Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-11-04 08:39:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,577 Commits 48 Branches 362 Tags
Commit Graph

2312 Commits

Author SHA1 Message Date
Luke Taylor
3fe112f769 Added tests for AbstractAclVoter. 2008-12-01 14:28:24 +00:00
Luke Taylor
e864dfa796 SEC-1039: Converted HttpBeanDefinitionParser to use new context persistence filter instead of HttpSessionContextIntegrationFilter 2008-12-01 12:37:31 +00:00
Luke Taylor
08ea70909d Fixed broken test due to missing context file. 2008-12-01 00:36:13 +00:00
Luke Taylor
a318aacc4f Converted MethodSecurityInterceptorTests to use mocks and deleted app context file. 2008-11-30 23:20:16 +00:00
Luke Taylor
bfd4bcfdb7 SEC-1012: Java5ing of RunAsUserToken constructor. 2008-11-30 23:16:39 +00:00
Luke Taylor
b25d6958d7 SEC-1036: Removed references to SpringSecurityContextSource 2008-11-29 12:15:51 +00:00
Luke Taylor
66897e1849 SEC-1036: Upgraded Spring LDAP to 1.3 and made corresponding code changes. Also some general tidying up of LDAP code. Removed deprecated context factory classes. 2008-11-28 22:22:51 +00:00
Luke Taylor
1918c50fd7 SEC-1039: Deprecated HttpSessionContextIntegrationFilter and made it extend SecurityContextPersistenceFilter. 2008-11-28 18:01:34 +00:00
Luke Taylor
8cfd515b27 SEC-988: Added Javadoc for UserDetailsChecker interface. 2008-11-27 21:21:25 +00:00
Luke Taylor
d508adbf8b SEC-1037: Made LdapAuthenticationProvider implement MessageSourceAware. 2008-11-27 21:12:43 +00:00
Luke Taylor
843d0e6910 SEC-985: Added hideUsernameNotFoundException property to LdapAuthenticationProvider and set default to true. 2008-11-27 21:08:01 +00:00
Luke Taylor
4d81d750cd SEC-1039: Created new filter SecurityContextPersistenceFilter and SecurityContextRepository strategy to replace HttpSessionContextIntegrationFilter functionality. 2008-11-27 20:18:54 +00:00
Luke Taylor
789be71d8c SEC-398: Rolled back addition of erroneous test method for this issue (the fix was incorrect and the test method does nothing useful). 2008-11-27 10:41:08 +00:00
Luke Taylor
2dfd006665 SEC-1012: Converted Groupsmanager to use List<String> 2008-11-26 11:17:15 +00:00
Luke Taylor
1f78974073 Improved javadoc and debug message relating to clearing of security context. 2008-11-26 10:35:06 +00:00
Luke Taylor
dca0505d23 SEC-1012: generification 2008-11-21 12:39:30 +00:00
Luke Taylor
05e753de61 Converted to use jmock for mocks. 2008-11-21 12:26:56 +00:00
Luke Taylor
6b24637fbc Further SavedRequestWrapper related tests and tidying up. 2008-11-21 12:17:43 +00:00
Luke Taylor
1cf59b249a Added test class for DefaultLoginPageGeneratingFilter. 2008-11-16 05:07:33 +00:00
Luke Taylor
13caa48a24 Added clearContext() in @After. Test was leaving a TestingAuthenticationToken in the context. 2008-11-16 00:09:35 +00:00
Luke Taylor
18e74e7d3f Import cleaning. 2008-11-16 00:03:42 +00:00
Luke Taylor
22cca49d4a Added clearContext() call in @Before method. Test class appears to be failing on the build server because of a left over security context from a previous test 2008-11-16 00:03:01 +00:00
Luke Taylor
67c06d3d52 SEC-1012: Adding generics and general tidying up of tests etc 2008-11-15 13:00:38 +00:00
Luke Taylor
a535c5bd05 Removed unused imports. 2008-11-15 11:09:40 +00:00
Luke Taylor
9dc50bce82 SEC-1013: Removed ConfigAttributeDefinition 2008-11-15 10:55:23 +00:00
Luke Taylor
e259fe43a9 SEC-1034: Removed classes for converting a FilterInvocationDefinitionSource to a map for use in FilterChainProxy 2008-11-15 10:26:35 +00:00
Luke Taylor
31375b7212 SEC-1012: Futher generification. Also changed method signature of ObjectDefinitionSource.getAllConfigAtributes to return a single collection 2008-11-15 09:35:11 +00:00
Luke Taylor
5c1f4e60e3 Tidying stuff 2008-11-14 07:16:49 +00:00
Luke Taylor
3261fcb174 Tidying stuff 2008-11-14 07:16:30 +00:00
Luke Taylor
fa630a430d Removed unused test files 2008-11-14 06:23:34 +00:00
Luke Taylor
3ce5ea7710 Add missing @Test attributes 2008-11-14 06:22:43 +00:00
Luke Taylor
bd9b199599 Import cleaning. 2008-11-14 00:28:54 +00:00
Luke Taylor
648ba1c43a SEC-1034: Fix broken tests. 2008-11-13 08:57:43 +00:00
Luke Taylor
ae05e74085 Replace use of deprecated Spring methods (addConstructorArg) with non-deprecated versions. 2008-11-13 08:56:59 +00:00
Luke Taylor
7a8bd8a673 SEC-1034: Removed FilterInvocationDefinitionSourceEditor. 2008-11-13 07:46:21 +00:00
Luke Taylor
464da0f0df SEC-999: Refactored namespace to take an expression handler instead of a permission evaluator, allowig fo greater cusomtomization and for a single handler to be used in both web and method security expressions. 2008-11-13 07:41:21 +00:00
Luke Taylor
ee13be47b7 Call setAuthenticated() in constructor with authorities to mimic behaviour of UsernamePasswordAuthenticationToken 2008-11-13 07:29:43 +00:00
Luke Taylor
3ef34122fc Converted to using JMock. 2008-11-13 06:50:55 +00:00
Luke Taylor
e18971fdf0 Fix test. BasicProcessingFilter doesn't work with TestingAuthenticationToken. 2008-11-13 06:30:39 +00:00
Luke Taylor
3acd515c6c SEC-999: Refactored expression security classes for better separation of concerns and of method vs web authorization expressions. 2008-11-12 04:07:56 +00:00
Luke Taylor
0bbab88504 SEC-1031: LdapShaPasswordEncoder.isPasswordValid startOfHash off by one 
http://jira.springframework.org/browse/SEC-1031. Fixed startOfHash value and added tests to check full length of password is used.
 2008-11-11 23:34:40 +00:00
Luke Taylor
0ba690fb0e SEC-1015: Removed acl package from core and also related taglib declaration and implementation class (AclTag). 2008-11-11 09:21:51 +00:00
Luke Taylor
e5b1073501 SEC-1012: Added more generics and warning suppression 2008-11-11 09:06:50 +00:00
Luke Taylor
be34724207 Matchers for use with JMock expectations 2008-11-11 08:43:17 +00:00
Luke Taylor
e11114ce77 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023.

hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
 2008-11-10 04:27:25 +00:00
Luke Taylor
d33b13e52e SEC-1023: Added support for hasPermission() based on Id and type 2008-11-05 22:44:46 +00:00
Luke Taylor
a207acf7cb SEC-999: Fix broken test which was failing due to use of incorrect authentication object. 2008-11-05 01:09:14 +00:00
Luke Taylor
56141e9c5f SEC-999: Refactoring out specific dependencies on Spring EL into SecurityExpressionHandler. 
SEC:1023: Updates to expression root to allow evaluationof permissions.
 2008-11-04 23:30:56 +00:00
Luke Taylor
dabb719456 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023. PermissionEvaluator interface for use by expressions when evaluating hasPermisson() expressions.
 2008-11-04 22:46:21 +00:00
Luke Taylor
b42fc7221f Upgraded to jmock 2.5.1 2008-11-04 05:37:56 +00:00