05c7abe191
SEC-1445: Tests for setting of username and password parameter names through the form-login element.
2010-05-27 15:54:15 +01:00
7d74b7c87e
SEC-1171: Allow multiple http elements and add pattern attribute to specify filter chain mapping.
2010-05-27 15:54:15 +01:00
b0758dd8de
Refactoring HTTP config tests to use spock and groovy MarkupBuilder
2010-05-27 15:53:52 +01:00
080430150a
SEC-187: Refactoring contact Dao to use JdbcTemplate, and removing unused query objects (which have been there since 2004!)
2010-05-25 16:47:57 +01:00
055fcd0b7d
Minor tweaks to build file.
2010-05-25 16:07:18 +01:00
01308f8308
Added FAQ on using BeanPostProcessor to customize namespace-created beans.
2010-05-24 17:01:55 +01:00
e156d5339a
Fix build when upload properties are missing. Added missing hsql test dependency
2010-05-24 17:01:19 +01:00
a097a47246
Refactored ssh uploading into a separate gradle task. Added "uploadFaq" task
2010-05-23 00:05:30 +01:00
ca91b9abc5
Corrected section layout in DB schema appendix of ref manual.
2010-05-23 00:05:29 +01:00
12fc73f046
Added faqs on accessing the HttpSession from a UDS andon the use of URLs with fragments.
2010-05-22 14:31:28 +01:00
0e57ce2dc3
SEC-1481: Updated constructors of Authentication types to use a generic wildcard for authorities collection.
2010-05-21 15:59:50 +01:00
c95cf6ec7d
SEC-1483: Change User constructor to use a generic wildcard for authorities collection.
2010-05-21 15:58:35 +01:00
b0308e41cb
SEC-1455: Load namespace parsers when required, rather than on init() call, to avoid classloaded issue with dmServer failing to resolve web classes when the namespace handler is first used.
2010-05-21 15:36:37 +01:00
5aab06775e
SEC-1106: Added section on hierarchical roles to manual.
2010-05-18 16:43:55 +01:00
9bdf7efd27
Check remoteSiteDir property is available before using in build file.
2010-05-17 15:15:56 +01:00
e0d06b2b53
Added documentation on RequestCache functionality.
2010-05-16 15:18:03 +01:00
978bb9f601
Remove commented-out code in ETF.
2010-05-16 15:16:40 +01:00
f0c4cccb0d
SEC-1479: Clarify that matching is against servletPath + pathInfo for ant pattern matching. Added some extra pointers to request-matching info in namespace doc.
2010-05-16 14:14:13 +01:00
a4ce14f604
Add "provisioning" package to config bundlor template.
2010-05-16 14:14:13 +01:00
bf288101a0
Javadoc improvements
2010-05-16 14:14:13 +01:00
e1f575c545
SEC-1480: Add simple equals and hashcode methods based on DN value to LdapUserDetailsImpl to allow its use as a map key (in SessionRegistry, for example).
2010-05-15 02:29:11 +01:00
705f896209
SEC-1478: Added 'use-expressions' attribute to namespace appendix.
2010-05-11 02:25:45 +01:00
e5b0aa6850
Typo.
2010-05-07 02:07:03 +01:00
a567e32c69
Re-laying out of FAQ, plus some new questions.
2010-05-07 01:46:36 +01:00
08844f87d6
Fix javadoc upload url.
2010-05-06 20:02:32 +01:00
b3aad4cf19
Javadoc fixes.
2010-05-06 20:02:08 +01:00
5a4c81a2a5
Minor tinkering with build upload tasks.
2010-05-05 17:33:01 +01:00
0c09780644
SEC-1476: Modify AbstractPreAuthenticatedProcessingFilter to store authentication exception in request instead of creating a new session.
2010-05-05 14:13:48 +01:00
d5ffdd9c27
Import cleaning
2010-05-03 18:46:06 +01:00
64d59e1d32
Some extra FAQs and added comment to samples runall.sh script to explain that it's for dev only.
2010-05-03 14:56:22 +01:00
e7646a65f4
SEC-1421: Add setters to JdbcUserDetailsManager for group sql operations.
2010-05-03 14:53:06 +01:00
2c44461264
SEC-1473: Remove references to ContactSecurityVoter.
...
Replaced with reference to Oleg's blog article as an example of custom voter use
2010-05-03 14:53:06 +01:00
fcf33afce0
Formatting.
2010-05-03 14:53:05 +01:00
dccb30ad63
Remove use of wrong DOMUtils class (from com.sun package).
2010-05-01 15:06:48 +01:00
863ccecf55
SEC-1466: Report error if authentication-provider element has child elements when used with "ref" attribute.
2010-04-30 20:22:20 +01:00
165cbb0d19
SEC-1445: Added support for custom username and password parameters in form-login.
2010-04-30 18:14:50 +01:00
47ab2655d0
Remove outdated scm information from pom.xml
2010-04-28 20:15:21 +01:00
c95fe8af28
Adjust section in namespace chapter and increase section depth in manual TOC for easier reference.
2010-04-28 20:14:08 +01:00
bca6c1aeac
SEC-1468: Doc and Javadoc updates.
2010-04-26 23:26:07 +01:00
5b573d5d1e
Upgrade Maven build to Spring 3.0.2.
2010-04-25 23:20:00 +01:00
3c3aabf5be
SEC-1465: Change empty check to a null check for list of delegates for DelegatingMethodSecurityMetadataSource.
2010-04-25 22:11:35 +01:00
a421370a3d
SEC-1465: Change DelegatingMethodSecurityMetadataSource to use constructor injection to get round the problem of it being invoked before it has been initialized properly. Also changed the contacts tests to use the same app context and loading order as the actual webapp, to give better reassurance that the app will run successfully.
2010-04-25 22:00:25 +01:00
3bbbf07235
SEC-1464: Fix broken test (flags in returned user object were not being copied from stored user).
2010-04-25 20:12:00 +01:00
024e6904ff
SEC-1464: Deprecate UserMap, InMemoryDaoImpl and other related classes in favour of the simpler (non-property editor based) InMemoryUserDetailsManager.
2010-04-25 04:27:09 +01:00
f5859fabcf
SEC-1464: Created InMemoryUserDetailsManager and converted user-service BDP to use it for its in-memory database.
2010-04-25 04:26:45 +01:00
82bbd09b71
SEC-1460: Documentation of changes.
2010-04-24 15:49:47 +01:00
dada047e04
SEC-1456: Set rtexprvalue=true for "url" attribute in access tag to allow dynamic values (such as URL of current page).
2010-04-21 17:31:44 +01:00
def5f88c8c
SEC-1431: Added openid-selector to openid sample, plus AX configuration for myopenid.com.
2010-04-21 17:16:03 +01:00
2f025fba6c
SEC-1460: Added AxFetchListFactory which matches OpenID identifiers to lists of attributes to use in a fetch-request.
...
This allows different configurations to be used based on the identity-provider (google, yahoo etc). The default implementation iterates through a map of regex patterns to attribute lists. The namespace has also been extended to support this facility, with the "identifier-match" attribute being added to the attribute-exchange element. Multiple attribute-exchange elements can now be defined, each matching a different identifier.
2010-04-20 23:47:48 +01:00
3af75afec1
Clarify that multiple authentication-provider elements can be used in combination.
2010-04-20 23:47:48 +01:00
Luke Taylor
Luke Taylor