Luke Taylor
|
5e204e23f3
|
SEC-536: Introduced UserDetailsChecker strategy to extract code for checking status of accounts and allowing variation in pre/post authentication checks made by AbstractUserDetailsAuthenticationProvider
|
2008-02-15 18:05:12 +00:00 |
Luke Taylor
|
da90b81e16
|
Corrected toString output (using "username" instead of "principal")
|
2008-02-15 17:15:20 +00:00 |
Luke Taylor
|
9372f6175b
|
Removed unnecessary braces from annotations
|
2008-02-15 17:09:14 +00:00 |
Luke Taylor
|
503e426707
|
Inlined destroyContext method.
|
2008-02-15 17:07:53 +00:00 |
Luke Taylor
|
48e2d5ad62
|
Refactored AbstractSecurityInterceptor, extracting method authenticateIfRequired();
|
2008-02-15 17:05:58 +00:00 |
Luke Taylor
|
a930ce2bf6
|
SEC-577: Correct javadocs for switch user
|
2008-02-15 14:34:46 +00:00 |
Luke Taylor
|
985818ae2c
|
SEC-581: Copy authentication details to CAS result token
|
2008-02-15 14:11:56 +00:00 |
Luke Taylor
|
be62979a01
|
Switch JSTL back to 1.1.2.
|
2008-02-15 12:15:20 +00:00 |
Ben Alex
|
bdc791649d
|
SEC-656: Provide ability to dependency inject additional exception to event mappings, rather than require subclassing.
|
2008-02-15 11:56:53 +00:00 |
Andrei Stefan
|
afca3d8adc
|
tidying up changes
|
2008-02-15 10:56:05 +00:00 |
Andrei Stefan
|
24ff891fea
|
tidying up changes
|
2008-02-15 10:55:27 +00:00 |
Andrei Stefan
|
69c2f31aa7
|
SEC-532: AclImpl tests class
|
2008-02-15 10:53:23 +00:00 |
Andrei Stefan
|
0eff5afc8f
|
SEC-532: small bug-fix
|
2008-02-15 10:39:25 +00:00 |
Ben Alex
|
c65ec2aa38
|
Make authentication-failure-url attribute optional.
|
2008-02-12 17:40:49 +00:00 |
Andrei Stefan
|
b84c812305
|
SEC-532: added method that reproduces bug in SEC-590
|
2008-02-12 16:28:33 +00:00 |
Andrei Stefan
|
0dae2a2dfc
|
SEC-532: added test methods; one method reproduces bug in SEC-590
|
2008-02-12 16:20:48 +00:00 |
Luke Taylor
|
ae28169383
|
SEC-482: Load AclService implementations from parent app contexts.
|
2008-02-10 12:42:06 +00:00 |
Luke Taylor
|
e2bf583fe9
|
Removed unused MessageSource from contacts app-context file.
|
2008-02-09 15:57:06 +00:00 |
Luke Taylor
|
dd47689687
|
Updated contact app to make more use of namespace configuration (now uses intercept-methods in target bean to set up method interceptor).
|
2008-02-09 15:41:29 +00:00 |
Luke Taylor
|
f0ec1eeabd
|
Tidying.
|
2008-02-09 15:39:16 +00:00 |
Luke Taylor
|
3c775b5d0d
|
Added access-decision-manager-ref attribute to intercept-methods element. Made interceptor bean autowired by default to pick up AfterInvocationManager.
|
2008-02-09 15:38:31 +00:00 |
Luke Taylor
|
10ab4136d1
|
SEC-309: Patch for Authentication tag to use property of authentication object, rather than invoking an operation on the principal. Allows use of nested properties.
|
2008-02-09 13:41:05 +00:00 |
Luke Taylor
|
e0d0cc20c7
|
SEC-665: Missed a method name...
|
2008-02-08 18:19:27 +00:00 |
Luke Taylor
|
bd5a64825d
|
SEC-552: Replaced authorites populators in CAS and OpenID with a plain UserDetailsService
|
2008-02-08 13:23:43 +00:00 |
Luke Taylor
|
842c49c890
|
SEC-665: Renaming of rolemapping package to authoritymapping, and corresponding refactoring of classes.
|
2008-02-08 12:01:10 +00:00 |
Luke Taylor
|
eb998b6554
|
Updated jetty plugin version.
|
2008-02-08 11:57:10 +00:00 |
Luke Taylor
|
ca16a9608c
|
Corrected typo
|
2008-02-08 11:26:38 +00:00 |
Luke Taylor
|
549de2927e
|
SEC-641: Avoid direct use of external classes in namespace parsing.
|
2008-02-07 15:03:27 +00:00 |
Luke Taylor
|
6e93ec92eb
|
Added db creation message.
|
2008-02-07 13:35:27 +00:00 |
Luke Taylor
|
28153f2c7f
|
Added TestDataSource class to cut down verbosity of in-memory test databases and to implement DisposableBean, so the database is destroyed when the application context containing it is closed.
|
2008-02-07 13:33:15 +00:00 |
Luke Taylor
|
208d1ee8e2
|
SEC-456: Added test class for UserDetailsServiceLdapAuthoritiesPopulator
|
2008-02-07 13:31:25 +00:00 |
Luke Taylor
|
9292317e1c
|
Deleted unused context file.
|
2008-02-07 13:30:03 +00:00 |
Luke Taylor
|
b6d3ed135d
|
SEC-456: Added class Javadoc
|
2008-02-06 17:24:45 +00:00 |
Luke Taylor
|
b2cc817835
|
SEC-456: Basic LDAP authorities populator that delegates to a UserDetailsService.
|
2008-02-06 17:22:27 +00:00 |
Luke Taylor
|
99621a225d
|
SEC-481: Refactoring commence method of AuthenticationProcessingFilterEtryPoint to allow alternative redirect options. Extracted two methods, "buildRedirectUrlToLoginPage" and "buildHttpsRedirectUrlForRequest" and introduced a RedirectUrlBuilder class for assembling the URLs from schemes, ports etc.
|
2008-02-06 16:38:47 +00:00 |
Luke Taylor
|
adbf18a091
|
SEC-507: Updated JSR-250 impl to include better support for PermitAll and DenyAll as suggested by Ryan Heaton. Includes JSR-250 voter which is now used by AnnotationDriverbeanDefinitionParser.
|
2008-02-06 13:14:46 +00:00 |
Luke Taylor
|
c1895acb6b
|
Changed package doc which mentioned adding filter to web.xml rather than filter chain.
|
2008-02-06 10:36:25 +00:00 |
Andrei Stefan
|
98ccaa61e7
|
SEC-532: test class for ObjectIdentityRetrievalStrategyImpl
|
2008-02-06 09:26:39 +00:00 |
Andrei Stefan
|
5d09f1264b
|
SEC-532: Added test method for different hashCode calculation when different Serializable classes are used (the method is commmented as, now, it doesn't pass the test)
|
2008-02-06 09:26:05 +00:00 |
Andrei Stefan
|
419a7a6426
|
SEC-532: added more test methods for JdbcAclService implementation
|
2008-02-06 09:24:13 +00:00 |
Luke Taylor
|
2c0c731aaa
|
SEC-552: Removed accidentally commited incomplete caching-related classes.
|
2008-02-05 16:59:41 +00:00 |
Luke Taylor
|
b82fbb698d
|
SEC-641: Updated to set "source" values on BeanDefinitions where possible.
|
2008-02-05 14:48:39 +00:00 |
Luke Taylor
|
8859034d11
|
SEC-641: Reomove use of SecurityConfigException during parsing.
|
2008-02-05 11:46:27 +00:00 |
Luke Taylor
|
717ab0b3cc
|
SEC-641: Replaced use of Assert with more tooling friendly calls to parserContext.getReaderContext().error()
|
2008-02-05 11:29:52 +00:00 |
Luke Taylor
|
abb6402cec
|
Import cleaning.
|
2008-02-05 10:51:52 +00:00 |
Luke Taylor
|
adba67326f
|
Removed accidentally committed version of tutorial app context file.
|
2008-02-04 21:27:35 +00:00 |
Luke Taylor
|
84c7ac5e57
|
SEC-664: Removed validateUserDetails method from AbstractRememberMeServices, wrapped the UserDetailsService in a status-checking one and added a catch block for AccountStatusExceptions. Also some minor tidying up of other remember-me classes.
|
2008-02-04 21:26:07 +00:00 |
Luke Taylor
|
d3f26f09b6
|
Added support for locking user accounts in namespace <user-service> "user" elements (for use in testing).
|
2008-02-04 21:23:49 +00:00 |
Luke Taylor
|
2343577fec
|
Update new X509 namespace config to use status checking of user accounts by default.
|
2008-02-04 19:43:09 +00:00 |
Luke Taylor
|
600ab04cc7
|
SEC-663: Added null check for pre-authenticated principal value (and skip authentication attempt if null).
|
2008-02-04 19:36:44 +00:00 |