b93528138e
URL Cleanup
...
This commit updates URLs to prefer the https protocol. Redirects are not followed to avoid accidentally expanding intentionally shortened URLs (i.e. if using a URL shortener).
# Fixed URLs
## Fixed Success
These URLs were switched to an https URL with a 2xx status. While the status was successful, your review is still recommended.
* http://www.apache.org/licenses/ with 1 occurrences migrated to:
https://www.apache.org/licenses/ ([https](https://www.apache.org/licenses/ ) result 200).
* http://www.apache.org/licenses/LICENSE-2.0 with 2691 occurrences migrated to:
https://www.apache.org/licenses/LICENSE-2.0 ([https](https://www.apache.org/licenses/LICENSE-2.0 ) result 200).
* http://www.apache.org/licenses/LICENSE-2.0.html with 2 occurrences migrated to:
https://www.apache.org/licenses/LICENSE-2.0.html ([https](https://www.apache.org/licenses/LICENSE-2.0.html ) result 200).
2019-03-14 15:46:20 -05:00
802f3186a7
Fix ApacheDSContainer Checkstyle
...
Issue: gh-6376
2019-01-14 13:29:11 -06:00
0b40d09fe6
Mark as ApacheDSContainer as deprecated
...
Mark ApacheDSContainer as deprecated because ApacheDS have not released
a recent 'GA' version and the current 'GA' version does not work under
JDK11.
Fixes: gh-6002
2019-01-14 13:29:11 -06:00
0a86ed8717
Add space in exception message
2018-11-26 09:04:55 -07:00
7269aacbdd
Password Modify Extended Operation Support
...
LdapUserDetailsManager can be configured to either use direct
attribute modification or the LDAP Password Modify Extended Operation
to change a user's password.
Fixes: gh-3392
2018-10-15 12:24:39 -06:00
b9ca1400e3
UnboundIdContainer Random Port Support
...
Setting a port of 0 will now induce the container to select a random
port.
Fixes: gh-5920
2018-10-15 12:24:39 -06:00
b9c499d8c8
Polish UnboundIdContainerTests
...
Basic server startup test now asserts a successful server startup
instead of a failed one.
Issue: gh-5920
2018-10-15 12:24:39 -06:00
5dd55d4936
Ensure NamingException.resolvedObj is Serializable
...
Fixes: gh-5378
2018-09-04 11:04:26 -05:00
cb0ba58b58
Fix WhitespaceAfterCheck Checkstyle check
2018-08-27 10:45:35 -05:00
88181c31f1
Polish ActiveDirectoryLdapAuthenticationProviderTests
...
This commit polishes ActiveDirectoryLdapAuthenticationProviderTests.contextEnvironmentPropertiesUsed() by:
- Adding fail() to prevent from going through an unexpected path.
- Asserting that the root cause is an instance of ClassNotFoundException as the current code doesn't seem to right.
2018-08-26 21:31:39 -05:00
ec01657625
Polish ActiveDirectoryLdapAuthenticationProvider custom environment
...
Fixes: gh-5674
2018-08-21 12:14:43 -05:00
669b0ba583
ActiveDirectoryLdapAuthenticationProvider custom environment
...
This change allows to inject custom environment properties for directory
context initialization.
Fixes: gh-2312
2018-08-21 12:14:36 -05:00
d07cfe655d
Use Supplier variants of Assert methods
2018-03-27 10:58:55 -05:00
57353d18e5
Use diamond type
2017-12-21 15:09:00 -06:00
b6895e6359
Apply Checkstyle WhitespaceAfterCheck module
2017-11-16 11:18:31 -06:00
d900f2a623
Remove unused imports
...
This commit also adds UnusedImportsCheck Checkstyle module.
2017-11-14 14:41:08 -06:00
99df632f24
Add missing @Override annotations
...
This commit also adds MissingOverrideCheck module to Checkstyle configuration.
2017-11-08 13:27:24 -06:00
8d717c62af
Pass username as second parameter for search filter.
...
Allows the username only (without domain) to be used in custom search filter like "sAMAccountName={1}",
in eg. situations where the userPrincipalName has a different suffix than domain.
Thanks to contributors in issue.
fixes gh-2448
2017-10-29 23:58:58 -05:00
e0aca04a28
Polish AssertJ assertions
...
Polish AssertJ assertions
2017-10-29 22:22:34 -05:00
77de91ad60
Polish unbounded support
...
- Update unboundid-ldapsdk-4.0.1
- Fix ordering of dependencies
Issue gh-4672
2017-10-29 21:59:55 -05:00
70165869b1
Add UnboundId LDAP inmemory support
...
This commit adds the capability to run a LDAP inmemory different than
apacheds. Both providers `apacheds` and `unboundid` are supported.
2017-10-29 21:59:55 -05:00
3a4a32e654
Remove LdapShaPasswordEncoder from core
...
Issue: gh-4674
2017-10-24 07:56:20 -05:00
12dbf2e961
Remove PlainTextPasswordEncoder from core
...
Issue: gh-4674
2017-10-23 22:27:16 -05:00
23f56f568c
Update MockitJunitRunner import
...
Issue: gh-4608
2017-10-09 16:13:33 -05:00
445834784a
Update to Mockito 2.10.0
...
Issue: gh-4608
2017-10-09 16:13:11 -05:00
e16b8e7976
Fix logback-test.xml
2017-08-17 16:42:01 -05:00
d81b436e5d
Remove pom.xml from build
...
Gradle is easy enough to import into IDEs, so pom.xml should no
longer be necessary.
This commit removes the pom.xml files from the build.
Fixes gh-4283
2017-05-11 14:32:36 -05:00
dd6fc48dd8
Standardize Build
...
The build now uses spring build conventions to simplify the build
Fixes gh-4284
2017-04-21 10:55:05 -05:00
2ce174dbf0
Update poms to 5.0.0.BUILD-SNAPSHOT
2017-04-07 16:49:50 -04:00
d2524eadfc
Update poms to new to SNAPSHOT version
2017-03-02 09:20:34 -06:00
081f0c4d94
Release version 4.2.2.RELEASE
2017-03-02 07:29:42 +00:00
9c03571bbb
Use message in all Assert
...
This ensures compatibility with Spring 5.
Fixes gh-4193
2017-01-30 19:58:24 -06:00
7a7ce11ebb
Release version 4.2.1.RELEASE
2016-12-21 17:23:28 +00:00
f94399cff9
Polish
2016-11-17 09:49:41 -06:00
24fcb6c45a
Release version 4.2.0.RELEASE
2016-11-09 23:42:11 +00:00
97b4cb0b73
Release version 4.2.0.RC1
2016-10-26 02:49:23 +00:00
8e546454a5
Polish ApacheDSContainer LDAPs support
...
Issue gh-4096
2016-10-25 10:17:08 -05:00
406bb1d4d5
Add LDAPs support to ApacheDSContainer
...
* Add the ability to enable LDAP over SSL (LDAPs)
* Add tests
Fixes gh-4096
2016-10-25 10:16:35 -05:00
c1b8150439
Release version 4.2.0.M1
2016-09-23 19:39:33 +00:00
b443baef04
Polish GrantedAuthorityDefaults
...
* Move GrantedAuthorityDefaults to config module
* Move setting of default role into config module vs
ApplicationContextAware
Issue gh-3701
2016-09-22 15:13:05 -05:00
eabeaf35d6
Make single definition of `defaultRolePrefix` and `rolePrefix`
...
Previous to this commit, role prefix had to be set in every class
causing repetition. Now, bean `GrantedAuthorityDefaults` can be used to
define the role prefix in a single point.
Fixes gh-3701
2016-09-21 14:55:41 -05:00
4d02a5c0a0
Update pom.xml dependencies
2016-08-30 11:27:29 -05:00
1171e25bc7
LdapUserDetails extends CredentialsContainer
...
LdapUserDetails extends CredentialsContainer in order to clear password when erase-credentials is true.
Fixes gh-4029
2016-08-19 12:26:07 -04:00
13b0ddb7e6
Fix test assertions
2016-07-07 13:29:00 -05:00
919f000c80
Release version 4.1.1.RELEASE
2016-07-07 00:57:35 +00:00
77a478ba0d
Fix ApacheDSEmbeddedLdifTests checkstyle
...
Issue gh-54
2016-06-21 09:56:34 -05:00
a3c4a5fde7
SEC-2387 - add ignored failing test case
2016-06-21 09:53:38 -05:00
a2ead4cf7a
Polish
...
Fixes gh-3892
2016-06-20 12:35:43 -05:00
6b436ff409
Avoid duplicate attribute search.
...
When using search-and-bind strategy, the user attributes are already returned in the first search.
If the user happens to not have privileges to perform a search, the second search may fail.
(user only has bind privileges)
See https://github.com/cloudfoundry/uaa/issues/342
2016-06-17 16:43:06 -05:00
2d6051625f
Update pom.xml
2016-06-17 14:30:11 -05:00
001b05569a
Release version 4.1.0.RELEASE
2016-05-05 04:25:46 +00:00
24d0069668
Release version 4.1.0.RC2
2016-04-21 01:47:25 +00:00
b90242f2fa
Updates all POM versions to 4.1.0 snapshot build.
...
Fixes gh-3804
2016-04-12 10:35:43 -04:00
044acf7e27
Release version 4.1.0.RC1
2016-03-23 07:15:15 -07:00
ec4e6c7453
Update pom.xml to 4.1.0.BUILD-SNAPSHOT
2016-03-14 00:51:35 -05:00
f221920a19
Clean up code to conform to basic checkstyle
...
Issue gh-3746
2016-03-14 00:15:12 -05:00
71d4ce96ad
Convert to assertj
...
Fixes gh-3175
2016-03-09 14:30:17 -06:00
bb600a473e
Start AssertJ Migration
...
Issue gh-3175
2016-03-09 14:26:30 -06:00
5f84902e72
Merge pull request #200 from ckarawani/master
...
SEC-2757: Removed assertion of 'sn' when creating LdapUserDetails
2015-10-01 16:18:26 -05:00
29f2cc0ab1
snasphot -> snapshot
2015-09-25 15:28:39 -05:00
969f3a7d1b
Update pom.xml to latest snapshots
2015-08-03 09:46:01 -05:00
ad1d858e2b
SEC-3056 - Fix JavaDoc errors.
...
Fixed JavaDoc errors accross multiple modules in order to make javadoc happy with Java 8.
2015-08-03 08:02:24 -05:00
e8c9f75f9c
Update pom.xml to latest versions
2015-07-22 12:51:04 -05:00
75f57b96cb
SEC-2493: Fix javadoc for DefaultLdapAuthoritiesPopulator
2015-07-14 13:20:05 -05:00
d1cfb1ca74
SEC-2757: Removed assertion of 'sn' needing to be defined on Person when creating LdapUserDetails
2015-06-15 16:54:54 -04:00
1a716d0593
SEC-2954: Update ActiveDirectoryLdapAuthenticationProvider javadoc
...
Cleaning up docs to match
cd352f665b (diff-c7d6415af2848047b4b7bde824f66fcb)
2015-04-30 11:54:18 -05:00
d5dfeeca49
SEC-2927: Update chat-jc pom so Maven Builds
...
Previously there were some incorrect dependency versions. This commit fixes
that.
We added dependencyManagement for Spring Framework and corrected
Thymeleaf and embedded redis versions.
2015-04-20 15:53:26 -05:00
db531d9100
SEC-2917: Update to Spring 4.1.6
2015-03-25 15:18:59 -05:00
ae6af5d73c
SEC-2915: Updated Java Code Formatting
2015-03-25 13:09:18 -05:00
0a2e496a84
SEC-2915: groovy/gradle spaces->tabs
2015-03-25 13:08:59 -05:00
cf9f58a4ac
SEC-2915: XML spaces->tabs
2015-03-25 13:08:52 -05:00
3adbf53502
SEC-2897: ActiveDirectoryLdapAuthenticationProvider uses bindPrincipal
2015-03-10 16:33:48 -05:00
d579d00892
SEC-2559: Added missing givenName attribute to Person
2015-02-24 23:50:09 -06:00
c0fbd30e65
SEC-2071: Move optional constructor arg last
2015-02-24 23:35:45 -06:00
fbb902c9b5
SEC-2071: ActiveDirectoryLdapAuthenticationProvider custom rootDn
...
Allow to provide a root DN different from the domain
2015-02-24 23:33:42 -06:00
cd352f665b
SEC-1915: Polish
...
* Restore default search filter to remain passive
* Check the search filter in setSearchFilter
* Add additional tests
2015-02-24 21:37:49 -06:00
c54346b690
SEC-1915: Custom ActiveDirectory search filter
...
Currently the search filter used when retrieving user details is hard coded.
New property in ActiveDirectoryLdapAuthenticationProvider:
- searchFilter - the LDAP search filter to use when searching for authorities,
default to search using 'userPrincipalName' (current) OR 'sAMAccountName'
2015-02-24 21:14:58 -06:00
706e7fd7a2
SEC-2863: Update to Spring 4.1.5
2015-02-20 11:43:04 -06:00
8f0001f59a
Next Development Version
2014-12-11 20:39:26 -06:00
49b69196de
Release version 4.0.0.RC1
2014-12-11 20:36:55 -06:00
11116c2b80
SEC-2787: Update Versions
2014-12-10 16:37:19 -06:00
b56e5edbbd
SEC-2784: Fix build plugins
2014-12-08 14:24:34 -06:00
6e204fff72
SEC-2781: Remove deprecations
2014-12-04 15:28:40 -06:00
dfa17bdb98
SEC-2747: Remove spring-core dependency from spring-security-crypto
2014-11-20 16:16:22 -06:00
a28650c715
Provide a ClassLoader to be used to load LDIF files
...
Prior to this change, ApacheDSContainer created a LdifFileLoader
without a ClassLoader. This limited its ability to load LDIF files
and causes a problem with an executable war in Spring Boot. See [1]
for details.
ApacheDSContainer now initialises LdifFileLoader with a ClassLoader.
This allows it to locate LDIF files packaged in WEB-INF/classes in
the case of an executable war file. The executable jar case was not
affected by this problem as, in that case, the LDIF file is pacakaged
in the root of the jar and is accessible via getSystemResourceAsStream
[1] https://github.com/spring-projects/spring-boot/issues/1550
2014-09-24 13:49:15 -05:00
02c3565e22
Fix compiling in Eclipse
2014-09-16 10:18:46 -05:00
3187ee8bf3
SEC-2700: Register WithSecurityContextTestExecutionListener by default
2014-08-15 16:41:33 -05:00
94a0816153
Exclude spring-data-commons from spring-ldap-core
2014-08-01 14:04:47 -05:00
4a633a938a
SEC-2690: Add guard around debug statement
2014-07-28 16:25:27 -05:00
0f6235bbe0
SEC-2690: Polish LdapAuthority
...
- Make dn required (as javadoc inidicates)
- Simplify .equals since role cannot be null
- Formatting polish
2014-07-28 16:25:27 -05:00
aac4ede3a4
SEC-2690: Polish method modifiers
...
- Make methods final where possible
- Make methods private where possible
2014-07-28 16:25:27 -05:00
1761b29e58
SEC-2690: String[]->List<String>
...
Use Collections rather than Arrays since Collections can be immutable.
2014-07-28 16:25:27 -05:00
15c837d5de
SEC-2690: Revert explicit TcpTransport since causes tests to fail
2014-07-28 16:25:26 -05:00
6b43b261bc
SEC-2690: Formatting cleanup
2014-07-28 12:41:56 -05:00
93b863d2e5
SEC-2690: Support static nested groups in LDAP
...
This refers to groups that have member: <another group DN> as an attribute
- Add in a utility method in the SpringSecurityLdapTemplate to retrieve multiple attributes and their values from an LDAP record
- Make the DefaultLdapAuthoritiesPopulator more extensible
- Add an LdapAuthority object that holds the DN in addition to other group attributes
- Add a NestedLdapAuthoritiesPopulator to search statically nested groups
2014-07-28 12:40:19 -05:00
b72c1ad314
SEC-2686: Create SecurityMockMvcConfigurer
2014-07-22 15:11:37 -05:00
6dc0733d9e
SEC-2659: ApacheDSContainer fails on import multiple ldif
2014-06-17 17:19:51 -05:00
3ba1f66f9d
SEC-2606: ApacheDSServerIntegrationTests scan for available port
2014-05-21 06:51:11 -05:00
cbd06a4994
SEC-2472: Support LDAP crypto PasswordEncoder
2014-05-20 23:15:36 -05:00
fa6218cf73
SEC-2558: Fix failing ApacheDSContainerTests when port is taken
2014-04-15 11:52:09 -05:00
Spring Operator
Rob Winch
Luke Butters
Valeriy.Vyrva
Josh Cummings
Vedran Pavic
Johnny Lim
Yuri Konotopov
Christoph Dreis
Trygve Aasjord
Antoine
Eddú Meléndez
Joe Grandja
Rob Winch
Spring Buildmaster
Gunnar Hillert
Juan Ignacio Barisich
Marcin Zajączkowski
Filip Hanik
Billy Korando
zhanhb
Thomas Darimont
Carl Karawani
kris
Chris Bonham
Henri Tremblay
Mateusz Rasiński
Andy Wilkinson
Filip Hanik