Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,069 Commits 33 Branches 337 Tags
Commit Graph

2211 Commits

Author SHA1 Message Date
Luke Taylor
9efb5a7007 SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet 2009-04-12 12:23:23 +00:00
Luke Taylor
7c4d54f356 SEC-1131: Applied patch for portlet upgrade 2009-04-12 05:52:20 +00:00
Luke Taylor
365ae3936e Moved MockAuthenticationManager to test package. 2009-04-12 05:13:18 +00:00
Luke Taylor
1b43e3661a SEC-1132: Moved switch user event class to web module as it is only used by SwitchUserProcessingFilter. 2009-04-12 04:16:46 +00:00
Luke Taylor
bec84f874a SEC-1125: Further refactoring of web packages following creation of web module. Fixing samples. 2009-03-26 07:18:36 +00:00
Luke Taylor
2a9a8a41db SEC-1125: Created separate web module spring-security-web 2009-03-25 06:28:18 +00:00
Luke Taylor
2c985a1c36 SEC-1126: separated out spring-security-config module containing namespace configuration classes and resources 2009-03-23 04:23:48 +00:00
Luke Taylor
a45ba138f7 SEC-1121: InMemoryResource.equals() is wrong. Corrected as suggested. 2009-03-20 04:44:39 +00:00
Luke Taylor
4aff4b2350 SEC-1123: Renamed ObjectDefinitionSource to SecurityMetadataSourceand performed related refactoring 2009-03-20 04:32:06 +00:00
Luke Taylor
4aae5ec42e SEC-1124: Refactored LDAP code into separate module 2009-03-19 06:30:32 +00:00
Luke Taylor
a0f3015ac6 SEC-1086: AccessDecisionManager implementations now log debug messages giving the results returned by each voter polled. 2009-03-19 02:01:24 +00:00
Luke Taylor
d163cd7d18 SEC-1099: Translation of message.properties in Brazilian Portuguese. Added file. 2009-03-19 01:47:34 +00:00
Luke Taylor
c0638e9c8d SEC-1110: Localization (messages_ko_KR.properties). Added. 2009-03-19 01:46:05 +00:00
Luke Taylor
591681c180 Upgrade to Spring M2 and correct expression classes and pom files to match changes 2009-03-19 01:17:16 +00:00
Luke Taylor
98593b7c78 SEC-1120: Added Portuguese messages file 2009-03-19 01:02:32 +00:00
Luke Taylor
ccf422af5a SEC-1070: AbstractRetryEntryPoint always uses RetryWithHttpEntryPoint logger. Converted to protected (non-static) and used getClass(). 2009-03-16 08:32:16 +00:00
Luke Taylor
9de9f638fe SEC-1083: Removed unnecessary import 2009-03-16 08:07:18 +00:00
Luke Taylor
30748e8615 SEC-1083: PersistentTokenBasedRememberMeServices does not clear tokens on logout. Override logout method to remove tokens for user. 2009-03-16 08:05:02 +00:00
Luke Taylor
b7557d017e Corrected Javadoc typo. 2009-03-16 07:10:12 +00:00
Luke Taylor
ef3ea65fdb Switching back to 2.5.0-SNAPSHOT after tagging M1 release 2009-01-03 07:42:19 +00:00
Luke Taylor
fc5f50501e [maven-release-plugin] prepare release 2.5.0.M1 2009-01-03 07:08:25 +00:00
Luke Taylor
ddffdf1699 SEC-745: Renamed failureHandler and successHandler to have prefix 'authentication' 2008-12-28 17:32:25 +00:00
Luke Taylor
4a41416c9b Tidying up and removing compiler warnings. 2008-12-21 16:36:16 +00:00
Luke Taylor
f5d2e7a7ce Make error message when multiple UserDetailsServices are found more explicit. 2008-12-21 13:29:42 +00:00
Luke Taylor
9cb361e88a SEC-745: Added LogoutSuccessHandler strategy for use in LogoutFilter. 2008-12-20 23:25:29 +00:00
Luke Taylor
66e586ec67 Added Id keyword. 2008-12-20 15:41:51 +00:00
Luke Taylor
cc5966bc7e Tidying up, removing compiler warnings etc. 2008-12-20 00:16:49 +00:00
Luke Taylor
8154161ef5 SEC-1035: Updated build to use Spring 3.0.0.M1 Release 2008-12-18 02:37:00 +00:00
Luke Taylor
8f598e9b11 SEC-1052: Add support for the namespace option 'disable-url-rewriting'. 2008-12-17 01:28:29 +00:00
Luke Taylor
171456a26c SEC-1018: Changes to allow external reference to SaltSource bean from the namespace. 2008-12-17 01:11:43 +00:00
Luke Taylor
00125cddee SEC-1016: Moved the MapBasedDefinitionSource to the top of the list of delegates (before expressions), but changed the code to only add it if there are pointcuts defined, so there should be no unnecessary overhead. 2008-12-17 00:48:32 +00:00
Luke Taylor
585e5f393a Added warning suppression for deprecation. 2008-12-17 00:32:21 +00:00
Luke Taylor
d8b5f770e9 Added warning suppression for deprecation. 2008-12-17 00:31:17 +00:00
Luke Taylor
db5f1e69f1 SEC-949: Added the option of specifying -1 as the token-validity-seconds value in order to set the cookie maxAge to expire when the browser closes. 2008-12-17 00:14:48 +00:00
Luke Taylor
c2e688610c SEC-1011: Introduced methods for extracting the remember-me cookie and for creating the returned token. 2008-12-16 23:25:44 +00:00
Luke Taylor
998f0b3ea1 SEC-993: Updated retrievePassword method to return null if an Authentication object with null credentials is presented (e.g. with OpenID). Prevents NPE when toString() is called. 2008-12-16 20:35:18 +00:00
Luke Taylor
d0fcbd9baf Tidying up Javadoc. 2008-12-16 20:29:53 +00:00
Luke Taylor
a1bd48733a Minor Javadoc correction. 2008-12-16 20:16:56 +00:00
Luke Taylor
74fd5fe8a4 Finish refactoring JdbcDaoIml to remove MappingSqlQuery objects. Updated Javadoc to avoid user confusion. 2008-12-16 18:55:38 +00:00
Luke Taylor
b24cc17dea SEC-1052: Added "disableUrlRewriting" parameter to HttpSessionSecurityContextRepository. 2008-12-16 17:35:34 +00:00
Luke Taylor
bf409b5b25 Improvements to Javadoc. 2008-12-16 02:06:26 +00:00
Luke Taylor
f54d7ee6bc SEC-535: Added "postOnly" flag to AuthenticationProcessingFilter, defaulting to "true" so that only POST requests are allowed by default. 2008-12-15 23:58:40 +00:00
Luke Taylor
898ef36d02 SEC-959: Converted SwitchUserFilter to use new Authentication success and failure strategies from SEC-745 for managing redirects. 2008-12-15 19:50:53 +00:00
Luke Taylor
c3181d9db0 SEC-1063: Moved the justUseSavedRequestOnGet property to ExceptionTranslationFilter. If set, it will not store the SavedRequest for unless the request is a GET. 2008-12-15 02:48:32 +00:00
Luke Taylor
40ccd3be11 SEC-1058: Further refactoring to remove use of getDefaultTargetUrl(). Subclasses now pass the default value as a constructor argument. 2008-12-15 01:25:12 +00:00
Luke Taylor
fcc68e636e SEC-1062: Added authentication-success-handler-ref and authentication-failure-handler-ref to the namespace definition. 2008-12-15 00:56:17 +00:00
Luke Taylor
a0bcf7184c SEC-1061: Renamed serverSideRedirect property. 2008-12-14 23:56:30 +00:00
Luke Taylor
cf3cac90ad SEC-1058, SEC-745: Updating comments 2008-12-14 23:53:44 +00:00
Luke Taylor
3f38035057 SEC-1058: Renamed "forwardToDestination" to "useForward" for simplicity and consistency with the namespace. 2008-12-14 22:53:31 +00:00
Luke Taylor
2927b8464f SEC-1058: Substantial refactoring of AbstractProcessingFilter to use AuthenticationFailureHandler strategy. Also changed attemptAuthentication method to take a response object and have the option of returning null, to allow OpenIDAuthenticationProcessingFilter to work without having to throw exceptions between the template methods (which made the logic very hard to follow). The OpenID filter now redirects to the OpenID provider service from this method, rather than treating it as a temporary failure and throwing OpenIDAuthenticationRequiredException. 2008-12-14 22:20:21 +00:00