Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,596 Commits 33 Branches 337 Tags
Commit Graph

380 Commits

Author SHA1 Message Date
Luke Taylor
9b423a7726 Set 3.1.0 release version. 2011-12-05 23:42:39 +00:00
Rob Winch
53483df1f5 SEC-1678: Added What's new section to reference 2011-11-18 13:52:37 -06:00
Rob Winch
041cb1dcc3 SEC-1858: Included the updates for logout-success-url documentation 2011-11-18 11:22:22 -06:00
Rob Winch
f88b6f75ff SEC-1858: Overhall the namespace appendix of the reference to include missing elements and attributes 2011-11-11 09:00:53 -05:00
Rob Winch
2fd0a65049 SEC-1839: Updated preauth example to use </security:authentication-manager> instead of </security-authentication-manager> 2011-10-18 19:18:56 -05:00
Luke Taylor
503ac9ae7c SEC-1798: Remove internal evaluation of EL in JSP tag implementations. 2011-08-12 19:44:27 +01:00
Luke Taylor
a1c714cff4 SEC-1754: Added an InvalidSessionStrategy to allow SessionManagementFilter to delegate out the behaviour when an invalid session identifier is submitted. 2011-07-14 16:43:02 +01:00
Florian Fankhauser
2e83d98c8f SEC-1776: Corrected typo in manual 2011-07-09 19:24:12 -05:00
Luke Taylor
ecfffaaa3f Make aspectj dependencies optional throughout and spring-jdbc/tx optional in core poms. Reduces exclusions required in third-party poms (e.g. spring-social). 2011-06-09 22:57:49 +01:00
Luke Taylor
b53d430798 Doc update to reflect change in cas integration module name since 3.0. 2011-05-23 21:29:40 +01:00
Luke Taylor
295ea27526 SEC-1743: Separate remoting from core into separate module. 2011-05-16 00:19:30 +01:00
Luke Taylor
6e91786f92 SEC-1734: AbstractRememberMeServices will now default to using a secure cookie if the connection is secure. The behaviour can be overridden by setting the useSecureCookie property in which case the cookie will either always be secure (true) or never (false). 2011-05-09 13:36:23 +01:00
Rob Winch
bd74185e41 SEC-1729: Updated openid module and sample to openid4java 0.9.6 and httpclient 4.1.1 2011-04-26 23:39:51 -05:00
Luke Taylor
e473897fd9 SEC-1181: Add docs for ActiveDirectoryLdapAuthenticationProvider. Minor fix to initialization checks. 2011-04-26 18:39:01 +01:00
Luke Taylor
c4a1ce9f1a SEC-1725: Update docs to remove references to filter-chain-map. 2011-04-25 23:38:44 +01:00
Rob Winch
f28a09dfa4 Formatting changes to CAS documentation 2011-04-17 18:17:16 -05:00
Rob Winch
01fb4bdb6d SEC-1718: Update documentation and sample application to demonstrate how to use a PGT to authenticate to stateless services using a PT 2011-04-17 18:17:14 -05:00
Rob Winch
11331d34d9 SEC-1717: Document how to perform Single Logout with CAS and added integration test for sample application to test Single Logout 2011-04-17 18:14:16 -05:00
Rob Winch
04f1df2a1b SEC-965: Updated CAS documentation to describe authenticating proxy tickets 2011-04-17 18:14:16 -05:00
Luke Taylor
74b0c1780e SEC-1707: Added metadata-source-ref attribute to namespace appendix. 2011-04-05 15:25:49 +01:00
Rob Winch
79e17e22bc SEC-1703: Updated namespace for intercept-url 2011-03-29 21:58:29 -05:00
Rob Winch
d9d5ee1114 SEC-1703: Updated cas custom-filter@ref to match example bean id and custom-filter@position to be CAS_FILTER 2011-03-29 20:13:07 -05:00
Luke Taylor
9c88576992 Added extra FAQ on "Bad Credentials" message and on testing LDAP authentication. Minor mods to LDAP doc. 2011-03-29 15:30:08 +01:00
Rob Winch
236efadfb7 SEC-1698: Update documentation to use correct package for RequestHeaderAuthenticationFilter 2011-03-16 23:53:29 -05:00
Luke Taylor
1dc309b041 SEC-1689: Minor doc updates related to use of password encoding and the crypto package. 2011-03-17 01:45:19 +00:00
Luke Taylor
a25d131f21 Some doc clarifications on the use of UserDetailService vs AuthenticationProvider. 2011-03-10 16:12:16 +00:00
Luke Taylor
b26f2309f4 Add paragraph to manual database appendix to clarify that the standard schema is completely optional if you aren't using JdbcDaoImpl. 2011-03-10 13:41:44 +00:00
Luke Taylor
9cf8ba02ba Adding some extra section IDs in namespace appendix to provide bookmarkable URLs. 2011-03-10 13:15:58 +00:00
Luke Taylor
57c3afd31a SEC-1689: Adjust manual to remove references to separate crypto module. 2011-03-08 12:58:28 +00:00
Luke Taylor
5f58108717 Typo. 2011-02-06 15:31:36 +00:00
Luke Taylor
83050f96cb SEC-1656: Document potential need for pre-emptive session creation if writing the security context manuall. 2011-02-06 14:58:36 +00:00
Luke Taylor
4e349904e5 Add missing language attributes to programlisting tags for highlighting. 2011-02-01 16:54:18 +00:00
Luke Taylor
347a2a91a9 SEC-1494: Document the use of system properties for disabling authorize tag functionality. 2011-01-30 14:04:32 +00:00
Luke Taylor
60befb063a SEC-1659: Added crypto module to list of project modules in reference manual intro and to dependencies appendix. 2011-01-19 18:26:30 +00:00
Keith Donald
38327d1b16 SEC-1659: crypto docs 2011-01-19 18:17:03 +00:00
Luke Taylor
afd586c96e Re-instate the CAS integration sequence description in the CAS chapter, with corrections (and minus proxying). 2011-01-18 16:50:18 +00:00
Luke Taylor
8da0de459b SEC-1651: Added remaining module information to dependencies appendix. 2011-01-12 15:09:01 +00:00
Luke Taylor
b858b23927 SEC-1651: Added first draft of dependencies appendix to reference manual. 2011-01-07 19:23:06 +00:00
Luke Taylor
8d7830a1ee SEC-1603: Add support in namespace for use of AuthenticationSuccessHandler with remember-me. 2011-01-06 15:16:13 +00:00
Luke Taylor
48ea0a6249 SEC-1638: Added paragraph to docs explaining that for complete security, an app should not switch out of HTTPS at all. 2010-12-17 17:34:08 +00:00
Luke Taylor
7cf9740fd4 SEC-1638: Added an example configuration to the Javadoc for ChannelProcessingFilter and a pointer from the reference manual. 2010-12-17 17:09:20 +00:00
Luke Taylor
ce421f22bf SEC-1635: Stop security interceptors from calling AfterInvocationManager if exception occurs during invocation 2010-12-14 16:24:51 +00:00
Luke Taylor
4a40d80da1 SEC-1418: Deprecate GrantedAuthorityImpl in favour of final SimpleGrantedAuthority. 
It should be noted that equality checks or lookups with Strings or other authority types will now fail where they would have succeeded before.
 2010-12-03 16:41:46 +00:00
Luke Taylor
89f80659a1 Move docs on request matching to correct file and delete unused one 2010-11-24 00:30:37 +00:00
Luke Taylor
6b691f6fc0 SEC-1613: Corrected preauth docs. 2010-11-04 14:32:06 +00:00
Luke Taylor
cf0289bc02 SEC-1598: Removed invalid properties from SessionFixationProtectionStrategy bean declaration in Session Management chapter docbook. 2010-10-27 13:25:40 +01:00
Luke Taylor
fabadff5f1 SEC-1597: Corrected bean class name for RememberMeAuthenticationProvider in docbook source. 2010-10-27 13:25:40 +01:00
Luke Taylor
31afb9c76d Deleted superseded dao-auth-provider.xml chapter. 2010-10-27 13:25:40 +01:00
Luke Taylor
07b9ded126 SEC-1599: Corrected docbook source. 2010-10-27 13:25:40 +01:00
Luke Taylor
173537f4f2 SEC-1584: Added namespace support for injecting custom HttpFirewall instance into FilterChainProxy. 2010-10-27 13:25:39 +01:00