2d827f87ab
SEC-1000: Updated itest module to 2.5.0
2008-10-03 15:37:05 +00:00
e46f47c170
SEC-1001: Delete core tiger module
2008-10-03 15:27:05 +00:00
7cc0965383
SEC-1001: Move core tiger code into core and adjust pom files
2008-10-03 15:23:31 +00:00
ad4b5c487f
Temporarily store webflow test sample in sandbox
2008-10-02 23:24:58 +00:00
48013b2c93
typo
2008-10-02 15:26:20 +00:00
03b21494bc
Corrected typo
2008-10-02 14:53:24 +00:00
ac54976f9e
Added appendices to end of doc
2008-10-02 14:50:58 +00:00
7594e1ae2f
SEC-984
...
added template method to allow to override the default of retrieving user by username.
2008-10-01 18:49:52 +00:00
97381fb448
SEC-974: Made getExceptionMappings() protected.
2008-10-01 16:25:20 +00:00
af3c77f56f
[SEC-997] Remove unnecessary repository
2008-10-01 00:52:52 +00:00
4542f00b14
SEC-975: Namespace security syntax does not interpret properties
...
http://jira.springframework.org/browse/SEC-975 . Changed creation of AccessDeniedHandler to use a BeanDefinition to make sure placeholders work OK.
2008-09-12 19:06:53 +00:00
5e4634d216
Minor Javadoc improvement.
2008-09-12 14:57:21 +00:00
d291def963
Removed invalid comment.
2008-09-12 10:18:40 +00:00
df59cb9dcd
Import cleaning.
2008-09-11 14:41:00 +00:00
ef0389ae79
SEC-976: Removed checks for presence of core-tiger classes.
2008-09-11 14:37:55 +00:00
5b9bb8ba54
[maven-release-plugin] prepare for next development iteration
2008-09-05 19:04:22 +00:00
73eed2656d
[maven-release-plugin] prepare release spring-security-parent-2.0.4
2008-09-05 18:57:43 +00:00
f935830cdf
Class index generation files
2008-09-05 14:26:26 +00:00
ee04b189b7
Updated schema verisions to 2.0.4
2008-09-05 14:23:42 +00:00
8661e17df9
OPEN - issue SEC-960: DN Encoding in LDAPUserDetailsManager.changePassword() causes bind errors
...
http://jira.springframework.org/browse/SEC-960 . Replaced call to toUrl() with toString() to prevent URL encoding when setting up principal name for reconnect() in changePassword() method.
2008-09-05 13:49:38 +00:00
c45b4e0989
SEC-951: Overcome serialization error caused by BasicLookupStrategy failing to modify AccessControlEntryImpl.acl field to the replacement AclImpl (previously old references to StubAclParent were retained).
2008-09-05 05:33:41 +00:00
0f8ea229c2
SEC-908: Correct issue with BasePermission static initialization failure.
2008-09-05 04:33:52 +00:00
5102be3a59
SEC-971: getter for cookieName in AbstractRememberMeServices
...
http://jira.springframework.org/browse/SEC-971 . Added getCookieName() method.
2008-09-04 16:05:34 +00:00
de379dc2ac
Converted literals to classname/interfacename docbook tags for easier indexing
2008-09-02 01:05:57 +00:00
09c70bb28e
SEC-970: Corrected link in docbook html banner
2008-09-01 16:56:50 +00:00
4e2d6f8b2e
SEC-967: TextUtils.java does not escape ampersand character
...
http://jira.springframework.org/browse/SEC-967 . Added escaping of '&' character
2008-08-29 12:01:45 +00:00
d781deffe7
OPEN - issue SEC-966: Consider adding escapeXml attribute to security:authentication
...
http://jira.springframework.org/browse/SEC-966 . Added escaping of rendered text as default.
2008-08-26 16:21:29 +00:00
a4e4120443
SEC-963: LDAP Group Search Root
...
http://jira.springframework.org/browse/SEC-963 . Changed namespace instances of DefaultAuthoritiesPopulator to use the root as the default search location.
2008-08-26 13:51:01 +00:00
83868a7334
SEC-955: ability to externalize port mapping for secured channel to a property file
...
http://jira.springframework.org/browse/SEC-955 . Changed schema to make port-mapping type xsd:string to allow placeholders.
2008-08-26 13:20:01 +00:00
150f3d97d0
SEC-832: NamingEnumeration.hasMore fails on MS AD with PartialResultException
...
http://jira.springframework.org/browse/SEC-832 . Changed searchForSingleEntry method to ignore PartialResultException, similar to Spring LDAP's approach.
2008-08-26 12:49:37 +00:00
7f28a8bc5d
Refactored DefaultLdapAuthoritiesPopulator to remove contextSource field and setter method.
2008-08-26 12:38:02 +00:00
1cfd886517
SEC-922: Spring Security should respect Spring XML boolean operators for AJ pointcut
...
http://jira.springframework.org/browse/SEC-922 . Added method to substitute boolean operators "and, not, or" with aspectj versions "&&, !, ||".
2008-08-18 23:31:14 +00:00
bb457e1d07
SEC-957: logger.debug without guard causing massive performance hit
...
http://jira.springframework.org/browse/SEC-957 . Added debug logging guard as requested.
2008-08-18 18:20:48 +00:00
09cf90258f
SEC-758: Both AspectJSecurityInterceptor and AspectJAnnotationSecurityInterceptor not usable with @AspectJ notation
...
http://jira.springframework.org/browse/SEC-758 . Added "throws Throwable" to AspectJAnnotationCallback signature.
2008-08-18 14:47:28 +00:00
e15d7a78cd
SEC-956: Remove MapBasedMethodDefinitionSource.lookupAttributes
...
http://jira.springframework.org/browse/SEC-956 . Done.
2008-08-18 13:13:18 +00:00
3bf5e406b7
SEC-936: NPE in AbstractFallbackMethodDefinitionSource
...
http://jira.springframework.org/browse/SEC-936 . Changed to check if the value of MethodInvocation.getThis() is null to prevent NPE. MapBasedMethodDefinitionSource now ignores calls to findAttributes() with a null target class (all its entries require a class) and the fallback option in AbstractFallbackMethodDefinitionSource is used if the targetClass is null (i.e. Method.getDeclaringClass() will be used as the Class)
2008-08-16 02:31:36 +00:00
6a68a2531c
SEC-904: Moved test module out of sandbox
2008-08-16 02:24:32 +00:00
959cdd8335
SEC-936: Tests
2008-08-16 01:58:45 +00:00
8e0a6b9d1a
SEC-904: Test module updates
2008-08-15 23:54:16 +00:00
827d0e1ebf
OPEN - issue SEC-865: Re-Challenge NTLM Clients after Authentication Failure
...
http://jira.springframework.org/browse/SEC-865 . Changed NTLM filter to re-challenge if retryOnAuthFailure is set and the Smb logon call fails. Updated JCIFS version in pom.
2008-08-15 22:44:22 +00:00
55d357f42d
OPEN - issue SEC-905: <protect-pointcut /> pointcuts do not respect method arguments
...
http://jira.springframework.org/browse/SEC-905 . Added extra registration method to MapBasedMethodDefinitionSource which takes a Method instance rather than the method name.
2008-08-12 17:11:38 +00:00
d9ab0758ee
SEC-954: Removed test dependency on AbstractMethodDefinitionSource.
2008-08-12 17:08:55 +00:00
36b35e3b1f
CLOSED - issue SEC-953: Query string isn't ignored while url - filterchain pattern matching
...
http://jira.springframework.org/browse/SEC-953 . Fixed autoboxing issue.
2008-08-11 21:15:09 +00:00
39a656eb78
OPEN - issue SEC-953: Query string isn't ignored while url - filterchain pattern matching
...
http://jira.springframework.org/browse/SEC-953 . Added stripQueryStringFromUrls parameter to FilterChainProxy which works the same as the one on DefaultFilterInvocationDefinitionSource. This defaults to true when used with ant path matching.
2008-08-11 19:15:33 +00:00
b6dec19e90
SEC-932: Added supplied class and test class.
2008-08-11 16:36:01 +00:00
69e776f581
Fixed invalid tags in faq.fml
2008-08-11 16:18:26 +00:00
3ab9fcdcaf
Tidying.
2008-08-11 15:05:16 +00:00
5e3204a5cb
Typo
2008-08-09 11:22:35 +00:00
6409f140e0
SEC-902: Changed Ntlm entry point to send 403 if no failure URL set
2008-08-08 16:44:13 +00:00
130e70373f
SEC-936: Initial test which fails to reproduce the problem
2008-08-08 16:41:23 +00:00
Luke Taylor
Scott Battaglia
Carlos Sanchez
Ben Alex