Luke Taylor
|
7d97adc687
|
SEC-1584: Addition of HttpFirewall strategy to FilterChainProxy to reject un-normalized requests and wrap the incoming request object before processing by the security filter chain to provide a more consistent representation of paths than is guaranteed by the servlet spec. The wrapper strips path parameters from pathInfo and servletPath to provide consistency of URL matching across servlet containers and protect against bypassing security constraints by the malicious addition of such parameters to the URL. The paths are canonicalized further by replacing of multiple sequences of "/" characters with a single "/".
|
2010-10-27 13:25:39 +01:00 |
|
Luke Taylor
|
5902c6b262
|
Adjustments to coverage generation (enable debug logging when coverage on).
|
2010-08-24 18:27:44 +01:00 |
|
Luke Taylor
|
5d35919ca3
|
SEC-1490: Code for GAE Sample webapp
|
2010-07-20 23:41:31 +01:00 |
|
Luke Taylor
|
ae7fbf69e1
|
Added intellij files to .gitignore
|
2010-07-07 22:42:27 +01:00 |
|
Luke Taylor
|
c8ceca35b4
|
Extra files to gitignore
|
2010-06-26 16:55:09 +01:00 |
Hans Dockter
|
b64a3fa725
|
Hans Dockter's refactoring of gradle build, plus simplification of docbook plugin.
|
2010-03-05 23:23:43 +00:00 |
|
Luke Taylor
|
dbf673ec37
|
Build updates to include uploading of distro and docs, plus addition of admon graphics path to docbook plugin.
|
2010-01-21 20:12:12 +00:00 |
|
Luke Taylor
|
b323098167
|
Added gradle build files for taglibs, tutorial, contacts and openid.
Changed build file names to match module names (by manipulating the project objects in the settings.gradle file).
|
2010-01-10 23:31:23 +00:00 |
|
Luke Taylor
|
38a09766f0
|
Updated heavyduty sample to work with current trunk
|
2009-12-08 20:24:07 +00:00 |