Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2026-04-18 06:50:24 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,240 Commits 49 Branches 376 Tags
Commit Graph

33 Commits

Author SHA1 Message Date
Luke Taylor
c37ca1c2a9 Sample app build adjustments to remove unwanted deps such as jsp-api, tidy up use of JSTL, make sure all are using servlet 2.5 etc. 2010-08-19 22:41:51 +01:00
Luke Taylor
85c4c91e0e IDEA inspection refactorings. 2010-08-05 23:28:07 +01:00
Luke Taylor
2d9a848265 Added missing gradle build files for remaining samples. Some related reordering, dependency fixing etc. CAS sample no longer requires two separate subprojects as both client and server app can be run from a single gradle build. 2010-07-27 02:20:36 +01:00
Luke Taylor
c1c8fd1874 SEC-1171: Changed attribute name/value from secured="false" to security="none" to allow future extension by adding extra options (e.g. contextOnly to provide security context information during the request). 2010-07-20 19:46:47 +01:00
Luke Taylor
5939f17708 Fix openid sample configuration. 2010-06-09 22:52:43 +01:00
Luke Taylor
6a37e4be86 Fix OpenID sample to use new syntax for excluding requests. 2010-06-05 16:53:01 +01:00
Luke Taylor
def5f88c8c SEC-1431: Added openid-selector to openid sample, plus AX configuration for myopenid.com. 2010-04-21 17:16:03 +01:00
Luke Taylor
2f025fba6c SEC-1460: Added AxFetchListFactory which matches OpenID identifiers to lists of attributes to use in a fetch-request. 
This allows different configurations to be used based on the identity-provider (google, yahoo etc). The default implementation iterates through a map of regex patterns to attribute lists. The namespace has also been extended to support this facility, with the "identifier-match" attribute being added to the attribute-exchange element. Multiple attribute-exchange elements can now be defined, each matching a different identifier.
 2010-04-20 23:47:48 +01:00
Luke Taylor
ee1fd1bc50 SEC-1431: Modify OpenID sample to use a custom UserDetailsService which allows any user to authenticate, allocating them a standard role and "registers" their ID in a map, allowing it to be retrieved in subsequent logins. 2010-04-20 23:47:48 +01:00
Luke Taylor
e211f9b35f SEC-1349: Allow configuration of OpenID with parameters which should be transferred to the return_to URL. 
The OpenIDAuthenticationFilter now has a returnToUrlParameters property (a Set). If this is set, the named parameters will be copied from the incoming submitted request to the return_to URL. If not set, it defaults to the "parameter" property of the AbstractRememberMeServices of the parent class. If remember-me is not in use, it defaults to the empty set.

Enabled remember-me in the OpenID sample.
 2010-01-09 01:04:13 +00:00
Luke Taylor
052537c8b0 Removing $Id$ markers and stripping trailing whitespace from the codebase. 2010-01-08 21:05:13 +00:00
Luke Taylor
fac07ba8ff Schema updates to Spring 3.0 2009-12-18 18:44:17 +00:00
Luke Taylor
85a58fd473 SEC-1331: Modify namespace to allow omission of user passwords in user-service element and generate random ones internally, preventing authentication against the data.. 2009-12-18 15:39:13 +00:00
Luke Taylor
4d8956a227 SEC-1288: Changed claimedIdentityFieldName in OpenIDAuthenticationFilter to "openid_identifier", as recommended by the 2.0 spec. 2009-11-17 22:05:38 +00:00
Luke Taylor
48988bde84 SEC-935: Support for OpenID attribute exchange and changes to namespace syntax to allow simple configuration of attributes to request. 2009-08-13 23:55:25 +00:00
Luke Taylor
5953af0f6b SEC-1196: Change use of <authentication-manager> to actually register the global ProviderManager instance. This element now registers the global ProviderManager instance and must contain any authentication-provider elements (or ldap-authentication-provider elements). 2009-08-03 00:21:11 +00:00
Luke Taylor
408e982b96 Minor JSP classname fixes etc in samples 2009-06-18 13:28:44 +00:00
Luke Taylor
ca7d055c2b SEC-1132: Created core and authentication packages within core module. 2009-04-13 13:43:23 +00:00
Luke Taylor
2927b8464f SEC-1058: Substantial refactoring of AbstractProcessingFilter to use AuthenticationFailureHandler strategy. Also changed attemptAuthentication method to take a response object and have the option of returning null, to allow OpenIDAuthenticationProcessingFilter to work without having to throw exceptions between the template methods (which made the logic very hard to follow). The OpenID filter now redirects to the OpenID provider service from this method, rather than treating it as a temporary failure and throwing OpenIDAuthenticationRequiredException. 2008-12-14 22:20:21 +00:00
Luke Taylor
57558de3ec Added error page URL to openid login sample 2008-06-23 13:18:35 +00:00
Luke Taylor
d784d854cd Corrected log file name. 2008-06-03 14:57:40 +00:00
Luke Taylor
4f6b4e4bfd Make sample login pages use c:out for data output 2008-05-15 12:48:13 +00:00
Luke Taylor
18a9965b80 Moved dummy file out of default package for easy exclusion from javadoc 2008-05-01 19:45:36 +00:00
Luke Taylor
fc498954c6 Updated sample context files to point at 2.0.1 schema 2008-05-01 17:51:48 +00:00
Luke Taylor
071c91540c SEC-722: Added explicit login page to open-id element in openid sample. 2008-03-26 17:01:54 +00:00
Luke Taylor
69f2075872 SEC-722: Fix jstl versions in openID sample login page. 2008-03-22 00:05:53 +00:00
Luke Taylor
563dabda2f SEC-722: Add Open ID Namespace Support 
http://jira.springframework.org/browse/SEC-722. Added OpenIDProvider to bean registry and fixed login page generator to use correct URL for OpenID. Added user-service-ref to namespace element. Changed OpenID sample to use <openid-login />.
 2008-03-21 23:47:09 +00:00
Luke Taylor
45e43073a0 SEC-690: Use consistent naming in OpenID classes 
http://jira.springframework.org/browse/SEC-690
 2008-02-29 12:51:52 +00:00
Luke Taylor
25c3b84149 Remove security taglib dependency in OpenID sample. 2008-02-25 16:56:15 +00:00
Luke Taylor
bd5a64825d SEC-552: Replaced authorites populators in CAS and OpenID with a plain UserDetailsService 2008-02-08 13:23:43 +00:00
Ray Krueger
26fa0c143b Added myself to the users list because I can :P 2008-02-04 14:25:12 +00:00
Luke Taylor
3da2471b7f Some tidying up of OpenID login form. 2008-02-01 16:01:34 +00:00
Luke Taylor
287726335a OpenID sample application. 2008-02-01 14:32:54 +00:00