6b4045667a
SEC-1033: Completed working version of web expression support.
...
SEC-999: Added getExpressionParser() method to the security handler interface to allow both web and method expression security to obtain a suitable parser from the configuration for parsing their expression attributes.
2008-12-08 01:01:14 +00:00
fd3990c1f8
SEC-1033: Refactored DefaultFilterInvocationDefinitionSource to remove legacy methods and make it immutable.
2008-12-07 22:46:36 +00:00
bed00e10f5
Reduced visibility of attribute names in HttpSecurityBDP.
2008-12-07 13:46:09 +00:00
305fb7b4aa
Added version information.
2008-12-06 18:26:44 +00:00
9bb64d1974
Removed out of date javadoc reference to SecurityEnforcementFilter.
2008-12-06 17:56:24 +00:00
7265a70f0a
SEC-1012: Java5 - use of vararg methods.
2008-12-06 17:33:19 +00:00
c3d216e7bb
SEC-1012: Minor improvements to SecurityContextHolderAwareRequestFilter and conversion to use jmock for test.
2008-12-06 17:31:53 +00:00
953a4ab9ea
SEC-1036: Removed deprecated class and unnecessary mock.
2008-12-05 22:30:26 +00:00
6293541b73
SEC-1036: Updated DefaultSpringSecurityContextSource to enable pooling for "manager" users by default but not when binding directly as a user.
2008-12-05 22:04:51 +00:00
bc6878c1c5
SEC-1044: Removed remember-me functionality from http auto-config namespace configuration. Added explicit <remember-me> elements to contacts and tutorial sample configurations.
2008-12-05 16:36:43 +00:00
58c237fa74
SEC-1015: Removed final packages/directories for old acl code.
2008-12-05 16:07:40 +00:00
3cbad3ebd7
Corrected comment.
2008-12-05 16:04:22 +00:00
38f466dcfc
SEC-1039: Refactored post-request session-creation logic into separate method. Some comment improvements.
2008-12-05 15:51:29 +00:00
48874d69a7
SEC-1039: Made sure "old" security context session key points to new one so they always match.
2008-12-05 14:54:01 +00:00
fd7fc0c8a5
SEC-1039: Corrected reference to security context key to match new value.
2008-12-05 14:52:52 +00:00
a650b73550
SEC-1025: Added spring external repository back to build so that j3tset dependency is resolved
2008-12-05 11:54:04 +00:00
f91f97b195
SEC-1048: Added section on custom-after-invocation-provider to naemspace appendix
2008-12-04 14:27:43 +00:00
c5e1fd77ec
SEC-1045: Added testsfor use of external context storage strategy through the namespace
2008-12-04 14:25:55 +00:00
7dfbcf2ddf
SEC-990: Clarify the semantics of the ConsensusBased ADM. Added the suggested patch to the Javadoc for this class.
2008-12-04 13:32:35 +00:00
ffc8637def
Tidying up.
2008-12-03 11:02:56 +00:00
8587d4c635
Switch to non-deprecated methods.
2008-12-03 10:21:27 +00:00
3e2930d785
SEC-1045: Added security-context-repository-ref attribute to <http>
2008-12-02 16:14:03 +00:00
6197668fa6
renamed test file
2008-12-02 15:36:35 +00:00
f2969392a6
SEC-1043: Improved Javadoc for LdapAuthenticationProvider user details mapping methods.
2008-12-02 14:32:44 +00:00
9ab69ddcaf
Converted to use jmock.
2008-12-02 13:58:20 +00:00
72eee6f1ca
Removing unused mock classes.
2008-12-02 13:07:06 +00:00
fba57bdf5b
Removed unused MockAccessDecisionManager class
2008-12-02 12:56:04 +00:00
283b932fe0
Minor tidying up.
2008-12-02 12:53:48 +00:00
f3387cd879
2008-12-02 12:49:13 +00:00
7505b734d6
Converted to use jmock.
2008-12-02 12:17:13 +00:00
7bf47f2d97
Converted to use jmock.
2008-12-02 12:06:09 +00:00
a09b15ce5f
Added tests for AuthenticationDetailsSourceImpl (and AuthenticationDetails).
2008-12-01 15:50:31 +00:00
8283074097
Tidying.
2008-12-01 15:49:35 +00:00
e3dd12021b
Added extra calls to exercise CachingUserDetailsService
2008-12-01 15:49:13 +00:00
a2f7b7e4f1
Added optional args argument to constructor.
2008-12-01 14:29:58 +00:00
3fe112f769
Added tests for AbstractAclVoter.
2008-12-01 14:28:24 +00:00
6601b3da5f
Refactored inline authority list into member variable.
2008-12-01 13:13:44 +00:00
e864dfa796
SEC-1039: Converted HttpBeanDefinitionParser to use new context persistence filter instead of HttpSessionContextIntegrationFilter
2008-12-01 12:37:31 +00:00
08ea70909d
Fixed broken test due to missing context file.
2008-12-01 00:36:13 +00:00
51549a9f6f
Added missing '$' to Id.
2008-11-30 23:20:49 +00:00
a318aacc4f
Converted MethodSecurityInterceptorTests to use mocks and deleted app context file.
2008-11-30 23:20:16 +00:00
bfd4bcfdb7
SEC-1012: Java5ing of RunAsUserToken constructor.
2008-11-30 23:16:39 +00:00
4736d736ae
SEC-1036: Removed further reference to SpringSecurityContextSource in ntlm package.
2008-11-30 16:33:30 +00:00
781b09e889
SEC-1036: Updated ldap sample pom
2008-11-29 14:16:08 +00:00
b25d6958d7
SEC-1036: Removed references to SpringSecurityContextSource
2008-11-29 12:15:51 +00:00
5c29dfbc20
Fixed poms which should have been committed before
2008-11-29 09:47:39 +00:00
66897e1849
SEC-1036: Upgraded Spring LDAP to 1.3 and made corresponding code changes. Also some general tidying up of LDAP code. Removed deprecated context factory classes.
2008-11-28 22:22:51 +00:00
1918c50fd7
SEC-1039: Deprecated HttpSessionContextIntegrationFilter and made it extend SecurityContextPersistenceFilter.
2008-11-28 18:01:34 +00:00
8cfd515b27
SEC-988: Added Javadoc for UserDetailsChecker interface.
2008-11-27 21:21:25 +00:00
d508adbf8b
SEC-1037: Made LdapAuthenticationProvider implement MessageSourceAware.
2008-11-27 21:12:43 +00:00
Luke Taylor