken.java b/config/src/main/java/org/springframework/security/config/web/server/OidcLogoutAuthenticationToken.java
index 8d5ab818a5f..a5460779c42 100644
--- a/config/src/main/java/org/springframework/security/config/web/server/OidcLogoutAuthenticationToken.java
+++ b/config/src/main/java/org/springframework/security/config/web/server/OidcLogoutAuthenticationToken.java
@@ -16,6 +16,8 @@
 
 package org.springframework.security.config.web.server;
 
+import java.io.Serial;
+
 import org.springframework.security.authentication.AbstractAuthenticationToken;
 import org.springframework.security.core.authority.AuthorityUtils;
 import org.springframework.security.oauth2.client.registration.ClientRegistration;
@@ -29,6 +31,9 @@
  */
 class OidcLogoutAuthenticationToken extends AbstractAuthenticationToken {
 
+	@Serial
+	private static final long serialVersionUID = -1568528983223505540L;
+
 	private final String logoutToken;
 
 	private final ClientRegistration clientRegistration;
diff --git a/config/src/test/java/org/springframework/security/SpringSecurityCoreVersionSerializableTests.java b/config/src/test/java/org/springframework/security/SpringSecurityCoreVersionSerializableTests.java
index bbb0adead6a..4046b3d0a6e 100644
--- a/config/src/test/java/org/springframework/security/SpringSecurityCoreVersionSerializableTests.java
+++ b/config/src/test/java/org/springframework/security/SpringSecurityCoreVersionSerializableTests.java
@@ -32,6 +32,7 @@
 import java.nio.file.Paths;
 import java.time.Instant;
 import java.util.ArrayList;
+import java.util.Collection;
 import java.util.Date;
 import java.util.HashMap;
 import java.util.List;
@@ -40,6 +41,9 @@
 import java.util.stream.Collectors;
 import java.util.stream.Stream;
 
+import com.nimbusds.oauth2.sdk.token.BearerTokenError;
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
 import org.apereo.cas.client.validation.AssertionImpl;
 import org.instancio.Instancio;
 import org.instancio.InstancioApi;
@@ -54,26 +58,42 @@
 import org.springframework.context.annotation.ClassPathScanningCandidateComponentProvider;
 import org.springframework.core.type.filter.AssignableTypeFilter;
 import org.springframework.security.access.intercept.RunAsUserToken;
+import org.springframework.security.authentication.AbstractAuthenticationToken;
 import org.springframework.security.authentication.AnonymousAuthenticationToken;
 import org.springframework.security.authentication.RememberMeAuthenticationToken;
 import org.springframework.security.authentication.TestAuthentication;
+import org.springframework.security.authentication.TestingAuthenticationToken;
 import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
 import org.springframework.security.authentication.jaas.JaasAuthenticationToken;
+import org.springframework.security.authentication.ott.OneTimeTokenAuthenticationToken;
 import org.springframework.security.cas.authentication.CasAssertionAuthenticationToken;
 import org.springframework.security.cas.authentication.CasAuthenticationToken;
 import org.springframework.security.cas.authentication.CasServiceTicketAuthenticationToken;
+import org.springframework.security.core.GrantedAuthority;
 import org.springframework.security.core.SpringSecurityCoreVersion;
+import org.springframework.security.core.authority.AuthorityUtils;
 import org.springframework.security.core.session.ReactiveSessionInformation;
 import org.springframework.security.core.session.SessionInformation;
 import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.ldap.userdetails.LdapAuthority;
 import org.springframework.security.oauth2.client.OAuth2AuthorizedClient;
 import org.springframework.security.oauth2.client.authentication.OAuth2AuthenticationToken;
 import org.springframework.security.oauth2.client.authentication.OAuth2AuthorizationCodeAuthenticationToken;
 import org.springframework.security.oauth2.client.authentication.OAuth2LoginAuthenticationToken;
 import org.springframework.security.oauth2.client.authentication.TestOAuth2AuthenticationTokens;
 import org.springframework.security.oauth2.client.authentication.TestOAuth2AuthorizationCodeAuthenticationTokens;
+import org.springframework.security.oauth2.client.oidc.authentication.logout.OidcLogoutToken;
+import org.springframework.security.oauth2.client.oidc.authentication.logout.TestOidcLogoutTokens;
+import org.springframework.security.oauth2.client.oidc.session.OidcSessionInformation;
+import org.springframework.security.oauth2.client.oidc.session.TestOidcSessionInformations;
 import org.springframework.security.oauth2.client.registration.ClientRegistration;
 import org.springframework.security.oauth2.client.registration.TestClientRegistrations;
+import org.springframework.security.oauth2.core.DefaultOAuth2AuthenticatedPrincipal;
+import org.springframework.security.oauth2.core.OAuth2AccessToken;
+import org.springframework.security.oauth2.core.OAuth2AuthenticatedPrincipal;
+import org.springframework.security.oauth2.core.OAuth2DeviceCode;
+import org.springframework.security.oauth2.core.OAuth2RefreshToken;
+import org.springframework.security.oauth2.core.OAuth2UserCode;
 import org.springframework.security.oauth2.core.TestOAuth2AccessTokens;
 import org.springframework.security.oauth2.core.TestOAuth2AuthenticatedPrincipals;
 import org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationExchange;
@@ -82,16 +102,28 @@
 import org.springframework.security.oauth2.core.endpoint.TestOAuth2AuthorizationExchanges;
 import org.springframework.security.oauth2.core.endpoint.TestOAuth2AuthorizationRequests;
 import org.springframework.security.oauth2.core.endpoint.TestOAuth2AuthorizationResponses;
+import org.springframework.security.oauth2.core.oidc.OidcIdToken;
 import org.springframework.security.oauth2.core.oidc.OidcUserInfo;
+import org.springframework.security.oauth2.core.oidc.TestOidcIdTokens;
+import org.springframework.security.oauth2.core.oidc.user.DefaultOidcUser;
+import org.springframework.security.oauth2.core.oidc.user.OidcUserAuthority;
+import org.springframework.security.oauth2.core.oidc.user.TestOidcUsers;
 import org.springframework.security.oauth2.core.user.DefaultOAuth2User;
 import org.springframework.security.oauth2.core.user.OAuth2UserAuthority;
 import org.springframework.security.oauth2.core.user.TestOAuth2Users;
+import org.springframework.security.oauth2.jwt.Jwt;
 import org.springframework.security.oauth2.jwt.TestJwts;
 import org.springframework.security.oauth2.server.resource.authentication.BearerTokenAuthentication;
 import org.springframework.security.oauth2.server.resource.authentication.BearerTokenAuthenticationToken;
 import org.springframework.security.oauth2.server.resource.authentication.JwtAuthenticationToken;
+import org.springframework.security.oauth2.server.resource.introspection.OAuth2IntrospectionAuthenticatedPrincipal;
 import org.springframework.security.saml2.provider.service.authentication.DefaultSaml2AuthenticatedPrincipal;
+import org.springframework.security.saml2.provider.service.authentication.Saml2Authentication;
+import org.springframework.security.saml2.provider.service.authentication.Saml2PostAuthenticationRequest;
+import org.springframework.security.saml2.provider.service.authentication.Saml2RedirectAuthenticationRequest;
 import org.springframework.security.saml2.provider.service.authentication.TestSaml2Authentications;
+import org.springframework.security.saml2.provider.service.authentication.TestSaml2PostAuthenticationRequests;
+import org.springframework.security.saml2.provider.service.authentication.TestSaml2RedirectAuthenticationRequests;
 import org.springframework.security.web.authentication.WebAuthenticationDetails;
 import org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken;
 
@@ -118,6 +150,8 @@ class SpringSecurityCoreVersionSerializableTests {
 
 	static final long securitySerialVersionUid = SpringSecurityCoreVersion.SERIAL_VERSION_UID;
 
+	private static final Log log = LogFactory.getLog(SpringSecurityCoreVersionSerializableTests.class);
+
 	static Path currentVersionFolder = Paths.get("src/test/resources/serialized/" + getCurrentVersion());
 
 	static Path previousVersionFolder = Paths.get("src/test/resources/serialized/" + getPreviousVersion());
@@ -138,6 +172,17 @@ class SpringSecurityCoreVersionSerializableTests {
 				(r) -> new SessionInformation(user, r.alphanumeric(4), new Date(1704378933936L)));
 		generatorByClassName.put(ReactiveSessionInformation.class,
 				(r) -> new ReactiveSessionInformation(user, r.alphanumeric(4), Instant.ofEpochMilli(1704378933936L)));
+		generatorByClassName.put(OAuth2AccessToken.class, (r) -> TestOAuth2AccessTokens.scopes("scope"));
+		generatorByClassName.put(OAuth2DeviceCode.class,
+				(r) -> new OAuth2DeviceCode("token", Instant.now(), Instant.now()));
+		generatorByClassName.put(OAuth2RefreshToken.class,
+				(r) -> new OAuth2RefreshToken("refreshToken", Instant.now(), Instant.now()));
+		generatorByClassName.put(OAuth2UserCode.class,
+				(r) -> new OAuth2UserCode("token", Instant.now(), Instant.now()));
+		generatorByClassName.put(DefaultOidcUser.class, (r) -> TestOidcUsers.create());
+		generatorByClassName.put(OidcUserAuthority.class,
+				(r) -> new OidcUserAuthority(TestOidcIdTokens.idToken().build(),
+						new OidcUserInfo(Map.of("claim", "value")), "claim"));
 
 		// oauth2-client
 		ClientRegistration.Builder clientRegistrationBuilder = TestClientRegistrations.clientRegistration();
@@ -167,6 +212,18 @@ class SpringSecurityCoreVersionSerializableTests {
 			token.setDetails(details);
 			return token;
 		});
+		generatorByClassName.put(OidcIdToken.class, (r) -> TestOidcIdTokens.idToken().build());
+		generatorByClassName.put(OidcLogoutToken.class,
+				(r) -> TestOidcLogoutTokens.withSessionId("issuer", "sessionId").issuedAt(Instant.now()).build());
+		generatorByClassName.put(OidcSessionInformation.class, (r) -> TestOidcSessionInformations.create());
+		generatorByClassName.put(DefaultOAuth2AuthenticatedPrincipal.class, (r) -> {
+			OAuth2AuthenticatedPrincipal principal = TestOAuth2AuthenticatedPrincipals.active();
+			return new DefaultOAuth2AuthenticatedPrincipal(principal.getName(), principal.getAttributes(),
+					(Collection<GrantedAuthority>) principal.getAuthorities());
+		});
+
+		// oauth2-jwt
+		generatorByClassName.put(Jwt.class, (r) -> TestJwts.user());
 
 		// oauth2-resource-server
 		generatorByClassName
@@ -192,6 +249,9 @@ class SpringSecurityCoreVersionSerializableTests {
 			token.setDetails(details);
 			return token;
 		});
+		generatorByClassName.put(BearerTokenError.class, (r) -> BearerTokenError.INSUFFICIENT_SCOPE);
+		generatorByClassName.put(OAuth2IntrospectionAuthenticatedPrincipal.class,
+				(r) -> TestOAuth2AuthenticatedPrincipals.active());
 
 		// core
 		generatorByClassName.put(RunAsUserToken.class, (r) -> {
@@ -215,6 +275,11 @@ class SpringSecurityCoreVersionSerializableTests {
 			token.setDetails(details);
 			return token;
 		});
+		generatorByClassName.put(OneTimeTokenAuthenticationToken.class,
+				(r) -> applyDetails(new OneTimeTokenAuthenticationToken("username", "token")));
+
+		generatorByClassName.put(TestingAuthenticationToken.class,
+				(r) -> applyDetails(new TestingAuthenticationToken("username", "password")));
 
 		// cas
 		generatorByClassName.put(CasServiceTicketAuthenticationToken.class, (r) -> {
@@ -234,11 +299,25 @@ class SpringSecurityCoreVersionSerializableTests {
 			return token;
 		});
 
+		// ldap
+		generatorByClassName.put(LdapAuthority.class,
+				(r) -> new LdapAuthority("USER", "username", Map.of("attribute", List.of("value1", "value2"))));
+
 		// saml2-service-provider
 		generatorByClassName.put(DefaultSaml2AuthenticatedPrincipal.class,
 				(r) -> TestSaml2Authentications.authentication().getPrincipal());
+		generatorByClassName.put(Saml2Authentication.class,
+				(r) -> applyDetails(TestSaml2Authentications.authentication()));
+		generatorByClassName.put(Saml2PostAuthenticationRequest.class,
+				(r) -> TestSaml2PostAuthenticationRequests.create());
+		generatorByClassName.put(Saml2RedirectAuthenticationRequest.class,
+				(r) -> TestSaml2RedirectAuthenticationRequests.create());
 
 		// web
+		generatorByClassName.put(AnonymousAuthenticationToken.class, (r) -> {
+			Collection<GrantedAuthority> authorities = AuthorityUtils.createAuthorityList("ROLE_USER");
+			return applyDetails(new AnonymousAuthenticationToken("key", "username", authorities));
+		});
 		generatorByClassName.put(PreAuthenticatedAuthenticationToken.class, (r) -> {
 			PreAuthenticatedAuthenticationToken token = new PreAuthenticatedAuthenticationToken(user, "creds",
 					user.getAuthorities());
@@ -361,6 +440,12 @@ private static InstancioApi<?> instancioWithDefaults(Class<?> clazz) {
 		return instancio;
 	}
 
+	private static <T extends AbstractAuthenticationToken> T applyDetails(T authentication) {
+		WebAuthenticationDetails details = new WebAuthenticationDetails("remote", "sessionId");
+		authentication.setDetails(details);
+		return authentication;
+	}
+
 	private static String getCurrentVersion() {
 		String version = System.getProperty("springSecurityVersion");
 		String[] parts = version.split("\\.");
diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.AnonymousAuthenticationToken.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.AnonymousAuthenticationToken.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..e8872447c4e4b79e806c9228b3fd7a09c546b6fa
GIT binary patch
literal 787
zcmb7?u}<7T5QfLTBR~QP3R0vLNd<@k`9yuy5zyU9mQLb=BBcPW?crE%y=!*IoSgzC
zFOWV(@&HlVJVT0f;WeP9Ns-;N#BmV<;bLXaj%U7^|Nn6bGe$#4=|NyJ&E?=wvlK^4
z4+Dd7t~r$f%jpOu@t6@;GH6L9%T(p2H5GrWhA5$WJRkfn%nq^aFmn{byel2^j0uA0
z;W0a94Z-A~(Tk2Tre>j`{UCzKkY+L60&xC){Y<u#r#{r)!{QBcOhS0#zLlMcqak=v
zf#k$R<Bbx+lGyQ@A<QO7j0<xDXW$i?XBV{Qm;;v@Oj6Cto=jE34>^kjhTPEKXRDh(
zFFr5%;Dt~ZHbSs;qm9dP({9{fZqnxE7JU4@fAxA?)QcTet;j6Y@}x>jYgW4I#iu{7
zzWiceYv6UEZukc*GOLL<s=L$vv~}mAW2JGdx7$(~^m&>IY-=V76SwVgxYF1c)s$KZ
zoL03@&PdH7BbeXqg*yj({hi&yaX-G-Ya@*Q_uD&+riI?F<e6ajAuMW46=5q$G@7w;
j3)XhVzFSSZiEF;#fF4zOmhActyl)2tbGbn+t@r-{2b&Hn

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.TestingAuthenticationToken.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.TestingAuthenticationToken.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..322e774eb676f2602b01e788a50ef75704b32e05
GIT binary patch
literal 534
zcmb7>Jx&8L5Jo49fFKkK3MgqPs5S?HCgLX`twcd2Bs%YU2u>WY@ywEhf}_wPAxaAF
zLC+1i17o%zi4YR5Y|mJJ@0*uTSf&6cW$35mgK_=qphh?@!!RW*s$h7Us)}#Wu_+Xr
z(xp8lmd4K9ZLb`ngL*X*NHSP20_yloSz_4C2I@|=t#bYLc|O2`_cK_FKNiL-dkYWH
zm;~tl2c(k|2UYMdB=66A53Z{>5?H!|){FpZA&ciy)Qp(GR!vs1vF*dsT0s*_p<C6+
z%2=w|d_!{Di4tjSO@CTx_ju%ani=Bzx9!)1r^k;3VB)3!^iQ2J=8M^0Vm@zkR5R4U
zCiXkoR=`oo*wH#5Eo6JaafmTnlA4H|>B!%lc!rhw9naJlnqCpfytQmA!r)~5U+$i~
AcK`qY

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.ott.OneTimeTokenAuthenticationToken.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.authentication.ott.OneTimeTokenAuthenticationToken.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..f70720d5f902c36826eb0e5f295676445b64fc4f
GIT binary patch
literal 699
zcmb7CJx?1!6ns9+S1iCH2q}s}1&9KjMeWLf1eQ*65hq9~koN8#W?{X1?7qVX1qu}%
zeTw`6przptP|)GOk<@7@vU@IUBLrfL)86jvyqVG5{Do1Yp`mokH;Lx5wWnDdJ4zq=
z2BTDSI`LUb`zVP=jJT4%BJvv&o4k!pb%?Sybe$hvu+MXyyX&q8UI3GhH{uBs1hc^b
zJ7yKZWUJB$4=|!?03XQFd}kuXVZ>K*imI80t@jA5g@!bX=mlZjtCcgk6;FFG@&l#@
zjA0x=$^9#9nWG_??@3LGi^_%)!fLhdt=#b#iE&|$;0y{`0ye*8=gN0bzYjHw-(*|G
ze2=qGV89JM%`C0m{<$oBPzazX><K}6V2r~!x2tc{^~Zc#ho29-{}yu6LgZ8xv&4$}
z*k`F}%}yM9cK-O~*FF0^0);vh4L?O|z^+cweKYsCWS?%o8g~c7=bhNWa5(MFUPg`;
xz!P~9rZlz{VJ(g|nmj(&4rBK=*m~@Sds#v-*2B@j9l=CuP)plQg3-J${{j4m^wa<V

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.ldap.userdetails.LdapAuthority.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.ldap.userdetails.LdapAuthority.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..55d14042f2c3d4c17d85c2c718703974bc31c168
GIT binary patch
literal 265
zcmYL^Jx&8L5QQhZ3rc8EXt{$|p-d|N3Z$iBg(A@ntZ^KSZN}qdX*dE`phbcXi3@NG
z?!X<e6(O3@=za5M=Dq*GRv?%;QX+WLR^1Zb%eA9B5#&uI&5y!#=tT^YI?1R_5KR&e
zBQIRW)z``Q(aXnG0c8U_$V~b=vJ4En%@S8wN7kl3M?Y(z=q$tDMmA_w-KJ@)5~;`;
z`2bH)^gcZ_&Q6h?;@BC}N}4~veNOjZ$0ZETpk!3N2Y_;2rCKnI{txFZSsnbb?G>6R
WCk&hBpzj%mIgd?I8LG?n^x_w=^;F3K

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.client.oidc.authentication.logout.OidcLogoutToken.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.client.oidc.authentication.logout.OidcLogoutToken.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..6eee1587de34eda9f15f6c1b4cf7e926c97a21c1
GIT binary patch
literal 895
zcma)5ziSjh6rS6VOD-mu7||kP5w#G^ECjLe1U<!&!0L%-M56)cb|<%!o1NLryiGQZ
zHu?vo2#5$)iiL$*SlAe`veT4eVIx)w7B&jTH+y0fEHbdW^Xq-@`@Z+~(Pz?a4Vl)a
zMQv(?YRwsz@Fi{9)bcPh0+y*}8N}l>l!7auT0|jrJGc-b1ECd_x}`Iqbvz1+=>^^9
z>hb!ykp~|yeeg&rAmvapkys$xgL$^d{0xNj&#<(b8**$*>9ygs*0f+)2=$tyRAeE=
z@T5n&0#f05Dh#(Z05aT31R~-7l(N7SR0Gm0tj%~-g9UQkMf8EAdXdSD1KH6DkxaGx
z1~@yad5ZoFILg!^(FQlGvp1iQj7~o7CnQgo20W7PS^vJ8Z&dHR-pH-PExTPDtt+)J
z!_V%n=RmrPJcxCmz;g2GDJ>-ror8A&v`Ta&<^*d>j<$Tg|L`Y#>p59?S4tdcsi3lZ
zGdvKg&7(<XV+=UFcJ}I^T>F6mGh`bJLvC%|MBJdiLz^+bZ+G{+d--bDwYOcwn;?Bs
zvuFZc)n<xRAV&XUEu%a=exmTUf2kM0gZPwzl=&hS-lCAvP1L`IG|)B4K`SJ6Z(n6)
z;YNGKBVIsC?SBofH|J42mZY@k<PGI1kntEGJ?i^5jCsN=)hSmZqKboG<n@~@Y=<#Z
zip#N1*CCU=|7UVKNnsgTTt2e%*3A1)Z?GgTM;FVYEzoapICQ>t`{3G>7ex_zxa0{+
s|HHM?`60$cgqVUA2fc1;vCGRvn;Bfrg8<?cm#lkNELH|fJ{9HU7aLwPL;wH)

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.client.oidc.session.OidcSessionInformation.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.client.oidc.session.OidcSessionInformation.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..959ce3cfb3f92281371fdf4cd48be44c87630e13
GIT binary patch
literal 2430
zcmbVOO>7%g5FXn}9VabKAx%^wpp+CSqPu{?fuyK7aeu6s7{vsM@DrYQpW{uQceiif
zk_`tGBsd{~1PT|<NC;J`#069#(W*yIJ%K22LWm1U91v20h?%#s*G_|Fh?McZpZWXd
zo7uhi3-kvP<~_M$1ip0Km6~J?zV692Bj8pj9kpS2EL8Q!3`;oNRfgx-7M=xx<GDr|
z7nS(A=+->hU<$W?Ub>O}<j2XIX-Jh|h_pR4<nTbj!O|*wm6@S(g!we{ry~icx;nQ!
z$y@Gjbp`q_Ez;1p1X&*Wj^s8v6)aE-{6dI66%4mIEilEWOOT^vEyrg<!R_&}VD5@p
zuC8)R(S@B9i+1OQiXxPzBR_?>-A2h6l#D@k>#J|1=AKtaG60dkJ^+w<|BH>cGZEgL
z>6&B{VaiqG8wOk&1zuyJP=xU!u7CLZ=69Fs#qBhtOOSQ!XT3G72TYgHw7IKzX0v!^
zY}zCkO)_ngxniu0X%3JlDxHE;|HBZ)McP!y(><rykzJn1MRt->W=b%~6arlh6%Q`J
z>)m-&;Z(3;7m1s1YR&Nt((8|W1pjzarddx2EHIKZm{@chp6%2eRuvq%_}fPxZ>!(4
zGn%!jhIXsf#}f6D<F0Z0JPYcmFnMME#bI&fPgGb!np+k&LRs2eA{d7fot@kL*>A62
z8-3+^2GVC?P<YHf%Pi%|BIHzE@}TYsJMvFIrD51l?15qY&nn0SVO2pEC2<qiEVO&e
z3X$2o>%Hsmez>`qMovn2I0@_DkVy8A%)sVXFaL3O42Y#*w5^YlYuF1I&7L5k|8K<C
zOIzPRght5!E?DsVa^bD54?h2FGVYoEl=Th<DFwNB=A3lwh|+$|SFkVMQqV{B#w)c@
zh@<gy#tCr5jMbI$r%Y3L787+ZP$q7NT%rY>4;bnJ4T5qS+^BH5_0pS{$B&)=6kTJ}
z9>6#OR$eG?k32GQiM%>YX$s!oI?Mm6&mz$KV_J@{w}+lVFNL1lA?f&Lt5Z+V$lUmH
z{4e{_cW%se^gJ<hu&s4zJ%r%qd-kXsu-xjrmOIKFfTro5Etq4?xO8uo;4m4QZ|^%=
z=tD%Beh+GS=vG?O;RuPtBt}WxN#Y(7M@igE;uwkhNKBA8PT~O)50W?$0WzRmEX*!1
zR?aNY)(ArXM9)BI=-VdZPl{U$_3?|E@<=u2G;{(fgtz;9s(pm#tAUc(+%dv>PIn-i
zi{DcLPAj-0?kQrUS#$%%TpDHrnzD9YQA(3I4iydi=a>ka=+c1(;)KH6_DOxAE9Cn~
zC5DZj5-5{0BtY*j2$EgG)PKj720OhVlKk<Lpaa;wc#_fMuaCG$p(X*woY28^f1~Qp
zh8A6oiqr4~KPM4gZtp>N4609hq6w~o!OCp;nKR3hGh2iDq=KP%YaRQNN3F0Pr>7}o
bVe5OLgYhYy2@Mq-XZ_1oAZz%mixt5?HfINe

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.DefaultOAuth2AuthenticatedPrincipal.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.DefaultOAuth2AuthenticatedPrincipal.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..1acd8531274b89c17c7f9c7f1323bca71d41808f
GIT binary patch
literal 1225
zcmaJ>O=uHA6n@F3f3d}CMNm;h)RS(c@uylr+iJBCZEID~QtM=Q(oCG}tTS($ErNLP
z;LVeQqBjK(dhzH%5Rc+P!GoR!=|RDRDB|CnO=3jQh0IRgoA=)LzW2@Ee-CX&LqX{|
z*MwRGb0y8Hyr%Ry*KjY=0vBAxA}sg2p3>Ysz)LKWI6h=ecHsdEk0JLbDB2Stllw=%
z+`j4FSWJUcfGk7Qq8K4J2ulkUHqUYq3Yj~?!odP8v8feR5!S!*5C4dgl6xprK*urx
zfkIeb_e&Pc<)$cYFgF;71b>rF>)Nz#E6i*>5mc2gN`e(7r*a?f-ur={I)>AbDnP1w
z9xg&E318L<Kg>*-j<$8YdGd7S*%uC^M<FW}^GBJ7N{>MomNhqJCH*+uw;$}&UF)Q^
zmwsIc4vTz3w7QjYNNcuWHYTrvF!=h;-p9|cw7(=6(~x2aebaxmHD0Vx*VI;|n-16Z
z>o)p*@bcul#kCg>r2*oQN~RDtmk~p=CzlJgLJH=-%VSmzC3gdkIfAPq?Gb&BiHZm-
zPVX4cN8!ZCz`&#)s>Iv2`Gg9bpjaZ{Jqd6WRqjr4eQoCQqcs~2KkT;EYCTjG+Fwn6
zx4lA)BppwM+*l^FkzISp?jU3|XFj=WG+3(J;VT)IML<P_F;t{GDMH}f6UPeIH|^TF
z`rBLWK*tz#mT3SZ%I9N{36;hIbTt*SU<;6<G9@8-b6-{l8~aY%zVei8{C6}jCEGas
z*?34nhU<B*e-q@XDncq}&#fcC36mjp)=uLV^PI5O#gU9)SSiU_@O-_#^y=2v4>Z8j
z&^FIx#N&|W;Lt1KqOZ;r9KUhzXoIOPPYSvzvw~>pmHqjFO1?kuo2~tMQQ3~r84<3!
z#xoUP@t6v4X-Vi`qHft&4a22pXFjj1YumH^q#J0mq@*3w|G(kM)jp(IK;p5N+TO^8
z!P4$;aCN43s;M=HP!0e0OOfRHJur7lSQY-A*HQwImI>C3CQch;LdZ^yj87b#wem@r
V%pokPn-VECZ9R2cLsm9=*)IqemVN*L

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2AccessToken.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2AccessToken.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..02756044e91897a95b670a16288a4bc0f057c5ec
GIT binary patch
literal 733
zcma))ze^lJ6vyAKxg?60!~_J9ScrBq10hw;kgSR*ELfb{BoW5--8pe@XEXCw*G8@|
zbs#|-{{<@>#nwu!EUf(t6s&ABv&(U!kT}&a%zVB--t1pN*=YEnbc2~h%eYb3qKO+y
zuQ7vRswHhQB~n^_$3mr%&G~Nchanm>uhuZWIDNrxKGq`-ya1k>P$g&xUIyRAy5K3v
zh}V#+0d$kQJ-?YC!E|8t_&q(|*5id9cY6GR-bk+MIMqzU_@j;c%Z9WFsQ~5>$d_lW
zcUga!B~qjDiQrA)o@5jGY-~uxF2QqYOo}T${eUfa5<pL$Xi-F|jr6*B5{bCMYvhWo
zW{GXK;(B0?#A>K_zHJ{54$mC)0%XZX#d8K4U;o6FlbfE*IPSCd=@<XHa&j4D)GpP+
zMst`el})NB!jPnj&B#LBR4cMB#d3tU?AF`g=fCz^3zlvh8vFm74r^cnT4zhQLmrd@
zD1`+5cjnl+Rz&OTkY|KhwaUj+KX-PI4&Qg>@oY$V_35+A2qm)r%>9kb#+Z8a(Ec&~
Y91CuE)@pg(O~Lh7&Jx?$1PYD%FTV!)=Kufz

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2DeviceCode.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2DeviceCode.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..adb4babe4f134310b4974eaf3c95d3573ffa572d
GIT binary patch
literal 313
zcmZ4UmVvdnh`}<yC|$3(peQphJ*_A)H?=&!C|j>MHMz7Xv!qflKe4nV!$>bVzbIAD
z-x0)iNiEAvPIb;tN&Uk3^UBoshr*Z`7%GYwY=}0;F{!wuC^5MNVqQpoc4{627%=59
zF);fuaHduiWEQ0sJC>9%2>WCumL=+!Wag&od*&6FB<7V^`!H~178jSMrZ|=qGSo3J
z`7m&mfD8#s%qdMRVGx37$w|yh*AFfM`OCVZ0O(O(kV$$Vlk|d9i>Ai5?2=aU*u(>L
kd_g%c&<_j@>Cukw_)Kr5RuqHGWknI4b*rL;ffZ~I0Pl-x&j0`b

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2RefreshToken.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2RefreshToken.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..07fbb5a3302a886b040367acec63d1def0306ba3
GIT binary patch
literal 322
zcmZ4UmVvdnh`~C)C|$3(peQphJ*_A)H?=&!C|j>MHMz7Xv!qflKe4nV!$>bVzbIAD
z-x0(PN=++DEzStZ&rZ!d_Eh|Z<MIEsObiSaMGQ7Xo8*{OTvC*nTmmr>Y!m|+Fy$~Y
zF#9lYrdAYW0&Q_DDPa)y$x19s)Gx`*P1X0zD=taQE3x)r;K(d4E=^5wEGcBDV_@=O
z;3@&RCoD0iG_{052%;q?F)v*|xCG=g>xu%PS9w7u>48kr3r;PX8r!l<TFGM*576-i
j<-9;YFfgP?JHF#<Et^|W3^JD$MKsB<qJ)8`2+8{Z?cZ(>

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2UserCode.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.OAuth2UserCode.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..cd08653a3533e58d52fe72ebe3e1605ff285333c
GIT binary patch
literal 311
zcmZ4UmVvdnh`~I+C|$3(peQphJ*_A)H?=&!C|j>MHMz7Xv!qflKe4nV!$>bVzbIAD
z-x0(PElw?R&QD1_X}tByAFrh>ObiSaMGQ7Xo8p*MTvC*nTmmsIBtJVfj{yvra+nyH
zeHb`XD+)4;Qi~l+N*IKFvJ%S@^-D5yQ}sRbic1pnO00btI5LZiOH)%EO9~n47?^w*
zxJp2VgeB&brj{@WLA2x~=B4Wgmw<d_T~Pq^CNIb&J&;Ly!Kp=4V_SAfD|u|<0Xn{*
ioEPW^28Q%#$9H^>QubC9gUn?`5%n*vC}Cg)+XDbcIBC8B

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.OidcIdToken.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.OidcIdToken.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..c1ba97ea047144b8765946b1aea930b1ca74df2a
GIT binary patch
literal 682
zcma))J#W-N5QfJ#xsQ;DBqxE;bqG3QONfRX5*$d;opf-B@F78v*z<1e&8@x8?wB(T
zRcbm)N~B1nqM)D(;txPU!w;aNprArR%sQY@V#(u`z3=<ZJnQ{$FlP;1(k2OQVPu|c
z8J3BeHq+3GxHJ-<hMJX_UI=4tM5rZ?!!ea1zoVxj|B52Mop$$q@J7&x6_c4oI5FC0
zPgqo<RM8Dq^eO|F|2v{Tv1nL~<GzcnQ=q<l<wG!nwx|kegzY0j=P(FmCZb_(k>%JM
zK}%X&3f{*Zc;*!I=vuwUR4EWv4ke1^Nwk4(<X%+}gGJYJ=$yh0VO~7ieb+rRc(VXd
z6|+U(HIQt6{@97s%gQ?6#^1LOcW-r~!TAa)m#@}QWOuH%a|FWcS}75u)VV!-H_tSe
zTarzbATr-y?ft?Z&1*G2FLS<L-OZ^Z`AFtd!3WHyB)E8Rb8|@@{3O8xIL_i&SUWac
z7(%>!r1`UZuKDHthm(&#1>mp4ywZ%X6IgAA(8iPyrdsi;xN^0|yD)3fbBXQ-LO=)!
zZ;DvhwI~u5%L*mvAIRt%D>+U0Pn?^OpxuA|`t4eGZ#e*O2m!LBD#*>79di|-9V;nv
kT$P+y1-6_ZG^uVA8yCpx<7&~84%m@sBKVTK)#(a;1Fw494*&oF

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.user.DefaultOidcUser.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.user.DefaultOidcUser.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..1fdeabaebba5c028393a3fa2da390fe4d8cec69e
GIT binary patch
literal 2051
zcmbVNO>7%Q6n?SYI7u67D72K&QX;riWLH3iL{q6aNlUFRHL3}R@>3?eV|$wMj+uQ+
z91bW4xPpWfE}W4#R6^nc>V={nIrRkM@5l*|I3Of`BHo*=y>S{U3rl{xJ8$Nj_rCew
zo2$RTp2Wg}u`Ms@S{1jNR&?Z=v8!Gp!_+EV_l!uf{e%}9D?Ov4&`T3(y(QTcsm3}D
zEYtUo|NQy=C+*r+0SW<>RrG>cl`+D6K+ygUXul8bXV5-F`wZ<fTrFEXAHW3fREwJi
z;ne>C;<$MAe9yw^ky9MXuF9!14!B=I7oZrxlt8p<B}JJa><_MpH-w*}(*ARzOJVP2
z!VGbzcKRC<$zO?y<7yw`yj(}PCj-$UZut$uj$8A+E}hJyjO{VDw`jDMAu1Cmk1WR>
z6RD;WD_YW?zkT%a7XDsdD8N_%W1ZLGEhxF=hw|ltidSWHP9$wwaN_!fmn-`EU$o#7
zg&T%4N$NI|mYBLbUvq2rp7OU}-Z=Q$%_0=e!jv{5Ix9jnwg!{fwlZlO9re1WpK%oJ
zTbrO~h5luPVv?>Pl*wM9(CJ&G(P&u_QyWL#zxm#W8_NX%3hS{vtp8#nA3wYR8(+Qp
z$I*<C5aHmqL&~RR9PdgJ?f;Gb`qJhP#|eb@-$4ucuPwc^`N8L(ohXvOyS9(BzQw^9
z!epow6~LT|dYtx~U4-#$2%*I1Pg9zy*2l8<qDn|ghuVnUlfJJ_D0JH-=+kg2Eg?vE
zp3{y5R2}Ixq}_bw?Q1i$=RT#aDS&B;6QK1{eXDZ(=Nr7M5}2?S9vb+nzdBzJ+<3*=
zdxt_V((x>fTq}7y==T9G7?%F}7c+lHkH7of`Jslu(U3$3b<N)eBDXs7j;=cEgR&fK
z$GHRCUZ1WO0+{TV<T?+G2XG$)UD#fS{NbF$G(RVtow{At?3`wE7n}WT4zRhO&0#hV
zu$f`=Ae$p>j<Pw%=3zFoJs<_tYfFolmm6m;^3XI<|MbX2IO?~x%b!q&7uz#eo#aVs
zLUmjMC8GD#$f(to1T7VJ#;|MRL(EQ+4i%L=buT!O)fB7Iuf++9n48;#lWbH)PHB#M
zCGt)1qR?rdU3NGkW|3w`b8f;NDIe!08EyQQQ<)z_PV~+LA+cLHIWhwSUb*Y@?UCnC
z${iwhH=Pt+`zx^)In+GBOcO4cJ72f%o*l^5Yp70F%V#aIE2CZHPC=Ed(S33erW%X&
c=g(ZWQbdl_rx5mLLu*u*vNs6J<F_aO1r>6NlK=n!

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.user.OidcUserAuthority.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.core.oidc.user.OidcUserAuthority.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..7e6086fda3dd4ab0e59ba609e193ad4e90a3ff94
GIT binary patch
literal 1313
zcmbVL&rcIU6n@<Tr3gy-QPdtx40>ZX5-$RYR*=wGX#%2&VsyGYv;*7Sb!L{XiSgu_
zi}6n|A(4{@4_?Ih7kJgXH;o=VX^ihpsepQDY_i|(cHjHneBXSt^9j0@gt<`GY!yin
z)Yc?x@Mb7CY{lJJ3jM$iS*+`mwi`-rhr)C1SaE4r@M#4fiuf_4y4Qst-np$0S1qv0
zkP+VXaDxXLrprj~{6X%t$(<ItL*x#TJH%URHBXnJmu8iMwNS&%e-P0Ese3w+Q0!P_
zOCJfFJfslJ&+;uum!XeoEk!lfTxmE~UT2%kiM8;ZYb?TrXUR0<i-w`rSDytnXBnG<
z8WxPwltnbV*yf>^`|t?5lL+_Z3^CfoXwQbe&s{CTK#i{ijnETof>nKvlfFLN{;9uZ
zE?bZ)L#jdTU8a3(zr8Gi4el*4RmX<&yNj!X{_b~dxCKX;>vE+k(&G{x%I){;Rd;9J
zzj>R#_bv_AJoNb?^X8eWLs^2Xu1l`!q3<Qp#Y@JR{$?-U2l2{iNVC{O6$dCu#WI&S
zx1PV8Ds1P{kSal1vsw~iN2=LHs3Gh60%J2FyaY*9T-A_4Tu1%*E)<$QT-Q2MQ;x$E
z)`)zL$!uuoc6}!3zRCQUYp{ezZsf6x8%G9=IxQO9#$`Oc^Y~Ta^umjNfFx=TSU4SO
zt51U5_`|a_Sum}r|9Jb`?c(R$xcenZ02f&)&CT9jS-!GFB_pWwLdW4UC+I-PKWgqS
z)eAdj2YZYNGq?*kWTs=*VpVC0TT?NqHAjyW0qmtUiyjEvFbo?Ex8g`nIHf>o7HB$Y
z=xxlsq9#eFFyETa?+r4O{=rbv?F2zVW3@M73d~wF2D5+Vpogl52!;vz362sB666R@
w5)=r=2n>Iop7IHxuTvd6@Y~n+ncvrsN8^yO(LWZQGU25dq-gpG!Ds@%0Gwx@i~s-t

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.jwt.Jwt.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.jwt.Jwt.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..06f8ee1babad6d1d3feecb7b8b1dff1079308921
GIT binary patch
literal 831
zcma))F>KR76oy|M(zGQNEmR<dvY;}dUL?dsD?unKEi!Z{bf6${v9HM`XP>!yCa#c}
zI<PTyVPOG@0TxCERK&!<&~C6YAO;2o7LW+<+*CnKShDYI-~ayqzIQLaLCG38txc2J
z#K^e0Zg?cR+H{x|L24v!FwIkJonh@RvMXJjf3nk@+$>%4!1G}!P+Ue9;gH|v_joNu
zscKhwGV4RRC3q-|y$cVZkQtc!ACEvA!Rif*h6lJ@cfQwkN5qg{p7NmR!-&WdX@spK
z!jU~+l#!?{#TI#t<UK5{O+{EoXHJSybVXLVN(I8<J&EFRv$le6&$C%V5XRgNn5)EA
zgxR{i`TF?D#a9)8Ea{GUkWB6V+{${hkKgyQd{aa8wfE@r_+&Vlr^^sZxewJkmDh4K
z*t}Ls1SoZEr*FiO4&}P!4JC-u_h-+4<B#%14+=gMqCHYB%CUjmmvKjgi`=$IaCZCJ
zt#P&eiv%~}AP)jz?Xn@t#CKw#>8~!8KfQf-^v+HZyagClnuiNSRhuOk!4~mrX%%M4
z`3rgaN_UvXak|S0MV^KfqdF*AH->N6>3r~|#g9+t-h6mCv`b0WpunjSYky%~ZnSC3
zgf%t$KbYgq`n+H6u73G?;{IjN!6nNA!c+?}vFB<vvX&wa1QQvL5+xX&8%jhycYItp
z$@9JryQ!tKSKXK9T{r&-+bEr|N~`0>x|=$oO&bUkkq$aDC@jv<yNjGb-rCXpS?QxG
T<Y*|X%UR@#;v9%|EHd~5*%S?Y

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.server.resource.introspection.OAuth2IntrospectionAuthenticatedPrincipal.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.oauth2.server.resource.introspection.OAuth2IntrospectionAuthenticatedPrincipal.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..aa140e896508f67d26c9228e50bc651cd266b4a3
GIT binary patch
literal 1434
zcmah}O^6&t6n-;3vpc)l!9<q@BZ^AmDOQIWqpK^J-PPSJOx%r|2xeJhO?S;qO=`N@
zs@FTc2$F*bZ=Mt)dQ-?DUcBi+5Ra0BfgBW%g5;p!K@`c4uey7jCFt7F-PP|^z4yKE
zeXp<n0#$3^qBdP-V<V$($MAs|YIBiU5hO<9F4H{0UW2~Pjxfv!s}mClCL=W3#v(we
zBeuTiHm&WoIg5x;1{_7WLBRtVb5%Xff4n;T#daA=EvSV;i7xpOR$BzZzXyar0^#Q%
z{6HJw=ehnp{6ZR2K`z$+7UW{F7e$9B3ik_na^=sDKV+A0mceVmG)FYDouIG?_qF<b
zhx-Xi<)7y9LJJN!t~AjmoqukRe_1P)b4A-K5wVPLf9_X2>iU}$HtOc^kGinTg=OPo
z_Q<(tphMY_ysZSK`|Z;!ckuVgrHska;7xcNDp~c1#>Y=_+oP@3$sfM{X6}veJSeZg
zw9-6W;Q?y122<Fhj`p+))A)sx;I5frjh+YTo<i_=5)z?@#~~Mu;k))o_G(Fs-+%J_
zSJ&R1xK1#(pu`a#*xFOpdb>|mQ(1`_Ihd=L74?30{nejuKK#~d86b@*WeMSl9%5{t
z^ZnRpq{AX)BIScv2^I<TM*<{lHfbZwo<FhPOyZ5@`S~+uv7a749ug|>qIQRX*E8TK
z2ZC)1^ZxcbUq1Bssn2Izwqc!;!o-a;w_UA}BF#deV__YW^~61$!$YVT!9#Knsj<|y
z$xy4fNBRd(T1!c0vLpnKoqMJA!O>@)K78vZ<H6(_)Oyr_WgUt&sKnY}3#LX2*>wpf
zNDCdQ#Aw~q7K?Swm9GP>if_+|PPR<ryTwHcDyDKoP@o40CEx9Pi~wg$##Gq^wOj58
z!kUXCYr&G%O7Q5~qvq0$kN*0V8h9S6J6t6qjj0bFy)rK5a;D(y<tr~2Oicw!(rjOl
zM9V?dXwLVWjb><{Y&2#6DTG==xN?nG`k@vnB|bKm(0_?~Y=3YGE`9s@ACKhP4qQFe
z0!^KibYg4&3C~7*)$oYK<NgzFB6k-$&)$Ofwui5cwB`}2rG5VtS)6|w#x|u>;k|Jk
sB>-iWVXYYAv}hB;^yc#V#!DBRd@?2*2nTXgCZ&<Bp4$ppxzn?M1O9jB&Hw-a

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2Authentication.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2Authentication.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..929b7d477bdfc7f67662f3f3326f5b6dd0b920cc
GIT binary patch
literal 1187
zcma)6F>ljQ5WcuBG(g%45QrgVDTo2tf`Ngsq_hf^TopAGL<i7|eMw*YVw?9~5~o82
zNUX3SF~Gor1dJf@4;UCgumUR!%m|5rdrsT98B#J>$@%WP@4NdhuYbX)l5jne4M)Y2
zhmE>qP3%N+-BIYbB-dR>v8Fih#4>90042p`oBQanmR`kBbDwD*g-+FEm3PHPpXWa=
zgx)s`ED!Pq-sdqB8ZLU&&>d*#ZZ~xONTQp8!r<z5ZOMZ|%4Z2x9EA!s9QM{&o4JC8
z4Y#U|hEgJ-GE~w4_i{~X$$XvZNs_Kb>ll7{d1f=L1mhNrtUw`Chk*wN&F_eY#8GKD
z)+5r=T)3AbA<#F2A;$Xy)Qk&C$#Pw+tx-lPiF34p(?)}1N}YbGnqCf@QNZh*)dYH6
z>Aw@F&b|HlaMFUD2ezPyhRIA@lVjAM-5ajo=EMx#{c!8|R0^8&@4zP5Nlc`U^ij%E
zvaUf-?tLykdC#7XKyDsv#WygC0U+10&6A2|h7R7WHg%4fTGy%aW-PEGS*S5E(@(>M
zL?27^RLV%8;bbMThWyf^H+OrvI=7UV*dc0oWoW|=)&`w=18ch%J=<GPzb)CdAh8)~
zEC+!^rPBW7VMX6*r}M!Mp?$qPVz%>+IN?xE|94QcSZ6Jv2k$C#43F=>`V$n3k1Vh~
zIKVWSzt+;miW3=6EU=h7XoqyyTQbHaHfWVHJ=`rV9*l1b2m?$ol{}W(V5)C}zG>9-
zTr<{P0>63T=!2E7KR#IiW<z$1{vb46X}Ve?HC{DlIynTz7;EF*@i&)VJo~-{Ge%=i
G5BwiOK&2i4

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2PostAuthenticationRequest.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2PostAuthenticationRequest.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..5c4c093b58a95e651e766439789de49afac55aa6
GIT binary patch
literal 417
zcmb_YJ5Iwu5FKrlCWwX#<q#W*mMSHZizrqOFmVQF$=bV_9h+D}Q4YX8Xt)Na;0%=X
z>{>=jBub`ydcS$^UoZ{~=(yCuv#HBR#)_UD?{uJ|VI!RmSlK)6*|lav9C2<<K^hy`
zQZ1%HF|O8mVl7;d`31hDeM3RsMjtP)pQmpHaA2T+$eXW&Fc#A1{+S8=DXU<d!R=+;
zq1Gxs2shaiwm7p`m$O{b2=^H%v)RKDR0b0!i(M`#G$7N6bdk0|mTpO<NlnrS55JnL
fwAql+iw<63l;%vva_%W`9ZcmdC5hig-nsY(>e`l;

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2RedirectAuthenticationRequest.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.Saml2RedirectAuthenticationRequest.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..b706114187c4d428a2e32015b0022e4bf436cc91
GIT binary patch
literal 473
zcmb`Du};H442DfmkpQtUAs*r?u`*>u%779vFq+g{4VUEVa{^)DiI8{|Hg<O2fm|BY
zR$}C)lkMOB{{QV8W<h`&u_k!o+TIIR^wh|s2~@Vi+M9rtyD(mwju#|DT{<qwV5>{2
zl}l7^YE#6ioE9upYP!?QY1LBD+pm}RPyb;ONHRDGY*S|yPO}H>aPF|S^FkxSWd?^s
zw?=J+R`3dY&;Ns%-USsbbwvFW5yqFe1ZEkW?K+%X+z5|M86>=zen&zM`$AFIycwJi
zm45JYjiP-{mgD7^)77u$IL12dT$}U?`!VsjSYd0Y!b#xDJBkv&9Okygy2)}A+Yhyg
Br`7-f

literal 0
HcmV?d00001

diff --git a/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.logout.Saml2LogoutRequest.serialized b/config/src/test/resources/serialized/6.4.x/org.springframework.security.saml2.provider.service.authentication.logout.Saml2LogoutRequest.serialized
new file mode 100644
index 0000000000000000000000000000000000000000..19cfd3c8f9bd0950aac2b086810fee48bf3422ef
GIT binary patch
literal 736
zcmbV~zi-qq6vtn4JzcqqUmc3X467{=8v{^8MWr0AE`<SA0ylY0Or6-ZU#_{OYx|EN
zG4Mweu_LiE!py+HgoLn@YkM#fDN3IGzW)02-h2NY`p&|RwmEag$|~QpqQpaO_nE`A
zwvwjIiBjEV#_Ea8(E4>dkts4!Q-Kx9RFKpaQ##i*u_PqN?f)1LYIOAJ&Z}=<PmYfx
z=*KYFl~v|#2wueAl>cMO&rEr1%Fj&wdTYup=F*XEEqUuTLgz$|Yu&l`V~Au%uoAx!
z6Ty|Ja-L8C^E*pQcb7eYBZy)c8WCs-ts}VFDQc36kA(5*H!Z5ES8fSQ)A5|~M%EtC
zm?I0@|5LhoimqaRQ^4$50cb2-2`DU}uqRbr&Tkrm#jVX`n>y-qK;P5btt#NK$66^&
zLzmpG=T)gQxhKW0LXY|5?YrOfbFdb{LJSLK;OaHT%WquBV_EHE_EfmS3+|mh+qtGr
ze|f=6SQcsO%fD&;T=<J#ztGIG`-3kZKCZt0+=FNxhDwWUU8JP#23(@TqARq@8uQ>`
y%hWqu^4~@OMg+^rqftDYARmQsIFE*7RAQQtAS4+2F3o}l2rfHW8igU>6y^_|8vX77

literal 0
HcmV?d00001

diff --git a/core/src/main/java/org/springframework/security/authentication/ott/OneTimeTokenAuthenticationToken.java b/core/src/main/java/org/springframework/security/authentication/ott/OneTimeTokenAuthenticationToken.java
index eda644dca3c..3bceb22be3a 100644
--- a/core/src/main/java/org/springframework/security/authentication/ott/OneTimeTokenAuthenticationToken.java
+++ b/core/src/main/java/org/springframework/security/authentication/ott/OneTimeTokenAuthenticationToken.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.authentication.ott;
 
+import java.io.Serial;
 import java.util.Collection;
 import java.util.Collections;
 
@@ -30,6 +31,9 @@
  */
 public class OneTimeTokenAuthenticationToken extends AbstractAuthenticationToken {
 
+	@Serial
+	private static final long serialVersionUID = -8691636031126328365L;
+
 	private final Object principal;
 
 	private String tokenValue;
diff --git a/ldap/src/main/java/org/springframework/security/ldap/userdetails/LdapAuthority.java b/ldap/src/main/java/org/springframework/security/ldap/userdetails/LdapAuthority.java
index 424fe11cc49..669aae83bda 100644
--- a/ldap/src/main/java/org/springframework/security/ldap/userdetails/LdapAuthority.java
+++ b/ldap/src/main/java/org/springframework/security/ldap/userdetails/LdapAuthority.java
@@ -31,6 +31,8 @@
  */
 public class LdapAuthority implements GrantedAuthority {
 
+	private static final long serialVersionUID = 343193700821611354L;
+
 	private final String dn;
 
 	private final String role;
diff --git a/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/authentication/logout/OidcLogoutToken.java b/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/authentication/logout/OidcLogoutToken.java
index 41b425bf408..90667058d43 100644
--- a/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/authentication/logout/OidcLogoutToken.java
+++ b/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/authentication/logout/OidcLogoutToken.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.client.oidc.authentication.logout;
 
+import java.io.Serial;
 import java.time.Instant;
 import java.util.Collection;
 import java.util.Collections;
@@ -45,6 +46,9 @@
  */
 public class OidcLogoutToken extends AbstractOAuth2Token implements LogoutTokenClaimAccessor {
 
+	@Serial
+	private static final long serialVersionUID = -5705409698230609696L;
+
 	private static final String BACKCHANNEL_LOGOUT_TOKEN_EVENT_NAME = "http://schemas.openid.net/event/backchannel-logout";
 
 	private final Map<String, Object> claims;
diff --git a/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/session/OidcSessionInformation.java b/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/session/OidcSessionInformation.java
index d7463151782..ef0525e31c1 100644
--- a/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/session/OidcSessionInformation.java
+++ b/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/oidc/session/OidcSessionInformation.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.client.oidc.session;
 
+import java.io.Serial;
 import java.util.Collections;
 import java.util.Date;
 import java.util.LinkedHashMap;
@@ -33,6 +34,9 @@
  */
 public class OidcSessionInformation extends SessionInformation {
 
+	@Serial
+	private static final long serialVersionUID = -1703808683027974918L;
+
 	private final Map<String, String> authorities;
 
 	/**
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/DefaultOAuth2AuthenticatedPrincipal.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/DefaultOAuth2AuthenticatedPrincipal.java
index aaacad14a64..e27339e808a 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/DefaultOAuth2AuthenticatedPrincipal.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/DefaultOAuth2AuthenticatedPrincipal.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core;
 
+import java.io.Serial;
 import java.io.Serializable;
 import java.util.Collection;
 import java.util.Collections;
@@ -34,6 +35,9 @@
  */
 public final class DefaultOAuth2AuthenticatedPrincipal implements OAuth2AuthenticatedPrincipal, Serializable {
 
+	@Serial
+	private static final long serialVersionUID = 4631662622577433065L;
+
 	private final Map<String, Object> attributes;
 
 	private final Collection<GrantedAuthority> authorities;
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2AccessToken.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2AccessToken.java
index 8ec26b60238..586ef8d8cb7 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2AccessToken.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2AccessToken.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core;
 
+import java.io.Serial;
 import java.io.Serializable;
 import java.time.Instant;
 import java.util.Collections;
@@ -41,6 +42,9 @@
  */
 public class OAuth2AccessToken extends AbstractOAuth2Token {
 
+	@Serial
+	private static final long serialVersionUID = -3041884478533441940L;
+
 	private final TokenType tokenType;
 
 	private final Set<String> scopes;
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2DeviceCode.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2DeviceCode.java
index c2127afdda9..e4900e15d47 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2DeviceCode.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2DeviceCode.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core;
 
+import java.io.Serial;
 import java.time.Instant;
 
 /**
@@ -30,6 +31,9 @@
  */
 public class OAuth2DeviceCode extends AbstractOAuth2Token {
 
+	@Serial
+	private static final long serialVersionUID = -864134962034523562L;
+
 	/**
 	 * Constructs an {@code OAuth2DeviceCode} using the provided parameters.
 	 * @param tokenValue the token value
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2RefreshToken.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2RefreshToken.java
index f203076517e..ffb9ccf2703 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2RefreshToken.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2RefreshToken.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core;
 
+import java.io.Serial;
 import java.time.Instant;
 
 /**
@@ -36,6 +37,9 @@
  */
 public class OAuth2RefreshToken extends AbstractOAuth2Token {
 
+	@Serial
+	private static final long serialVersionUID = -4114856398229602435L;
+
 	/**
 	 * Constructs an {@code OAuth2RefreshToken} using the provided parameters.
 	 * @param tokenValue the token value
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2UserCode.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2UserCode.java
index 31d6b6b6094..649349256a5 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2UserCode.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/OAuth2UserCode.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core;
 
+import java.io.Serial;
 import java.time.Instant;
 
 /**
@@ -30,6 +31,9 @@
  */
 public class OAuth2UserCode extends AbstractOAuth2Token {
 
+	@Serial
+	private static final long serialVersionUID = -3948612521903348476L;
+
 	/**
 	 * Constructs an {@code OAuth2UserCode} using the provided parameters.
 	 * @param tokenValue the token value
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/OidcIdToken.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/OidcIdToken.java
index 87f72cd3531..280f0f36f32 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/OidcIdToken.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/OidcIdToken.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core.oidc;
 
+import java.io.Serial;
 import java.time.Instant;
 import java.util.Collection;
 import java.util.Collections;
@@ -48,6 +49,9 @@
  */
 public class OidcIdToken extends AbstractOAuth2Token implements IdTokenClaimAccessor {
 
+	@Serial
+	private static final long serialVersionUID = -1840734870428968020L;
+
 	private final Map<String, Object> claims;
 
 	/**
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/DefaultOidcUser.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/DefaultOidcUser.java
index 2266fcf0e1c..5fe80099e85 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/DefaultOidcUser.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/DefaultOidcUser.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core.oidc.user;
 
+import java.io.Serial;
 import java.util.Collection;
 import java.util.Map;
 
@@ -42,6 +43,9 @@
  */
 public class DefaultOidcUser extends DefaultOAuth2User implements OidcUser {
 
+	@Serial
+	private static final long serialVersionUID = -2378469202439157250L;
+
 	private final OidcIdToken idToken;
 
 	private final OidcUserInfo userInfo;
diff --git a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/OidcUserAuthority.java b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/OidcUserAuthority.java
index 793e2127a96..4d07ad136c0 100644
--- a/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/OidcUserAuthority.java
+++ b/oauth2/oauth2-core/src/main/java/org/springframework/security/oauth2/core/oidc/user/OidcUserAuthority.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.core.oidc.user;
 
+import java.io.Serial;
 import java.util.HashMap;
 import java.util.Map;
 
@@ -36,6 +37,9 @@
  */
 public class OidcUserAuthority extends OAuth2UserAuthority {
 
+	@Serial
+	private static final long serialVersionUID = -4675866280835753141L;
+
 	private final OidcIdToken idToken;
 
 	private final OidcUserInfo userInfo;
diff --git a/oauth2/oauth2-jose/src/main/java/org/springframework/security/oauth2/jwt/Jwt.java b/oauth2/oauth2-jose/src/main/java/org/springframework/security/oauth2/jwt/Jwt.java
index 829f7312491..ac8768103ef 100644
--- a/oauth2/oauth2-jose/src/main/java/org/springframework/security/oauth2/jwt/Jwt.java
+++ b/oauth2/oauth2-jose/src/main/java/org/springframework/security/oauth2/jwt/Jwt.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.jwt;
 
+import java.io.Serial;
 import java.time.Instant;
 import java.util.Collection;
 import java.util.Collections;
@@ -49,6 +50,9 @@
  */
 public class Jwt extends AbstractOAuth2Token implements JwtClaimAccessor {
 
+	@Serial
+	private static final long serialVersionUID = 4872843562494199108L;
+
 	private final Map<String, Object> headers;
 
 	private final Map<String, Object> claims;
diff --git a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/BearerTokenError.java b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/BearerTokenError.java
index 30e9d29bde7..29c3aa7940c 100644
--- a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/BearerTokenError.java
+++ b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/BearerTokenError.java
@@ -16,6 +16,8 @@
 
 package org.springframework.security.oauth2.server.resource;
 
+import java.io.Serial;
+
 import org.springframework.http.HttpStatus;
 import org.springframework.security.oauth2.core.OAuth2Error;
 import org.springframework.util.Assert;
@@ -34,6 +36,9 @@
  */
 public final class BearerTokenError extends OAuth2Error {
 
+	@Serial
+	private static final long serialVersionUID = 4521118368930341766L;
+
 	private final HttpStatus httpStatus;
 
 	private final String scope;
diff --git a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/BearerTokenAuthentication.java b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/BearerTokenAuthentication.java
index 1e70e86b89b..0cbae3ab6ea 100644
--- a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/BearerTokenAuthentication.java
+++ b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/authentication/BearerTokenAuthentication.java
@@ -57,6 +57,14 @@ public BearerTokenAuthentication(OAuth2AuthenticatedPrincipal principal, OAuth2A
 		setAuthenticated(true);
 	}
 
+	public BearerTokenAuthentication(OAuth2AuthenticatedPrincipal principal, OAuth2AccessToken credentials) {
+		super(credentials, principal, credentials, principal.getAuthorities());
+		Assert.isTrue(credentials.getTokenType() == OAuth2AccessToken.TokenType.BEARER,
+				"credentials must be a bearer token");
+		this.attributes = Collections.unmodifiableMap(new LinkedHashMap<>(principal.getAttributes()));
+		setAuthenticated(true);
+	}
+
 	@Override
 	public Map<String, Object> getTokenAttributes() {
 		return this.attributes;
diff --git a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/introspection/OAuth2IntrospectionAuthenticatedPrincipal.java b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/introspection/OAuth2IntrospectionAuthenticatedPrincipal.java
index b75e58c40c3..4a9bf66f35c 100644
--- a/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/introspection/OAuth2IntrospectionAuthenticatedPrincipal.java
+++ b/oauth2/oauth2-resource-server/src/main/java/org/springframework/security/oauth2/server/resource/introspection/OAuth2IntrospectionAuthenticatedPrincipal.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.oauth2.server.resource.introspection;
 
+import java.io.Serial;
 import java.io.Serializable;
 import java.util.Collection;
 import java.util.Map;
@@ -36,6 +37,9 @@
 public final class OAuth2IntrospectionAuthenticatedPrincipal
 		implements OAuth2TokenIntrospectionClaimAccessor, OAuth2AuthenticatedPrincipal, Serializable {
 
+	@Serial
+	private static final long serialVersionUID = 382069143804098909L;
+
 	private final OAuth2AuthenticatedPrincipal delegate;
 
 	/**
diff --git a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2Authentication.java b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2Authentication.java
index d32c1f44697..1180fb0c83b 100644
--- a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2Authentication.java
+++ b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2Authentication.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.saml2.provider.service.authentication;
 
+import java.io.Serial;
 import java.util.Collection;
 
 import org.springframework.security.authentication.AbstractAuthenticationToken;
@@ -37,6 +38,9 @@
  */
 public class Saml2Authentication extends AbstractAuthenticationToken {
 
+	@Serial
+	private static final long serialVersionUID = 405897702378720477L;
+
 	private final AuthenticatedPrincipal principal;
 
 	private final String saml2Response;
diff --git a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2AuthenticationToken.java b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2AuthenticationToken.java
index 5f3ca730969..5f501aa8b42 100644
--- a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2AuthenticationToken.java
+++ b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2AuthenticationToken.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.saml2.provider.service.authentication;
 
+import java.io.Serial;
 import java.util.Collections;
 
 import org.springframework.security.authentication.AbstractAuthenticationToken;
@@ -33,6 +34,9 @@
  */
 public class Saml2AuthenticationToken extends AbstractAuthenticationToken {
 
+	@Serial
+	private static final long serialVersionUID = 5225098478444036532L;
+
 	private final RelyingPartyRegistration relyingPartyRegistration;
 
 	private final String saml2Response;
diff --git a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2PostAuthenticationRequest.java b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2PostAuthenticationRequest.java
index d0fb791970a..1aea7beeb27 100644
--- a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2PostAuthenticationRequest.java
+++ b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2PostAuthenticationRequest.java
@@ -16,6 +16,8 @@
 
 package org.springframework.security.saml2.provider.service.authentication;
 
+import java.io.Serial;
+
 import org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration;
 import org.springframework.security.saml2.provider.service.registration.Saml2MessageBinding;
 
@@ -30,6 +32,9 @@
  */
 public class Saml2PostAuthenticationRequest extends AbstractSaml2AuthenticationRequest {
 
+	@Serial
+	private static final long serialVersionUID = -6412064305715642123L;
+
 	Saml2PostAuthenticationRequest(String samlRequest, String relayState, String authenticationRequestUri,
 			String relyingPartyRegistrationId, String id) {
 		super(samlRequest, relayState, authenticationRequestUri, relyingPartyRegistrationId, id);
diff --git a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2RedirectAuthenticationRequest.java b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2RedirectAuthenticationRequest.java
index 4101801204f..c00c5693615 100644
--- a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2RedirectAuthenticationRequest.java
+++ b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/Saml2RedirectAuthenticationRequest.java
@@ -16,6 +16,8 @@
 
 package org.springframework.security.saml2.provider.service.authentication;
 
+import java.io.Serial;
+
 import org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration;
 import org.springframework.security.saml2.provider.service.registration.Saml2MessageBinding;
 
@@ -30,6 +32,9 @@
  */
 public final class Saml2RedirectAuthenticationRequest extends AbstractSaml2AuthenticationRequest {
 
+	@Serial
+	private static final long serialVersionUID = 6476874109764554798L;
+
 	private final String sigAlg;
 
 	private final String signature;
diff --git a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/logout/Saml2LogoutRequest.java b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/logout/Saml2LogoutRequest.java
index ab51f9bbc5c..bb1a87e46b9 100644
--- a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/logout/Saml2LogoutRequest.java
+++ b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/logout/Saml2LogoutRequest.java
@@ -16,6 +16,7 @@
 
 package org.springframework.security.saml2.provider.service.authentication.logout;
 
+import java.io.Serial;
 import java.io.Serializable;
 import java.nio.charset.StandardCharsets;
 import java.util.Collections;
@@ -39,6 +40,9 @@
  */
 public final class Saml2LogoutRequest implements Serializable {
 
+	@Serial
+	private static final long serialVersionUID = -3588981995674761337L;
+
 	private static final Function<Map<String, String>, String> DEFAULT_ENCODER = (params) -> {
 		if (params.isEmpty()) {
 			return null;