22cca49d4a
Added clearContext() call in @Before method. Test class appears to be failing on the build server because of a left over security context from a previous test
2008-11-16 00:03:01 +00:00
67c06d3d52
SEC-1012: Adding generics and general tidying up of tests etc
2008-11-15 13:00:38 +00:00
a535c5bd05
Removed unused imports.
2008-11-15 11:09:40 +00:00
9dc50bce82
SEC-1013: Removed ConfigAttributeDefinition
2008-11-15 10:55:23 +00:00
a9d69ac4e8
Tidied up test class.
2008-11-15 10:54:34 +00:00
e259fe43a9
SEC-1034: Removed classes for converting a FilterInvocationDefinitionSource to a map for use in FilterChainProxy
2008-11-15 10:26:35 +00:00
31375b7212
SEC-1012: Futher generification. Also changed method signature of ObjectDefinitionSource.getAllConfigAtributes to return a single collection
2008-11-15 09:35:11 +00:00
f3b3004085
Removed references to Acegi in contacts sample home page
2008-11-15 06:28:01 +00:00
78065ba47c
Fixed up contacts sample: removed casfailed page, corrected debug.jsp errors and fixed incorrect bean reference in context files.
2008-11-15 03:38:49 +00:00
5c1f4e60e3
Tidying stuff
2008-11-14 07:16:49 +00:00
3261fcb174
Tidying stuff
2008-11-14 07:16:30 +00:00
fa630a430d
Removed unused test files
2008-11-14 06:23:34 +00:00
3ce5ea7710
Add missing @Test attributes
2008-11-14 06:22:43 +00:00
236a4790c2
delete old clover license
2008-11-14 06:21:51 +00:00
df26b2447c
SEC-1035: Switch to using spring-el from the Spring 3 build
2008-11-14 06:21:24 +00:00
bd9b199599
Import cleaning.
2008-11-14 00:28:54 +00:00
648ba1c43a
SEC-1034: Fix broken tests.
2008-11-13 08:57:43 +00:00
ae05e74085
Replace use of deprecated Spring methods (addConstructorArg) with non-deprecated versions.
2008-11-13 08:56:59 +00:00
7a8bd8a673
SEC-1034: Removed FilterInvocationDefinitionSourceEditor.
2008-11-13 07:46:21 +00:00
464da0f0df
SEC-999: Refactored namespace to take an expression handler instead of a permission evaluator, allowig fo greater cusomtomization and for a single handler to be used in both web and method security expressions.
2008-11-13 07:41:21 +00:00
ee13be47b7
Call setAuthenticated() in constructor with authorities to mimic behaviour of UsernamePasswordAuthenticationToken
2008-11-13 07:29:43 +00:00
3ef34122fc
Converted to using JMock.
2008-11-13 06:50:55 +00:00
e18971fdf0
Fix test. BasicProcessingFilter doesn't work with TestingAuthenticationToken.
2008-11-13 06:30:39 +00:00
3acd515c6c
SEC-999: Refactored expression security classes for better separation of concerns and of method vs web authorization expressions.
2008-11-12 04:07:56 +00:00
790c3e6f79
Updated FAQ to add variant of "redirecting to entry point" debug message when no AnonymousProcessingFilter is in use and an AuthenticationCredentialsNotFoundException is thrown instead of AccessDeniedException.
2008-11-12 00:44:34 +00:00
0bbab88504
SEC-1031: LdapShaPasswordEncoder.isPasswordValid startOfHash off by one
...
http://jira.springframework.org/browse/SEC-1031 . Fixed startOfHash value and added tests to check full length of password is used.
2008-11-11 23:34:40 +00:00
0ba690fb0e
SEC-1015: Removed acl package from core and also related taglib declaration and implementation class (AclTag).
2008-11-11 09:21:51 +00:00
e5b1073501
SEC-1012: Added more generics and warning suppression
2008-11-11 09:06:50 +00:00
be34724207
Matchers for use with JMock expectations
2008-11-11 08:43:17 +00:00
7731a3df57
Typo.
2008-11-11 03:41:50 +00:00
62986c700b
SEC-1027: Removed bnd plugin and 'bundle' package types from pom.xml files
2008-11-11 01:09:37 +00:00
e11114ce77
SEC-1023: Add hasPermission() support to SecurityExpressionRoot
...
http://jira.springframework.org/browse/SEC-1023 .
hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
2008-11-10 04:27:25 +00:00
fa6f57e3dd
Fixed TestVoter to match recent API updates
2008-11-10 04:12:53 +00:00
d6cd392a9e
Tidying up some stuff in tutorial app
2008-11-07 06:55:00 +00:00
4bbc015e4c
Removed chackstyle file
2008-11-06 01:12:01 +00:00
d6bb6ccbf5
Removed .cvsignore files
2008-11-06 01:11:08 +00:00
da8a97b516
SEC-1024: Updated svn usage page
2008-11-06 00:27:53 +00:00
d33b13e52e
SEC-1023: Added support for hasPermission() based on Id and type
2008-11-05 22:44:46 +00:00
d601301de6
SEC-1023: Fix broken test.
2008-11-05 04:14:29 +00:00
1c3b576d91
SEC-1023: PermissionEvaluator based on the Acl module.
2008-11-05 03:45:50 +00:00
a207acf7cb
SEC-999: Fix broken test which was failing due to use of incorrect authentication object.
2008-11-05 01:09:14 +00:00
56141e9c5f
SEC-999: Refactoring out specific dependencies on Spring EL into SecurityExpressionHandler.
...
SEC:1023: Updates to expression root to allow evaluationof permissions.
2008-11-04 23:30:56 +00:00
dabb719456
SEC-1023: Add hasPermission() support to SecurityExpressionRoot
...
http://jira.springframework.org/browse/SEC-1023 . PermissionEvaluator interface for use by expressions when evaluating hasPermisson() expressions.
2008-11-04 22:46:21 +00:00
7ff5602dbc
Convert AclImplTests to use JMock mocks.
2008-11-04 06:43:08 +00:00
04e2fc7daf
Tidying.
2008-11-04 06:36:49 +00:00
b42fc7221f
Upgraded to jmock 2.5.1
2008-11-04 05:37:56 +00:00
514bca669f
SEC-999: Introduced custom SecurityExpressionEvaluationContext which is responsible for lazy initialization of parameter values in the context. Also some further conversion of code using GrantedAuthority arrays.
2008-10-31 11:40:11 +00:00
ec44f2bdfe
SEC-1012: Refactoring of use of GrantedAuthority[] to generified collections
2008-10-31 03:53:00 +00:00
e891b334e6
SEC-1009: removed additional container adapter specific code
2008-10-30 05:45:13 +00:00
09cc58d7ac
SEC-1009: removed additional container adapter specific code
2008-10-30 05:44:38 +00:00
Luke Taylor