Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-25 00:46:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,291 Commits 34 Branches 337 Tags
Commit Graph

1246 Commits

Author SHA1 Message Date
Ben Alex
3123d24337 SEC-613: Rename tag libraries. 2007-12-03 01:46:11 +00:00
Ben Alex
c24958d7b8 Spelling correction. 2007-12-03 01:33:19 +00:00
Ben Alex
08db4a1358 SEC-610: Reauthenticate even if AnonymousAuthenticationToken is present. 2007-12-02 02:15:43 +00:00
Luke Taylor
843a20e691 Changed default namespace in config files to "security" for clarity. 2007-11-29 13:14:15 +00:00
Luke Taylor
09c588a138 Removed unecessary check in additionalAuthenticationChecks() for null credentials in authentication object. Previous line already throws an exception if null is found. 2007-11-28 19:20:33 +00:00
Luke Taylor
88e01624eb SEC-560: Removed local password comparison form PasswordComparisonAuthenticator. 2007-11-28 18:29:04 +00:00
Luke Taylor
0e1ae11fca Tidying. 2007-11-28 18:00:43 +00:00
Luke Taylor
292320bd33 SEC-607: Changed NtlmUsernamePasswordAuthenticationToken to make authenticated=true the default state when an instance is created. NtlmAwareLdapAuthenticator now rejects tokens with authenticated=false (e.g. if the token has been passed remotely). 2007-11-24 20:13:29 +00:00
Luke Taylor
4f3a1739aa Changed Ntlm filter to use SpringSecurityFilter base class. 2007-11-24 20:08:17 +00:00
Luke Taylor
9e2f372bad SEC-607: Deprecated InitialDirContextFactory and replaced it with SpringSecurityContextSource. 
Also some refactoring of LdapUserDetailsManager to use a strategy for creating DNs from usernames.
 2007-11-20 20:54:48 +00:00
Luke Taylor
6d5773d177 Replaced creation of new list with Collections.EMPTY_LIST reference. 2007-11-17 23:06:32 +00:00
Luke Taylor
1196381220 Remove "controls" property as it doesn't really make sense and has never been used. 2007-11-17 20:55:39 +00:00
Luke Taylor
91e0a329f9 Upgrade to Spring LDAP 1.2 final. 2007-11-17 20:53:26 +00:00
Luke Taylor
b1b3f585e4 Moved setter methods out of inner classes area. 2007-11-13 22:55:01 +00:00
Luke Taylor
c485664ee7 Removed accidental use of autoboxing. 2007-11-13 22:16:52 +00:00
Luke Taylor
3e3dac4050 SEC-600: Added extra test assertions on authentication details object after password change. 2007-11-13 17:17:25 +00:00
Luke Taylor
cb237055ac SEC-600: Added Jdbc implementation of UserDetailsManager 2007-11-13 17:11:29 +00:00
Luke Taylor
81067840ef SEC-485: Added calculateLoginLifetime method. 2007-11-13 01:16:27 +00:00
Luke Taylor
b681952933 SEC-545: Added utility methods for checking if user has a particular role to existing AuthorityUtils class. Class may be renamed at some point as more functionality is added. 2007-11-11 23:37:32 +00:00
Luke Taylor
315d4a247f Added method to clear datasource field after use. 2007-11-11 23:10:21 +00:00
Luke Taylor
910e63f83c SEC-586: Implemented secure channel support in namespace configuration. 2007-11-11 22:07:46 +00:00
Luke Taylor
c214f4a9bc Simplified initialization of datasource. 2007-11-11 22:06:22 +00:00
Luke Taylor
4f3bbb52f6 Pulled methods and fields up into AbstractFilterInvocationDefinitionSource to make it easier to query the map size etc, regardless of the specific type. 2007-11-11 19:29:11 +00:00
Luke Taylor
28a138f8ec Converted to use guard clause to reduce nesting. 2007-11-11 19:22:51 +00:00
Luke Taylor
756be6fed3 Removed unnecessary constructor. 2007-11-11 19:10:47 +00:00
Luke Taylor
964e6911a7 Added RememberMeServices to list of logout handlers. 2007-11-11 18:11:18 +00:00
Luke Taylor
2856a6ba43 Allow configuration of embedded ldap server port through ldap namespace configuration. Changed default port from 3389 to avoid conflict with windows remote desktop (as reported by Ray Krueger in dev list). 2007-11-11 16:10:30 +00:00
Luke Taylor
0e7dac6ca5 SEC-565: Refactoring of TokenBasedRememberMeServices. Changed arguments to makeValidSignature so that it could be used from both places where a signature is required and refactored the class to extend AbstractRememberMeServices. The method processAutoLoginCookie now returns a UserDetails, rather than username, as the UserDetails is needed in TokenBasedRememberMeServices. 2007-11-10 19:20:36 +00:00
Luke Taylor
1a5ef2dece SEC-588: Completed JdbcTokenRepositoryImpl and added extra update method to PersistentTokenRepository interface (additional files from failed commit). 2007-11-10 15:56:07 +00:00
Luke Taylor
7caa1587b3 SEC-588: Completed JdbcTokenRepositoryImpl and added extra update method to PersistentTokenRepository interface. 2007-11-10 15:42:21 +00:00
Scott Battaglia
87a864619d SEC-592 
fixed failing test due to thinking a null value should be provided.
 2007-11-07 21:44:15 +00:00
Scott Battaglia
981f185575 SEC-592 
implemented NullStatelessTicketCache and test cases and made it the default for CasAuthenticationProvider.
 2007-11-07 18:46:35 +00:00
Luke Taylor
0a50cd67ce Tidied up logic for setting token repository in RememberMeBeanDefinitionParser. Plus some tinkering with attributes in rnc file. 2007-11-07 13:29:15 +00:00
Luke Taylor
9fa32bac7c SEC-578: Set FilterInvocationDefinitionSource field in FilterChainProxy to null after it has been converted to a map of paths->filters. 2007-11-06 23:58:56 +00:00
Luke Taylor
9f2bc9a842 SEC-582: Namespace configuration implementation for remember-me support. 2007-11-06 23:20:25 +00:00
Luke Taylor
b868143fb1 Make sure "start" is called even if working directory is already set. 2007-11-06 22:18:13 +00:00
Luke Taylor
7ad8e2acf0 SEC-591: Removed default NullRememberMeServices in RememberMeProcessingFilter 2007-11-06 21:43:37 +00:00
Luke Taylor
4c44bd782f SEC-588: Added extra tests to check cookie values. 2007-11-04 12:07:49 +00:00
Luke Taylor
55b1f9348d SEC-588: PersistentTokenBasedRememberMeServices implementation. 2007-11-03 22:11:26 +00:00
Luke Taylor
8b199d38ed Refactored autoLogin method to reduce nesting of conditionals and loops. 2007-10-30 21:09:47 +00:00
Luke Taylor
d7b6ca281a Removed unused "autodetect" method. 2007-10-27 11:50:38 +00:00
Luke Taylor
43fc8e2660 Added Id keyword for all java files 2007-10-27 00:45:30 +00:00
Luke Taylor
d3b165749f SEC-583: Implementation of namespace config for concurrent session support. 
Also some minor adjustments to ordering of different http features in schema.
 2007-10-27 00:28:24 +00:00
Luke Taylor
334d55b12e Tidying. 2007-10-27 00:26:25 +00:00
Luke Taylor
685d74d81b FilterSecurityInterceptor is now configured through ConfigUtils, rather than by autowiring. 2007-10-27 00:25:59 +00:00
Luke Taylor
0185dc5a90 Moved registration of ProviderManager bean to ConfigUtils. 2007-10-27 00:24:16 +00:00
Luke Taylor
06ce4b79e9 SEC-584: Remove use of default SessionRegistryImpl. 2007-10-27 00:23:21 +00:00
Luke Taylor
0cdac4912a Changed to use a BeanReference when creating default login page to prevent duplication of filter bean. 2007-10-27 00:20:55 +00:00
Luke Taylor
3d9ea49d19 SEC-585: Made expiredUrl optional. 
Also implemented Ordered interface for use in namespace configuration.
 2007-10-26 23:32:40 +00:00
Luke Taylor
55ef50a4df Added checking of path ordering to FilterChainProxy to detect misplaced universal match ("/**"). 2007-10-26 13:51:32 +00:00