Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 06:58:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,788 Commits 33 Branches 337 Tags
Commit Graph

520 Commits

Author SHA1 Message Date
Luke Taylor
e94baf38b3 Tidying up to remove warnings (generics, use of deprecated test classes etc). 2009-04-28 06:49:43 +00:00
Luke Taylor
21e36e0a57 Updated version number from 2.5.0-SNPSHOT to 3.0.0.CI-SNAPSHOT 2009-04-22 12:55:52 +00:00
Luke Taylor
13af4b95a2 Sample package name updates 2009-04-18 06:04:56 +00:00
Luke Taylor
ace6d225b4 SEC-1131: Correct portlet API version (again). 2009-04-17 05:26:14 +00:00
Luke Taylor
446bcb9b1d SEC-1131: Correct portlet API version. 2009-04-17 04:56:59 +00:00
Luke Taylor
101203b44d SEC-1132: Updates to samples to reflect ACL refactoring. 2009-04-15 10:07:23 +00:00
Luke Taylor
93bdcccaee SEC-1132: Moved userdetails into core and added core/authority sub-package 2009-04-15 07:39:21 +00:00
Luke Taylor
c770998d92 SEC-1132: Move authoritymapping to core as it is actually used in loading authorities for a use, not in making access decisions. 2009-04-14 04:22:57 +00:00
Luke Taylor
ca7d055c2b SEC-1132: Created core and authentication packages within core module. 2009-04-13 13:43:23 +00:00
Luke Taylor
9efb5a7007 SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet 2009-04-12 12:23:23 +00:00
Luke Taylor
7c4d54f356 SEC-1131: Applied patch for portlet upgrade 2009-04-12 05:52:20 +00:00
Luke Taylor
f746a20ab4 SEC-1132: package refactoring of non-core modules 2009-03-27 05:01:03 +00:00
Luke Taylor
bec84f874a SEC-1125: Further refactoring of web packages following creation of web module. Fixing samples. 2009-03-26 07:18:36 +00:00
Luke Taylor
2a9a8a41db SEC-1125: Created separate web module spring-security-web 2009-03-25 06:28:18 +00:00
Luke Taylor
2c985a1c36 SEC-1126: separated out spring-security-config module containing namespace configuration classes and resources 2009-03-23 04:23:48 +00:00
Luke Taylor
4aff4b2350 SEC-1123: Renamed ObjectDefinitionSource to SecurityMetadataSourceand performed related refactoring 2009-03-20 04:32:06 +00:00
Luke Taylor
4aae5ec42e SEC-1124: Refactored LDAP code into separate module 2009-03-19 06:30:32 +00:00
Luke Taylor
591681c180 Upgrade to Spring M2 and correct expression classes and pom files to match changes 2009-03-19 01:17:16 +00:00
Luke Taylor
ef3ea65fdb Switching back to 2.5.0-SNAPSHOT after tagging M1 release 2009-01-03 07:42:19 +00:00
Luke Taylor
fc5f50501e [maven-release-plugin] prepare release 2.5.0.M1 2009-01-03 07:08:25 +00:00
Luke Taylor
4eb4d08825 Added -o to mven:jetty-run in runall.sh to speed up script 2009-01-03 06:45:41 +00:00
Luke Taylor
d6ee9a9a93 Commented out hessian and burlap remoting beans to avoid missing class exceptions on startup 2009-01-03 05:51:45 +00:00
Luke Taylor
0ead104b86 Update CAS server information to latest version 2009-01-03 05:20:22 +00:00
Luke Taylor
65a78ce4a4 SEC-745: updated cas sample filter bean configuration 2008-12-29 01:33:27 +00:00
Luke Taylor
4a41416c9b Tidying up and removing compiler warnings. 2008-12-21 16:36:16 +00:00
Luke Taylor
0d7002e322 SEC-1012: Extra fixes to dependent modules following changes to Acl APIs. 2008-12-21 02:06:55 +00:00
Luke Taylor
cc5966bc7e Tidying up, removing compiler warnings etc. 2008-12-20 00:16:49 +00:00
Luke Taylor
8154161ef5 SEC-1035: Updated build to use Spring 3.0.0.M1 Release 2008-12-18 02:37:00 +00:00
Luke Taylor
7fa9a959b5 Added webAppRootKey context-param to samples to prevent conflicts when run together in Tomcat. 2008-12-16 21:13:03 +00:00
Luke Taylor
681f1ee00c Fix duplicate logging. 2008-12-16 19:07:31 +00:00
Luke Taylor
2927b8464f SEC-1058: Substantial refactoring of AbstractProcessingFilter to use AuthenticationFailureHandler strategy. Also changed attemptAuthentication method to take a response object and have the option of returning null, to allow OpenIDAuthenticationProcessingFilter to work without having to throw exceptions between the template methods (which made the logic very hard to follow). The OpenID filter now redirects to the OpenID provider service from this method, rather than treating it as a temporary failure and throwing OpenIDAuthenticationRequiredException. 2008-12-14 22:20:21 +00:00
Luke Taylor
df771038b4 SEC-1051: Fixed class names in dms sample app context. 2008-12-12 17:43:09 +00:00
Luke Taylor
6ccdcec629 SEC-1033: Added web expressions to tutorial sample configuration. 2008-12-08 21:56:44 +00:00
Luke Taylor
bc6878c1c5 SEC-1044: Removed remember-me functionality from http auto-config namespace configuration. Added explicit <remember-me> elements to contacts and tutorial sample configurations. 2008-12-05 16:36:43 +00:00
Luke Taylor
3cbad3ebd7 Corrected comment. 2008-12-05 16:04:22 +00:00
Luke Taylor
781b09e889 SEC-1036: Updated ldap sample pom 2008-11-29 14:16:08 +00:00
Ben Alex
7e562031cc Better demonstrate the new EL-based "overdraft" authorization rules. 2008-11-19 09:32:04 +00:00
Luke Taylor
f3b3004085 Removed references to Acegi in contacts sample home page 2008-11-15 06:28:01 +00:00
Luke Taylor
78065ba47c Fixed up contacts sample: removed casfailed page, corrected debug.jsp errors and fixed incorrect bean reference in context files. 2008-11-15 03:38:49 +00:00
Luke Taylor
3261fcb174 Tidying stuff 2008-11-14 07:16:30 +00:00
Luke Taylor
464da0f0df SEC-999: Refactored namespace to take an expression handler instead of a permission evaluator, allowig fo greater cusomtomization and for a single handler to be used in both web and method security expressions. 2008-11-13 07:41:21 +00:00
Luke Taylor
e5b1073501 SEC-1012: Added more generics and warning suppression 2008-11-11 09:06:50 +00:00
Luke Taylor
7731a3df57 Typo. 2008-11-11 03:41:50 +00:00
Luke Taylor
e11114ce77 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023.

hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
 2008-11-10 04:27:25 +00:00
Luke Taylor
d6cd392a9e Tidying up some stuff in tutorial app 2008-11-07 06:55:00 +00:00
Luke Taylor
d6bb6ccbf5 Removed .cvsignore files 2008-11-06 01:11:08 +00:00
Luke Taylor
a7d046357b SEC-1013: Refactored out use of ConfigAttributeDefinition from remaining interfaces 2008-10-30 04:10:54 +00:00
Luke Taylor
4aa32f7d06 SEC-999: First commit of expression-based authorization implementation 2008-10-24 00:38:36 +00:00
Luke Taylor
6c8a82fa13 Updated poms to Spring 2.5 and fixed up sandbox to work with latest build 2008-10-15 05:52:40 +00:00
Luke Taylor
a62eae4587 Script for running all the sample apps 2008-10-15 05:49:31 +00:00