Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,240 Commits 32 Branches 333 Tags 111 MiB
Commit Graph

299 Commits

Author SHA1 Message Date
Luke Taylor e65cb9b472 Made group names singular and added "teller" role. 2007-12-14 20:41:33 +00:00
Ben Alex 09f68400ec Add <intercept-methods> to example, but it is disabled in favour of @Secured annotation. Still, we include it so people can have a play around and switch between the two syntaxes easily in demos etc. 2007-12-14 19:56:31 +00:00
Ben Alex 55e4568003 Throw an exception instead of sending back a HTTP error code. This is necessary so any demonstration of upgrading from Servlet Spec authorization to Spring Security authorization, as the latter's ExceptionTranslationFilter expects specific exceptions to be thrown if you wish to commence the authentication process. 2007-12-14 19:44:50 +00:00
Luke Taylor 2e4773525b Updated tutorial to allow authentication against ldap provider using <ldap /> namespace element. 2007-12-14 19:18:18 +00:00
Ben Alex d90ff50686 Use Java 5 to illustrate annotation support. 2007-12-14 16:54:10 +00:00
Ben Alex b1bc39a0df Provide some shell scripts that help with demos. These assume the application is deployed to http://localhost:8080/spring-security-samples-tutorial. 2007-12-14 02:45:01 +00:00
Ben Alex f4c3e701d5 Enhance sample to show method authorization. 2007-12-14 02:27:48 +00:00
Ben Alex 77d286c36f Enhance tutorial to also demonstrate Spring Security method 
authorization, and add a services layer accordingly.
 2007-12-14 02:26:27 +00:00
Ben Alex fa510b3187 Modify attribute names to use "ref" instead of "id", plus use a hyphen 
as an attribute value separator rather than a colon. This was changed 
for compatibility with other components in the Spring Portfolio. tests 
pass.
 2007-12-13 20:19:56 +00:00
Ben Alex 1cae1719bc Fix bean referencing error. 2007-12-11 19:18:44 +00:00
Ben Alex 2655955a40 Add MethodSecurityInterceptor, to more accurately reflect the capabilities offered by auto-config="true". 2007-12-11 19:14:34 +00:00
Ben Alex 1bbe6ca456 Proper comparison with auto-configure="true". 2007-12-11 16:44:24 +00:00
Luke Taylor 5e0cb21c8d SEC-619: Added test class for LdapUserDetailsService. The LdapAuthoritiesPopulator interface and also implementations have been moved to the org.springframework.security.ldap package since they are now used by both the ldap provider and the user service. 2007-12-09 18:40:28 +00:00
Ben Alex 4770c29094 Use hyphens in attribute names, and not Camel Case. This is to maintain 
consistency with the rest of Spring Portfolio. Camel Case was preserved 
for attribute values, consistent with Spring Portfolio usage such as 
autowiring modes (byName, byType etc).
 2007-12-09 03:42:20 +00:00
Ben Alex 85085abf9e Add namespace support for Servlet API integration. 2007-12-04 12:23:41 +00:00
Ben Alex a205f95c19 No need for an access denied page. 2007-12-04 11:24:54 +00:00
Ben Alex 8c3cc5c67b Add hash code support. 2007-12-04 11:21:39 +00:00
Ben Alex 8e7c540b16 General refactorings and improvements to namespace support, including 
autoDetect="true" attribute for <http> element.
 2007-12-04 10:35:08 +00:00
Ben Alex 2441ab6d9a Move "realm" attribute to be on <http> element rather than <http-basic>. 
This faciltiates reuse with other mechanisms (like Digest) whilst also 
moving towards the <http-auto-configure> element (which benefits from 
having shared configuration in <http> as opposed to mechanism-specific 
elements).
 2007-12-04 08:02:40 +00:00
Ben Alex 0b0b174eda Support <repository> and JbcUserDetailsManager. 2007-12-04 05:27:17 +00:00
Ben Alex 53fca59301 Add namespace support for anonymous requests. Remove unnecessary files from tutorial sample. 2007-12-03 08:07:10 +00:00
Ben Alex cb765bc34b SEC-615: Automatically focus on login name HTML element on page load. 2007-12-03 06:34:43 +00:00
Ben Alex 7aa28ea742 SEC-614: Use DelegatingFilterProxy instead of FilterToBeanProxy. 2007-12-03 06:31:03 +00:00
Ben Alex 3e48b52cdf Make name consistent with other MVN modules. 2007-12-03 04:17:31 +00:00
Ben Alex 1694242855 Make project name consistent with other MVN modules. 2007-12-03 04:07:21 +00:00
Ben Alex 56edae4f14 Make DMS Sample work post-Spring Security 2 refactor. 2007-12-03 04:05:51 +00:00
Ben Alex b44b748452 Make DMS Sample work post-Spring Security 2 refactor. 2007-12-03 04:05:33 +00:00
Ben Alex 47229be5cb Make samples and tests use username "rod". 2007-12-03 02:56:52 +00:00
Ben Alex 3123d24337 SEC-613: Rename tag libraries. 2007-12-03 01:46:11 +00:00
Ben Alex 38284a1117 Corrections to product name. 2007-11-30 02:40:59 +00:00
Luke Taylor 843a20e691 Changed default namespace in config files to "security" for clarity. 2007-11-29 13:14:15 +00:00
Luke Taylor 9e2f372bad SEC-607: Deprecated InitialDirContextFactory and replaced it with SpringSecurityContextSource. 
Also some refactoring of LdapUserDetailsManager to use a strategy for creating DNs from usernames.
 2007-11-20 20:54:48 +00:00
Luke Taylor 9f2bc9a842 SEC-582: Namespace configuration implementation for remember-me support. 2007-11-06 23:20:25 +00:00
Luke Taylor d3b165749f SEC-583: Implementation of namespace config for concurrent session support. 
Also some minor adjustments to ordering of different http features in schema.
 2007-10-27 00:28:24 +00:00
Luke Taylor 03e285c31d Moved responsability for creating AuthenticationManager into AuthenticationProviderBeanDefinitionParser. Tidied up SecrityNamespaceHandler. 2007-10-25 14:21:45 +00:00
Luke Taylor c2db942852 Namespace version of tutorial config. Currently lacks support for remember me and anonymous authentication. 2007-10-20 23:20:36 +00:00
Luke Taylor bd740a91a2 Corrected remember-me parameter name in samples and log file name in tutorial sample (was "contacts.log"). 2007-10-16 13:52:01 +00:00
Luke Taylor 3f2b9cd6fb SEC-562: More changes of Acegi name in comments, docs etc. 2007-10-03 14:02:39 +00:00
Luke Taylor acb02246e0 Refactored embedded LDAP server tests to make use of new namespace configuration. Use Junit 4 annotations in preference to AbstractDependencyInjectionSpringContextTests so that it is possible to clear up the context after each class is run rather than at JVM shutdown (causes problems with running embedded apache DS). 2007-10-02 10:52:06 +00:00
Luke Taylor 50990b4291 Fixed version of jetty plugin at 6.1.5 2007-09-26 12:15:20 +00:00
Luke Taylor 9a88d7737a SEC-562: Correct class names in web.xml files. 2007-09-26 11:33:54 +00:00
Luke Taylor 5066fc5e39 SEC-562: Changed urls for login, logout, switch user etc. 2007-09-24 15:39:51 +00:00
Luke Taylor 18c8ba4ac2 SEC-562: Changing constants and key names. 2007-09-23 11:16:01 +00:00
Luke Taylor 56847d0af6 SEC-562: Tidying up module names in pom files. 2007-09-22 21:44:39 +00:00
Luke Taylor 4083e2ef92 SEC-562: Further repackaging. 2007-09-21 18:24:16 +00:00
Luke Taylor 0288204432 SEC-369: Made spring-jdbc and spring-remoting optional dependencies in core. Removed explicit commons-lang dependency and updated commons logging to 1.1. 2007-09-19 00:23:33 +00:00
Luke Taylor 6b3cb906e3 SEC-554: Added jstl jars to tutorial pom. 2007-09-12 21:03:27 +00:00
Luke Taylor 6a6bafa219 Make sure test classes which are setting the context clear it in their tearDown methods. 2007-09-11 14:13:50 +00:00
Luke Taylor f178ca2a39 Updated trunk poms to 2.0-SNAPSHOT version 2007-09-07 20:14:55 +00:00
Luke Taylor 8d4b97f685 Updated poms post-release 1.0.5 2007-09-06 02:52:09 +00:00