Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-25 08:58:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,204 Commits 34 Branches 337 Tags
Commit Graph

1186 Commits

Author SHA1 Message Date
Luke Taylor
382dc50f3c SEC-299: Change ConcurrentSessionFilter to delegate to an array of LogoutHandlers rather than invalidating an expired session directly. 2007-12-06 17:39:04 +00:00
Luke Taylor
cb980f12d5 Tidying. 2007-12-06 17:26:04 +00:00
Luke Taylor
628227f5e7 Corrected out of date comment (constructor doesn't create a session). Removed unnecessary default constructor. 2007-12-06 16:53:35 +00:00
Luke Taylor
4b8455c831 Tidying comments. 2007-12-06 16:40:16 +00:00
Luke Taylor
4c6e41af7d Tidying comments. 2007-12-06 16:33:59 +00:00
Ben Alex
c66a3ba323 @deprecate FilterToBeanProxy in favour of the simpler and Spring Core provided DelegatingFilterProxy. 2007-12-06 09:43:43 +00:00
Luke Taylor
ab23fe56ad Added log msg for loading of ldif files. 2007-12-06 00:14:25 +00:00
Luke Taylor
a1abcc39d2 SEC-513: Minor work on LDAP UserDetailsManager implementation. 2007-12-06 00:13:42 +00:00
Luke Taylor
e3432c2407 Some changes suggested by Spring LDAP guys to improve template usage. 2007-12-06 00:13:00 +00:00
Luke Taylor
4d133be0d0 Tidying. 2007-12-06 00:12:24 +00:00
Luke Taylor
3ddcc203bf LdapUserDetailsMapper now throws UnsupportedOperationException for mapUserToContext method as only subclasses of this which implement actual LDAP object classes should be used for writing to a directory. 2007-12-06 00:12:06 +00:00
Luke Taylor
22052115b6 SEC-617: Make LDAPAuthenticationProvider a standalone class. 2007-12-05 14:39:46 +00:00
Ben Alex
88ab9671c6 Correct attribute name. 2007-12-04 14:24:53 +00:00
Ben Alex
9b6c798a52 SEC-496: <annotation-driven> element. 2007-12-04 14:14:17 +00:00
Ben Alex
949205b369 Correction of equals(Object) and hashCode() methods. 2007-12-04 12:44:40 +00:00
Ben Alex
85085abf9e Add namespace support for Servlet API integration. 2007-12-04 12:23:41 +00:00
Ben Alex
8c3cc5c67b Add hash code support. 2007-12-04 11:21:39 +00:00
Ben Alex
8e7c540b16 General refactorings and improvements to namespace support, including 
autoDetect="true" attribute for <http> element.
 2007-12-04 10:35:08 +00:00
Ben Alex
2441ab6d9a Move "realm" attribute to be on <http> element rather than <http-basic>. 
This faciltiates reuse with other mechanisms (like Digest) whilst also 
moving towards the <http-auto-configure> element (which benefits from 
having shared configuration in <http> as opposed to mechanism-specific 
elements).
 2007-12-04 08:02:40 +00:00
Ben Alex
d9ec944579 Refactor strings to static fields. To facilitate unit testing, package 
protected visibility was adopted for all element names, attribute names, 
and attribute default values. A public access modifier was used for all 
bean IDs assigned to bean definitions created by the 
BeanDefinitionParsers.
 2007-12-04 07:12:08 +00:00
Ben Alex
4e55bd0117 Make extend Spring Security's exception, for consistency with all other Spring Security exceptions. 2007-12-04 06:58:43 +00:00
Ben Alex
9b4bb0ffd8 <repository> element and JdbcUserDetailsManager support. 2007-12-04 05:58:54 +00:00
Ben Alex
5f98ee6817 <repository> element and JdbcUserDetailsManager support. 2007-12-04 05:54:58 +00:00
Ben Alex
0b0b174eda Support <repository> and JbcUserDetailsManager. 2007-12-04 05:27:17 +00:00
Ben Alex
8cf46ad0f8 Remove, as not used. 2007-12-04 05:12:39 +00:00
Ben Alex
8c9138b443 Typos. 2007-12-04 02:11:16 +00:00
Ben Alex
021f03487e Enhancements to correctly handle authentication failures. 2007-12-04 01:50:45 +00:00
Ben Alex
2a83843e7d Correct username key. 2007-12-04 01:46:26 +00:00
Luke Taylor
75391e89de Tidied up Id tag. 2007-12-04 00:01:09 +00:00
Luke Taylor
794795712d Parameter renamed. 2007-12-04 00:00:50 +00:00
Luke Taylor
97030e8942 Changed LDAP namespace parsing to make sure LDAP provider is registered with ProviderManager. 2007-12-03 23:58:38 +00:00
Luke Taylor
248d97c9d6 SEC-513: Added support for cache flushing after updating or deleting data in JdbcUserDetailsManager. 2007-12-03 22:12:02 +00:00
Ben Alex
d086815d75 Add namespace support for anonymous requests. Also minor improvements to .rnc file as Trang didn't appear to be properly translating multi-line comments to the XSD (all multi-line comments were made single lines). 2007-12-03 07:46:52 +00:00
Ben Alex
5c9009a391 Use new SpringSecurityFilter so compatible with enhanced FilterChainProxy class. 2007-12-03 07:44:32 +00:00
Ben Alex
239fd05d37 Mark the unused Servlet Container callback methods as final to ensure subclasses do not rely upon them. 2007-12-03 07:33:18 +00:00
Ben Alex
a53357778f Remove superfluous method. 2007-12-03 07:32:23 +00:00
Ben Alex
cb765bc34b SEC-615: Automatically focus on login name HTML element on page load. 2007-12-03 06:34:43 +00:00
Ben Alex
86fb6f2dea Remove OrderedUtils (was used for old namespace testing). 2007-12-03 05:06:11 +00:00
Ben Alex
f04f9097b1 Make name consistent with other MVN modules. 2007-12-03 04:10:19 +00:00
Ben Alex
47229be5cb Make samples and tests use username "rod". 2007-12-03 02:56:52 +00:00
Ben Alex
3123d24337 SEC-613: Rename tag libraries. 2007-12-03 01:46:11 +00:00
Ben Alex
c24958d7b8 Spelling correction. 2007-12-03 01:33:19 +00:00
Ben Alex
08db4a1358 SEC-610: Reauthenticate even if AnonymousAuthenticationToken is present. 2007-12-02 02:15:43 +00:00
Luke Taylor
843a20e691 Changed default namespace in config files to "security" for clarity. 2007-11-29 13:14:15 +00:00
Luke Taylor
09c588a138 Removed unecessary check in additionalAuthenticationChecks() for null credentials in authentication object. Previous line already throws an exception if null is found. 2007-11-28 19:20:33 +00:00
Luke Taylor
88e01624eb SEC-560: Removed local password comparison form PasswordComparisonAuthenticator. 2007-11-28 18:29:04 +00:00
Luke Taylor
0e1ae11fca Tidying. 2007-11-28 18:00:43 +00:00
Luke Taylor
292320bd33 SEC-607: Changed NtlmUsernamePasswordAuthenticationToken to make authenticated=true the default state when an instance is created. NtlmAwareLdapAuthenticator now rejects tokens with authenticated=false (e.g. if the token has been passed remotely). 2007-11-24 20:13:29 +00:00
Luke Taylor
4f3a1739aa Changed Ntlm filter to use SpringSecurityFilter base class. 2007-11-24 20:08:17 +00:00
Luke Taylor
9e2f372bad SEC-607: Deprecated InitialDirContextFactory and replaced it with SpringSecurityContextSource. 
Also some refactoring of LdapUserDetailsManager to use a strategy for creating DNs from usernames.
 2007-11-20 20:54:48 +00:00