192 Commits

Author	SHA1	Message	Date
Ben Alex	f650289142	Avoid expense of HttpSession when working with anonymous users.	2005-07-23 10:05:32 +00:00
Ben Alex	f625d06cd9	Avoid expense of HttpSession when working with anonymous users.	2005-07-23 09:52:42 +00:00
Luke Taylor	f0813b45d7	Typo correction as suggested in forum	2005-07-15 18:01:45 +00:00
Ben Alex	c8275c591f	Reflect additional releases made for backporting SEC-20 security fix.	2005-07-14 01:12:38 +00:00
Ben Alex	32136c38d4	Fix broken link (thanks to Marc Palmer).	2005-07-13 23:40:54 +00:00
Ben Alex	3e4a29eae9	FilterSecurityInterceptor now has an observeOncePerRequest boolean property, allowing multiple fragments of the HTTP request to be individually authorized (see http://opensource.atlassian.com/projects/spring/browse/SEC-14).	2005-06-27 03:57:31 +00:00
Ben Alex	d09d250656	Form, CAS, X509 and Remember-Me authentication mechanisms now publish an InteractiveAuthenticationSuccessEvent (see http://opensource.atlassian.com/projects/spring/browse/SEC-5).	2005-06-27 03:36:30 +00:00
Ben Alex	60f8095cf2	Make Authenticated.isAuthenticated() behaviour switchable. See http://opensource.atlassian.com/projects/spring/browse/SEC-13.	2005-06-27 03:05:26 +00:00
Ben Alex	ef8281f534	HttpSessionContextIntegrationFilter elegantly handles IOExceptions and ServletExceptions within filter chain (see http://opensource.atlassian.com/projects/spring/browse/SEC-20).	2005-06-27 02:55:01 +00:00
Ben Alex	a3d26edea3	JBoss container adapter to use getName() instead to toString() (see http://opensource.atlassian.com/projects/spring/browse/SEC-22).	2005-06-27 02:06:33 +00:00
Ben Alex	a312fede74	Refactor DAO authentication failure events under a consistent abstract superclass (thanks to Mark St Godard for suggestion).	2005-06-22 08:07:52 +00:00
Ben Alex	c0f1d4e19d	Remove getters and setters from JdbcDaoImpl so IoC container cannot modify MappingSqlQuerys (thanks to David Durham for bug report).	2005-06-22 08:06:28 +00:00
Ben Alex	a15691d9d7	Silently catch NotSerializableException in AbstractProcessingFilter if rootCause is not Serializable (thanks to Joseph Dane for reporting this bug).	2005-06-22 07:03:53 +00:00
Ben Alex	5f75e9bf9a	Refactor Authentication.isAuthenticated() handling to be more performance (as per developer list discussion).	2005-06-22 06:30:46 +00:00
Ben Alex	a7b5299e77	Correct synchronization issue with FilterToBeanProxy initialization (thanks to George Franciscus and Volker Malzahn as per acegisecurity-developer discussion 4 June 2005).	2005-06-22 05:22:05 +00:00
Ben Alex	1cfdc86ff4	Add Matt's latest presentation.	2005-06-20 05:31:57 +00:00
Ben Alex	420fb0ec2c	Minor corrections, as reported by Wil Lambrecht.	2005-06-20 02:57:49 +00:00
Ben Alex	645c2bb5d5	Add new book.	2005-05-29 12:40:21 +00:00
Ben Alex	c699f7d40e	Support non-username as primary key.	2005-05-29 09:46:51 +00:00
Ben Alex	4e55780e7c	Performance optimisations thanks to Paulo Neves.	2005-05-20 00:00:22 +00:00
Ben Alex	cfb8271826	Reorder DaoAuthenticationProvider exception logic as per developer list discussion.	2005-05-18 01:40:45 +00:00
Ben Alex	ecbfac2ff8	Made AclEntry Serializable (correct issue with BasicAclEntryCache).	2005-05-17 11:07:00 +00:00
Ben Alex	dcfa0008db	Updated URL to point to Reid Carlberg's latest blog entry.	2005-05-16 22:37:04 +00:00
Ben Alex	de6a258460	Refactor SecurityContextHolder to return a SecurityContext instead of Authentication.	2005-05-09 01:35:52 +00:00
Ben Alex	e08e66dec6	Refactor SecurityContextHolder to return a SecurityContext instead of Authentication.	2005-05-08 23:42:14 +00:00
Ben Alex	6a9abe5d90	Remove ContextHolder and introduce SecurityContext.	2005-05-07 09:11:37 +00:00
Ben Alex	52064d5db4	Correction.	2005-05-06 03:53:12 +00:00
Ben Alex	854112076e	Add Victor's entry.	2005-05-06 03:50:53 +00:00
Ben Alex	e2b7b785e1	AppFuse link.	2005-05-01 08:55:40 +00:00
Luke Taylor	d4da559ccc	added entry for credential expiry modifications	2005-04-30 00:32:41 +00:00
Ben Alex	d169829f27	AbstractAuthenticationToken.getName() now returns username alone if UserDetails present.	2005-04-29 22:29:00 +00:00
Ray Krueger	6f286e2054	AuthorityGranter.grant now returns a java.util.Set of role names, instead of a single role name	2005-04-27 03:39:06 +00:00
Ben Alex	423dbc9f14	Add JavaDocs link to navigation documentation.	2005-04-21 23:12:50 +00:00
Ben Alex	cff9ba4988	AnonymousProcessingFilter offers protected method to control when it should execute as per http://forum.springframework.org/viewtopic.php?p=19766.	2005-04-21 23:02:58 +00:00
Ben Alex	a68d720e88	Prepare for 0.9.0.	2005-04-20 22:43:46 +00:00
Ben Alex	56f201c651	More memory needed...	2005-04-20 14:48:45 +00:00
Ben Alex	4cf500763f	Release 0.8.2.	2005-04-20 14:15:03 +00:00
Ben Alex	efd8955a3d	General update.	2005-04-20 12:29:36 +00:00
Ben Alex	b92bb993af	Add blog entry.	2005-04-20 11:32:37 +00:00
Ben Alex	fdf5c63033	Add obtainUsername method as per http://forum.springframework.org/viewtopic.php?t=4757.	2005-04-13 22:17:05 +00:00
Ben Alex	59b3bc582d	Disable one page per chapter option.	2005-04-08 23:17:03 +00:00
Ben Alex	2ee7cc1c18	General update.	2005-04-06 06:39:03 +00:00
Ben Alex	204da55a0b	PasswordDaoAuthenticationProvider no longer stores String against Authentication.setDetails().	2005-04-03 21:48:45 +00:00
Ben Alex	32521dde45	Add ACL Instantiation Diagram, courtesy of Bill Eisenhauer.	2005-03-31 23:42:26 +00:00
Ben Alex	7c9bd78e16	Initial commit.	2005-03-28 21:40:44 +00:00
Ray Krueger	9649003d57	AbstractProcessingFilter no longer uses a set*FailureUrl approach for every exception, it now uses a properties object that maps authenticationExceptions to failure urls	2005-03-28 17:42:21 +00:00
Ben Alex	684d5bc10e	Handle null Authentication.getAuthorities() in AuthorizeTag.	2005-03-27 06:36:41 +00:00
Ben Alex	8e6305ae81	Update commons-codec dependency to 1.3.	2005-03-25 22:33:18 +00:00
Ben Alex	8ae2276843	TokenBasedRememberMeServices changed to use long instead of int for tokenValiditySeconds.	2005-03-25 22:07:00 +00:00
Ben Alex	8884ca51af	Add credentialsExpiredFailureUrl getter/setter to AbstractProcessingFilter.	2005-03-23 23:22:51 +00:00