Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,372 Commits 32 Branches 333 Tags 109 MiB
Commit Graph

326 Commits

Author SHA1 Message Date
Luke Taylor 46a69b6d93 SEC-652: CAS sample application and server using maven jetty plugin. 2008-01-28 16:03:28 +00:00
Luke Taylor 511ebb5af4 Reformat pom.xml. 2008-01-28 14:30:15 +00:00
Luke Taylor eb620f09eb Switched preauth default namespace to "beans" for readability. 2008-01-28 13:22:50 +00:00
Luke Taylor 5738a51040 SEC-651: Support for ldap-user-service bean. 2008-01-28 00:47:34 +00:00
Luke Taylor acf5601714 SEC-645: Reimplementation of X509 provider and namespace implementation. 2008-01-27 22:45:44 +00:00
Luke Taylor aeba732ba5 SEC-647: Created separate "certificates" directory so SSL certificates and keys can be shared between different sample applications. Added key for user "scott" and separate certificate authority pem file (can be installed in a browser). 2008-01-27 20:42:10 +00:00
Luke Taylor 82940db6c8 SEC-648: Added custom-authentication-provider support. 2008-01-27 13:31:34 +00:00
Luke Taylor e44e641106 SEC-647: Updated server keystore (new certificate using our own Test CA) and added client certificates for users rod and dianne. 2008-01-26 17:21:23 +00:00
Luke Taylor 483068d486 SEC-647: Delete unused certificated directory and outdated certificates. 2008-01-26 11:28:36 +00:00
Luke Taylor b85f76e6c1 Added SSL support to the tutorial app Jetty plugin configuration and added a requirement for SSL on the "extremely secure" page. 2008-01-24 16:30:06 +00:00
Luke Taylor 342677fabc Removed auto-config from tutorial sample and added commented out ldap support. Updated ldif file to match sample users. 2008-01-23 22:21:39 +00:00
Luke Taylor 837ecd85ec SEC-576: Tidied up code, added preauth sample demo app. 2008-01-23 20:02:11 +00:00
Luke Taylor 06f3bcbf6a Converted all namespace attributes which refer to bean IDs to use "-ref" suffix (or "ref"). 2008-01-22 20:58:12 +00:00
Luke Taylor 7d88ee8c48 Formatted ACL SQL for readability. 2008-01-21 18:35:22 +00:00
Luke Taylor 462b4b450f Added use of authz tag to tutorial. Upgraded to use webapp 2.4 xsd. Changed JSTL dependency to 1.2 2008-01-18 18:17:09 +00:00
Luke Taylor 10ec13e4e2 [maven-release-plugin] prepare for next development iteration 2008-01-02 22:42:21 +00:00
Luke Taylor 2c5090da90 [maven-release-plugin] prepare release release_2_0_M1 2008-01-02 22:41:31 +00:00
Luke Taylor 09242ec66d [maven-release-plugin] rollback the release of release_2_0_M1 2008-01-02 22:31:09 +00:00
Luke Taylor 42dcccd1b7 [maven-release-plugin] prepare release release_2_0_M1 2008-01-02 22:18:28 +00:00
Luke Taylor aafbb5bb67 [maven-release-plugin] rollback the release of release_2_0_M1 2008-01-02 22:10:46 +00:00
Luke Taylor 425508d70d [maven-release-plugin] prepare release release_2_0_M1 2008-01-02 22:01:34 +00:00
Luke Taylor 0b1e17f69a [maven-release-plugin] rollback the release of release_2_0_M1 2008-01-02 21:54:37 +00:00
Luke Taylor 07aa0c6880 [maven-release-plugin] prepare release release_2_0_M1 2008-01-02 21:52:42 +00:00
Luke Taylor 7583aca3eb Configured contacts app to use namespaces. Removed ldap, cas, x509 files to avoid confusion. Ldap and CAS will be better served by new samples. 2008-01-01 16:51:15 +00:00
Luke Taylor b91e82d91c Changed _authenticationManager -> authenticationManager to get contact app tests passing again. 2007-12-25 00:34:28 +00:00
Luke Taylor 5f1eea42fc Moved configuration of security interceptors with access and authentication manangers from post processing stage to bean creation stage. 2007-12-23 16:40:29 +00:00
Luke Taylor 46c99d1991 Converted tutorial context file to match namespace changes. 2007-12-23 16:36:44 +00:00
Luke Taylor e65cb9b472 Made group names singular and added "teller" role. 2007-12-14 20:41:33 +00:00
Ben Alex 09f68400ec Add <intercept-methods> to example, but it is disabled in favour of @Secured annotation. Still, we include it so people can have a play around and switch between the two syntaxes easily in demos etc. 2007-12-14 19:56:31 +00:00
Ben Alex 55e4568003 Throw an exception instead of sending back a HTTP error code. This is necessary so any demonstration of upgrading from Servlet Spec authorization to Spring Security authorization, as the latter's ExceptionTranslationFilter expects specific exceptions to be thrown if you wish to commence the authentication process. 2007-12-14 19:44:50 +00:00
Luke Taylor 2e4773525b Updated tutorial to allow authentication against ldap provider using <ldap /> namespace element. 2007-12-14 19:18:18 +00:00
Ben Alex d90ff50686 Use Java 5 to illustrate annotation support. 2007-12-14 16:54:10 +00:00
Ben Alex b1bc39a0df Provide some shell scripts that help with demos. These assume the application is deployed to http://localhost:8080/spring-security-samples-tutorial. 2007-12-14 02:45:01 +00:00
Ben Alex f4c3e701d5 Enhance sample to show method authorization. 2007-12-14 02:27:48 +00:00
Ben Alex 77d286c36f Enhance tutorial to also demonstrate Spring Security method 
authorization, and add a services layer accordingly.
 2007-12-14 02:26:27 +00:00
Ben Alex fa510b3187 Modify attribute names to use "ref" instead of "id", plus use a hyphen 
as an attribute value separator rather than a colon. This was changed 
for compatibility with other components in the Spring Portfolio. tests 
pass.
 2007-12-13 20:19:56 +00:00
Ben Alex 1cae1719bc Fix bean referencing error. 2007-12-11 19:18:44 +00:00
Ben Alex 2655955a40 Add MethodSecurityInterceptor, to more accurately reflect the capabilities offered by auto-config="true". 2007-12-11 19:14:34 +00:00
Ben Alex 1bbe6ca456 Proper comparison with auto-configure="true". 2007-12-11 16:44:24 +00:00
Luke Taylor 5e0cb21c8d SEC-619: Added test class for LdapUserDetailsService. The LdapAuthoritiesPopulator interface and also implementations have been moved to the org.springframework.security.ldap package since they are now used by both the ldap provider and the user service. 2007-12-09 18:40:28 +00:00
Ben Alex 4770c29094 Use hyphens in attribute names, and not Camel Case. This is to maintain 
consistency with the rest of Spring Portfolio. Camel Case was preserved 
for attribute values, consistent with Spring Portfolio usage such as 
autowiring modes (byName, byType etc).
 2007-12-09 03:42:20 +00:00
Ben Alex 85085abf9e Add namespace support for Servlet API integration. 2007-12-04 12:23:41 +00:00
Ben Alex a205f95c19 No need for an access denied page. 2007-12-04 11:24:54 +00:00
Ben Alex 8c3cc5c67b Add hash code support. 2007-12-04 11:21:39 +00:00
Ben Alex 8e7c540b16 General refactorings and improvements to namespace support, including 
autoDetect="true" attribute for <http> element.
 2007-12-04 10:35:08 +00:00
Ben Alex 2441ab6d9a Move "realm" attribute to be on <http> element rather than <http-basic>. 
This faciltiates reuse with other mechanisms (like Digest) whilst also 
moving towards the <http-auto-configure> element (which benefits from 
having shared configuration in <http> as opposed to mechanism-specific 
elements).
 2007-12-04 08:02:40 +00:00
Ben Alex 0b0b174eda Support <repository> and JbcUserDetailsManager. 2007-12-04 05:27:17 +00:00
Ben Alex 53fca59301 Add namespace support for anonymous requests. Remove unnecessary files from tutorial sample. 2007-12-03 08:07:10 +00:00
Ben Alex cb765bc34b SEC-615: Automatically focus on login name HTML element on page load. 2007-12-03 06:34:43 +00:00
Ben Alex 7aa28ea742 SEC-614: Use DelegatingFilterProxy instead of FilterToBeanProxy. 2007-12-03 06:31:03 +00:00