spring-security

mirror of https://github.com/spring-projects/spring-security.git synced 2026-02-05 21:14:40 +00:00

Author	SHA1	Message	Date
Rob Winch	6b81f97081	SEC-2114: Polishing Spring Based Cache	2013-01-04 11:33:46 -06:00
Marten Deinum	01ea39ce35	SEC-2114: Provide Spring Cache Abstraction based cache implementations As of Spring 3.1 spring has its own cache abstraction. This commit adds cache imlpementations based on that abstraction.	2013-01-04 11:33:27 -06:00
Rob Winch	6584b65489	SEC-1898: Added test to demonstrate JdbcAclService#readAclById throws NotFoundException when the Acl is missing	2012-06-11 16:29:50 -05:00
Luke Taylor	3e4fc0b948	SEC-1795: Fix possible NPEs in AclImpl.equals()	2011-08-19 11:45:34 -07:00
Luke Taylor	4a40d80da1	SEC-1418: Deprecate GrantedAuthorityImpl in favour of final SimpleGrantedAuthority. It should be noted that equality checks or lookups with Strings or other authority types will now fail where they would have succeeded before.	2010-12-03 16:41:46 +00:00
Luke Taylor	4ad0652787	Removed array of authorities constructor from TestingAuthenticationToken and RunAsUserToken.	2010-12-01 20:52:37 +00:00
Luke Taylor	1c8d28501c	SEC-1550: Convert signatures to use Collection<? extends GrantedAuthority> where appropriate.	2010-11-03 13:48:59 +00:00
Luke Taylor	65712f5cbc	SEC-1549: AclPermissionCacheOptimizer now does nothing if passed an empty collection of domain objects.	2010-08-28 14:39:43 +01:00
Luke Taylor	42721d407b	Added tests for acls/afterinvocation package	2010-08-24 18:26:09 +01:00
Luke Taylor	bdb906e588	Enable parameterization for log levels in logback files to allow the use of command-line options for controlling log output.	2010-08-24 18:25:39 +01:00
Luke Taylor	3c02989d67	Removal of jmock test dependency and upgrading of mockito version to 1.8.5. Minor adjustments to other build deps and configurations (e.g. prevent groovy from being used as a transitive dep, since we only use it for tests).	2010-08-18 02:32:43 +01:00
Luke Taylor	2222a7be07	Use Integer.valueOf() in preference to new Integer()	2010-08-11 18:17:23 +01:00
Luke Taylor	1a838c2049	SEC-1533: AclAuthorizationStrategyImpl can now take either one or three GrantedAuthority arguments. If only one is supplied, it will be used for all 3 of the permissions supported by the class.	2010-08-07 14:41:25 +01:00
Luke Taylor	64375484a1	More build and logging tuning.	2010-08-04 22:55:17 +01:00
Luke Taylor	1474e73b11	SEC-1166: Added new interface PermissionGrantingStrategy to allow customization of ACL permission granting logic. The DefaultPermissionGrantingStrategy contains the standard behaviour that was previously in AclImpl.	2010-02-20 18:02:11 +00:00
Luke Taylor	052537c8b0	Removing $Id$ markers and stripping trailing whitespace from the codebase.	2010-01-08 21:05:13 +00:00
Luke Taylor	893f212fa5	Tidying	2010-01-02 19:53:19 +00:00
Luke Taylor	c922021d28	SEC-1287: Regression with fix SEC-1022 - cannot register custom permissions w/BasicLookupStrategy. Added setter method for PermissionFactory field.	2009-11-17 13:13:54 +00:00
Luke Taylor	9639340fef	SEC-1049: RoleHierarchy in SidRetrievalStrategy. Added optional RoleHierarchy injection to SidRetrievalStrategyImpl	2009-09-16 19:59:37 +00:00
Luke Taylor	9f76db0606	SEC-1022: Remove use of static methods/initializers in Acl Permissions. Added extra constructors to DefaultPermissionFactory to allow injection of custom permissions to the registry.	2009-09-16 18:42:44 +00:00
Luke Taylor	3f70d79df5	SEC-1022: Remove use of static methods/initializers in Acl Permissions. Converted PermissionFactory to a strategy which is used to convert integers and names to Permission instances.	2009-09-16 12:45:53 +00:00
Luke Taylor	0d7b990e0a	SEC-1184: Moved ACL cache classes and interface out of jdbc package.	2009-08-31 22:15:37 +00:00
Luke Taylor	6236858356	SEC-951: Acl Serialization Errors that cohere with parent-child-structure of Acls. Modified tests to reproduce the issue and applied suggested fix (recursive call to set transient fields on parent).	2009-08-31 19:15:13 +00:00
Luke Taylor	39d76d5b5f	SEC-1165: Relax the requirement that the ObjectIdentity "type" be a Java class. Modified ObjectIdentity, changing the javaType property to "type" which is now a plain String. Also removes the requirement that the class be present on the classpath when creating the ObjectIdentityImpl instance (e.g. in the case of a permissions administration app which doesn't actually use the domain classes itself).	2009-06-09 00:17:45 +00:00
Luke Taylor	9875cbec8b	SEC-1132: Restructuring of ACL packages	2009-05-11 05:20:09 +00:00
Luke Taylor	acd7dc1f2d	SEC-1151: Fixed check on ACE list bounds in AclImpl and updated tests	2009-05-08 03:10:25 +00:00
Luke Taylor	c6dfee69d4	SEC-1038: Changed JdbcMutableAclServiceTests to facilitate testing with PostgreSQL and updated JdbcMutableAclService to use a the id obtained from the ObjectIdentity directly rather than calling toString() on it before passing to the JDBC call.	2009-05-06 14:29:53 +00:00
Luke Taylor	29fafbbf18	Misc tidying up of old files and refactoring of tests	2009-05-05 13:29:59 +00:00
Luke Taylor	da823b2396	Tidying up.	2009-04-27 10:37:55 +00:00
Luke Taylor	d0a308c99b	SEC-1107: Added test to attempt to reproduce issue.	2009-04-27 10:21:31 +00:00
Luke Taylor	bd1d19f372	Fix mockito usage error.	2009-04-26 11:20:03 +00:00
Luke Taylor	a5792b094a	More generification to remove last warnings in Acl package.	2009-04-26 10:05:55 +00:00
Luke Taylor	5509da7a2e	SEC-1141: ObjectIdentityImpl has incorrect hashCode implementation. Modified equals method to compare longValue of Number identifier types and use standard equals for other serializable identifiers.	2009-04-22 02:08:00 +00:00
Luke Taylor	3adbbdf50d	SEC-1081: Minor Acl refactoring to remove generic warnings. Minor efficiency improvements.	2009-04-21 02:54:17 +00:00
Luke Taylor	d5f5b0860e	SEC-1132: Refactoring to remove package cycles in ACL module.	2009-04-15 10:04:45 +00:00
Luke Taylor	93bdcccaee	SEC-1132: Moved userdetails into core and added core/authority sub-package	2009-04-15 07:39:21 +00:00
Luke Taylor	ca7d055c2b	SEC-1132: Created core and authentication packages within core module.	2009-04-13 13:43:23 +00:00
Luke Taylor	9efb5a7007	SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet	2009-04-12 12:23:23 +00:00
Luke Taylor	2a9a8a41db	SEC-1125: Created separate web module spring-security-web	2009-03-25 06:28:18 +00:00
Luke Taylor	4a41416c9b	Tidying up and removing compiler warnings.	2008-12-21 16:36:16 +00:00
Luke Taylor	6003291a68	Updated to use new Sprig test classes and to remove data dependencies between tests.	2008-12-21 16:34:26 +00:00
Luke Taylor	14c50a9c96	SEC-1012: Java-5-ifying the ACL package.	2008-12-21 01:41:30 +00:00
Luke Taylor	cc5966bc7e	Tidying up, removing compiler warnings etc.	2008-12-20 00:16:49 +00:00
Luke Taylor	6197668fa6	renamed test file	2008-12-02 15:36:35 +00:00
Luke Taylor	7505b734d6	Converted to use jmock.	2008-12-02 12:17:13 +00:00
Luke Taylor	7bf47f2d97	Converted to use jmock.	2008-12-02 12:06:09 +00:00
Luke Taylor	a9d69ac4e8	Tidied up test class.	2008-11-15 10:54:34 +00:00
Luke Taylor	e11114ce77	SEC-1023: Add hasPermission() support to SecurityExpressionRoot http://jira.springframework.org/browse/SEC-1023. hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.	2008-11-10 04:27:25 +00:00
Luke Taylor	d601301de6	SEC-1023: Fix broken test.	2008-11-05 04:14:29 +00:00
Luke Taylor	1c3b576d91	SEC-1023: PermissionEvaluator based on the Acl module.	2008-11-05 03:45:50 +00:00

1 2

67 Commits