Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,473 Commits 29 Branches 320 Tags 104 MiB
Commit Graph

2473 Commits

Author SHA1 Message Date
Luke Taylor 5e204e23f3 SEC-536: Introduced UserDetailsChecker strategy to extract code for checking status of accounts and allowing variation in pre/post authentication checks made by AbstractUserDetailsAuthenticationProvider 2008-02-15 18:05:12 +00:00
Luke Taylor da90b81e16 Corrected toString output (using "username" instead of "principal") 2008-02-15 17:15:20 +00:00
Luke Taylor 9372f6175b Removed unnecessary braces from annotations 2008-02-15 17:09:14 +00:00
Luke Taylor 503e426707 Inlined destroyContext method. 2008-02-15 17:07:53 +00:00
Luke Taylor 48e2d5ad62 Refactored AbstractSecurityInterceptor, extracting method authenticateIfRequired(); 2008-02-15 17:05:58 +00:00
Luke Taylor a930ce2bf6 SEC-577: Correct javadocs for switch user 2008-02-15 14:34:46 +00:00
Luke Taylor 985818ae2c SEC-581: Copy authentication details to CAS result token 2008-02-15 14:11:56 +00:00
Luke Taylor be62979a01 Switch JSTL back to 1.1.2. 2008-02-15 12:15:20 +00:00
Ben Alex bdc791649d SEC-656: Provide ability to dependency inject additional exception to event mappings, rather than require subclassing. 2008-02-15 11:56:53 +00:00
Andrei Stefan afca3d8adc tidying up changes 2008-02-15 10:56:05 +00:00
Andrei Stefan 24ff891fea tidying up changes 2008-02-15 10:55:27 +00:00
Andrei Stefan 69c2f31aa7 SEC-532: AclImpl tests class 2008-02-15 10:53:23 +00:00
Andrei Stefan 0eff5afc8f SEC-532: small bug-fix 2008-02-15 10:39:25 +00:00
Ben Alex c65ec2aa38 Make authentication-failure-url attribute optional. 2008-02-12 17:40:49 +00:00
Andrei Stefan b84c812305 SEC-532: added method that reproduces bug in SEC-590 2008-02-12 16:28:33 +00:00
Andrei Stefan 0dae2a2dfc SEC-532: added test methods; one method reproduces bug in SEC-590 2008-02-12 16:20:48 +00:00
Luke Taylor ae28169383 SEC-482: Load AclService implementations from parent app contexts. 2008-02-10 12:42:06 +00:00
Luke Taylor e2bf583fe9 Removed unused MessageSource from contacts app-context file. 2008-02-09 15:57:06 +00:00
Luke Taylor dd47689687 Updated contact app to make more use of namespace configuration (now uses intercept-methods in target bean to set up method interceptor). 2008-02-09 15:41:29 +00:00
Luke Taylor f0ec1eeabd Tidying. 2008-02-09 15:39:16 +00:00
Luke Taylor 3c775b5d0d Added access-decision-manager-ref attribute to intercept-methods element. Made interceptor bean autowired by default to pick up AfterInvocationManager. 2008-02-09 15:38:31 +00:00
Luke Taylor 10ab4136d1 SEC-309: Patch for Authentication tag to use property of authentication object, rather than invoking an operation on the principal. Allows use of nested properties. 2008-02-09 13:41:05 +00:00
Luke Taylor e0d0cc20c7 SEC-665: Missed a method name... 2008-02-08 18:19:27 +00:00
Luke Taylor bd5a64825d SEC-552: Replaced authorites populators in CAS and OpenID with a plain UserDetailsService 2008-02-08 13:23:43 +00:00
Luke Taylor 842c49c890 SEC-665: Renaming of rolemapping package to authoritymapping, and corresponding refactoring of classes. 2008-02-08 12:01:10 +00:00
Luke Taylor eb998b6554 Updated jetty plugin version. 2008-02-08 11:57:10 +00:00
Luke Taylor ca16a9608c Corrected typo 2008-02-08 11:26:38 +00:00
Luke Taylor 549de2927e SEC-641: Avoid direct use of external classes in namespace parsing. 2008-02-07 15:03:27 +00:00
Luke Taylor 6e93ec92eb Added db creation message. 2008-02-07 13:35:27 +00:00
Luke Taylor 28153f2c7f Added TestDataSource class to cut down verbosity of in-memory test databases and to implement DisposableBean, so the database is destroyed when the application context containing it is closed. 2008-02-07 13:33:15 +00:00
Luke Taylor 208d1ee8e2 SEC-456: Added test class for UserDetailsServiceLdapAuthoritiesPopulator 2008-02-07 13:31:25 +00:00
Luke Taylor 9292317e1c Deleted unused context file. 2008-02-07 13:30:03 +00:00
Luke Taylor b6d3ed135d SEC-456: Added class Javadoc 2008-02-06 17:24:45 +00:00
Luke Taylor b2cc817835 SEC-456: Basic LDAP authorities populator that delegates to a UserDetailsService. 2008-02-06 17:22:27 +00:00
Luke Taylor 99621a225d SEC-481: Refactoring commence method of AuthenticationProcessingFilterEtryPoint to allow alternative redirect options. Extracted two methods, "buildRedirectUrlToLoginPage" and "buildHttpsRedirectUrlForRequest" and introduced a RedirectUrlBuilder class for assembling the URLs from schemes, ports etc. 2008-02-06 16:38:47 +00:00
Luke Taylor adbf18a091 SEC-507: Updated JSR-250 impl to include better support for PermitAll and DenyAll as suggested by Ryan Heaton. Includes JSR-250 voter which is now used by AnnotationDriverbeanDefinitionParser. 2008-02-06 13:14:46 +00:00
Luke Taylor c1895acb6b Changed package doc which mentioned adding filter to web.xml rather than filter chain. 2008-02-06 10:36:25 +00:00
Andrei Stefan 98ccaa61e7 SEC-532: test class for ObjectIdentityRetrievalStrategyImpl 2008-02-06 09:26:39 +00:00
Andrei Stefan 5d09f1264b SEC-532: Added test method for different hashCode calculation when different Serializable classes are used (the method is commmented as, now, it doesn't pass the test) 2008-02-06 09:26:05 +00:00
Andrei Stefan 419a7a6426 SEC-532: added more test methods for JdbcAclService implementation 2008-02-06 09:24:13 +00:00
Luke Taylor 2c0c731aaa SEC-552: Removed accidentally commited incomplete caching-related classes. 2008-02-05 16:59:41 +00:00
Luke Taylor b82fbb698d SEC-641: Updated to set "source" values on BeanDefinitions where possible. 2008-02-05 14:48:39 +00:00
Luke Taylor 8859034d11 SEC-641: Reomove use of SecurityConfigException during parsing. 2008-02-05 11:46:27 +00:00
Luke Taylor 717ab0b3cc SEC-641: Replaced use of Assert with more tooling friendly calls to parserContext.getReaderContext().error() 2008-02-05 11:29:52 +00:00
Luke Taylor abb6402cec Import cleaning. 2008-02-05 10:51:52 +00:00
Luke Taylor adba67326f Removed accidentally committed version of tutorial app context file. 2008-02-04 21:27:35 +00:00
Luke Taylor 84c7ac5e57 SEC-664: Removed validateUserDetails method from AbstractRememberMeServices, wrapped the UserDetailsService in a status-checking one and added a catch block for AccountStatusExceptions. Also some minor tidying up of other remember-me classes. 2008-02-04 21:26:07 +00:00
Luke Taylor d3f26f09b6 Added support for locking user accounts in namespace <user-service> "user" elements (for use in testing). 2008-02-04 21:23:49 +00:00
Luke Taylor 2343577fec Update new X509 namespace config to use status checking of user accounts by default. 2008-02-04 19:43:09 +00:00
Luke Taylor 600ab04cc7 SEC-663: Added null check for pre-authenticated principal value (and skip authentication attempt if null). 2008-02-04 19:36:44 +00:00