Commit Graph

952 Commits

Author SHA1 Message Date
Ben Alex d45f9a0560 Change next version to 1.0.0 RC1. 2005-11-30 00:32:30 +00:00
Ben Alex 62fde4ede3 SEC-107: Finalize rename of AuthenticationDao to UserDetailsService with corresponding change in package from .providers.dao to .userdetails. 2005-11-30 00:20:13 +00:00
Luke Taylor c15f2bbaad Fixes for SEC-115. Moved test-web.xml file to test/resources 2005-11-29 17:29:08 +00:00
Luke Taylor ec30e8b11c Fixes for SEC-115. Updates to acegifier to work with Maven and new Acegi sources. 2005-11-29 17:14:56 +00:00
Ben Alex a6e23d79ae SEC-107: Rename AuthenticationDao to UserDetailsService. 2005-11-29 13:10:15 +00:00
Ben Alex c021362ebb New package top level name. 2005-11-29 04:06:31 +00:00
Ben Alex f57f50bae5 Modify Acegifier to use Maven build and 1.0.0+ package names. 2005-11-29 02:33:40 +00:00
Ben Alex 6a1a4abb1d SEC-104: Move to org.acegisecurity package. 2005-11-17 00:56:49 +00:00
Ben Alex f569afe6f5 Change versions for 1.0.0-SNAPSHOT. 2005-11-11 04:22:48 +00:00
Ben Alex a4aa477770 Release 0.9.0 2005-11-11 04:01:06 +00:00
Ben Alex 2d74db9a0c SEC-51 and SEC-67 related changes. Tested all functions of "filters" version in web browser OK. 2005-11-04 04:15:57 +00:00
Ben Alex b6dbfde55c SEC-70: Refactor event publishing. 2005-11-03 06:55:47 +00:00
Carlos Sanchez b2363dfe07 SEC-62 Add maven 2 support 2005-10-06 20:53:08 +00:00
Carlos Sanchez 29e3daaab6 Removed redundant groupId (inherited from parent) 2005-10-06 20:01:29 +00:00
Mark St. Godard 9b898e84c4 Added Java 5 Annotations version of Contacts sample (contacts-tiger).
Note: I have added a pre goal to add the source dir of  the original Contacts example.

I also added an exclude on the main project.properties for the attributes sample, as the Commons Attributes plugin causes issues with Java 5 source compilation.

The Annotations version will eventually replace the Commons Attributes approach, for now those users will need to manually build the attributes example.
2005-09-25 05:58:49 +00:00
Ben Alex c64a3770de Prove that 403 errors are handled by web.xml <error-page>. 2005-09-08 10:20:34 +00:00
Mark St. Godard e850849be5 Added Java 5 Annotations version of the BankService sample. Note: This project requires the Secured annotation which is in "core-tiger"... make sure you have built and installed the acegi-security-tiger-0.9.0-SNAPSHOT.jar in your local maven repo. 2005-09-05 04:38:45 +00:00
Mark St. Godard 3f24824f66 updated config, added switchUserProcessingFilter to the filter chain, added the ROLE_SUPERVISOR the ability to switch to other users (i.e. ROLE_USER)
For example: 'marissa' can login,  goto the /switchUser.jsp, then assume the role of another user such as 'scott'. marissa will then see scotts contacts, etc.
Then marissa can goto the /exitUser.jsp, and go back to 'marissa'

This is the similar to the Unix 'su' analogy that Ben made
2005-09-04 20:09:56 +00:00
Mark St. Godard 230d1946b9 added switchUserProcessingFilter config, not added to filter chain (yet) 2005-09-03 21:45:32 +00:00
Mark St. Godard 3dcea7ace0 initial pages for user switching 2005-09-03 21:44:05 +00:00
Luke Taylor 27a57410c1 Update to latest Spring tld 2005-08-02 17:27:30 +00:00
Ben Alex 2d772cbfcc Fix bug as reported by Jared Odulio on acegisecurity-developer 29 July 2005. 2005-07-31 00:58:48 +00:00
Luke Taylor 28e8c93beb Changes to exception handling, and some additional validation of web.xml content. 2005-07-22 00:20:54 +00:00
Luke Taylor 8e1549e399 Tidying up XML formatting (removed mix of tabs/spaces) 2005-07-20 14:13:47 +00:00
Luke Taylor a67b529734 Add the display-name to the web.xml 2005-07-16 23:54:55 +00:00
Luke Taylor 95e99f9ea0 Forgot the XSL files... 2005-07-16 23:15:52 +00:00
Luke Taylor a95964461d o Move the web.xml converter code, tests and xsl files from core into the acegifier sample app.
o Switched to dom4j for more flexible xml handling and easier formatting of the XML output.
o Modified the test web.xml to match the contacts-filter app to allow easy testing in an acegi application.
2005-07-16 21:49:31 +00:00
Luke Taylor 0a742ce62a First upload of the "acegifier" web application. 2005-07-09 21:35:33 +00:00
Luke Taylor 46388af1ea corrected xjavadoc location to match ibiblio 2005-07-08 17:21:20 +00:00
Luke Taylor de491d1767 Removed CAS references from web.xml for X.509. 2005-06-27 22:07:19 +00:00
Ben Alex 71b8f3e515 Remove less commonly used protocols. 2005-05-18 03:01:40 +00:00
Ben Alex fe15b011bb Make extra seed data and users so scalability more readily tested. 2005-05-18 03:01:34 +00:00
Ben Alex e08e66dec6 Refactor SecurityContextHolder to return a SecurityContext instead of Authentication. 2005-05-08 23:42:14 +00:00
Ben Alex 6a9abe5d90 Remove ContextHolder and introduce SecurityContext. 2005-05-07 09:11:37 +00:00
Ben Alex a68d720e88 Prepare for 0.9.0. 2005-04-20 22:43:46 +00:00
Ben Alex 4cf500763f Release 0.8.2. 2005-04-20 14:15:03 +00:00
Luke Taylor 1a78f9e15f Refactored to use Spring Assert class (thanks IntelliJ :). 2005-04-15 01:21:41 +00:00
Ben Alex 747825cda1 Correct location of AuthenticationSimpleHttpInvokerRequestExecutor in clientContext.xml. 2005-03-22 22:56:36 +00:00
Ben Alex 01aaadbe0d Prepare for 0.8.2 (assuming 0.8.2 is the next version, but subject to change). 2005-03-22 11:57:32 +00:00
Ben Alex 48dd6c5c73 Release 0.8.1. 2005-03-22 11:25:41 +00:00
Ben Alex 9f66c0eae9 Update to current Spring JAR dependencies. 2005-03-22 11:17:22 +00:00
Ben Alex 816fb07e5f Initial commit. 2005-03-22 06:11:28 +00:00
Luke Taylor 602b1473c5 Example certificates for X.509 Contacts app. 2005-03-20 19:09:55 +00:00
Luke Taylor a4210b5551 Rolled back to remove X.509 users. Using new certificate with existing user name instead. 2005-03-19 18:40:16 +00:00
Luke Taylor 05bd6abb22 Added cache beans. 2005-03-19 18:36:10 +00:00
Luke Taylor 645dba1fcb Added X.509 user to contacts with user name matching certificate email address. 2005-03-11 03:05:31 +00:00
Luke Taylor 740373ad01 Removed login-config info. Client authentication has to be enabled on the server (e.g. in the Tomcat connector) for it to work. 2005-03-11 00:33:15 +00:00
Luke Taylor 466220eb50 Added build for X.509 contacts app. 2005-03-11 00:03:16 +00:00
Luke Taylor 4ec64d407c X.509 version of contacts app. 2005-03-10 23:48:54 +00:00
Ben Alex 53bb4aebdf Setup future development for 0.8.1. 2005-03-03 13:29:46 +00:00
Ben Alex 4c5d0476b0 Prepare to release 0.8.0. 2005-03-03 00:06:46 +00:00
Ben Alex 3e9cd13fef Re-enable session listener. 2005-03-01 02:35:33 +00:00
Ben Alex f1e071b0f1 Added remember-me services. 2005-03-01 02:30:38 +00:00
Ray Krueger 44397bb05d Committing ConcurrentSessionController feature and tests. Documentation is needed. 2005-02-26 21:48:07 +00:00
Ben Alex 693ac5a24a Anonymous principal support. As requested by the community at various times, including in http://forum.springframework.org/viewtopic.php?t=1925. 2005-02-23 06:09:56 +00:00
Ray Krueger 3c4faf58c7 HttpSessionEventPublisher, HttpSessionCreatedEvent, HttpSessionDestroyedEvent
Used together to provide published events in the ApplicationContext about HttpSessions.

Useful for things like Single Session logins.
2005-02-23 02:54:41 +00:00
Ben Alex cbf413afcd Prepare for 0.8.0 as the next release. 2005-02-21 06:56:00 +00:00
Ben Alex dda66a0454 Significantly refactor "well-known location model" to authentication processing mechanism and HttpSessionContextIntegrationFilter model. 2005-02-21 06:48:31 +00:00
Ben Alex 4922ec1bbd Use FilterChainProxy to tidy web.xml. 2005-02-20 05:40:44 +00:00
Ben Alex c8706c33ac Log4J no longer expected in servlet container classpath. 2005-01-28 06:34:01 +00:00
Ben Alex da0234452a Prepare for 0.7.1. 2005-01-19 21:23:11 +00:00
Ben Alex a39e7ed82b Release 0.7.0. 2005-01-16 03:58:42 +00:00
Carlos Sanchez 49974737fd Allow site deployment from each subproject 2005-01-14 22:35:10 +00:00
Ben Alex 6c1e2f23b2 Allow last attempted username to be displayed in views. 2004-12-25 23:38:39 +00:00
Ben Alex c77cb84f52 Fix group names etc as required to ensure a multiproject:install works from /docs if there is a CLEAN (empty) Maven repository. 2004-12-25 07:02:31 +00:00
Ben Alex 6ece0fab22 Iron out some Maven bugs with our custom WAR artifact building. 2004-12-24 00:35:36 +00:00
Ben Alex 2fe24b4357 Make multiproject:artifact (when called from /docs) properly build the Contacts Sample WARs. 2004-12-23 23:00:38 +00:00
Ben Alex 861a34092d Remove quick-start, as it has been replaced by more detailed documentation pointers in docs/xdocs. The main issue with quick-start was maintaining it between Acegi Security versions. As it's never executed anywhere, its operation could never be easily tested (especially web.xml for example). 2004-12-22 13:18:00 +00:00
Ben Alex 8fb64e1e1b Fix repository URLs so "viewcvs" URLs (associated with changelog plugin) are all correct. 2004-12-22 03:47:55 +00:00
Ben Alex db9e420ceb Use full package name for SecurityConfig, to ease support by Maven commons-attributes plugin. 2004-12-21 12:16:56 +00:00
Ben Alex f7cfc84358 Fix correct package name for advisor. 2004-12-21 12:15:52 +00:00
Ben Alex e8bfa37218 Make Attributes sample use Maven's commons-attributes plugin. 2004-12-21 12:15:35 +00:00
Ben Alex 76c82db196 Refactor EH-CACHE integration classes to work with Spring IoC provided Cache rather than manage our own cache internally. 2004-12-05 04:37:05 +00:00
Carlos Sanchez 589691d11e Added distributionUrl 2004-11-20 10:28:18 +00:00
Ben Alex cbd842ea44 Deprecated - use "maven -Dusername=marissa -Dpassword=koala run" (from contacts directory) instead. 2004-11-20 05:31:07 +00:00
Ben Alex 44b7cccc1f Add RMI + HTTP Invoker remoting protocols and fixes related to Maven migration. 2004-11-20 05:28:20 +00:00
Ben Alex 889edece9f Add additional packages. 2004-11-20 05:26:02 +00:00
Ben Alex 09cfe6eb96 Make Serializable (required by RMI). 2004-11-20 05:25:13 +00:00
Ben Alex d8c5143e97 Added support so client application can be run from Maven. 2004-11-20 05:24:52 +00:00
Ben Alex 75a3876322 Use FieldRetrievingFactoryBean to specify static fields. 2004-11-16 12:15:03 +00:00
Ben Alex 1d81f4d1b7 Upgrade to Spring 1.1.2. 2004-11-16 12:14:09 +00:00
Ben Alex f286c34312 Use new BasicAclExtendedDao for DAO CRUD operations instead of ContactDao. 2004-11-15 13:04:54 +00:00
Ben Alex 6e687d47d4 Refactor Contacts Sample to use new ACL security. 2004-11-15 03:25:39 +00:00
Carlos Sanchez d159f6c5e1 Renamed artifactId 2004-11-14 21:49:42 +00:00
Carlos Sanchez 2067effa4a Migrated to maven 2004-11-13 19:57:48 +00:00
Carlos Sanchez bc0a3d888d Removed unneeded tags 2004-11-13 18:33:28 +00:00
Ben Alex 8219778e1f Ignore target directory. 2004-11-13 01:21:35 +00:00
Ben Alex ec86643982 More dependencies. 2004-11-13 01:20:12 +00:00
Ben Alex f98b926da4 Add dependency on Spring MVC classes. 2004-11-12 23:52:47 +00:00
Ben Alex 14f7fd654b Fix groupId. 2004-11-12 23:52:22 +00:00
Carlos Sanchez 518ee40740 Migrated to maven 2004-11-12 21:47:08 +00:00
Carlos Sanchez 6b266bc677 Moved to xdocs 2004-11-12 21:45:42 +00:00
Carlos Sanchez 447549cf01 Added maven files 2004-11-12 21:42:43 +00:00
Ben Alex b4b32a2e63 Correction. 2004-11-10 23:09:57 +00:00
Ben Alex 9b7996254e Improve troubleshooting help. 2004-11-08 21:52:57 +00:00
Carlos Sanchez 83ad437739 Migrated samples-attributes to Maven 2004-11-07 20:12:58 +00:00
Carlos Sanchez 89d6dbf7b6 Migrated samples-attributes to Maven 2004-11-07 19:57:39 +00:00
Ben Alex 992cf44b36 Refactor MethodDefinitionMap to use Method, not MethodInvocation. Refactor AbstractSecurityInterceptor to not force use of Throwable. Move AOP Alliance based MethodSecurityInterceptor to separate package. 2004-10-18 06:38:44 +00:00
Ben Alex 8d973af603 Added MethodDefinitionSourceAdvisor for performance and autoproxying. 2004-10-15 00:29:24 +00:00
Ben Alex 6b54784915 Improved sample applications' bean reference notation. 2004-09-24 00:47:53 +00:00
Luke Taylor 9e59374477 Corrected typo "configuaration" in comments. Removed indentation tab characters. 2004-09-06 23:57:28 +00:00
Ben Alex fa396c6cdf Load AutoIntegrationFilter via FilterToBeanProxy. 2004-08-03 07:18:33 +00:00
Ben Alex 48b1cb7c85 Move UserDetails interface to net.sf.acegisecurity package. 2004-07-13 22:38:20 +00:00
Ben Alex 6314aa4efa Refactor User to an interface. 2004-06-24 23:24:14 +00:00
Ben Alex 1a0bec5bf1 Make User available from Authentication via DaoAuthenticationProvider. 2004-06-21 06:10:14 +00:00
Ben Alex 12c58006b0 Initial Maven support, thanks to Carlos Sanchez. 2004-06-08 23:46:41 +00:00
Ben Alex b3e2d78c5d Fix issue when encoded passwords are used. Modify Contacts sample to test encoded passwords. 2004-06-08 12:54:42 +00:00
Ben Alex 1b24ff5ea8 Refactor DaoAuthenticationProvider cache model. 2004-05-31 04:41:22 +00:00
Ben Alex d5c14142d1 Add event capabilities. 2004-05-24 00:09:27 +00:00
Ben Alex 614f12448e Create a NullRunAsManager, which is used by default by the AbstractSecurityInterceptor. 2004-05-06 23:13:32 +00:00
Ben Alex ebf4603028 Quick-start assistance. 2004-04-30 00:20:00 +00:00
Ben Alex c7991d8555 Channel filter should be commented out by default. 2004-04-29 02:18:16 +00:00
Ben Alex ecac5a2eed Make ChannelDecisionManagerImpl iterate through a list of channel security processors. 2004-04-29 02:17:07 +00:00
Ben Alex 136c27aff3 Corrected welcome page to display appropriate information depending on WAR being used. 2004-04-29 02:13:00 +00:00
Ben Alex 901c7d4752 Significantly enhance channel processing filter. 2004-04-27 06:21:00 +00:00
Ben Alex 2c97583f27 Filter to ensure web requests are received over a suitable secure channel. 2004-04-23 08:57:43 +00:00
Ben Alex e0d57de330 Add DaoAuthenticationProvider caching support. 2004-04-23 05:01:57 +00:00
Ben Alex 26ff665dee Correct <A HREF> tags to use proper URL encoding. 2004-04-23 01:39:21 +00:00
Ben Alex fa9b872570 Initial CAS support. 2004-04-19 07:34:32 +00:00
Ben Alex ff38767efd Update to refer to new static location of ACEGI_SECURITY_LAST_EXCEPTION_KEY. 2004-04-18 11:37:57 +00:00
Ben Alex 6815e693a7 Make SecurityEnforcementFilter support pluggable authentication entry points. Enhance BASIC authentication so it's a viable alternative to form-based authentication for user agents like IE and Netscape. 2004-04-16 14:22:15 +00:00
Ben Alex 38835da164 Provide a proxy so filters can be loaded directly from the application context. 2004-04-16 06:31:48 +00:00
Ben Alex 239370ab96 Initial commit. 2004-04-16 06:25:57 +00:00
Colin Sampaleanu 3d089aaa67 move and rename password encoding classes.
change saltSource arument to salt argument, which impl may or may not use.
2004-04-16 03:44:04 +00:00
Colin Sampaleanu 5d9d734735 more final version of the various PasswordEncoder implementations.
add unit tests for PasswordEncoder implementations.
remove ignore password case and ignore username case flags and handling from DaoAuthenticationProvider.
remove requirement described in JavaDoc for AuthenticationDao that it ignore case when returning a user by username. Implementations may still do so if configured as such.
2004-04-15 16:32:09 +00:00
Colin Sampaleanu a09f2a4c18 ant format seems to have reformated these differently than what is in CVS 2004-04-13 21:59:02 +00:00
Ben Alex 7ae1844130 Improve client application by moving username/password specification to command-line. 2004-04-11 13:14:19 +00:00
Ben Alex 66e8d741ca Expand Contacts sample application to use Hessian and Burlap remoting. 2004-04-11 12:15:00 +00:00
Ben Alex 7f9d7520f6 Remove duplication with contacts-servlet.xml. 2004-04-09 05:48:41 +00:00
Ben Alex 1d225f8891 Changed filters to use ContextLoaderListener. 2004-04-09 05:42:43 +00:00
Ben Alex b1a3f8b182 Provide authentication failure reason to user. 2004-04-03 05:35:40 +00:00
Ben Alex 6ddc006012 Modify MethodSecurityInterceptor to new location, remove unnecessary comments, add a DAO authentication provider so the MethodSecurityInterceptor can validate Authentication objects presented by the HTTP filter authentication system. 2004-04-02 12:00:29 +00:00
Ben Alex d820f64d59 Now in the etc directory. 2004-04-02 11:58:24 +00:00
Ben Alex c92798536a Modified to report success for HTTP filter-based authentication, not only container adapters. 2004-04-02 11:57:17 +00:00
Ben Alex 8c69eb6abb Modified to support changes to interface. 2004-04-02 11:56:00 +00:00
Ben Alex cfb99d01c9 Build two WARs: one for deployment to containers without container adapters, and one for delpoyment to containers with them. 2004-04-02 11:54:57 +00:00
Ben Alex ef84c78776 Ignore temporary directory. 2004-04-02 11:54:15 +00:00
Ben Alex 862f45e02f Initial commit. 2004-04-02 11:53:20 +00:00
Ben Alex 8a944d3b64 Update MethodSecurityInterceptor location. 2004-04-02 11:52:23 +00:00
Ben Alex 60ddb6a3c7 Modifications to support changes to Resin container adapter. 2004-03-30 04:42:09 +00:00
Ben Alex 1affe45ced Moved to classes directory to support changes to Resin container adapter. 2004-03-30 04:41:35 +00:00
Ben Alex 734dd387c6 Moved to classes directory. 2004-03-30 04:39:48 +00:00
Ben Alex 6f0f9650a0 Corrected class name of Resin Container Adapter. 2004-03-30 03:58:45 +00:00
Ben Alex 57fd086f09 Update license. 2004-03-28 11:25:40 +00:00
Ben Alex 99a393e7c8 Update license, and fix issue with execute target. 2004-03-28 11:23:57 +00:00
Ben Alex 14f27ae683 Make compatible with interface changes to aopalliance.jar. 2004-03-27 00:44:27 +00:00
Francois Beausoleil 01f27e5210 * samples/contacts/build.xml:
Update the way the contacts.war file is built:
    1.  Grab the necessary libraries from the project's lib/ folder.
    2.  Remove temporary staging area for WEB-INF/lib/ folder.
    3.  Delete the contacts.war file at all times, so a fresh
        baked copy is always made.

  Also renamed project, and changed usage message.
2004-03-23 17:38:41 +00:00
Francois Beausoleil 1490e8a707 * samples/contacts/src/sample/contact/SecureIndexController.java:
Prevent a NullPointerException when no SecureContext can be found.
  Instead, throw a real exception, explaining what's wrong.
2004-03-23 17:27:04 +00:00
Francois Beausoleil 95d7ac1bf3 * samples/contacts/src/sample/contact/ContactManagerBackend.java:
Clean up how the contacts are returned.  Do not create unnecessary
  objects.
2004-03-23 17:25:34 +00:00
Ben Alex c3507b26c9 Change to Apache License version 2.0. 2004-03-23 04:44:48 +00:00
Francois Beausoleil a92878b69f * samples/contacts/war/WEB-INF/jsp/include.jsp:
Declare access to the Acegi authz taglib.

* samples/contacts/war/WEB-INF/jsp/index.jsp:
  Use the Acegi authz taglib to protect access to the
  delete link for users which have the ROLE_SUPERVISOR.
2004-03-22 20:23:07 +00:00
Ben Alex 35fe1e7b73 Initial commit. 2004-03-16 23:57:17 +00:00