Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,808 Commits 32 Branches 333 Tags 109 MiB
Commit Graph

2808 Commits

Author SHA1 Message Date
Luke Taylor 26d2b03667 Updates to heavyduty sample 2008-05-01 16:36:16 +00:00
Ben Alex e7e256a9d5 SEC-787: Consistently use lowercase in all ACL module SQL statements. 2008-05-01 07:48:10 +00:00
Luke Taylor 0df9dee9dd SEC-806: Improved OSGi bundle version information support 2008-04-30 18:02:47 +00:00
Luke Taylor 81ebd094ff OPEN - issue SEC-808: Switch namespace schema version to 2.0.1 and update spring.schemas 
http://jira.springframework.org/browse/SEC-808. Replaced 2.0 text with that from the 2.0 release, rather than the website schema.
 2008-04-29 18:59:25 +00:00
Luke Taylor 473f6a32c6 OPEN - issue SEC-808: Switch namespace schema version to 2.0.1 and update spring.schemas 
http://jira.springframework.org/browse/SEC-808. Created new 2.0.1 schema files and updated tests to use them.
 2008-04-29 18:53:33 +00:00
Luke Taylor 8281aeb0da SEC-807: Allow mapping to a standard Ldap UserDetails through the namespace 
http://jira.springframework.org/browse/SEC-807. Added extra test for Ldap provider parser.
 2008-04-29 18:01:59 +00:00
Luke Taylor e4b32b8d29 OPEN - issue SEC-807: Allow mapping to a standard Ldap UserDetails through the namespace 
http://jira.springframework.org/browse/SEC-807. Added support for user-details-class attribute to ldap-authentication-provider and ldap-user-service.
 2008-04-29 16:53:24 +00:00
Luke Taylor 104716fedb SEC-805: Add extra fields to InetOrgPerson 
http://jira.springframework.org/browse/SEC-805. Added a substantial number of new fields to the class.
 2008-04-29 14:39:58 +00:00
Luke Taylor 49bec559a9 SEC-804: Added notes to LDAP section to explain how to customize returned UserDetails 2008-04-29 10:57:52 +00:00
Luke Taylor f96fa66a60 Added Michael Mayr to contributors list 2008-04-29 10:56:47 +00:00
Luke Taylor ef112f7967 Fixed autoboxing problem. 2008-04-28 15:26:20 +00:00
Luke Taylor 341455cde4 SEC-799: Import cleaning following other changes. 2008-04-28 15:19:25 +00:00
Luke Taylor 2d692718e0 SEC-799: Add better detection of missing server-ref element for <ldap-user-service> and <ldap-authentication-provider /> 
http://jira.springframework.org/browse/SEC-799. Updated ContextSourceSettingPostProcessor to set the standard ContextSource as an alias if it is needed by a bean but has not been set (because the user specified their own server id on <ldap-server />).
 2008-04-28 15:01:20 +00:00
Luke Taylor 270fa92780 Improved Javadoc comment 2008-04-28 09:20:37 +00:00
Luke Taylor 0c28845d4e SEC-787: Converted SQL in BasicLookupStrategy to lower case to make it consistent with other classes. 2008-04-26 13:08:31 +00:00
Luke Taylor d3a0f05de9 SEC-783: GlobalMethodSecurityBeanDefinitionParser should support AfterInvocationProviders 
http://jira.springframework.org/browse/SEC-783. Added support for custom-after-invocation-provider
 2008-04-25 12:28:30 +00:00
Luke Taylor 348d211b8c SEC-797: Minor javadoc correction. 2008-04-24 23:12:55 +00:00
Luke Taylor d1e23b3d2c SEC-783: Added custom-after-invocation-provider element to namespace. 2008-04-24 02:02:23 +00:00
Luke Taylor 1090072fff SEC-795: Add check for protected login page when using namespace 
http://jira.springframework.org/browse/SEC-795. I've added checks for the various scenarios which will result in a protected login page and suitable warning messages.
 2008-04-24 01:59:19 +00:00
Luke Taylor 882509fb2a Renamed context file 2008-04-24 00:27:37 +00:00
Luke Taylor 5d51b35cfa SEC-792: Filters should only be added to the default stack if they are labelled using custom-filter. 
http://jira.springframework.org/browse/SEC-792. Updated FilterChainProxyPostProcessor to raise an exception if two filters have the same order, and also to unwrap wrapped filters once the sorting by order has been performed.
 2008-04-23 23:19:44 +00:00
Luke Taylor eba18675fc Removed old acegi file from tutorial sample as it's causing confusion with users. 2008-04-23 21:08:41 +00:00
Luke Taylor 38774ec94f SEC-792: Filters should only be added to the default stack if they are labelled using custom-filter. 
http://jira.springframework.org/browse/SEC-792. The filters are now maintained as a list in the context and have to be stored there explicitly on registration.
 2008-04-23 16:06:54 +00:00
Luke Taylor 80cd7f4acc Removed accidental commit of tutorial context file 2008-04-23 13:13:56 +00:00
Luke Taylor c184d2d8c5 Added 'heavyduty' sample to sandbox for testing 2008-04-23 13:11:26 +00:00
Luke Taylor 01185475a1 OPEN - issue SEC-793: ldap-authentication-provider element parser ignores hash attribute. 
http://jira.springframework.org/browse/SEC-793. Added support for hash attribute. password-encoder still takes precendence with a warning if both are present.
 2008-04-23 12:50:09 +00:00
Luke Taylor 7e63fe7357 SEC-790: DefaultLoginPageGeneratingFilter should be a better HTTP citizen 
http://jira.springframework.org/browse/SEC-790. Applied submitted patch.
 2008-04-23 00:41:52 +00:00
Luke Taylor 8ea7487ec3 Removed unused method. 2008-04-22 23:20:49 +00:00
Luke Taylor ec81e780b2 Import cleaning. 2008-04-22 22:27:51 +00:00
Luke Taylor 599d9fea04 Minor improvements to toString() methods for logging. 2008-04-22 22:21:20 +00:00
Luke Taylor a845a69cb7 Updated surefire plugin to 2.4.2 2008-04-22 22:01:28 +00:00
Luke Taylor 0cf745b85f Updated clean plugin to 2.2 2008-04-22 21:59:40 +00:00
Luke Taylor b2e9e82727 Fixed typo in message. 2008-04-22 21:54:54 +00:00
Luke Taylor 63decfeb93 SEC-761: HttpSessionContextIntegrationFilter.contextObject should be created in afterPropertiesSet(), not the constructor 
http://jira.springframework.org/browse/SEC-761. Added call to generateNewContext() in the afterPropertiesSet() method to take account of custom security context classes.
 2008-04-22 21:51:12 +00:00
Luke Taylor 1ae167434a SEC-756: Add checks for duplicate use of namespace elements such as global-method-security 
http://jira.springframework.org/browse/SEC-756. Refactored HttpSecurityBDP and added check for duplicate usage of the element.
 2008-04-22 21:25:35 +00:00
Luke Taylor 083644f2fe SEC-756: Refactored GlobalMethodSecurityDefinitionParser and added check for duplicate registration. 2008-04-22 18:25:35 +00:00
Luke Taylor eec62e9760 Removed reference in petclinic tutorial to acegisecurity.org 2008-04-22 18:17:20 +00:00
Luke Taylor c5f6cbb8f5 Removed corrupt character in author name which was causing build problems with bamboo. 2008-04-22 15:10:11 +00:00
Luke Taylor 1258fa854e SEC-788: x509 authentication does not work properly 
http://jira.springframework.org/browse/SEC-788. Added check for X509 element when choosing entry point, if nothing else is available.
 2008-04-22 14:53:11 +00:00
Luke Taylor e12b6afefa SEC-776: Http Session created for Anonymous request 
http://jira.springframework.org/browse/SEC-776. Added AuthenticationtrustResolver to HttpSCIF to check for anonymous authentication.
 2008-04-22 13:22:38 +00:00
Luke Taylor 88ea87642a SEC-791: RequestKey.equals throws NPE if method is null 
http://jira.springframework.org/browse/SEC-791. Fixed handling of equals when one http method is null.
 2008-04-22 12:32:33 +00:00
Luke Taylor 9eaa1cbbdd OPEN - issue SEC-789: Add support for optional role-prefix attribute to namespace 
http://jira.springframework.org/browse/SEC-789. Added role-prefix attribute to ldap provider and jdbc/ldap user-service elements.
 2008-04-21 18:29:54 +00:00
Luke Taylor aba5a22b6c SEC-789: Add support for optional role-prefix attribute to namespace 
http://jira.springframework.org/browse/SEC-789. Added support for role-prefix to jdbc-user-service element.
 2008-04-21 17:44:32 +00:00
Luke Taylor 1a4130528a SEC-782: Incorrect UrlMatcher initialization in FilterChainProxy results in wrong lowercase/uppercase matching 
http://jira.springframework.org/browse/SEC-782. I've updated FilterChainProxy to make sure the same UrlMatcher is used throughout when converting a legacy configuration.
 2008-04-21 16:51:06 +00:00
Luke Taylor 5bb558bd6a SEC-777: The disabled status cannot be set in <user-service> 
http://jira.springframework.org/browse/SEC-777. Added the disabled flag to the relax grammar file.
 2008-04-21 15:59:08 +00:00
Luke Taylor 993fdd7a32 Added better toString() method to OrderedFilterDecorator to make it report the delegate filter information. 2008-04-21 12:53:54 +00:00
Luke Taylor 1663142cf1 SEC-784: removed 'optional' tag on dependencies 2008-04-19 12:40:17 +00:00
Luke Taylor 469f55ce05 SEC-773: global-method-security fails with JPA 
http://jira.springframework.org/browse/SEC-773. Added extra constructor to MethodDefinitionSourceAdvisor to allow for lazy initialization of the advice (MethodSecurityInterceptor), and in turn the AuthenticationManager and ay referenced UserDetailsService implementations.
 2008-04-18 13:15:56 +00:00
Luke Taylor 4d347cfdb5 Updated surefire plugin versions 2008-04-15 19:59:15 +00:00
Luke Taylor 2cc3068de7 Minor site css adjustments 2008-04-15 19:58:53 +00:00