Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-10-31 06:38:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,991 Commits 48 Branches 362 Tags
Commit Graph

1657 Commits

Author SHA1 Message Date
Ben Alex
e53a00371c Use logger instead of System.out.println(). 2005-11-26 04:10:05 +00:00
Ben Alex
218fcf5b24 SEC-3: Add static method so digest-compatible passwords can be stored in database. 2005-11-25 05:20:57 +00:00
Ben Alex
bb2ac126b7 SEC-47: AbstractSecurityInterceptor to reject secure object invocations which do not have configuration attributes defined. 2005-11-25 04:56:01 +00:00
Ben Alex
27f47673ad SEC-106: Use getMethod() instead of getDeclaredMethod() so that methods defined in principal Object superclasses are accessible. 2005-11-25 04:40:27 +00:00
Ben Alex
9ccaf05cc7 SEC-112: Bug when SecurityEnforcementFilter used with disabled Authentication and remember-me services. 2005-11-25 04:38:18 +00:00
Ben Alex
47166fe078 SEC-110: ProviderManager to properly handle ConcurrentLoginException. 2005-11-25 04:33:40 +00:00
Ben Alex
58b8b840b3 SEC-105: Correct incorrect JavaDocs. 2005-11-25 04:29:32 +00:00
Ben Alex
969bbff00c SEC-18: Preemptive method invocation security checking helper. 2005-11-25 04:18:34 +00:00
Ben Alex
731d7b2e89 SEC-113 Provide MethodInvocationUtils. 2005-11-25 04:17:25 +00:00
Ben Alex
72256a225f SEC-73: Support storage and retrieval of actual Principal object (such as UserDetails) from PrnicipalAcegiUserToken. 2005-11-25 00:26:30 +00:00
Luke Taylor
7847af2664 Fix for SEC-111. Added a try/finally block to make sure context is always reset after the invocation. 2005-11-23 16:09:44 +00:00
Ben Alex
6a1a4abb1d SEC-104: Move to org.acegisecurity package. 2005-11-17 00:56:49 +00:00
Scott McCrory
79c3ba521b Resolved and/or inhibit build warnings as seen in Eclipse 3.1. Please refer to http://opensource2.atlassian.com/projects/spring/browse/SEC-93 for more info. 2005-11-11 22:37:38 +00:00
Ben Alex
b1d247835a Stop causing an exception when there is no AuthenticationException to ApplicationEvent mapping. Requested by Brian Moseley on acegisecurity-developer 10 November 2005. 2005-11-10 00:41:54 +00:00
Ben Alex
c167e9fd87 Change SecurityContextHolder to ThreadLocal due to IBM JDK 1.3 issues as described at http://tinyurl.com/8zhka and reported by Scott McCrory on acegisecurity-developer 8 November 2005. 2005-11-08 22:07:33 +00:00
Scott McCrory
b938b6b363 Increased SiteminderAuthenticationProcessinfFilter test coverage from 70% to 93%. 2005-11-08 02:55:48 +00:00
Ben Alex
df9deea4de Only clear SecurityContextHolder if the Authentication object has not changed. 2005-11-08 01:39:27 +00:00
Scott McCrory
97f3ad79cb Removed unused imports & organized the remnants. 2005-11-07 03:32:18 +00:00
Ben Alex
55f5093ec7 SEC-94: DaoAuthenticationProvider to include UserDetails in BadCredentialsException. 2005-11-07 03:04:47 +00:00
Scott McCrory
309b559a8f Removed unused imports. 2005-11-06 23:00:31 +00:00
Luke Taylor
e02dbd5c34 Changed class names to match new context classes. 2005-11-06 22:00:27 +00:00
Luke Taylor
0aef31d302 Converted ApplicationContextAware classes to ApplicationEventPublisherAware (SEC-69). 2005-11-06 21:11:25 +00:00
Luke Taylor
6511677f93 Moved duplicate setting of null authentication to setUp method. 2005-11-06 21:06:53 +00:00
Luke Taylor
bba77b64e9 Corrected javadoc 2005-11-06 21:01:21 +00:00
Luke Taylor
5cb7575b2b Corrected references to old context class names in Javadoc and logging. 2005-11-05 18:49:55 +00:00
Ben Alex
5a51f391a4 Add UsernameNotFoundException to default exception to event mappings list. 2005-11-05 09:20:14 +00:00
Ben Alex
aa4fd8586c Fix concurrent session interaction bug where UserDetails.getUsername() may have been override to be a different value than the original login request, as per email from Herryanto Siatono on acegisecurity-developer 5 November 2005. 2005-11-05 03:50:22 +00:00
Ray Krueger
0aa4989dad JaasAuthenticationProvider no longer supports the useSystemProperty setting.This is because it no longer uses the java.security.auth.login.config system property for configuring Jaas. Custom Jaas configuration needs can be implemented in a subclass that overrides the configureJaas method. 
JaasAuthenticationProvider now handles logout by associating the LoginContext with a new JaasAuthenticationToken
 2005-11-04 15:02:27 +00:00
Ray Krueger
6049e9ac65 Removed string concatenation from buffer.append methods 2005-11-04 14:54:25 +00:00
Ben Alex
9be82a3d8f SEC-67: Enhance taglib to allow retrieval of custom UserDetails methods. 2005-11-03 13:51:55 +00:00
Ben Alex
31a1f0be1a SEC-52: Move potentially useful methods to an abstract superclass so that other voters can use them. 2005-11-03 13:47:44 +00:00
Ben Alex
6e389ca1b8 SEC-51: Use long instead of int for ACL primary keys. 2005-11-03 13:38:45 +00:00
Ben Alex
633f2cfe66 SEC-39: Add equals(Object) method to User. 2005-11-03 13:20:26 +00:00
Ben Alex
7faf2741f1 SEC-32: Patches to move isPermissable(int) method to the BasicAclEntry interface. Thanks to Andres March for this patch. 2005-11-03 13:08:43 +00:00
Ben Alex
a42dec6fbf SEC-21: Initial commit. 2005-11-03 12:56:27 +00:00
Ben Alex
e9b1d9452f SEC-9 and SEC-55: Refactor DaoAuthenticationProvider and deprecate PasswordDaoAuthenticationProvider. 2005-11-03 11:31:23 +00:00
Ben Alex
f50cbd31ba SEC-38: Make InMemoryDaoImpl support external Properties objects. 2005-11-03 10:05:02 +00:00
Ben Alex
0d77abb9c1 SEC-64: Correct operation with Orion Web Application Server. Patch thanks to Paul Brooks. 2005-11-03 09:48:52 +00:00
Ben Alex
d9be0f86fd SEC-53: BasicProcessingFilter only to reauthenticate if the SecurityContextHolder contains an unauthenticated Authentication, or an Authentication with a different username. 2005-11-03 09:45:30 +00:00
Ben Alex
690ab27a52 SEC-70 and SEC-71: Refactor event publishing. 2005-11-03 09:23:49 +00:00
Ben Alex
b6dbfde55c SEC-70: Refactor event publishing. 2005-11-03 06:55:47 +00:00
Ben Alex
3811200599 Improve debug output. 2005-11-03 06:51:30 +00:00
Ben Alex
2cbe42f493 SEC-7: Allow better chaining of authentication providers. 2005-11-03 04:14:12 +00:00
Ben Alex
42c47c086a JavaDocs formatting. 2005-11-03 04:13:56 +00:00
Luke Taylor
f8b0de3459 Corrected Javadoc link to interface name. 2005-11-01 14:22:08 +00:00
Marc-Antoine Garrigue
5235727d23 SEC-2 
Refactor the CaptchaChannelProcessor and extract a CaptchaChannelProcessor that is an abstract class and add its implementations.
Jalopy on all java files.
 2005-10-24 17:08:18 +00:00
Ben Alex
1ae07779a2 SEC-710: Refactor concurrent session handling support. 2005-10-22 01:53:03 +00:00
Ben Alex
a5ffda7369 SEC-63: Do not return an absolute URL unless switching from HTTP to HTTPS. 2005-10-21 08:00:15 +00:00
Ben Alex
c6d5363e5d SEC-60: Make method more friendly towards Hibernate detached object. Please note my comments in the JIRA task, as I believing calling toString() is not an unreasonable expectation. 2005-10-21 07:53:34 +00:00
Ben Alex
d49198a944 SEC-43: Eliminate id column. 2005-10-21 07:32:48 +00:00