Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-08-06 01:23:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
18,597 Commits 44 Branches 351 Tags
Commit Graph

1468 Commits

Author SHA1 Message Date
Ben Alex
22aa0e898f SEC-243: SessionRegistry.getAllSessions() now accepts an "includeExpiredSessions" argument. 2006-04-27 23:26:19 +00:00
Ben Alex
b05709df6a SEC-152: Strategy pattern for SecurityContextHoldder. 2006-04-27 08:30:29 +00:00
Scott McCrory
88ff43017d Added unit test for the overridden requiresAuthentication method 2006-04-27 02:24:30 +00:00
Ben Alex
a47a342ce6 SEC-234: Allow pluggable AuthenticationDetailsSource strategy interface. 2006-04-26 05:24:49 +00:00
Ben Alex
4e09777dec SEC-247: Allow #NONE# to be used to specify paths that shouldn't have any filters fire. 2006-04-26 03:55:39 +00:00
Carlos Sanchez
88e8e60861 [SEC-240] Moved log4j.properties to test folder to avoid including it in jar 2006-04-26 02:39:56 +00:00
Ben Alex
14683dcbc7 SEC-190: Add hashCode() and equals() methods. 2006-04-26 01:41:10 +00:00
Luke Taylor
596882804f First commit of LdapTemplate class, a la Spring JdbcTemplate, as suggested by Ben to simplify Ldap connection handling etc. 2006-04-18 22:34:04 +00:00
Luke Taylor
3d51c46575 Added license header. 2006-04-18 22:27:17 +00:00
Luke Taylor
f61a58d98b Added a couple more tests. 2006-04-16 21:18:12 +00:00
Luke Taylor
7a0a87a167 Added support for LDAP SSHA (salted SHA) encoded passwords. 2006-04-16 21:12:39 +00:00
Luke Taylor
267c846e12 Sort out LDAP tests to match up with moved production classes. 2006-04-16 14:31:13 +00:00
Luke Taylor
bf4fca9126 Move non security-specific LDAP classes to org.acegisecurity.ldap package 2006-04-16 14:26:46 +00:00
Scott Battaglia
3d0f746719 SEC-224 
updated CasAuthenticationToken to be consistant with approach taken by other providers with regards to authentication.getPrincipal()
 2006-03-14 16:15:51 +00:00
Luke Taylor
7e7920ce00 Fix for SEC-202. Intialize manager password to default "manager_password_not_set". 2006-02-28 17:47:55 +00:00
Luke Taylor
6abceb7ab0 Additional changes related to SEC-192 (avoiding session creation when creating WebAuthenticationDetails). Also fixed Jalopy chaos in SwitchUserProcessingFilter. 2006-02-20 00:37:39 +00:00
Luke Taylor
5475ab0575 Modify AbstractAuthenticationManager to transfer the details object from authentication request to the resulting authentication token, provided it has not already been set on the latter by an authentication provider. 2006-02-19 23:50:21 +00:00
Luke Taylor
e12c8310eb Remove unnecessary default constructors which throw IllegalArgumentException. Favours compile time over runtime errors. 2006-02-16 16:44:35 +00:00
Luke Taylor
6c29a6d17e Added test for immutability of authorities array. Refactored standard authorities array into an instance field. 2006-02-13 16:16:43 +00:00
Ben Alex
a28a932598 SEC-183: Minimise session creation as a consequence of SEC-168 and SEC-182 changes. 2006-02-09 23:04:29 +00:00
Ben Alex
b1dd784dee SEC-180: BasicProcessingFilter should configurably ignore authentication failures. 2006-02-09 06:41:31 +00:00
Ben Alex
e63b2ec9e6 Cleanup unused imports. 2006-02-09 06:00:25 +00:00
Ben Alex
79287999dc SEC-178: Refactor AbstractAuthenticationToken. 2006-02-09 04:16:50 +00:00
Luke Taylor
dc959b1847 Fix for SEC-159. Added clearContext() method to SecurityContextHolder and refactored code to use it instead of putting an empty context into the holder. 2006-02-08 23:27:46 +00:00
Ben Alex
8c0ce12332 SEC-169: Add SessionRegistry.getAllPrincipals() method. 2006-02-08 05:22:48 +00:00
Ben Alex
3a01e48b17 SEC-174: Correct IE6 bug with AuthenticationProcessingFilterEntryPoint. 2006-02-08 04:58:50 +00:00
Ben Alex
ca1bf5cc21 SEC-170: AbstractAclVoter to support JoinPoint. 2006-02-08 02:06:55 +00:00
Luke Taylor
eb7964f6e5 Clean imports. 2006-02-08 01:54:03 +00:00
Luke Taylor
fe88d6ec17 SEC-134 fix. Authorities array is now copied on access. Also refactored token classes to move authorities to the base class. 2006-02-08 01:24:38 +00:00
Luke Taylor
842ad929a4 Change search object to use constructor injection (SEC-165) . 2006-02-03 19:53:08 +00:00
Ben Alex
9771b7817a SEC-144: Separate SecurityEnforcementFilter from FilterSecurityInterceptor. 2006-01-28 22:54:23 +00:00
Ben Alex
823f93fe3b SEC-163: Fix ClassCastException bug in MethodInvocationUtils, and add test to prove correct functionality. 2006-01-28 21:33:35 +00:00
Ben Alex
484b0e3a51 SEC-126: Initial commit of WebInvocationPrivilegeEvaluator feature. 2006-01-28 01:26:58 +00:00
Ben Alex
c8c7c24822 SEC-120: Remember-me to delegate to AuthenticationManager so authentication-specific behaviour (such as concurrent user management) can be applied. 2006-01-28 01:22:36 +00:00
Luke Taylor
fbe5957c23 Add support for ldaps:// urls. (Fix for SEC-146). 2006-01-27 18:28:13 +00:00
Ben Alex
82be52cea0 SEC-123: Remove exception from no-arg constructor. 2006-01-27 05:26:46 +00:00
Ben Alex
8f6275ab3e SEC-155: BasicaclEntryCache to provide "remove from cache" support. 2006-01-27 04:42:39 +00:00
Ben Alex
5e258cc201 SEC-161: Truncate everything after ? in URL. 2006-01-27 03:30:01 +00:00
Ben Alex
e5c538d1a5 SEC-125: Provide hashCode() method for AbstractAuthenticationToken. 2006-01-26 09:23:03 +00:00
Luke Taylor
38629f159a Added default role option to authorities populator. 2006-01-13 21:13:53 +00:00
Luke Taylor
2f53f0e7d7 Message string changed to reflect class name changes. 2006-01-05 01:11:45 +00:00
Luke Taylor
d7ae1ad21b Refactoring to reduce code duplication, remove config files and use JMock to enforce expectations on whether FilterChain proceeds or not. 2006-01-05 00:59:10 +00:00
Luke Taylor
0202b47346 Switched to using JMock methods for dummy objects. 2006-01-04 23:31:34 +00:00
Luke Taylor
4063a87dbf Changed to use parent method for Mock creation rather than new operator. 2006-01-04 23:25:40 +00:00
Luke Taylor
f9d0ee209b Changed FilterInvocationDefinitionSourceEditor to complain if the parsed URL or the config attribute is empty or null. Plus some comment tidying. 2006-01-04 21:35:10 +00:00
Luke Taylor
e81be72bd7 Changed test to use tested class rather than interface name. Added test for service detection style URLs. 2006-01-01 15:11:54 +00:00
Ben Alex
6b1f97a381 Resolve compiler warnings. 2005-12-24 10:03:18 +00:00
Luke Taylor
5b076c79d1 Changed to use a Set rather than array index to check for the presence of granted authorities as the ordering of the latter couldn't be guaranteed. 2005-12-22 01:22:09 +00:00
Luke Taylor
8f725f7a74 Removed no-arg constructor from UsernamePasswordAuthenticationToken. 2005-12-22 01:16:16 +00:00
Luke Taylor
c378779610 Removed printStackTrace from expected exception. 2005-12-22 01:15:25 +00:00