b5924db74d
SEC-1725: Add option to filter-chain to use an explicit request-matcher-ref instead of a "path" attribute.
2011-04-25 23:20:15 +01:00
f883c6e579
SEC-1723: Fix use of bean names in integration test app context.
2011-04-25 22:30:51 +01:00
04dc65c8fe
SEC-1657: Corresponding namespace updates to use SecurityFilterChain list in place of filterChainMap.
2011-04-25 13:48:47 +01:00
37d0454fd7
SEC-1657: Create SecurityFilterChain class for use in configuring FilterChinProxy. Encapsulates a RequestMatcher and List<Filter>.
2011-04-23 22:15:35 +01:00
614d8c0321
SEC-1723: Use standard SpEL syntax for accessing beans in the app context by name.
2011-04-22 13:47:59 +01:00
dd108041a0
SEC-1722: Correct javadoc
2011-04-22 11:49:48 +01:00
8178371927
SEC-1700: Add fixed serializationVersionUID values to security context, authentication tokens and related classes
2011-04-21 19:55:32 +01:00
ac96f27136
Gradle refactoring. Create separate S3 upload task and extract ide customization into a separate file.
2011-04-21 11:57:18 +01:00
5a9aa6d1aa
SEC-1700: Allow for case where JAAS config is not a simple file, but may be a jar resource, for example.
2011-04-20 14:35:09 +01:00
1b2fdf8b02
Fix gradle IDEA code for git selection as VCS.
2011-04-20 14:20:56 +01:00
71ed6d7964
SEC-1720: Avoid bean-creation side-effects in ContextSourceSettingPostProcessor.
2011-04-20 11:58:00 +01:00
23df97f44a
Added missing HttpClient version information to openid bundlor template file.
2011-04-20 11:38:26 +01:00
97afb0c9ac
SEC-965: Added assert to LoginPage.at
2011-04-18 23:52:20 -05:00
f28a09dfa4
Formatting changes to CAS documentation
2011-04-17 18:17:16 -05:00
01fb4bdb6d
SEC-1718: Update documentation and sample application to demonstrate how to use a PGT to authenticate to stateless services using a PT
2011-04-17 18:17:14 -05:00
abfa558c3c
Removed Dummy.java from cas sample
2011-04-17 18:14:16 -05:00
11331d34d9
SEC-1717: Document how to perform Single Logout with CAS and added integration test for sample application to test Single Logout
2011-04-17 18:14:16 -05:00
04f1df2a1b
SEC-965: Updated CAS documentation to describe authenticating proxy tickets
2011-04-17 18:14:16 -05:00
761d5af6ec
SEC-965: Added integration tests for CAS Sample Application
2011-04-17 18:14:14 -05:00
f1c064b3b9
SEC-965: Updated CAS Sample application for proxy authentication
...
* Configured for proxy authentication
* Cleaned up the jsps
* Changed the cas sample context root to cas-sample so the CAS Server's JSESSIONID cookie doesn't remove the cas samples
2011-04-17 18:00:37 -05:00
a76a947b12
SEC-965: Added support for CAS proxy ticket authentication on any URL
2011-04-17 18:00:35 -05:00
373d07ce46
SEC-1181: Added mock testing, to avoid need for AD server
2011-04-15 20:10:48 +01:00
6db7472928
SEC-1181: Added extra I18N messages for LDAP locked, disabled etc.
2011-04-15 20:10:48 +01:00
59ac4c8b96
SEC-1181: Added option to parse AD sub-error codes.
2011-04-15 20:10:48 +01:00
428991d997
Some additional tests to confirm there are no issues with spaces in LDAP URL.
2011-04-15 20:10:48 +01:00
530f686149
SEC-1181: Basic AuthenticationProvider for Active Directory.
2011-04-15 20:10:47 +01:00
4dc5d7d16e
Typo.
2011-04-14 18:04:38 +01:00
8d702a4f98
SEC-1699: Make sure a FilterInvocation is passed to the AccessDecisionManager when checking the login page access in DefaultFilterChainValidator.
2011-04-14 18:04:29 +01:00
acf4b91a89
SEC-1674: Test to check that absolute URLs work in SimpleUrlLogoutSuccessHandler.
2011-04-14 15:06:05 +01:00
f9625836bb
Typo in Javadoc.
2011-04-14 15:04:37 +01:00
ef72dd1986
SEC-1714: RegexRequestMatcher should prepend question mark to query string.
2011-04-11 14:02:54 +01:00
49dd928faa
SEC-1712: Javadoc typo fix.
2011-04-08 17:24:12 +01:00
160fed1bfe
SEC-1713: Fix typo in schema RNC file.
2011-04-08 17:22:57 +01:00
5c05575c0d
Cleaned up warnings in openid module
2011-04-07 23:28:34 -05:00
68ba11ba7b
SEC-1711: Support verifying that attribute exchange parameters were signed
2011-04-07 23:28:34 -05:00
62ba0fca5c
SEC-1710: Added shutdown method to OpenID4JavaConsumer that invokes MultiThreadedHttpConnectionManager.shutdownAll()
2011-04-07 23:28:05 -05:00
3f1d8782c3
Minor fix to bundlor template for config module.
2011-04-06 14:02:01 +01:00
01c9c4e4db
SEC-1697: Don't publish authorization success events in AbstractSecurityInterceptor by default.
2011-04-06 13:58:58 +01:00
74b0c1780e
SEC-1707: Added metadata-source-ref attribute to namespace appendix.
2011-04-05 15:25:49 +01:00
8d99918798
SEC-1491: Add support for an external priority SecurityMetadataSource to be referenced from global-method-security.
2011-04-05 15:07:43 +01:00
3084ad878f
SEC-1491: Added AnnotationMetadataExtractor to SecuredAnnotationSecurityMetadataSource to allow a custom security annotation to be used.
2011-04-04 19:48:27 +01:00
244047ffe9
Delete unused test entities.
2011-04-04 18:39:57 +01:00
ead669f10c
Move single-use annotation test classes into SecuredAnnotationSecurityMetadataDefinitionSourceTests.
2011-04-04 18:25:25 +01:00
ddaf9eb64f
SEC-1705: Make sure a single OpenIDAuthenticationFilter bean is created by the namespace. Likewise for UsernamePasswordAuthenticationFilter.
2011-03-31 21:09:54 +01:00
79e17e22bc
SEC-1703: Updated namespace for intercept-url
2011-03-29 21:58:29 -05:00
d9d5ee1114
SEC-1703: Updated cas custom-filter@ref to match example bean id and custom-filter@position to be CAS_FILTER
2011-03-29 20:13:07 -05:00
9c88576992
Added extra FAQ on "Bad Credentials" message and on testing LDAP authentication. Minor mods to LDAP doc.
2011-03-29 15:30:08 +01:00
78d5495945
SEC-1702: Add Burt's patch implementing hashcode method in AntPathRequestMatcher
2011-03-25 20:44:18 +00:00
4a1908188a
SEC-1701: Trim claimed identity parameter value before submitting to OpenID4Java.
2011-03-25 19:13:06 +00:00
236efadfb7
SEC-1698: Update documentation to use correct package for RequestHeaderAuthenticationFilter
2011-03-16 23:53:29 -05:00
Luke Taylor
Rob Winch