Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 23:31:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,220 Commits 33 Branches 337 Tags
Commit Graph

3220 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Luke Taylor
790c3e6f79 Updated FAQ to add variant of "redirecting to entry point" debug message when no AnonymousProcessingFilter is in use and an AuthenticationCredentialsNotFoundException is thrown instead of AccessDeniedException. 2008-11-12 00:44:34 +00:00
Luke Taylor
0bbab88504 SEC-1031: LdapShaPasswordEncoder.isPasswordValid startOfHash off by one 
http://jira.springframework.org/browse/SEC-1031. Fixed startOfHash value and added tests to check full length of password is used.
 2008-11-11 23:34:40 +00:00
Luke Taylor
0ba690fb0e SEC-1015: Removed acl package from core and also related taglib declaration and implementation class (AclTag). 2008-11-11 09:21:51 +00:00
Luke Taylor
e5b1073501 SEC-1012: Added more generics and warning suppression 2008-11-11 09:06:50 +00:00
Luke Taylor
be34724207 Matchers for use with JMock expectations 2008-11-11 08:43:17 +00:00
Luke Taylor
7731a3df57 Typo. 2008-11-11 03:41:50 +00:00
Luke Taylor
62986c700b SEC-1027: Removed bnd plugin and 'bundle' package types from pom.xml files 2008-11-11 01:09:37 +00:00
Luke Taylor
e11114ce77 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023.

hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
 2008-11-10 04:27:25 +00:00
Luke Taylor
fa6f57e3dd Fixed TestVoter to match recent API updates 2008-11-10 04:12:53 +00:00
Luke Taylor
d6cd392a9e Tidying up some stuff in tutorial app 2008-11-07 06:55:00 +00:00
Luke Taylor
4bbc015e4c Removed chackstyle file 2008-11-06 01:12:01 +00:00
Luke Taylor
d6bb6ccbf5 Removed .cvsignore files 2008-11-06 01:11:08 +00:00
Luke Taylor
da8a97b516 SEC-1024: Updated svn usage page 2008-11-06 00:27:53 +00:00
Luke Taylor
d33b13e52e SEC-1023: Added support for hasPermission() based on Id and type 2008-11-05 22:44:46 +00:00
Luke Taylor
d601301de6 SEC-1023: Fix broken test. 2008-11-05 04:14:29 +00:00
Luke Taylor
1c3b576d91 SEC-1023: PermissionEvaluator based on the Acl module. 2008-11-05 03:45:50 +00:00
Luke Taylor
a207acf7cb SEC-999: Fix broken test which was failing due to use of incorrect authentication object. 2008-11-05 01:09:14 +00:00
Luke Taylor
56141e9c5f SEC-999: Refactoring out specific dependencies on Spring EL into SecurityExpressionHandler. 
SEC:1023: Updates to expression root to allow evaluationof permissions.
 2008-11-04 23:30:56 +00:00
Luke Taylor
dabb719456 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023. PermissionEvaluator interface for use by expressions when evaluating hasPermisson() expressions.
 2008-11-04 22:46:21 +00:00
Luke Taylor
7ff5602dbc Convert AclImplTests to use JMock mocks. 2008-11-04 06:43:08 +00:00
Luke Taylor
04e2fc7daf Tidying. 2008-11-04 06:36:49 +00:00
Luke Taylor
b42fc7221f Upgraded to jmock 2.5.1 2008-11-04 05:37:56 +00:00
Luke Taylor
514bca669f SEC-999: Introduced custom SecurityExpressionEvaluationContext which is responsible for lazy initialization of parameter values in the context. Also some further conversion of code using GrantedAuthority arrays. 2008-10-31 11:40:11 +00:00
Luke Taylor
ec44f2bdfe SEC-1012: Refactoring of use of GrantedAuthority[] to generified collections 2008-10-31 03:53:00 +00:00
Luke Taylor
e891b334e6 SEC-1009: removed additional container adapter specific code 2008-10-30 05:45:13 +00:00
Luke Taylor
09cc58d7ac SEC-1009: removed additional container adapter specific code 2008-10-30 05:44:38 +00:00
Luke Taylor
3521af4cae Added missing test class. 2008-10-30 04:32:22 +00:00
Luke Taylor
a7d046357b SEC-1013: Refactored out use of ConfigAttributeDefinition from remaining interfaces 2008-10-30 04:10:54 +00:00
Luke Taylor
c7abdadc06 SEC-999: Moved caching from AbstractFallbackMethodDefinitionSource to DelegatingMethodDefinitionSource, to allow ExpressionBasedMethodDefinitionSource to take advantage of it. The latter no-longer uses the fallback approach as it requires its own strategy to combine annotations which may be defined at method-on-class, class, method-on-interface or interface level. 2008-10-28 06:37:04 +00:00
Luke Taylor
f2ec8c978a Moved MethodDefinitionSource to standalone class. 2008-10-27 21:51:58 +00:00
Luke Taylor
f592357c27 SEC-999,SEC-1013: removed ConfigAtributeDefinition from ObjectDefinitionSource and implementations. Modified el-authz to allow methods which use an annotation without explicitly specifying a PreAuthorize condition 2008-10-27 09:04:22 +00:00
Luke Taylor
5174693c64 SEC-999: Expression language based access decision support 
http://jira.springframework.org/browse/SEC-999. Added missing test class.
 2008-10-24 00:57:52 +00:00
Luke Taylor
4aa32f7d06 SEC-999: First commit of expression-based authorization implementation 2008-10-24 00:38:36 +00:00
Luke Taylor
0dd82cb91a Temporary addition of spring-el to security source tree until binary is available 2008-10-24 00:35:25 +00:00
Luke Taylor
91c44a47fd SEC-999: Added spel-annotations to newly created 2.5 schema file. 
http://jira.springframework.org/browse/SEC-999
 2008-10-21 05:54:42 +00:00
Luke Taylor
b031124f61 SEC-991: Removed deprecated getAttributes() method from LdapUserDetails interface 2008-10-17 05:12:11 +00:00
Luke Taylor
b589f78918 SEC-954: Deprecate AbstractMethodDefinitionSource 2008-10-17 01:06:21 +00:00
Luke Taylor
7f35f56f40 Added link to db schema appendix when discussing jdbc provider 2008-10-16 05:58:31 +00:00
Luke Taylor
c947d42146 SEC-1010: Moved TestingAuthenticationProvider and token to main core src tree and updated poms to match 2008-10-15 06:35:11 +00:00
Luke Taylor
6c8a82fa13 Updated poms to Spring 2.5 and fixed up sandbox to work with latest build 2008-10-15 05:52:40 +00:00
Luke Taylor
a62eae4587 Script for running all the sample apps 2008-10-15 05:49:31 +00:00
Luke Taylor
6a7bade049 SEC-1009: Removed adapters from main pom 2008-10-15 00:03:03 +00:00
Luke Taylor
ce93197cda SEC-1009: Removed chapter on adapters 2008-10-14 23:51:58 +00:00
Luke Taylor
6183b7ec28 SEC-1009: Deleted container adapters 2008-10-14 23:49:51 +00:00
Luke Taylor
6364238aa2 Added id for dependencies faq 2008-10-04 12:47:34 +00:00
Luke Taylor
2d827f87ab SEC-1000: Updated itest module to 2.5.0 2008-10-03 15:37:05 +00:00
Luke Taylor
e46f47c170 SEC-1001: Delete core tiger module 2008-10-03 15:27:05 +00:00
Luke Taylor
7cc0965383 SEC-1001: Move core tiger code into core and adjust pom files 2008-10-03 15:23:31 +00:00
Luke Taylor
ad4b5c487f Temporarily store webflow test sample in sandbox 2008-10-02 23:24:58 +00:00
Luke Taylor
48013b2c93 typo 2008-10-02 15:26:20 +00:00