4935aa07c7
SEC-1535: Added suggested doc fixes.
2010-08-12 20:41:29 +01:00
2222a7be07
Use Integer.valueOf() in preference to new Integer()
2010-08-11 18:17:23 +01:00
db6da77a5f
SEC-1413: Add RedirectStrategy to AbstractRetryEntryPoint.
2010-08-10 17:39:12 +01:00
dca0fd871c
SEC-1532: Add cache of previously matched beans to ProtectPointcutPostProcessor to ensure that it doesn't perform pointcut matching every time a new prototype bean is created.
2010-08-09 17:16:43 +01:00
183333d189
SEC-1430: Forgot to commit changes to new ExceptionMappingAuthenticationFailureHandlerTests.
2010-08-09 17:09:02 +01:00
2e98b84494
SEC-1430: internalize session key for SavedRequest. This should be accessed using the RequestCache interface if required. Additional refactoring of related tests which were still in AbstractAuthenticationProcessingFilterTests for historical reasons, but should be in their respective success/failure handler test classes.
2010-08-08 17:49:06 +01:00
bb7165ac6e
SEC-1530: Added information on calling getAllPrincipals() on SessionRegistry for direct use in an application to provide currently logged in users.
2010-08-07 15:43:55 +01:00
1a838c2049
SEC-1533: AclAuthorizationStrategyImpl can now take either one or three GrantedAuthority arguments. If only one is supplied, it will be used for all 3 of the permissions supported by the class.
2010-08-07 14:41:25 +01:00
acad848690
Update aspectj to 1.6.9
2010-08-06 13:34:30 +01:00
85c4c91e0e
IDEA inspection refactorings.
2010-08-05 23:28:07 +01:00
a3d27a9863
SEC-1314: cloneFromHttpSession accidentally go left behind, even though it is always false.
2010-08-05 21:21:09 +01:00
a2bd1bc9af
SEC-1498: Allow use of absolute URL fopr login form in LoginUrlAuthenticationEntryPoint.
2010-08-05 21:09:34 +01:00
e2ba500c3c
SEC-1529: More user-friendly expressions on method annotations in EL chapter.
2010-08-05 18:14:11 +01:00
413b2a06e3
Improvements in up-to-date checking and use of parallel tests where possible.
2010-08-05 02:11:00 +01:00
64375484a1
More build and logging tuning.
2010-08-04 22:55:17 +01:00
c9b0bc1bd9
Added gradle wrapper support.
2010-08-04 21:35:57 +01:00
c4ee46824c
Removing log4j.properties files and adding logback config ones.
2010-08-04 21:16:05 +01:00
74b66591e9
Build refactoring.
2010-08-04 02:09:07 +01:00
6e831d6504
Adding bundlor template for aspects project, plus minor build updates.
2010-08-03 03:01:53 +01:00
63734cfcf9
SEC-1528: Remove logic which checks if context in the session is the same as the current context to make sure that session.setAttribute() is called when the value in the session has been modified directly.
2010-08-02 22:41:57 +01:00
d1279aeda2
Logging adjustments for gae sample.
2010-08-02 19:51:24 +01:00
6ba8257cab
Renamed file to fix case-sensitivity issue.
2010-08-02 12:13:58 +01:00
ab248b2583
SEC-1454: Added use of Spring's new AopProxyUtils.ultimateTargetClass() method when resolving the target class in MethodSecurityEvaluationContext.
2010-07-30 14:36:41 +01:00
52edf115ce
Workaround for repeated attempt to download CAS server poms (GRADLE-1072)
2010-07-28 20:04:15 +01:00
b5269625af
Incorporate Chris's improvements to the bundlor build file (proper integration with incremental build support).
2010-07-28 16:10:00 +01:00
2d9a848265
Added missing gradle build files for remaining samples. Some related reordering, dependency fixing etc. CAS sample no longer requires two separate subprojects as both client and server app can be run from a single gradle build.
2010-07-27 02:20:36 +01:00
b854e67952
SEC-1522: Treat empty attribute collection the same as null when returned by SecurityMetadataSource. Both are now treated as public invocations.
2010-07-27 02:20:09 +01:00
a74077f9b1
SEC-1490: Minor changes to GAE sample. Simplification of redirect to registration page (only needs to be done after authentication).
2010-07-25 20:46:00 +01:00
5de68cb18f
SEC-1499: Additional doc paragraph that escaped the commit.
2010-07-23 23:03:54 +01:00
97bc240602
SEC-1519: Added extra constructor to make sure strategy objects are initialized before the first attempt to retrieve an object from the Acl cache.
2010-07-23 17:57:57 +01:00
9dd6a5eb8f
SEC-1499: Added some Javadoc and doc on the problems of using session-fixation protection with attributes that implement HttpSessionBindingListener.
2010-07-23 16:27:57 +01:00
d7d8448120
SEC-1521: Add check for null SecurityContextRepository and clarify related docs on use of null implementation (NullSecurityContextRepository).
2010-07-23 15:59:53 +01:00
e659e15f90
Tidying.
2010-07-23 01:57:45 +01:00
2afccfc633
Remove commons-logging dependency properly and switch tutorial sample to logback/slf4j.
2010-07-23 01:57:31 +01:00
118af45b8e
SEC-1520: Close NamingEnumeration in LDAP compare implementation.
2010-07-21 16:54:44 +01:00
36e0fb6d91
SEC-1518: Fix element ordering in security.tld
2010-07-21 16:16:15 +01:00
7ce29d3e3d
Don't set GAE location unless property available
2010-07-21 15:40:29 +01:00
a681dee0e1
Minor sample build changes. JSTL dependency update.
2010-07-20 23:45:20 +01:00
e5a302b5c4
SEC-1490: Correct loggedout URL.
2010-07-20 23:43:43 +01:00
5d35919ca3
SEC-1490: Code for GAE Sample webapp
2010-07-20 23:41:31 +01:00
c1c8fd1874
SEC-1171: Changed attribute name/value from secured="false" to security="none" to allow future extension by adding extra options (e.g. contextOnly to provide security context information during the request).
2010-07-20 19:46:47 +01:00
a4fd191499
Added check for use of "ref" with other attributes in <authentication-provider>.
2010-07-20 14:31:52 +01:00
ea5f2088b5
Comment out OpenLDAP tests to allow running in IDEA, and reduce default load configuration of performance test class.
2010-07-12 12:40:19 +01:00
4683273c2c
Correct message in namespace handler when web classes are missing.
2010-07-12 12:40:06 +01:00
69a10c48ae
Switch to using slf4j/logback for logging.
...
We still compile modules against commons-logging but all runtime logging and samples will use logback
2010-07-12 12:39:52 +01:00
ed447f63f6
Added intellij plugin to gradle build.
2010-07-07 22:42:27 +01:00
6894544122
Fixed serialization issue with gradle TarUpload task
2010-07-07 22:42:27 +01:00
ae7fbf69e1
Added intellij files to .gitignore
2010-07-07 22:42:27 +01:00
d704a3bb4a
Prevent source jars from being included in the gradle 'default' configuration and thus being included as dependencies in war files etc.
2010-07-07 22:42:27 +01:00
443ac0487a
SEC-1093: Namespace support for jee element.
...
Adds a J2eePreAuthenticatedProcessingFilter to the stack, using a SimpleAttributes2GrantedAuthoritiesMapper to process the role attributes defined in the "mappable-roles" attribute. Provider uses a PreAuthenticatedGrantedAuthoritiesUserDetailsService by default.
2010-07-07 22:42:26 +01:00
Luke Taylor
Luke Taylor