82940db6c8
SEC-648: Added custom-authentication-provider support.
2008-01-27 13:31:34 +00:00
e44e641106
SEC-647: Updated server keystore (new certificate using our own Test CA) and added client certificates for users rod and dianne.
2008-01-26 17:21:23 +00:00
483068d486
SEC-647: Delete unused certificated directory and outdated certificates.
2008-01-26 11:28:36 +00:00
b85f76e6c1
Added SSL support to the tutorial app Jetty plugin configuration and added a requirement for SSL on the "extremely secure" page.
2008-01-24 16:30:06 +00:00
342677fabc
Removed auto-config from tutorial sample and added commented out ldap support. Updated ldif file to match sample users.
2008-01-23 22:21:39 +00:00
837ecd85ec
SEC-576: Tidied up code, added preauth sample demo app.
2008-01-23 20:02:11 +00:00
06f3bcbf6a
Converted all namespace attributes which refer to bean IDs to use "-ref" suffix (or "ref").
2008-01-22 20:58:12 +00:00
7d88ee8c48
Formatted ACL SQL for readability.
2008-01-21 18:35:22 +00:00
462b4b450f
Added use of authz tag to tutorial. Upgraded to use webapp 2.4 xsd. Changed JSTL dependency to 1.2
2008-01-18 18:17:09 +00:00
10ec13e4e2
[maven-release-plugin] prepare for next development iteration
2008-01-02 22:42:21 +00:00
2c5090da90
[maven-release-plugin] prepare release release_2_0_M1
2008-01-02 22:41:31 +00:00
09242ec66d
[maven-release-plugin] rollback the release of release_2_0_M1
2008-01-02 22:31:09 +00:00
42dcccd1b7
[maven-release-plugin] prepare release release_2_0_M1
2008-01-02 22:18:28 +00:00
aafbb5bb67
[maven-release-plugin] rollback the release of release_2_0_M1
2008-01-02 22:10:46 +00:00
425508d70d
[maven-release-plugin] prepare release release_2_0_M1
2008-01-02 22:01:34 +00:00
0b1e17f69a
[maven-release-plugin] rollback the release of release_2_0_M1
2008-01-02 21:54:37 +00:00
07aa0c6880
[maven-release-plugin] prepare release release_2_0_M1
2008-01-02 21:52:42 +00:00
7583aca3eb
Configured contacts app to use namespaces. Removed ldap, cas, x509 files to avoid confusion. Ldap and CAS will be better served by new samples.
2008-01-01 16:51:15 +00:00
b91e82d91c
Changed _authenticationManager -> authenticationManager to get contact app tests passing again.
2007-12-25 00:34:28 +00:00
5f1eea42fc
Moved configuration of security interceptors with access and authentication manangers from post processing stage to bean creation stage.
2007-12-23 16:40:29 +00:00
46c99d1991
Converted tutorial context file to match namespace changes.
2007-12-23 16:36:44 +00:00
e65cb9b472
Made group names singular and added "teller" role.
2007-12-14 20:41:33 +00:00
09f68400ec
Add <intercept-methods> to example, but it is disabled in favour of @Secured annotation. Still, we include it so people can have a play around and switch between the two syntaxes easily in demos etc.
2007-12-14 19:56:31 +00:00
55e4568003
Throw an exception instead of sending back a HTTP error code. This is necessary so any demonstration of upgrading from Servlet Spec authorization to Spring Security authorization, as the latter's ExceptionTranslationFilter expects specific exceptions to be thrown if you wish to commence the authentication process.
2007-12-14 19:44:50 +00:00
2e4773525b
Updated tutorial to allow authentication against ldap provider using <ldap /> namespace element.
2007-12-14 19:18:18 +00:00
d90ff50686
Use Java 5 to illustrate annotation support.
2007-12-14 16:54:10 +00:00
b1bc39a0df
Provide some shell scripts that help with demos. These assume the application is deployed to http://localhost:8080/spring-security-samples-tutorial .
2007-12-14 02:45:01 +00:00
f4c3e701d5
Enhance sample to show method authorization.
2007-12-14 02:27:48 +00:00
77d286c36f
Enhance tutorial to also demonstrate Spring Security method
...
authorization, and add a services layer accordingly.
2007-12-14 02:26:27 +00:00
fa510b3187
Modify attribute names to use "ref" instead of "id", plus use a hyphen
...
as an attribute value separator rather than a colon. This was changed
for compatibility with other components in the Spring Portfolio. tests
pass.
2007-12-13 20:19:56 +00:00
1cae1719bc
Fix bean referencing error.
2007-12-11 19:18:44 +00:00
2655955a40
Add MethodSecurityInterceptor, to more accurately reflect the capabilities offered by auto-config="true".
2007-12-11 19:14:34 +00:00
1bbe6ca456
Proper comparison with auto-configure="true".
2007-12-11 16:44:24 +00:00
5e0cb21c8d
SEC-619: Added test class for LdapUserDetailsService. The LdapAuthoritiesPopulator interface and also implementations have been moved to the org.springframework.security.ldap package since they are now used by both the ldap provider and the user service.
2007-12-09 18:40:28 +00:00
4770c29094
Use hyphens in attribute names, and not Camel Case. This is to maintain
...
consistency with the rest of Spring Portfolio. Camel Case was preserved
for attribute values, consistent with Spring Portfolio usage such as
autowiring modes (byName, byType etc).
2007-12-09 03:42:20 +00:00
85085abf9e
Add namespace support for Servlet API integration.
2007-12-04 12:23:41 +00:00
a205f95c19
No need for an access denied page.
2007-12-04 11:24:54 +00:00
8c3cc5c67b
Add hash code support.
2007-12-04 11:21:39 +00:00
8e7c540b16
General refactorings and improvements to namespace support, including
...
autoDetect="true" attribute for <http> element.
2007-12-04 10:35:08 +00:00
2441ab6d9a
Move "realm" attribute to be on <http> element rather than <http-basic>.
...
This faciltiates reuse with other mechanisms (like Digest) whilst also
moving towards the <http-auto-configure> element (which benefits from
having shared configuration in <http> as opposed to mechanism-specific
elements).
2007-12-04 08:02:40 +00:00
0b0b174eda
Support <repository> and JbcUserDetailsManager.
2007-12-04 05:27:17 +00:00
53fca59301
Add namespace support for anonymous requests. Remove unnecessary files from tutorial sample.
2007-12-03 08:07:10 +00:00
cb765bc34b
SEC-615: Automatically focus on login name HTML element on page load.
2007-12-03 06:34:43 +00:00
7aa28ea742
SEC-614: Use DelegatingFilterProxy instead of FilterToBeanProxy.
2007-12-03 06:31:03 +00:00
3e48b52cdf
Make name consistent with other MVN modules.
2007-12-03 04:17:31 +00:00
1694242855
Make project name consistent with other MVN modules.
2007-12-03 04:07:21 +00:00
56edae4f14
Make DMS Sample work post-Spring Security 2 refactor.
2007-12-03 04:05:51 +00:00
b44b748452
Make DMS Sample work post-Spring Security 2 refactor.
2007-12-03 04:05:33 +00:00
47229be5cb
Make samples and tests use username "rod".
2007-12-03 02:56:52 +00:00
3123d24337
SEC-613: Rename tag libraries.
2007-12-03 01:46:11 +00:00
38284a1117
Corrections to product name.
2007-11-30 02:40:59 +00:00
843a20e691
Changed default namespace in config files to "security" for clarity.
2007-11-29 13:14:15 +00:00
9e2f372bad
SEC-607: Deprecated InitialDirContextFactory and replaced it with SpringSecurityContextSource.
...
Also some refactoring of LdapUserDetailsManager to use a strategy for creating DNs from usernames.
2007-11-20 20:54:48 +00:00
9f2bc9a842
SEC-582: Namespace configuration implementation for remember-me support.
2007-11-06 23:20:25 +00:00
d3b165749f
SEC-583: Implementation of namespace config for concurrent session support.
...
Also some minor adjustments to ordering of different http features in schema.
2007-10-27 00:28:24 +00:00
03e285c31d
Moved responsability for creating AuthenticationManager into AuthenticationProviderBeanDefinitionParser. Tidied up SecrityNamespaceHandler.
2007-10-25 14:21:45 +00:00
c2db942852
Namespace version of tutorial config. Currently lacks support for remember me and anonymous authentication.
2007-10-20 23:20:36 +00:00
bd740a91a2
Corrected remember-me parameter name in samples and log file name in tutorial sample (was "contacts.log").
2007-10-16 13:52:01 +00:00
3f2b9cd6fb
SEC-562: More changes of Acegi name in comments, docs etc.
2007-10-03 14:02:39 +00:00
acb02246e0
Refactored embedded LDAP server tests to make use of new namespace configuration. Use Junit 4 annotations in preference to AbstractDependencyInjectionSpringContextTests so that it is possible to clear up the context after each class is run rather than at JVM shutdown (causes problems with running embedded apache DS).
2007-10-02 10:52:06 +00:00
50990b4291
Fixed version of jetty plugin at 6.1.5
2007-09-26 12:15:20 +00:00
9a88d7737a
SEC-562: Correct class names in web.xml files.
2007-09-26 11:33:54 +00:00
5066fc5e39
SEC-562: Changed urls for login, logout, switch user etc.
2007-09-24 15:39:51 +00:00
18c8ba4ac2
SEC-562: Changing constants and key names.
2007-09-23 11:16:01 +00:00
56847d0af6
SEC-562: Tidying up module names in pom files.
2007-09-22 21:44:39 +00:00
4083e2ef92
SEC-562: Further repackaging.
2007-09-21 18:24:16 +00:00
0288204432
SEC-369: Made spring-jdbc and spring-remoting optional dependencies in core. Removed explicit commons-lang dependency and updated commons logging to 1.1.
2007-09-19 00:23:33 +00:00
6b3cb906e3
SEC-554: Added jstl jars to tutorial pom.
2007-09-12 21:03:27 +00:00
6a6bafa219
Make sure test classes which are setting the context clear it in their tearDown methods.
2007-09-11 14:13:50 +00:00
f178ca2a39
Updated trunk poms to 2.0-SNAPSHOT version
2007-09-07 20:14:55 +00:00
8d4b97f685
Updated poms post-release 1.0.5
2007-09-06 02:52:09 +00:00
c8b6111418
Release 1.0.5.
2007-09-06 01:52:53 +00:00
21c0c8e5f5
Removed ant build file.
2007-09-06 00:18:20 +00:00
72cca2c483
Removed explicit spring-2.0.4 dependency and hard-coded acegi-security version.
2007-09-05 23:45:52 +00:00
de21cde132
Deleted unused build.xml and cvsignore files from contacts sample.
2007-09-05 22:20:55 +00:00
545a3263f4
Changed artifact Id for consistency with tutorial.
2007-09-05 15:52:30 +00:00
2532518ffd
Minor text changes to readme.
2007-09-05 15:46:25 +00:00
5d8076056e
Added readme explaining that contacts is now a single application.
2007-09-05 15:44:15 +00:00
c2c2fb24be
Corrected link to ssl howto in site.xml
2007-09-05 12:09:40 +00:00
58bf2ffbc8
Corrected link to ssl howto in site.xml
2007-09-05 12:08:49 +00:00
bf433bb5a7
Moved contacts ssl howto.txt so that it is picked up by maven 2 site generation.
2007-09-05 01:21:42 +00:00
3612674644
Updated name elements in samples and tutorial contents.
2007-09-03 22:28:54 +00:00
d7b7d36314
Updated jstl dependency information to use correct group name.
2007-09-03 22:27:52 +00:00
db13131a07
Deleted original properties files from contacts app resources directory.
2007-09-03 22:26:30 +00:00
01610bdd94
Moved properties files into WEB-INF/classes directory in contacts app. Jetty plugin attemps to load the log4j file from there when using mvn jetty:run.
2007-09-03 22:24:59 +00:00
6c169d9acf
SEC-508: Added CDATA sections to multi-line text values in tutorial and contacts sample context files to prevent eclipse reforatting bug from messing them up.
2007-08-29 12:12:45 +00:00
e87956358f
Added missing "'" to login page in tutorial app.
2007-08-29 12:06:25 +00:00
1467527c0a
SEC-538: Deleted maven 1 files.
2007-08-29 11:00:28 +00:00
ed944fa537
SEC-514: Re-enable contact sample in maven build.
2007-08-27 12:35:23 +00:00
5474b3a78c
SEC-279 - Deleting Contacts Tiger sample project
2007-08-25 23:16:22 +00:00
156965b370
SEC-181: Remove acegifier application.
2007-07-24 18:20:22 +00:00
ea42164af2
Added jetty plugin to tutorial app pom.xml.
2007-07-24 18:12:09 +00:00
5d64b86875
Removed user cache from tutorial app context, as it's session -based.
2007-07-24 18:11:32 +00:00
fe4bbe0fbf
SEC-514: Refactoring contacts sample into single webapp.
2007-07-24 17:46:43 +00:00
61d44954ee
Changed parent reference to 1.0.5-SNAPSHOT
2007-06-19 13:13:58 +00:00
b2c30277f4
SEC-271: work on security:autoconfig
2007-06-19 04:08:19 +00:00
917030f0a3
SEC-488: Added maven.src.dir property to point to src/main because of changed m2 directory structure
2007-06-06 03:00:13 +00:00
e9e89b835d
Added maven.src.dir property to point to src/main because of changed m2 directory structure
2007-06-06 02:49:44 +00:00
165d2c0122
[maven-release-plugin] prepare for next development iteration
2007-06-02 21:28:53 +00:00
942b5d7345
[maven-release-plugin] prepare release acegi-security-1.0.4-maven2
2007-06-02 21:21:51 +00:00
451ba4dad0
Prepare for 1.0.4 release using Maven 1.0.2 as build system.
2007-05-25 05:33:44 +00:00
4561c3a1f1
Remove unused imports that were causing warnings.
2007-05-25 05:33:06 +00:00
5c5b0d2020
SEC-271: Rolled back new namespaces changes from 1.0.4 release
2007-05-25 03:03:12 +00:00
07b2a5c673
SEC-447: Use EL tags.
2007-05-24 00:30:15 +00:00
b52cb3d736
SEC-431: Remove copyFiles.bat.
2007-05-23 06:32:26 +00:00
f7e714b9da
Maven 2 polishing.
2007-05-23 04:20:54 +00:00
acb9e427df
deleted redundant file
2007-05-18 03:29:50 +00:00
c3c4978e4f
changed spring-security schema location
2007-05-18 03:29:02 +00:00
a6135c61c7
incorporated maven 2 in dms sample
2007-05-18 03:23:16 +00:00
e3435da9ae
SEC-271: removed autowiring by type and explicity introspected the applicationContext to detect the required dependencies of userDetailsService
2007-05-18 03:20:28 +00:00
803c687b5d
Added pom
2007-05-17 23:11:57 +00:00
0bdadaac09
Incorporated maven 2
2007-05-17 23:10:12 +00:00
ff02aa7932
Added maven 2 suport
2007-05-17 23:08:10 +00:00
ec02a3458f
SEC-271: Replaced legacy bean definitions with the new namespace elements
2007-05-17 23:06:46 +00:00
1444f1087d
new security namespaces added
2007-05-17 14:22:03 +00:00
a934f82af4
SEC-271: Fixed IllegalStateException being thrown by LogoutHandlerOrdereResolver and add an assert statement in the unit test
2007-05-17 13:42:51 +00:00
b072748999
SEC-271: Fixed spring and acegi versions
2007-05-17 12:26:11 +00:00
e73421d7b2
Spring version upgrade to 2.0.4, changed svn urls in project.xml and poms
2007-05-13 12:30:53 +00:00
f56771b214
SEC-376: moved switchUserProcessingFilter after filterInvocationInterceptor in contacts/filter applicationContext-acegi-security.xml file
2007-04-27 07:38:02 +00:00
fabca162a7
Added a customized checkstyle configuration file to tame the Maven 2 checkstyle report to the extent that it gives some useful infomation. Tidied up comments, excessively long lines, use of tabs etc. to match.
2007-02-24 21:00:24 +00:00
17cc70a3cd
SEC-415: Add document management system ACL sample.
2006-12-17 00:54:13 +00:00
9d2fe0e037
Switch release to 1.0.4.
2006-11-17 04:42:05 +00:00
aff04805e7
Prepare for 1.0.3.
2006-11-17 02:58:17 +00:00
3e3db43b37
SEC-239: New ACL module.
2006-11-17 02:29:28 +00:00
9f512c384e
SEC-239: New ACL module.
2006-11-17 02:01:21 +00:00
e179574077
Fix JavaDocs.
2006-11-14 03:19:16 +00:00
508966f0c7
SEC-313: Add integration test for Contacts.
2006-11-14 03:18:42 +00:00
84671f9d68
SEC-382: Clean up resource bundle errors.
2006-11-14 02:30:00 +00:00
335e2c9848
Make ready for 1.0.3-SNAPSHOT.
2006-10-04 10:55:31 +00:00
459b1d1cde
Prepare to release 1.0.2.
2006-10-04 08:57:11 +00:00
23e2338800
Prepare to release 1.0.2.
2006-10-04 08:55:13 +00:00
5d15856ccc
Use 1.1-SNAPSHOT as parent version
2006-07-11 18:27:36 +00:00
288fdb3df8
Fixed M2 pom
2006-07-11 18:22:21 +00:00
7957d54d67
SEC-282: Tutorial for securing Petclinic using Acegi Security.
2006-05-31 07:40:45 +00:00
35093e09f6
Bump version to 1.1.0-SNAPSHOT
2006-05-31 00:52:26 +00:00
da187147f2
SEC-278: Initial commit of tutorial sample.
2006-05-29 13:32:12 +00:00
53330fd824
Undo last checkin.
2006-05-29 08:51:18 +00:00
8bef3d20af
Improve debugging.
2006-05-29 08:50:14 +00:00
03622f7011
Add missing beans from previous checkin.
2006-05-29 08:45:08 +00:00
89eb74b1b2
Refer to 1.0.0 final.
2006-05-28 00:49:38 +00:00
ab12817b7a
SEC-97: Format Acegi Security source code in accordance with latest Jalopy configuration.
2006-05-23 13:38:33 +00:00
6b5fc1efce
Correct comment in header.
2006-05-23 08:57:13 +00:00
1958d4e5aa
Change package for ldap context factory bean
2006-05-20 17:50:51 +00:00
cc07f620df
SEC-257: ExceptionTranslationFilter to use AccessDeniedHandler.
2006-04-28 06:52:50 +00:00
9a90e4e1aa
SEC-256: Contacts sample not displaying localized exceptions correctly.
2006-04-28 06:51:58 +00:00
21aaf2b9db
SEC-256: Contacts sample not displaying localized exceptions correctly.
2006-04-28 06:43:50 +00:00
d125569bd6
SEC-29: Save POST parameters on AuthenticationEntryPoint redirect.
2006-04-28 05:05:35 +00:00
8cc5dcde30
SEC-249: Support logout filter.
2006-04-26 23:36:03 +00:00
719d3af879
SVN updates.
2006-04-25 00:22:00 +00:00
5607da8d67
updated references from Yale CAS to JA-SIG CAS
2006-02-27 13:52:41 +00:00
Luke Taylor
Ben Alex
Mark St. Godard
Ray Krueger
Vishal Puri
Carlos Sanchez
Scott Battaglia