Commit Graph

2493 Commits

Author SHA1 Message Date
Luke Taylor 843a20e691 Changed default namespace in config files to "security" for clarity. 2007-11-29 13:14:15 +00:00
Luke Taylor 09c588a138 Removed unecessary check in additionalAuthenticationChecks() for null credentials in authentication object. Previous line already throws an exception if null is found. 2007-11-28 19:20:33 +00:00
Luke Taylor 88e01624eb SEC-560: Removed local password comparison form PasswordComparisonAuthenticator. 2007-11-28 18:29:04 +00:00
Luke Taylor 0e1ae11fca Tidying. 2007-11-28 18:00:43 +00:00
Luke Taylor 292320bd33 SEC-607: Changed NtlmUsernamePasswordAuthenticationToken to make authenticated=true the default state when an instance is created. NtlmAwareLdapAuthenticator now rejects tokens with authenticated=false (e.g. if the token has been passed remotely). 2007-11-24 20:13:29 +00:00
Luke Taylor 4f3a1739aa Changed Ntlm filter to use SpringSecurityFilter base class. 2007-11-24 20:08:17 +00:00
Luke Taylor 31b65dde52 Javadoc typo. 2007-11-24 19:45:47 +00:00
Luke Taylor f4ea415844 Corrections/typos. 2007-11-22 19:08:15 +00:00
Luke Taylor a9396afcd0 Corrected version of Spring-ldap in ntlm module (again). 2007-11-20 21:35:48 +00:00
Luke Taylor a23e7e43d3 Corrected version of Spring-ldap in ntlm module. 2007-11-20 21:14:08 +00:00
Luke Taylor 9e2f372bad SEC-607: Deprecated InitialDirContextFactory and replaced it with SpringSecurityContextSource.
Also some refactoring of LdapUserDetailsManager to use a strategy for creating DNs from usernames.
2007-11-20 20:54:48 +00:00
Luke Taylor 79adaa2d3d Changed forum description. 2007-11-20 16:50:58 +00:00
Luke Taylor 6d5773d177 Replaced creation of new list with Collections.EMPTY_LIST reference. 2007-11-17 23:06:32 +00:00
Luke Taylor 1196381220 Remove "controls" property as it doesn't really make sense and has never been used. 2007-11-17 20:55:39 +00:00
Luke Taylor 91e0a329f9 Upgrade to Spring LDAP 1.2 final. 2007-11-17 20:53:26 +00:00
Luke Taylor b1b3f585e4 Moved setter methods out of inner classes area. 2007-11-13 22:55:01 +00:00
Luke Taylor c485664ee7 Removed accidental use of autoboxing. 2007-11-13 22:16:52 +00:00
Luke Taylor 3e3dac4050 SEC-600: Added extra test assertions on authentication details object after password change. 2007-11-13 17:17:25 +00:00
Luke Taylor cb237055ac SEC-600: Added Jdbc implementation of UserDetailsManager 2007-11-13 17:11:29 +00:00
Luke Taylor 81067840ef SEC-485: Added calculateLoginLifetime method. 2007-11-13 01:16:27 +00:00
Luke Taylor b681952933 SEC-545: Added utility methods for checking if user has a particular role to existing AuthorityUtils class. Class may be renamed at some point as more functionality is added. 2007-11-11 23:37:32 +00:00
Luke Taylor 315d4a247f Added method to clear datasource field after use. 2007-11-11 23:10:21 +00:00
Luke Taylor 910e63f83c SEC-586: Implemented secure channel support in namespace configuration. 2007-11-11 22:07:46 +00:00
Luke Taylor c214f4a9bc Simplified initialization of datasource. 2007-11-11 22:06:22 +00:00
Luke Taylor 4f3bbb52f6 Pulled methods and fields up into AbstractFilterInvocationDefinitionSource to make it easier to query the map size etc, regardless of the specific type. 2007-11-11 19:29:11 +00:00
Luke Taylor 28a138f8ec Converted to use guard clause to reduce nesting. 2007-11-11 19:22:51 +00:00
Luke Taylor 756be6fed3 Removed unnecessary constructor. 2007-11-11 19:10:47 +00:00
Luke Taylor 964e6911a7 Added RememberMeServices to list of logout handlers. 2007-11-11 18:11:18 +00:00
Luke Taylor 2856a6ba43 Allow configuration of embedded ldap server port through ldap namespace configuration. Changed default port from 3389 to avoid conflict with windows remote desktop (as reported by Ray Krueger in dev list). 2007-11-11 16:10:30 +00:00
Luke Taylor 0e7dac6ca5 SEC-565: Refactoring of TokenBasedRememberMeServices. Changed arguments to makeValidSignature so that it could be used from both places where a signature is required and refactored the class to extend AbstractRememberMeServices. The method processAutoLoginCookie now returns a UserDetails, rather than username, as the UserDetails is needed in TokenBasedRememberMeServices. 2007-11-10 19:20:36 +00:00
Luke Taylor 1a5ef2dece SEC-588: Completed JdbcTokenRepositoryImpl and added extra update method to PersistentTokenRepository interface (additional files from failed commit). 2007-11-10 15:56:07 +00:00
Luke Taylor 7caa1587b3 SEC-588: Completed JdbcTokenRepositoryImpl and added extra update method to PersistentTokenRepository interface. 2007-11-10 15:42:21 +00:00
Luke Taylor 0b6070ecec Added link to Ldap BeanDefinitionParser. 2007-11-08 01:14:01 +00:00
Scott Battaglia 87a864619d SEC-592
fixed failing test due to thinking a null value should be provided.
2007-11-07 21:44:15 +00:00
Luke Taylor d91cf157fd Further updates to namespace doc. 2007-11-07 20:15:26 +00:00
Scott Battaglia 981f185575 SEC-592
implemented NullStatelessTicketCache and test cases and made it the default for CasAuthenticationProvider.
2007-11-07 18:46:35 +00:00
Luke Taylor 53253cf8f8 namespace document. 2007-11-07 18:40:51 +00:00
Luke Taylor 746f052d42 Fixed URLs. 2007-11-07 15:39:54 +00:00
Luke Taylor 0a50cd67ce Tidied up logic for setting token repository in RememberMeBeanDefinitionParser. Plus some tinkering with attributes in rnc file. 2007-11-07 13:29:15 +00:00
Luke Taylor a954274037 SEC-455: Added note on including taglib declaration in JSPs. 2007-11-07 00:46:04 +00:00
Luke Taylor 8abcbd77d9 SEC-564: Added tags URL to "svn usage" page. 2007-11-07 00:27:58 +00:00
Luke Taylor 9fa32bac7c SEC-578: Set FilterInvocationDefinitionSource field in FilterChainProxy to null after it has been converted to a map of paths->filters. 2007-11-06 23:58:56 +00:00
Luke Taylor 9f2bc9a842 SEC-582: Namespace configuration implementation for remember-me support. 2007-11-06 23:20:25 +00:00
Luke Taylor b868143fb1 Make sure "start" is called even if working directory is already set. 2007-11-06 22:18:13 +00:00
Luke Taylor 7ad8e2acf0 SEC-591: Removed default NullRememberMeServices in RememberMeProcessingFilter 2007-11-06 21:43:37 +00:00
Luke Taylor 4c44bd782f SEC-588: Added extra tests to check cookie values. 2007-11-04 12:07:49 +00:00
Luke Taylor 55b1f9348d SEC-588: PersistentTokenBasedRememberMeServices implementation. 2007-11-03 22:11:26 +00:00
Luke Taylor 8b199d38ed Refactored autoLogin method to reduce nesting of conditionals and loops. 2007-10-30 21:09:47 +00:00
John Lewis 38210d2039 updated the version number to match other packages 2007-10-29 18:30:39 +00:00
Luke Taylor d7b6ca281a Removed unused "autodetect" method. 2007-10-27 11:50:38 +00:00