Ben Alex
d45f9a0560
Change next version to 1.0.0 RC1.
2005-11-30 00:32:30 +00:00
Ben Alex
62fde4ede3
SEC-107: Finalize rename of AuthenticationDao to UserDetailsService with corresponding change in package from .providers.dao to .userdetails.
2005-11-30 00:20:13 +00:00
Luke Taylor
c15f2bbaad
Fixes for SEC-115. Moved test-web.xml file to test/resources
2005-11-29 17:29:08 +00:00
Luke Taylor
ec30e8b11c
Fixes for SEC-115. Updates to acegifier to work with Maven and new Acegi sources.
2005-11-29 17:14:56 +00:00
Ben Alex
a6e23d79ae
SEC-107: Rename AuthenticationDao to UserDetailsService.
2005-11-29 13:10:15 +00:00
Ben Alex
c021362ebb
New package top level name.
2005-11-29 04:06:31 +00:00
Ben Alex
f57f50bae5
Modify Acegifier to use Maven build and 1.0.0+ package names.
2005-11-29 02:33:40 +00:00
Ben Alex
6a1a4abb1d
SEC-104: Move to org.acegisecurity package.
2005-11-17 00:56:49 +00:00
Ben Alex
f569afe6f5
Change versions for 1.0.0-SNAPSHOT.
2005-11-11 04:22:48 +00:00
Ben Alex
a4aa477770
Release 0.9.0
2005-11-11 04:01:06 +00:00
Ben Alex
2d74db9a0c
SEC-51 and SEC-67 related changes. Tested all functions of "filters" version in web browser OK.
2005-11-04 04:15:57 +00:00
Ben Alex
b6dbfde55c
SEC-70: Refactor event publishing.
2005-11-03 06:55:47 +00:00
Carlos Sanchez
b2363dfe07
SEC-62 Add maven 2 support
2005-10-06 20:53:08 +00:00
Carlos Sanchez
29e3daaab6
Removed redundant groupId (inherited from parent)
2005-10-06 20:01:29 +00:00
Mark St. Godard
9b898e84c4
Added Java 5 Annotations version of Contacts sample (contacts-tiger).
...
Note: I have added a pre goal to add the source dir of the original Contacts example.
I also added an exclude on the main project.properties for the attributes sample, as the Commons Attributes plugin causes issues with Java 5 source compilation.
The Annotations version will eventually replace the Commons Attributes approach, for now those users will need to manually build the attributes example.
2005-09-25 05:58:49 +00:00
Ben Alex
c64a3770de
Prove that 403 errors are handled by web.xml <error-page>.
2005-09-08 10:20:34 +00:00
Mark St. Godard
e850849be5
Added Java 5 Annotations version of the BankService sample. Note: This project requires the Secured annotation which is in "core-tiger"... make sure you have built and installed the acegi-security-tiger-0.9.0-SNAPSHOT.jar in your local maven repo.
2005-09-05 04:38:45 +00:00
Mark St. Godard
3f24824f66
updated config, added switchUserProcessingFilter to the filter chain, added the ROLE_SUPERVISOR the ability to switch to other users (i.e. ROLE_USER)
...
For example: 'marissa' can login, goto the /switchUser.jsp, then assume the role of another user such as 'scott'. marissa will then see scotts contacts, etc.
Then marissa can goto the /exitUser.jsp, and go back to 'marissa'
This is the similar to the Unix 'su' analogy that Ben made
2005-09-04 20:09:56 +00:00
Mark St. Godard
230d1946b9
added switchUserProcessingFilter config, not added to filter chain (yet)
2005-09-03 21:45:32 +00:00
Mark St. Godard
3dcea7ace0
initial pages for user switching
2005-09-03 21:44:05 +00:00
Luke Taylor
27a57410c1
Update to latest Spring tld
2005-08-02 17:27:30 +00:00
Ben Alex
2d772cbfcc
Fix bug as reported by Jared Odulio on acegisecurity-developer 29 July 2005.
2005-07-31 00:58:48 +00:00
Luke Taylor
28e8c93beb
Changes to exception handling, and some additional validation of web.xml content.
2005-07-22 00:20:54 +00:00
Luke Taylor
8e1549e399
Tidying up XML formatting (removed mix of tabs/spaces)
2005-07-20 14:13:47 +00:00
Luke Taylor
a67b529734
Add the display-name to the web.xml
2005-07-16 23:54:55 +00:00
Luke Taylor
95e99f9ea0
Forgot the XSL files...
2005-07-16 23:15:52 +00:00
Luke Taylor
a95964461d
o Move the web.xml converter code, tests and xsl files from core into the acegifier sample app.
...
o Switched to dom4j for more flexible xml handling and easier formatting of the XML output.
o Modified the test web.xml to match the contacts-filter app to allow easy testing in an acegi application.
2005-07-16 21:49:31 +00:00
Luke Taylor
0a742ce62a
First upload of the "acegifier" web application.
2005-07-09 21:35:33 +00:00
Luke Taylor
46388af1ea
corrected xjavadoc location to match ibiblio
2005-07-08 17:21:20 +00:00
Luke Taylor
de491d1767
Removed CAS references from web.xml for X.509.
2005-06-27 22:07:19 +00:00
Ben Alex
71b8f3e515
Remove less commonly used protocols.
2005-05-18 03:01:40 +00:00
Ben Alex
fe15b011bb
Make extra seed data and users so scalability more readily tested.
2005-05-18 03:01:34 +00:00
Ben Alex
e08e66dec6
Refactor SecurityContextHolder to return a SecurityContext instead of Authentication.
2005-05-08 23:42:14 +00:00
Ben Alex
6a9abe5d90
Remove ContextHolder and introduce SecurityContext.
2005-05-07 09:11:37 +00:00
Ben Alex
a68d720e88
Prepare for 0.9.0.
2005-04-20 22:43:46 +00:00
Ben Alex
4cf500763f
Release 0.8.2.
2005-04-20 14:15:03 +00:00
Luke Taylor
1a78f9e15f
Refactored to use Spring Assert class (thanks IntelliJ :).
2005-04-15 01:21:41 +00:00
Ben Alex
747825cda1
Correct location of AuthenticationSimpleHttpInvokerRequestExecutor in clientContext.xml.
2005-03-22 22:56:36 +00:00
Ben Alex
01aaadbe0d
Prepare for 0.8.2 (assuming 0.8.2 is the next version, but subject to change).
2005-03-22 11:57:32 +00:00
Ben Alex
48dd6c5c73
Release 0.8.1.
2005-03-22 11:25:41 +00:00
Ben Alex
9f66c0eae9
Update to current Spring JAR dependencies.
2005-03-22 11:17:22 +00:00
Ben Alex
816fb07e5f
Initial commit.
2005-03-22 06:11:28 +00:00
Luke Taylor
602b1473c5
Example certificates for X.509 Contacts app.
2005-03-20 19:09:55 +00:00
Luke Taylor
a4210b5551
Rolled back to remove X.509 users. Using new certificate with existing user name instead.
2005-03-19 18:40:16 +00:00
Luke Taylor
05bd6abb22
Added cache beans.
2005-03-19 18:36:10 +00:00
Luke Taylor
645dba1fcb
Added X.509 user to contacts with user name matching certificate email address.
2005-03-11 03:05:31 +00:00
Luke Taylor
740373ad01
Removed login-config info. Client authentication has to be enabled on the server (e.g. in the Tomcat connector) for it to work.
2005-03-11 00:33:15 +00:00
Luke Taylor
466220eb50
Added build for X.509 contacts app.
2005-03-11 00:03:16 +00:00
Luke Taylor
4ec64d407c
X.509 version of contacts app.
2005-03-10 23:48:54 +00:00
Ben Alex
53bb4aebdf
Setup future development for 0.8.1.
2005-03-03 13:29:46 +00:00
Ben Alex
4c5d0476b0
Prepare to release 0.8.0.
2005-03-03 00:06:46 +00:00
Ben Alex
3e9cd13fef
Re-enable session listener.
2005-03-01 02:35:33 +00:00
Ben Alex
f1e071b0f1
Added remember-me services.
2005-03-01 02:30:38 +00:00
Ray Krueger
44397bb05d
Committing ConcurrentSessionController feature and tests. Documentation is needed.
2005-02-26 21:48:07 +00:00
Ben Alex
693ac5a24a
Anonymous principal support. As requested by the community at various times, including in http://forum.springframework.org/viewtopic.php?t=1925 .
2005-02-23 06:09:56 +00:00
Ray Krueger
3c4faf58c7
HttpSessionEventPublisher, HttpSessionCreatedEvent, HttpSessionDestroyedEvent
...
Used together to provide published events in the ApplicationContext about HttpSessions.
Useful for things like Single Session logins.
2005-02-23 02:54:41 +00:00
Ben Alex
cbf413afcd
Prepare for 0.8.0 as the next release.
2005-02-21 06:56:00 +00:00
Ben Alex
dda66a0454
Significantly refactor "well-known location model" to authentication processing mechanism and HttpSessionContextIntegrationFilter model.
2005-02-21 06:48:31 +00:00
Ben Alex
4922ec1bbd
Use FilterChainProxy to tidy web.xml.
2005-02-20 05:40:44 +00:00
Ben Alex
c8706c33ac
Log4J no longer expected in servlet container classpath.
2005-01-28 06:34:01 +00:00
Ben Alex
da0234452a
Prepare for 0.7.1.
2005-01-19 21:23:11 +00:00
Ben Alex
a39e7ed82b
Release 0.7.0.
2005-01-16 03:58:42 +00:00
Carlos Sanchez
49974737fd
Allow site deployment from each subproject
2005-01-14 22:35:10 +00:00
Ben Alex
6c1e2f23b2
Allow last attempted username to be displayed in views.
2004-12-25 23:38:39 +00:00
Ben Alex
c77cb84f52
Fix group names etc as required to ensure a multiproject:install works from /docs if there is a CLEAN (empty) Maven repository.
2004-12-25 07:02:31 +00:00
Ben Alex
6ece0fab22
Iron out some Maven bugs with our custom WAR artifact building.
2004-12-24 00:35:36 +00:00
Ben Alex
2fe24b4357
Make multiproject:artifact (when called from /docs) properly build the Contacts Sample WARs.
2004-12-23 23:00:38 +00:00
Ben Alex
861a34092d
Remove quick-start, as it has been replaced by more detailed documentation pointers in docs/xdocs. The main issue with quick-start was maintaining it between Acegi Security versions. As it's never executed anywhere, its operation could never be easily tested (especially web.xml for example).
2004-12-22 13:18:00 +00:00
Ben Alex
8fb64e1e1b
Fix repository URLs so "viewcvs" URLs (associated with changelog plugin) are all correct.
2004-12-22 03:47:55 +00:00
Ben Alex
db9e420ceb
Use full package name for SecurityConfig, to ease support by Maven commons-attributes plugin.
2004-12-21 12:16:56 +00:00
Ben Alex
f7cfc84358
Fix correct package name for advisor.
2004-12-21 12:15:52 +00:00
Ben Alex
e8bfa37218
Make Attributes sample use Maven's commons-attributes plugin.
2004-12-21 12:15:35 +00:00
Ben Alex
76c82db196
Refactor EH-CACHE integration classes to work with Spring IoC provided Cache rather than manage our own cache internally.
2004-12-05 04:37:05 +00:00
Carlos Sanchez
589691d11e
Added distributionUrl
2004-11-20 10:28:18 +00:00
Ben Alex
cbd842ea44
Deprecated - use "maven -Dusername=marissa -Dpassword=koala run" (from contacts directory) instead.
2004-11-20 05:31:07 +00:00
Ben Alex
44b7cccc1f
Add RMI + HTTP Invoker remoting protocols and fixes related to Maven migration.
2004-11-20 05:28:20 +00:00
Ben Alex
889edece9f
Add additional packages.
2004-11-20 05:26:02 +00:00
Ben Alex
09cfe6eb96
Make Serializable (required by RMI).
2004-11-20 05:25:13 +00:00
Ben Alex
d8c5143e97
Added support so client application can be run from Maven.
2004-11-20 05:24:52 +00:00
Ben Alex
75a3876322
Use FieldRetrievingFactoryBean to specify static fields.
2004-11-16 12:15:03 +00:00
Ben Alex
1d81f4d1b7
Upgrade to Spring 1.1.2.
2004-11-16 12:14:09 +00:00
Ben Alex
f286c34312
Use new BasicAclExtendedDao for DAO CRUD operations instead of ContactDao.
2004-11-15 13:04:54 +00:00
Ben Alex
6e687d47d4
Refactor Contacts Sample to use new ACL security.
2004-11-15 03:25:39 +00:00
Carlos Sanchez
d159f6c5e1
Renamed artifactId
2004-11-14 21:49:42 +00:00
Carlos Sanchez
2067effa4a
Migrated to maven
2004-11-13 19:57:48 +00:00
Carlos Sanchez
bc0a3d888d
Removed unneeded tags
2004-11-13 18:33:28 +00:00
Ben Alex
8219778e1f
Ignore target directory.
2004-11-13 01:21:35 +00:00
Ben Alex
ec86643982
More dependencies.
2004-11-13 01:20:12 +00:00
Ben Alex
f98b926da4
Add dependency on Spring MVC classes.
2004-11-12 23:52:47 +00:00
Ben Alex
14f7fd654b
Fix groupId.
2004-11-12 23:52:22 +00:00
Carlos Sanchez
518ee40740
Migrated to maven
2004-11-12 21:47:08 +00:00
Carlos Sanchez
6b266bc677
Moved to xdocs
2004-11-12 21:45:42 +00:00
Carlos Sanchez
447549cf01
Added maven files
2004-11-12 21:42:43 +00:00
Ben Alex
b4b32a2e63
Correction.
2004-11-10 23:09:57 +00:00
Ben Alex
9b7996254e
Improve troubleshooting help.
2004-11-08 21:52:57 +00:00
Carlos Sanchez
83ad437739
Migrated samples-attributes to Maven
2004-11-07 20:12:58 +00:00
Carlos Sanchez
89d6dbf7b6
Migrated samples-attributes to Maven
2004-11-07 19:57:39 +00:00
Ben Alex
992cf44b36
Refactor MethodDefinitionMap to use Method, not MethodInvocation. Refactor AbstractSecurityInterceptor to not force use of Throwable. Move AOP Alliance based MethodSecurityInterceptor to separate package.
2004-10-18 06:38:44 +00:00
Ben Alex
8d973af603
Added MethodDefinitionSourceAdvisor for performance and autoproxying.
2004-10-15 00:29:24 +00:00
Ben Alex
6b54784915
Improved sample applications' bean reference notation.
2004-09-24 00:47:53 +00:00
Luke Taylor
9e59374477
Corrected typo "configuaration" in comments. Removed indentation tab characters.
2004-09-06 23:57:28 +00:00
Ben Alex
fa396c6cdf
Load AutoIntegrationFilter via FilterToBeanProxy.
2004-08-03 07:18:33 +00:00
Ben Alex
48b1cb7c85
Move UserDetails interface to net.sf.acegisecurity package.
2004-07-13 22:38:20 +00:00
Ben Alex
6314aa4efa
Refactor User to an interface.
2004-06-24 23:24:14 +00:00
Ben Alex
1a0bec5bf1
Make User available from Authentication via DaoAuthenticationProvider.
2004-06-21 06:10:14 +00:00
Ben Alex
12c58006b0
Initial Maven support, thanks to Carlos Sanchez.
2004-06-08 23:46:41 +00:00
Ben Alex
b3e2d78c5d
Fix issue when encoded passwords are used. Modify Contacts sample to test encoded passwords.
2004-06-08 12:54:42 +00:00
Ben Alex
1b24ff5ea8
Refactor DaoAuthenticationProvider cache model.
2004-05-31 04:41:22 +00:00
Ben Alex
d5c14142d1
Add event capabilities.
2004-05-24 00:09:27 +00:00
Ben Alex
614f12448e
Create a NullRunAsManager, which is used by default by the AbstractSecurityInterceptor.
2004-05-06 23:13:32 +00:00
Ben Alex
ebf4603028
Quick-start assistance.
2004-04-30 00:20:00 +00:00
Ben Alex
c7991d8555
Channel filter should be commented out by default.
2004-04-29 02:18:16 +00:00
Ben Alex
ecac5a2eed
Make ChannelDecisionManagerImpl iterate through a list of channel security processors.
2004-04-29 02:17:07 +00:00
Ben Alex
136c27aff3
Corrected welcome page to display appropriate information depending on WAR being used.
2004-04-29 02:13:00 +00:00
Ben Alex
901c7d4752
Significantly enhance channel processing filter.
2004-04-27 06:21:00 +00:00
Ben Alex
2c97583f27
Filter to ensure web requests are received over a suitable secure channel.
2004-04-23 08:57:43 +00:00
Ben Alex
e0d57de330
Add DaoAuthenticationProvider caching support.
2004-04-23 05:01:57 +00:00
Ben Alex
26ff665dee
Correct <A HREF> tags to use proper URL encoding.
2004-04-23 01:39:21 +00:00
Ben Alex
fa9b872570
Initial CAS support.
2004-04-19 07:34:32 +00:00
Ben Alex
ff38767efd
Update to refer to new static location of ACEGI_SECURITY_LAST_EXCEPTION_KEY.
2004-04-18 11:37:57 +00:00
Ben Alex
6815e693a7
Make SecurityEnforcementFilter support pluggable authentication entry points. Enhance BASIC authentication so it's a viable alternative to form-based authentication for user agents like IE and Netscape.
2004-04-16 14:22:15 +00:00
Ben Alex
38835da164
Provide a proxy so filters can be loaded directly from the application context.
2004-04-16 06:31:48 +00:00
Ben Alex
239370ab96
Initial commit.
2004-04-16 06:25:57 +00:00
Colin Sampaleanu
3d089aaa67
move and rename password encoding classes.
...
change saltSource arument to salt argument, which impl may or may not use.
2004-04-16 03:44:04 +00:00
Colin Sampaleanu
5d9d734735
more final version of the various PasswordEncoder implementations.
...
add unit tests for PasswordEncoder implementations.
remove ignore password case and ignore username case flags and handling from DaoAuthenticationProvider.
remove requirement described in JavaDoc for AuthenticationDao that it ignore case when returning a user by username. Implementations may still do so if configured as such.
2004-04-15 16:32:09 +00:00
Colin Sampaleanu
a09f2a4c18
ant format seems to have reformated these differently than what is in CVS
2004-04-13 21:59:02 +00:00
Ben Alex
7ae1844130
Improve client application by moving username/password specification to command-line.
2004-04-11 13:14:19 +00:00
Ben Alex
66e8d741ca
Expand Contacts sample application to use Hessian and Burlap remoting.
2004-04-11 12:15:00 +00:00
Ben Alex
7f9d7520f6
Remove duplication with contacts-servlet.xml.
2004-04-09 05:48:41 +00:00
Ben Alex
1d225f8891
Changed filters to use ContextLoaderListener.
2004-04-09 05:42:43 +00:00
Ben Alex
b1a3f8b182
Provide authentication failure reason to user.
2004-04-03 05:35:40 +00:00
Ben Alex
6ddc006012
Modify MethodSecurityInterceptor to new location, remove unnecessary comments, add a DAO authentication provider so the MethodSecurityInterceptor can validate Authentication objects presented by the HTTP filter authentication system.
2004-04-02 12:00:29 +00:00
Ben Alex
d820f64d59
Now in the etc directory.
2004-04-02 11:58:24 +00:00
Ben Alex
c92798536a
Modified to report success for HTTP filter-based authentication, not only container adapters.
2004-04-02 11:57:17 +00:00
Ben Alex
8c69eb6abb
Modified to support changes to interface.
2004-04-02 11:56:00 +00:00
Ben Alex
cfb99d01c9
Build two WARs: one for deployment to containers without container adapters, and one for delpoyment to containers with them.
2004-04-02 11:54:57 +00:00
Ben Alex
ef84c78776
Ignore temporary directory.
2004-04-02 11:54:15 +00:00
Ben Alex
862f45e02f
Initial commit.
2004-04-02 11:53:20 +00:00
Ben Alex
8a944d3b64
Update MethodSecurityInterceptor location.
2004-04-02 11:52:23 +00:00
Ben Alex
60ddb6a3c7
Modifications to support changes to Resin container adapter.
2004-03-30 04:42:09 +00:00
Ben Alex
1affe45ced
Moved to classes directory to support changes to Resin container adapter.
2004-03-30 04:41:35 +00:00
Ben Alex
734dd387c6
Moved to classes directory.
2004-03-30 04:39:48 +00:00
Ben Alex
6f0f9650a0
Corrected class name of Resin Container Adapter.
2004-03-30 03:58:45 +00:00
Ben Alex
57fd086f09
Update license.
2004-03-28 11:25:40 +00:00
Ben Alex
99a393e7c8
Update license, and fix issue with execute target.
2004-03-28 11:23:57 +00:00
Ben Alex
14f27ae683
Make compatible with interface changes to aopalliance.jar.
2004-03-27 00:44:27 +00:00
Francois Beausoleil
01f27e5210
* samples/contacts/build.xml:
...
Update the way the contacts.war file is built:
1. Grab the necessary libraries from the project's lib/ folder.
2. Remove temporary staging area for WEB-INF/lib/ folder.
3. Delete the contacts.war file at all times, so a fresh
baked copy is always made.
Also renamed project, and changed usage message.
2004-03-23 17:38:41 +00:00
Francois Beausoleil
1490e8a707
* samples/contacts/src/sample/contact/SecureIndexController.java:
...
Prevent a NullPointerException when no SecureContext can be found.
Instead, throw a real exception, explaining what's wrong.
2004-03-23 17:27:04 +00:00
Francois Beausoleil
95d7ac1bf3
* samples/contacts/src/sample/contact/ContactManagerBackend.java:
...
Clean up how the contacts are returned. Do not create unnecessary
objects.
2004-03-23 17:25:34 +00:00
Ben Alex
c3507b26c9
Change to Apache License version 2.0.
2004-03-23 04:44:48 +00:00
Francois Beausoleil
a92878b69f
* samples/contacts/war/WEB-INF/jsp/include.jsp:
...
Declare access to the Acegi authz taglib.
* samples/contacts/war/WEB-INF/jsp/index.jsp:
Use the Acegi authz taglib to protect access to the
delete link for users which have the ROLE_SUPERVISOR.
2004-03-22 20:23:07 +00:00
Ben Alex
35fe1e7b73
Initial commit.
2004-03-16 23:57:17 +00:00