Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-08-04 08:33:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
18,597 Commits 44 Branches 351 Tags
Commit Graph

1468 Commits

Author SHA1 Message Date
Luke Taylor
f594fdf751 Tidying and tests to bring Dao populator up to full coverage. 2005-03-12 21:56:04 +00:00
Luke Taylor
76f868c777 More tests. 2005-03-12 21:27:22 +00:00
Luke Taylor
9f62da7d1c Better test method names. 2005-03-12 21:20:43 +00:00
Luke Taylor
0a4fc1731a Tests added to bring X509ProcessingFilter up to full coverage. 2005-03-12 20:47:58 +00:00
Luke Taylor
5d1cd29dfb Added tearDown method which resets the context to null to prevent occasional breaking of other test classes. 2005-03-12 13:44:00 +00:00
Luke Taylor
f578915728 Test class for X509 filter. 2005-03-11 17:42:39 +00:00
Luke Taylor
29050b29b2 Dao populator tests for X.509. Tests matching of regexps in the certificate Subject to extract the user name. 2005-03-11 02:08:07 +00:00
Ben Alex
b898b87ffb Enhance test coverage as part of diagnosis of reported bug at http://forum.springframework.org/viewtopic.php?p=15751. 2005-03-10 11:39:32 +00:00
Luke Taylor
ae91b58685 First stab at X509 authentication provider 2005-03-09 02:14:30 +00:00
Ben Alex
f1e071b0f1 Added remember-me services. 2005-03-01 02:30:38 +00:00
Ben Alex
d47a2190f7 Correct test failure on high performance JREs. 2005-02-27 07:16:38 +00:00
Ray Krueger
44397bb05d Committing ConcurrentSessionController feature and tests. Documentation is needed. 2005-02-26 21:48:07 +00:00
Ray Krueger
4125db5650 Added in a default constructor to use the original sessionid and a constructor for specifying the sessionId 2005-02-25 05:24:10 +00:00
Ben Alex
693ac5a24a Anonymous principal support. As requested by the community at various times, including in http://forum.springframework.org/viewtopic.php?t=1925. 2005-02-23 06:09:56 +00:00
Ray Krueger
3c4faf58c7 HttpSessionEventPublisher, HttpSessionCreatedEvent, HttpSessionDestroyedEvent 
Used together to provide published events in the ApplicationContext about HttpSessions.

Useful for things like Single Session logins.
 2005-02-23 02:54:41 +00:00
Ray Krueger
8b24b1cf7a MockFilterChain extended TestCase but had no public constructor and no test methods. 
The expectedToProceed test is internally handled by a static call to TestCase.assertTrue() and TestCase.fail()
 2005-02-23 02:47:31 +00:00
Ben Alex
a3818184f4 Added Digest Authentication support (RFC 2617 and RFC 2069). 2005-02-22 06:14:44 +00:00
Ben Alex
dda66a0454 Significantly refactor "well-known location model" to authentication processing mechanism and HttpSessionContextIntegrationFilter model. 2005-02-21 06:48:31 +00:00
Ben Alex
ba02d45677 Clean up imports. 2005-02-21 06:34:16 +00:00
Ben Alex
e52f3eacb1 Use WebAuthenticationDetails for Authentication.getDetails() by default. 2005-02-21 00:09:49 +00:00
Ben Alex
a5ea6f5436 Rewrite FilterChainProxy to separate functionality from FilterToBeanProxy and properly implement filter chaining issues. 2005-02-20 05:40:18 +00:00
Ben Alex
44f1c83dab Move MockFilterChain to external class. 2005-02-20 05:38:14 +00:00
Carlos Sanchez
7c9fad0477 Added filter chain 2005-02-18 20:08:03 +00:00
Ray Krueger
1949c3b27e Added AuthenticationException to the commence method signature of the AutenticationEntryPoint. The best example of this 
is the BasicProcessingFilterEntryPoint where the authException.getMessage() is used to send back an informative 401,
instead of just the error code.

Added AccessDeniedException to the sendAccessDeniedError method signature. The accessDeniedException.getMessage() result
is used to send an invormative 403 error back to the servletResponse by default.
 2005-02-15 03:28:18 +00:00
Ben Alex
6370fadfdc FilterSecurityInterceptor now only executes once per request (improves performance with SiteMesh). Suggested by Sanjiv Jivan. 2005-02-11 05:49:41 +00:00
Ben Alex
cbe53e21b9 HttpSessionIntegrationFilter no longer creates a HttpSession unnecessarily. 2005-02-10 07:15:20 +00:00
Ben Alex
834f69168d Support getUserPrincipal(). 2005-02-04 22:38:07 +00:00
Ray Krueger
82c15b1874 The JaasAuthenticationCallbackHandler handle method now takes a callback and the authentication in progress, the setAuthentication method has been removed. 
The JaasAuthenticationProvider afterPropertiesSet method now makes use of the java.security.auth.login.config System property before trying to use the login.config.url.X properties.
 2005-01-31 05:16:32 +00:00
Ben Alex
d6207106c0 Expand test coverage. 2005-01-04 20:20:21 +00:00
Ben Alex
c939bcb176 Add account expiration and credentials expiration capabilities. 2005-01-03 01:14:26 +00:00
Ben Alex
dc726ac75c Clarify and enforce interface interface contract for AuthenticationDao. 2004-12-21 20:53:32 +00:00
Ben Alex
4bcc1222e1 Modifications to support EH-CACHE upgrade (EH-CACHE appears to have changed the way the default cache configuration file gets handled). 2004-12-21 13:04:11 +00:00
Ben Alex
c5ea35d093 Extend After ACL provider to also filter arrays. Thanks to Joni Suominen. 2004-12-17 21:56:05 +00:00
Ray Krueger
cb61c88478 Increased test coverate to 100% 2004-12-09 23:53:11 +00:00
Ben Alex
c5900cab9c Added a ContextHolderAwareRequestWrapper to integrate with getRemoteUser() and isUserInRole(String). Thanks to Orlando Garcia Carmona ("paramosyermos" on Spring forums). 2004-12-05 06:11:18 +00:00
Ben Alex
89ba20f057 Fix Tomcat compatibility issue where HttpSession unavailable during "logoff". Thanks to Aaron Tang. 2004-12-05 05:29:25 +00:00
Ben Alex
82ed7253d4 Refactor AbstractFilterInvocationDefinitionSource to use a standard URL String in its lookup method, rather than a full FilterInvocation. This will make it easier for views (taglibs etc) to access URI security details without needing to construct a MockFilterInvocation. 2004-12-05 05:04:52 +00:00
Ben Alex
76c82db196 Refactor EH-CACHE integration classes to work with Spring IoC provided Cache rather than manage our own cache internally. 2004-12-05 04:37:05 +00:00
Ben Alex
41b41ba316 Expand test coverage. Clover via Maven (without excluding appropriate patterns like *Exception and debug messages) has modified coverage from 77.2% to 95%. 2004-12-03 06:46:41 +00:00
Ben Alex
3a0e43337c Improve test coverage and error detection at startup time. 2004-12-01 02:22:24 +00:00
Ben Alex
89eed486e2 Add alwaysUseDefaultTargetUrl feature to AbstractProcessingFilter. 2004-11-22 21:38:14 +00:00
Ben Alex
ba16c01b90 Add toString() method so more informative when context propagation takes place, such as via ContextPropagatingRemoteInvocation. 2004-11-20 04:06:47 +00:00
Ben Alex
70a9c76f69 Remove unnecessary console output from tests. 2004-11-15 00:37:00 +00:00
Ben Alex
ef2e45df77 Update tests to support incompatible collaborator detection now in AbstractSecurityInterceptor. 2004-11-15 00:36:12 +00:00
Ben Alex
e83c66bb37 Expand test coverage so GrantedAuthorityEffectiveAclsResolver properly handles Authentication with a principal of type UserDetails. 2004-11-15 00:34:32 +00:00
Ben Alex
f1d993f47b Made BasicAclProvider to only respond to specified ACL object requests. 2004-11-09 21:09:14 +00:00
Carlos Sanchez
cd56f2ed4a Moved from test to main 2004-11-03 22:35:12 +00:00
Ben Alex
fde59c2f29 Ad mock method implementation now we're using HttpSession.removeAttribute(). 2004-10-30 23:32:53 +00:00
Carlos Sanchez
55624cf5dd Moved resources from java dir to resources dir 2004-10-30 22:49:12 +00:00
Carlos Sanchez
928498b53d Removed AutoIntegrationFilter 2004-10-30 22:45:35 +00:00