Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-08-03 08:03:30 +00:00
Code Issues Packages Projects Releases Wiki Activity
18,597 Commits 39 Branches 351 Tags
Commit Graph

1468 Commits

Author SHA1 Message Date
Ben Alex
89f6fcf5c9 Refactor to use an application context, thus enabling event publishing and use of DefaultAdvisorAutoProxyCreator. 2004-10-30 06:09:09 +00:00
Ben Alex
26f5f1a9b3 Add the AccessDeniedException to the HttpSession as per http://forum.springframework.org/viewtopic.php?t=1515. 2004-10-30 03:06:05 +00:00
Ben Alex
73349bf8f8 Add convenience method so subclasses can specify Authentication.setDetails(). 2004-10-30 01:19:22 +00:00
Ben Alex
992cf44b36 Refactor MethodDefinitionMap to use Method, not MethodInvocation. Refactor AbstractSecurityInterceptor to not force use of Throwable. Move AOP Alliance based MethodSecurityInterceptor to separate package. 2004-10-18 06:38:44 +00:00
Ben Alex
f123e9c333 Make MethodDefinitionMap query interfaces defined by secure objects, to properly support MethodDefinitionSourceAdvisor. 2004-10-15 03:47:53 +00:00
Ben Alex
8d973af603 Added MethodDefinitionSourceAdvisor for performance and autoproxying. 2004-10-15 00:29:24 +00:00
Ben Alex
333fe84ee8 Clarify interface contract for ObjectDefinitionSource when no ConfigAttributes exist for a given secure object invocation, plus unit tests and fixes for concrete implementations. Thanks to Sean Radford for spotting the inconsistency. 2004-09-11 06:14:58 +00:00
Ben Alex
8a32fde12a Additional convenience methods as suggested by Sean Radford. 2004-09-11 06:13:54 +00:00
Ben Alex
d7c98f95ca Made FilterToBeanProxy compatible with ContextLoaderServlet (lazy initialisation on first HTTP request). 2004-09-01 02:37:55 +00:00
Ben Alex
1a92434914 Add support for password-validating DAOs, such as LDAP. Contributed by Karel Miarka. 2004-08-30 01:24:12 +00:00
Ben Alex
aaebd3ef5a Added DaoAuthenticationProvider.hideUserNotFoundExceptions property. Defaults to true, so BadCredentialsException is thrown instead of UsernameNotFoundException if a user cannot be found. 2004-08-26 23:19:00 +00:00
Ben Alex
5cd65887d5 Improved ConfigAttributeEditor so it trims preceding and trailing spaces. 2004-08-25 21:43:00 +00:00
Ben Alex
3f87849f31 Fixed GrantedAuthorityEffectiveAclsResolver if null ACLs provided to method. 2004-08-23 02:03:46 +00:00
Ben Alex
eb9c7d0852 Extracted removeUserFromCache(String) to UserCache interface. 2004-08-20 05:52:05 +00:00
Ben Alex
04f4c9881d Added original Authentication.getDetails() to DaoAuthenticationProvider response. 2004-08-13 01:07:32 +00:00
Ben Alex
e006f521f4 Fix formatting. 2004-08-04 06:40:06 +00:00
Ben Alex
c1e109da74 Initial commit of remote client authentication interface. 2004-08-01 07:49:16 +00:00
Ben Alex
29f8097c64 Increase test coverage. 2004-08-01 07:48:14 +00:00
Ben Alex
b4a0e45e76 Increase test coverage. 2004-08-01 02:19:25 +00:00
Ben Alex
f7b491b699 Refactor ACL database tables. 2004-07-31 06:38:40 +00:00
Ben Alex
13d5a2dbca Refactor ACL database tables. 2004-07-31 03:42:18 +00:00
Ray Krueger
e366c65d17 Almost forgot this piece of the jaas tests 2004-07-29 16:56:26 +00:00
Ray Krueger
3b284231da Increased test coverage of the .jaas package to 93.7% 2004-07-29 16:54:02 +00:00
Ben Alex
56829872b6 Initial commit of ACL capabilities. 2004-07-29 07:51:22 +00:00
Ben Alex
2426bb9e8e Make JdbcDaoTests use in-memory database. 2004-07-29 03:32:23 +00:00
Ben Alex
8c74d459c5 Delete files with old, non-Camel Case name. 2004-07-28 23:06:04 +00:00
Ray Krueger
f29e6763d4 Renamed all JAAS* classes to Jaas* 2004-07-28 15:03:03 +00:00
Ben Alex
951c1a02df Store failed Authentication request in AuthenticationException, using template pattern (patch thanks to Wesley Hall). 2004-07-24 07:18:04 +00:00
Francois Beausoleil
3d23119b56 Following a suggestion from Scott Evans, added support for EL in the authz tag 
library:
http://www.mail-archive.com/acegisecurity-developer%40lists.sourceforge.net/msg00189.html

* lib/spring/spring-mock.jar:
  Added Spring's 1.0.2 mock JAR.

* test/net/sf/acegisecurity/taglibs/authz/AuthorizeTagExpressionLanguageTests.java:
  New tests to assert that the taglib recognizes and parses EL expressions.

* src/net/sf/acegisecurity/taglibs/authz/AuthorizeTag.java:
  Implemented AuthorizeTagExpressionLanguageTests by using Spring's
  ExpressionEvaluationUtils.
 2004-07-23 01:24:55 +00:00
Ben Alex
2996d67b06 Fix bug related to detecting incorrect use of SecureContext property. 2004-07-21 02:04:42 +00:00
Ray Krueger
da7895087b Added correct @author and @version tags, more Javadocs to follow 2004-07-19 17:27:28 +00:00
Ray Krueger
0c7a07e4db Adding in JAASAuthenticationProvider tests 2004-07-19 00:44:01 +00:00
Ben Alex
e3be8f20bb Refactor CasAuthoritiesPopulator to use UserDetails rather than GrantedAuthority[]. 2004-07-14 09:54:09 +00:00
Ben Alex
48b1cb7c85 Move UserDetails interface to net.sf.acegisecurity package. 2004-07-13 22:38:20 +00:00
Ben Alex
8b9f02e2e7 Expand test coverage. 2004-07-13 02:01:58 +00:00
Luke Taylor
b957b5e25b Convert database URL to use absolute path. Fixes test with Maven. 2004-07-02 14:07:26 +00:00
Ben Alex
6314aa4efa Refactor User to an interface. 2004-06-24 23:24:14 +00:00
Ben Alex
04dea9e403 Patch by Mark St.Godard to resolve issues with WebSphere 5. 2004-06-23 05:52:49 +00:00
Ben Alex
1a0bec5bf1 Make User available from Authentication via DaoAuthenticationProvider. 2004-06-21 06:10:14 +00:00
Ben Alex
b3e2d78c5d Fix issue when encoded passwords are used. Modify Contacts sample to test encoded passwords. 2004-06-08 12:54:42 +00:00
Ben Alex
1b24ff5ea8 Refactor DaoAuthenticationProvider cache model. 2004-05-31 04:41:22 +00:00
Ben Alex
e300a90890 Improve test coverage. 2004-05-31 01:19:18 +00:00
Ben Alex
0cbea9b452 Improve HTTP redirect URL encoding. 2004-05-26 22:17:14 +00:00
Ben Alex
d5c14142d1 Add event capabilities. 2004-05-24 00:09:27 +00:00
Ben Alex
369ea24215 Extra mock functionality for new unit tests. 2004-05-24 00:02:09 +00:00
Francois Beausoleil
d5a6ea044d Implemented a fix for a NullPointerException as reported by Pierre-Antoine Gr�goire (pa.gregoire@free.fr) 
"The error comes from line 115 in AuthorizeTag....It seems there's no control
for a null value here..."

* test/net/sf/acegisecurity/taglibs/authz/AuthorizeTagTests.java:
  Added a new test to confirm the existence of the bug.

* src/net/sf/acegisecurity/taglibs/authz/AuthorizeTag.java:
  And fixed the failing test.
 2004-05-19 12:34:52 +00:00
Ben Alex
614f12448e Create a NullRunAsManager, which is used by default by the AbstractSecurityInterceptor. 2004-05-06 23:13:32 +00:00
Ben Alex
8713d4d52c Authentication subclasses Principal, so it's directly usable by classes that want a Principal. No implementations need to change if they subclass AbstractAuthenticationToken, as it implements the one and only method required by Principal. 2004-05-04 07:35:41 +00:00
Ben Alex
4152df1225 Allow filter to update multiple HttpSession attributes (useful if servlets etc expect to find an Authentication object in a given HttpSession attribute, like Jakarta Slide). 2004-05-04 07:27:57 +00:00
Ben Alex
eaa92cd80a Fixed issue with caching by making AbstractIntegrationFilter (and its subclasses) write the new Authentication object to the well-known location. 2004-04-30 05:16:08 +00:00