Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,483 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

3483 Commits

Author SHA1 Message Date
Luke Taylor ef3ea65fdb Switching back to 2.5.0-SNAPSHOT after tagging M1 release 2009-01-03 07:42:19 +00:00
Luke Taylor 62f1b6c110 Updated pom versions to M1 following aborted mvn release:prepare 2009-01-03 07:25:36 +00:00
Luke Taylor fc5f50501e [maven-release-plugin] prepare release 2.5.0.M1 2009-01-03 07:08:25 +00:00
Luke Taylor 4eb4d08825 Added -o to mven:jetty-run in runall.sh to speed up script 2009-01-03 06:45:41 +00:00
Luke Taylor d6ee9a9a93 Commented out hessian and burlap remoting beans to avoid missing class exceptions on startup 2009-01-03 05:51:45 +00:00
Luke Taylor 12d8e14a61 Reinstated parent for itest module, to prevent problems during mvn:deploy on build server 2009-01-03 05:45:08 +00:00
Luke Taylor 0ead104b86 Update CAS server information to latest version 2009-01-03 05:20:22 +00:00
Luke Taylor 9ca9b4da8e SEC-1066: Update cas client to 3.1.5 2008-12-29 01:34:24 +00:00
Luke Taylor 65a78ce4a4 SEC-745: updated cas sample filter bean configuration 2008-12-29 01:33:27 +00:00
Luke Taylor ddffdf1699 SEC-745: Renamed failureHandler and successHandler to have prefix 'authentication' 2008-12-28 17:32:25 +00:00
Luke Taylor 6a0da5fe67 Fixed sandbox build 2008-12-27 02:00:48 +00:00
Luke Taylor fc9a1f0242 Remove parent from itest module - force explicit Spring 2.5 dependency 2008-12-27 00:02:15 +00:00
Luke Taylor 4a41416c9b Tidying up and removing compiler warnings. 2008-12-21 16:36:16 +00:00
Luke Taylor 6003291a68 Updated to use new Sprig test classes and to remove data dependencies between tests. 2008-12-21 16:34:26 +00:00
Luke Taylor f5d2e7a7ce Make error message when multiple UserDetailsServices are found more explicit. 2008-12-21 13:29:42 +00:00
Luke Taylor 0d7002e322 SEC-1012: Extra fixes to dependent modules following changes to Acl APIs. 2008-12-21 02:06:55 +00:00
Luke Taylor 14c50a9c96 SEC-1012: Java-5-ifying the ACL package. 2008-12-21 01:41:30 +00:00
Luke Taylor 9cb361e88a SEC-745: Added LogoutSuccessHandler strategy for use in LogoutFilter. 2008-12-20 23:25:29 +00:00
Luke Taylor 66e586ec67 Added Id keyword. 2008-12-20 15:41:51 +00:00
Luke Taylor cc5966bc7e Tidying up, removing compiler warnings etc. 2008-12-20 00:16:49 +00:00
Luke Taylor 8154161ef5 SEC-1035: Updated build to use Spring 3.0.0.M1 Release 2008-12-18 02:37:00 +00:00
Luke Taylor 8f598e9b11 SEC-1052: Add support for the namespace option 'disable-url-rewriting'. 2008-12-17 01:28:29 +00:00
Luke Taylor 171456a26c SEC-1018: Changes to allow external reference to SaltSource bean from the namespace. 2008-12-17 01:11:43 +00:00
Luke Taylor 00125cddee SEC-1016: Moved the MapBasedDefinitionSource to the top of the list of delegates (before expressions), but changed the code to only add it if there are pointcuts defined, so there should be no unnecessary overhead. 2008-12-17 00:48:32 +00:00
Luke Taylor 585e5f393a Added warning suppression for deprecation. 2008-12-17 00:32:21 +00:00
Luke Taylor d8b5f770e9 Added warning suppression for deprecation. 2008-12-17 00:31:17 +00:00
Luke Taylor e86c76f555 Updated Spring version. 2008-12-17 00:20:55 +00:00
Luke Taylor db5f1e69f1 SEC-949: Added the option of specifying -1 as the token-validity-seconds value in order to set the cookie maxAge to expire when the browser closes. 2008-12-17 00:14:48 +00:00
Luke Taylor c2e688610c SEC-1011: Introduced methods for extracting the remember-me cookie and for creating the returned token. 2008-12-16 23:25:44 +00:00
Luke Taylor 7fa9a959b5 Added webAppRootKey context-param to samples to prevent conflicts when run together in Tomcat. 2008-12-16 21:13:03 +00:00
Luke Taylor 998f0b3ea1 SEC-993: Updated retrievePassword method to return null if an Authentication object with null credentials is presented (e.g. with OpenID). Prevents NPE when toString() is called. 2008-12-16 20:35:18 +00:00
Luke Taylor d0fcbd9baf Tidying up Javadoc. 2008-12-16 20:29:53 +00:00
Luke Taylor a1bd48733a Minor Javadoc correction. 2008-12-16 20:16:56 +00:00
Luke Taylor 681f1ee00c Fix duplicate logging. 2008-12-16 19:07:31 +00:00
Luke Taylor 74fd5fe8a4 Finish refactoring JdbcDaoIml to remove MappingSqlQuery objects. Updated Javadoc to avoid user confusion. 2008-12-16 18:55:38 +00:00
Luke Taylor b24cc17dea SEC-1052: Added "disableUrlRewriting" parameter to HttpSessionSecurityContextRepository. 2008-12-16 17:35:34 +00:00
Scott Battaglia 717fdcfec3 SEC-1046 
upgrade to CAS Client for Java 3.1.4
 2008-12-16 13:22:21 +00:00
Luke Taylor bf409b5b25 Improvements to Javadoc. 2008-12-16 02:06:26 +00:00
Luke Taylor 55cc98ab54 SEC-1006: Fixed Javadoc. 2008-12-16 00:06:56 +00:00
Luke Taylor f54d7ee6bc SEC-535: Added "postOnly" flag to AuthenticationProcessingFilter, defaulting to "true" so that only POST requests are allowed by default. 2008-12-15 23:58:40 +00:00
Luke Taylor 224c86a0b3 Tidying. 2008-12-15 23:51:46 +00:00
Luke Taylor 898ef36d02 SEC-959: Converted SwitchUserFilter to use new Authentication success and failure strategies from SEC-745 for managing redirects. 2008-12-15 19:50:53 +00:00
Luke Taylor c3181d9db0 SEC-1063: Moved the justUseSavedRequestOnGet property to ExceptionTranslationFilter. If set, it will not store the SavedRequest for unless the request is a GET. 2008-12-15 02:48:32 +00:00
Luke Taylor c564a879d4 Some tests used for obtaining performance data. 2008-12-15 01:34:37 +00:00
Luke Taylor 40ccd3be11 SEC-1058: Further refactoring to remove use of getDefaultTargetUrl(). Subclasses now pass the default value as a constructor argument. 2008-12-15 01:25:12 +00:00
Luke Taylor fcc68e636e SEC-1062: Added authentication-success-handler-ref and authentication-failure-handler-ref to the namespace definition. 2008-12-15 00:56:17 +00:00
Luke Taylor a0bcf7184c SEC-1061: Renamed serverSideRedirect property. 2008-12-14 23:56:30 +00:00
Luke Taylor cf3cac90ad SEC-1058, SEC-745: Updating comments 2008-12-14 23:53:44 +00:00
Luke Taylor 3f38035057 SEC-1058: Renamed "forwardToDestination" to "useForward" for simplicity and consistency with the namespace. 2008-12-14 22:53:31 +00:00
Luke Taylor 2927b8464f SEC-1058: Substantial refactoring of AbstractProcessingFilter to use AuthenticationFailureHandler strategy. Also changed attemptAuthentication method to take a response object and have the option of returning null, to allow OpenIDAuthenticationProcessingFilter to work without having to throw exceptions between the template methods (which made the logic very hard to follow). The OpenID filter now redirects to the OpenID provider service from this method, rather than treating it as a temporary failure and throwing OpenIDAuthenticationRequiredException. 2008-12-14 22:20:21 +00:00