Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2026-05-11 01:51:44 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,448 Commits 57 Branches 379 Tags
Commit Graph

345 Commits

Author SHA1 Message Date
Ben Alex
ab12817b7a SEC-97: Format Acegi Security source code in accordance with latest Jalopy configuration. 2006-05-23 13:38:33 +00:00
Luke Taylor
4d24c88d1e Enforce the setting of a LdapUserDetailsMapper on authenticators (rather than a general mapper) to make sure the correct type is returned and that the username is set before it is returned. 2006-05-22 23:40:29 +00:00
Luke Taylor
3eaed3ad44 Added additionalAuthenticationChecks implementation to make sure password is rechecked if Ldap is used with a user cache. 2006-05-22 23:37:54 +00:00
Luke Taylor
53b6735c3e Make sure the username and password are set on the final UserDetails object returned by the provider. 2006-05-21 03:03:50 +00:00
Luke Taylor
360e9908b7 Added test for empty or null username 2006-05-21 01:40:00 +00:00
Luke Taylor
d8a28d6068 Add call for setDerefLinkFlag 2006-05-21 01:32:37 +00:00
Luke Taylor
016ac8016c Minor changes to increase coverage of methods 2006-05-21 01:23:34 +00:00
Luke Taylor
0d6b3ab9f3 Renamed 'execute' method in LdapCallback in line with Spring equivalents. Added some extra tests. 2006-05-21 01:06:37 +00:00
Luke Taylor
9623eb3d04 Correct log category package name 2006-05-20 23:45:54 +00:00
Luke Taylor
316798ef9e Made mock context factory a standalone class 2006-05-20 17:47:36 +00:00
Luke Taylor
859185eebd Removed unused methods and added some extra tests. 2006-05-20 17:46:10 +00:00
Luke Taylor
3239cd139e SEC-251: use username as parameter {2} in group searches 2006-05-19 22:10:05 +00:00
Luke Taylor
46cc1bec1e SEC-268: allow for delayed obtaining of app context reference 2006-05-19 21:38:26 +00:00
Luke Taylor
f546e2bbad Remove default constructor as class is now only responsible for group searches which need the args version. 2006-05-16 23:38:48 +00:00
Luke Taylor
fc8ead3c54 Make sure populator roles are added rather than overwriting any roles loaded with the user entry. 2006-05-16 23:33:02 +00:00
Luke Taylor
f8db6a4c78 Switch LDAP tests back to embedded server and comment out apacheds-broken ones. 2006-05-15 21:20:50 +00:00
Luke Taylor
65fe641900 SEC-264: changes to LDAP services. 2006-05-15 20:53:10 +00:00
Scott Battaglia
ab05cb95ff SEC-239: changed order url is created in to reflect new processing filter url order 2006-05-04 19:31:28 +00:00
Luke Taylor
a7d7631f2f Fixed potential problem with multiple userDn patterns. 2006-05-01 00:43:42 +00:00
Luke Taylor
f0b11109b4 Added tests for nameExists method 2006-05-01 00:41:07 +00:00
Luke Taylor
def8a849a2 Added String-only 'compare' operation tests which now work with ApacheDS RC2 (unlike byte[] comparisons which are still broken). 2006-04-30 21:53:05 +00:00
Luke Taylor
0b2be28def Added search method which will be used for finding roles. 2006-04-30 21:37:18 +00:00
Luke Taylor
91f5fc30be SEC-258: Removed use of URI class 2006-04-30 19:45:37 +00:00
Luke Taylor
25c643970a Change package names to match apacheds RC1. 2006-04-29 22:45:19 +00:00
Ben Alex
9b63051149 SEC-204: Improve startup time detection of errors by FilterInvocationDefinitionSourceEditor. 2006-04-28 08:41:55 +00:00
Ben Alex
cc07f620df SEC-257: ExceptionTranslationFilter to use AccessDeniedHandler. 2006-04-28 06:52:50 +00:00
Ben Alex
d125569bd6 SEC-29: Save POST parameters on AuthenticationEntryPoint redirect. 2006-04-28 05:05:35 +00:00
Ben Alex
22aa0e898f SEC-243: SessionRegistry.getAllSessions() now accepts an "includeExpiredSessions" argument. 2006-04-27 23:26:19 +00:00
Ben Alex
b05709df6a SEC-152: Strategy pattern for SecurityContextHoldder. 2006-04-27 08:30:29 +00:00
Scott McCrory
88ff43017d Added unit test for the overridden requiresAuthentication method 2006-04-27 02:24:30 +00:00
Ben Alex
a47a342ce6 SEC-234: Allow pluggable AuthenticationDetailsSource strategy interface. 2006-04-26 05:24:49 +00:00
Ben Alex
4e09777dec SEC-247: Allow #NONE# to be used to specify paths that shouldn't have any filters fire. 2006-04-26 03:55:39 +00:00
Carlos Sanchez
88e8e60861 [SEC-240] Moved log4j.properties to test folder to avoid including it in jar 2006-04-26 02:39:56 +00:00
Ben Alex
14683dcbc7 SEC-190: Add hashCode() and equals() methods. 2006-04-26 01:41:10 +00:00
Luke Taylor
596882804f First commit of LdapTemplate class, a la Spring JdbcTemplate, as suggested by Ben to simplify Ldap connection handling etc. 2006-04-18 22:34:04 +00:00
Luke Taylor
3d51c46575 Added license header. 2006-04-18 22:27:17 +00:00
Luke Taylor
f61a58d98b Added a couple more tests. 2006-04-16 21:18:12 +00:00
Luke Taylor
7a0a87a167 Added support for LDAP SSHA (salted SHA) encoded passwords. 2006-04-16 21:12:39 +00:00
Luke Taylor
267c846e12 Sort out LDAP tests to match up with moved production classes. 2006-04-16 14:31:13 +00:00
Luke Taylor
bf4fca9126 Move non security-specific LDAP classes to org.acegisecurity.ldap package 2006-04-16 14:26:46 +00:00
Scott Battaglia
3d0f746719 SEC-224 
updated CasAuthenticationToken to be consistant with approach taken by other providers with regards to authentication.getPrincipal()
 2006-03-14 16:15:51 +00:00
Luke Taylor
7e7920ce00 Fix for SEC-202. Intialize manager password to default "manager_password_not_set". 2006-02-28 17:47:55 +00:00
Luke Taylor
6abceb7ab0 Additional changes related to SEC-192 (avoiding session creation when creating WebAuthenticationDetails). Also fixed Jalopy chaos in SwitchUserProcessingFilter. 2006-02-20 00:37:39 +00:00
Luke Taylor
5475ab0575 Modify AbstractAuthenticationManager to transfer the details object from authentication request to the resulting authentication token, provided it has not already been set on the latter by an authentication provider. 2006-02-19 23:50:21 +00:00
Luke Taylor
e12c8310eb Remove unnecessary default constructors which throw IllegalArgumentException. Favours compile time over runtime errors. 2006-02-16 16:44:35 +00:00
Luke Taylor
6c29a6d17e Added test for immutability of authorities array. Refactored standard authorities array into an instance field. 2006-02-13 16:16:43 +00:00
Ben Alex
a28a932598 SEC-183: Minimise session creation as a consequence of SEC-168 and SEC-182 changes. 2006-02-09 23:04:29 +00:00
Ben Alex
b1dd784dee SEC-180: BasicProcessingFilter should configurably ignore authentication failures. 2006-02-09 06:41:31 +00:00
Ben Alex
e63b2ec9e6 Cleanup unused imports. 2006-02-09 06:00:25 +00:00
Ben Alex
79287999dc SEC-178: Refactor AbstractAuthenticationToken. 2006-02-09 04:16:50 +00:00