bed20db905
Remove Unnecessary @Override
2015-02-27 16:18:31 -06:00
ff4e9e6ad4
SEC-2782: Started Migration Guide from 3.x to 4.x
2015-02-27 16:18:18 -06:00
b076df15f1
Next Development Version
2015-02-25 11:35:09 -06:00
9cd80607cd
Next development version
2015-02-25 09:14:27 -08:00
c081faf601
SEC-2871: Polish README.adoc
2015-02-25 09:46:33 -06:00
ff5a176675
trivial docs fixed a few typos and grammatical errors
...
I have signed and agree to the terms of the SpringSource Individual Contributor License Agreement.
2015-02-25 00:04:15 -06:00
62d74aef3d
Merge pull request #103 from bcecchinato/fix-logs
...
Trivial logging fix in saveContext method in HttpSessionSecurityContextRepository
2015-02-25 00:02:44 -06:00
d579d00892
SEC-2559: Added missing givenName attribute to Person
2015-02-24 23:50:09 -06:00
c0fbd30e65
SEC-2071: Move optional constructor arg last
2015-02-24 23:35:45 -06:00
fbb902c9b5
SEC-2071: ActiveDirectoryLdapAuthenticationProvider custom rootDn
...
Allow to provide a root DN different from the domain
2015-02-24 23:33:42 -06:00
6fd45df1e4
SEC-2879: Add Test
2015-02-24 23:19:04 -06:00
8c0b16820b
SEC-2879: JdbcTokenRepositoryImpl updateToken should use lastUsed arg
2015-02-24 23:18:38 -06:00
9ea7372405
SEC-2878: Clean imports in UsernamePasswordAuthenticationFilter
2015-02-24 22:53:44 -06:00
4ca99ef88c
SEC-2877: Fix doc typo in index.adoc
...
Replace "a`" with "a `"
2015-02-24 22:28:07 -06:00
8b78194f31
SEC-2876: HttpSecurityBuilder addFilterAfter javadoc before->after
2015-02-24 22:19:50 -06:00
c8b79289c9
add setter for using a custom name for the rememberMeParameter
2015-02-24 21:45:23 -06:00
cd352f665b
SEC-1915: Polish
...
* Restore default search filter to remain passive
* Check the search filter in setSearchFilter
* Add additional tests
2015-02-24 21:37:49 -06:00
c54346b690
SEC-1915: Custom ActiveDirectory search filter
...
Currently the search filter used when retrieving user details is hard coded.
New property in ActiveDirectoryLdapAuthenticationProvider:
- searchFilter - the LDAP search filter to use when searching for authorities,
default to search using 'userPrincipalName' (current) OR 'sAMAccountName'
2015-02-24 21:14:58 -06:00
5f57e5b0c3
SEC-2873: Remember Me XML Configuration Defaults Should Match Java Config
2015-02-24 20:49:56 -06:00
f198804504
SEC-2825: Polish
2015-02-24 18:12:54 -06:00
ef3b9de766
SEC-2825: Add And/Or MessageMatcher implementations
2015-02-24 18:12:00 -06:00
67cd8465c3
SEC-2826: Add remember-me-cookie attribute in xml namespace
2015-02-24 17:54:54 -06:00
d2fd852711
SEC-2832: Fix config tests
2015-02-24 17:53:39 -06:00
76d9ef4ec3
SEC-2872: CsrfAuthenticationStrategy Delay Saving CsrfToken
2015-02-24 17:30:57 -06:00
98ae03fc40
SEC-2832: Add Tests
2015-02-24 17:30:56 -06:00
310e5bb285
SEC-2832: Update request attributes with new CsrfToken
2015-02-24 17:30:19 -06:00
440fc0aba1
SEC-2871: Polish README.adoc
2015-02-24 17:01:03 -06:00
f0be6e5a61
SEC-2871: readme.txt->README.adoc
2015-02-24 17:00:54 -06:00
d973f5f80c
SEC-2078: AbstractPreAuthenticatedProcessingFilter requriesAuthentication support for non-String Principals
...
Previously, if the Principal returned by getPreAuthenticatedPrincipal was not a String,
it prevented requiresAuthentication from detecting when the Principal was the same.
This caused the need to authenticate the user for every request even when the Principal
did not change.
Now requiresAuthentication will check to see if the result of
getPreAuthenticatedPrincipal is equal to the current Authentication.getPrincipal().
2015-02-24 16:37:55 -06:00
2bf4f28db9
Fix .properites user
2015-02-24 16:25:24 -06:00
9ffd5db466
SEC-2584: Add What's New in 4.0
2015-02-24 16:14:15 -06:00
df96e5573f
Add test .properties Authentication Java Config
2015-02-24 16:14:15 -06:00
bfa12ade40
SEC-2870: Add Spring Data Documentation
2015-02-24 16:14:08 -06:00
37740cd020
SEC-2861: Add WebSocket Documentation & Sample
2015-02-24 10:29:47 -06:00
b9563f6102
SEC-2830: Cleanup disabling Same Origin SockJS
...
- Defaults for properties false
- Add XML Namespace support
2015-02-24 10:28:33 -06:00
b9e2a57131
SEC-2854: Add intercept-message@message-type
2015-02-20 11:43:16 -06:00
fea03536d6
SEC-2853: Rename WebSocket XML Namespace elements
2015-02-20 11:43:15 -06:00
706e7fd7a2
SEC-2863: Update to Spring 4.1.5
2015-02-20 11:43:04 -06:00
fb085cae25
Add session-management@session-fixation-protection=none test
2015-02-19 13:01:59 -06:00
6a8475adbb
SEC-2830: Provide Same Origin support for SockJS
2015-02-18 11:21:02 -06:00
a27c33754c
SEC-2859: Add CsrfTokenArgumentResolver
2015-02-18 10:51:30 -06:00
c7718a1286
SEC-2857: Update to Gradle 2.3
2015-02-18 10:00:22 -06:00
36fe0d0357
SEC-2845: SecurityContextChannelInterceptor support anonymous
2015-02-18 10:00:22 -06:00
6149f179c2
SEC-2858: Add ANY_MESSAGE.toString()
2015-02-18 10:00:16 -06:00
c4fe630f8e
SEC-2846: Security HTTP Response Headers Configuration Cleanup
2015-02-10 10:36:00 -06:00
9c5cb2f438
SEC-2593: Add additional test
2015-02-05 10:58:49 -06:00
1a35292750
SEC-2791: AbstractRememberMeServices sets the version
...
If the maxAge < 1 then the version must be 1 otherwise browsers ignore
the value.
2015-02-04 15:57:45 -06:00
1a00c397a4
SEC-2835: Polish
2015-02-04 15:50:24 -06:00
07c54e5d0e
SEC-2831: Regex/AntPath RequestMatcher handle invalid HTTP method
2015-02-04 11:57:46 -06:00
31234ecef9
SEC-2835: Add DelegatingAuthenticationFailureHandler
...
Add the DelegatingAuthenticationFailureHandler class to support
map each exception to AuthenticationFailureHandler. This class gives
more powerful options to customize default behavior for users.
2015-02-04 10:49:13 -06:00
Rob Winch
Spring Buildmaster
drdamour
Rob Winch
Chris Bonham
Henri Tremblay
Michael Cramer
Marcin Mielnicki
Eugene Wolfson
Romain Fromi
Mateusz Rasiński
Pascal Gehl
Kazuki Shimizu
Stillglade
shaehnel
Rob Winch