Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 06:58:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,172 Commits 33 Branches 337 Tags
Commit Graph

1761 Commits

Author SHA1 Message Date
Luke Taylor
08ea70909d Fixed broken test due to missing context file. 2008-12-01 00:36:13 +00:00
Luke Taylor
a318aacc4f Converted MethodSecurityInterceptorTests to use mocks and deleted app context file. 2008-11-30 23:20:16 +00:00
Luke Taylor
bfd4bcfdb7 SEC-1012: Java5ing of RunAsUserToken constructor. 2008-11-30 23:16:39 +00:00
Luke Taylor
b25d6958d7 SEC-1036: Removed references to SpringSecurityContextSource 2008-11-29 12:15:51 +00:00
Luke Taylor
66897e1849 SEC-1036: Upgraded Spring LDAP to 1.3 and made corresponding code changes. Also some general tidying up of LDAP code. Removed deprecated context factory classes. 2008-11-28 22:22:51 +00:00
Luke Taylor
1918c50fd7 SEC-1039: Deprecated HttpSessionContextIntegrationFilter and made it extend SecurityContextPersistenceFilter. 2008-11-28 18:01:34 +00:00
Luke Taylor
8cfd515b27 SEC-988: Added Javadoc for UserDetailsChecker interface. 2008-11-27 21:21:25 +00:00
Luke Taylor
d508adbf8b SEC-1037: Made LdapAuthenticationProvider implement MessageSourceAware. 2008-11-27 21:12:43 +00:00
Luke Taylor
843d0e6910 SEC-985: Added hideUsernameNotFoundException property to LdapAuthenticationProvider and set default to true. 2008-11-27 21:08:01 +00:00
Luke Taylor
4d81d750cd SEC-1039: Created new filter SecurityContextPersistenceFilter and SecurityContextRepository strategy to replace HttpSessionContextIntegrationFilter functionality. 2008-11-27 20:18:54 +00:00
Luke Taylor
789be71d8c SEC-398: Rolled back addition of erroneous test method for this issue (the fix was incorrect and the test method does nothing useful). 2008-11-27 10:41:08 +00:00
Luke Taylor
2dfd006665 SEC-1012: Converted Groupsmanager to use List<String> 2008-11-26 11:17:15 +00:00
Luke Taylor
1f78974073 Improved javadoc and debug message relating to clearing of security context. 2008-11-26 10:35:06 +00:00
Luke Taylor
dca0505d23 SEC-1012: generification 2008-11-21 12:39:30 +00:00
Luke Taylor
05e753de61 Converted to use jmock for mocks. 2008-11-21 12:26:56 +00:00
Luke Taylor
6b24637fbc Further SavedRequestWrapper related tests and tidying up. 2008-11-21 12:17:43 +00:00
Luke Taylor
1cf59b249a Added test class for DefaultLoginPageGeneratingFilter. 2008-11-16 05:07:33 +00:00
Luke Taylor
13caa48a24 Added clearContext() in @After. Test was leaving a TestingAuthenticationToken in the context. 2008-11-16 00:09:35 +00:00
Luke Taylor
18e74e7d3f Import cleaning. 2008-11-16 00:03:42 +00:00
Luke Taylor
22cca49d4a Added clearContext() call in @Before method. Test class appears to be failing on the build server because of a left over security context from a previous test 2008-11-16 00:03:01 +00:00
Luke Taylor
67c06d3d52 SEC-1012: Adding generics and general tidying up of tests etc 2008-11-15 13:00:38 +00:00
Luke Taylor
a535c5bd05 Removed unused imports. 2008-11-15 11:09:40 +00:00
Luke Taylor
9dc50bce82 SEC-1013: Removed ConfigAttributeDefinition 2008-11-15 10:55:23 +00:00
Luke Taylor
e259fe43a9 SEC-1034: Removed classes for converting a FilterInvocationDefinitionSource to a map for use in FilterChainProxy 2008-11-15 10:26:35 +00:00
Luke Taylor
31375b7212 SEC-1012: Futher generification. Also changed method signature of ObjectDefinitionSource.getAllConfigAtributes to return a single collection 2008-11-15 09:35:11 +00:00
Luke Taylor
5c1f4e60e3 Tidying stuff 2008-11-14 07:16:49 +00:00
Luke Taylor
3261fcb174 Tidying stuff 2008-11-14 07:16:30 +00:00
Luke Taylor
fa630a430d Removed unused test files 2008-11-14 06:23:34 +00:00
Luke Taylor
3ce5ea7710 Add missing @Test attributes 2008-11-14 06:22:43 +00:00
Luke Taylor
df26b2447c SEC-1035: Switch to using spring-el from the Spring 3 build 2008-11-14 06:21:24 +00:00
Luke Taylor
bd9b199599 Import cleaning. 2008-11-14 00:28:54 +00:00
Luke Taylor
648ba1c43a SEC-1034: Fix broken tests. 2008-11-13 08:57:43 +00:00
Luke Taylor
ae05e74085 Replace use of deprecated Spring methods (addConstructorArg) with non-deprecated versions. 2008-11-13 08:56:59 +00:00
Luke Taylor
7a8bd8a673 SEC-1034: Removed FilterInvocationDefinitionSourceEditor. 2008-11-13 07:46:21 +00:00
Luke Taylor
464da0f0df SEC-999: Refactored namespace to take an expression handler instead of a permission evaluator, allowig fo greater cusomtomization and for a single handler to be used in both web and method security expressions. 2008-11-13 07:41:21 +00:00
Luke Taylor
ee13be47b7 Call setAuthenticated() in constructor with authorities to mimic behaviour of UsernamePasswordAuthenticationToken 2008-11-13 07:29:43 +00:00
Luke Taylor
3ef34122fc Converted to using JMock. 2008-11-13 06:50:55 +00:00
Luke Taylor
e18971fdf0 Fix test. BasicProcessingFilter doesn't work with TestingAuthenticationToken. 2008-11-13 06:30:39 +00:00
Luke Taylor
3acd515c6c SEC-999: Refactored expression security classes for better separation of concerns and of method vs web authorization expressions. 2008-11-12 04:07:56 +00:00
Luke Taylor
0bbab88504 SEC-1031: LdapShaPasswordEncoder.isPasswordValid startOfHash off by one 
http://jira.springframework.org/browse/SEC-1031. Fixed startOfHash value and added tests to check full length of password is used.
 2008-11-11 23:34:40 +00:00
Luke Taylor
0ba690fb0e SEC-1015: Removed acl package from core and also related taglib declaration and implementation class (AclTag). 2008-11-11 09:21:51 +00:00
Luke Taylor
e5b1073501 SEC-1012: Added more generics and warning suppression 2008-11-11 09:06:50 +00:00
Luke Taylor
be34724207 Matchers for use with JMock expectations 2008-11-11 08:43:17 +00:00
Luke Taylor
62986c700b SEC-1027: Removed bnd plugin and 'bundle' package types from pom.xml files 2008-11-11 01:09:37 +00:00
Luke Taylor
e11114ce77 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023.

hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
 2008-11-10 04:27:25 +00:00
Luke Taylor
d6bb6ccbf5 Removed .cvsignore files 2008-11-06 01:11:08 +00:00
Luke Taylor
d33b13e52e SEC-1023: Added support for hasPermission() based on Id and type 2008-11-05 22:44:46 +00:00
Luke Taylor
a207acf7cb SEC-999: Fix broken test which was failing due to use of incorrect authentication object. 2008-11-05 01:09:14 +00:00
Luke Taylor
56141e9c5f SEC-999: Refactoring out specific dependencies on Spring EL into SecurityExpressionHandler. 
SEC:1023: Updates to expression root to allow evaluationof permissions.
 2008-11-04 23:30:56 +00:00
Luke Taylor
dabb719456 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023. PermissionEvaluator interface for use by expressions when evaluating hasPermisson() expressions.
 2008-11-04 22:46:21 +00:00