Commit Graph

602 Commits

Author SHA1 Message Date
Luke Taylor 1d00b92d25 Removed portlet sample 2009-09-09 20:53:19 +00:00
Luke Taylor aec730ae7e SEC-1238: Disable portlet module 2009-09-09 20:03:00 +00:00
Luke Taylor 5bdfd8cd77 Tidying imports etc to remove compiler warnings. 2009-09-05 14:14:58 +00:00
Mike Wiesner ed0686cacf Upgraded to AspectJ 1.6.5 and fixes some maven plugin config bugs 2009-09-04 15:25:23 +00:00
Mike Wiesner a1751aec2c SEC-1232: Added the aspect library needed for <global-method-security mode="aspectj"/> and a small sample 2009-09-04 13:53:55 +00:00
Luke Taylor 0d7b990e0a SEC-1184: Moved ACL cache classes and interface out of jdbc package. 2009-08-31 22:15:37 +00:00
Luke Taylor 092d7b5c2b Fix CAS filter configuration. 2009-08-25 20:26:12 +00:00
Luke Taylor 5a8772df5b Reset pom versions post release 2009-08-21 12:02:49 +00:00
Luke Taylor 0e5aa7008d [maven-release-plugin] prepare release spring-security-3.0.0.M2 2009-08-20 15:51:26 +00:00
Luke Taylor 984b2835d6 Update CAS sample to use new namespace syntax for authentication providers. 2009-08-20 14:58:59 +00:00
Luke Taylor 48988bde84 SEC-935: Support for OpenID attribute exchange and changes to namespace syntax to allow simple configuration of attributes to request. 2009-08-13 23:55:25 +00:00
Luke Taylor faa6be2011 SEC-935: Updated to OpenID4Java 0.9.5 release 2009-08-10 16:06:19 +00:00
Luke Taylor 5953af0f6b SEC-1196: Change use of <authentication-manager> to actually register the global ProviderManager instance. This element now registers the global ProviderManager instance and must contain any authentication-provider elements (or ldap-authentication-provider elements). 2009-08-03 00:21:11 +00:00
Luke Taylor 0a37aed4b9 SEC-1207. Fixed class name in jsp 2009-07-22 16:37:22 +00:00
Luke Taylor 1afa67c954 SEC-1195: Added internal AuthenticationManager for use by beans which are generated by the <http> block. 2009-07-15 23:09:47 +00:00
Luke Taylor 853b4c8753 SEC-1186: Make sure an Element is always supplied when registering the AuthenticationManager. Fixes broken tests. 2009-06-28 13:36:54 +00:00
Luke Taylor 408e982b96 Minor JSP classname fixes etc in samples 2009-06-18 13:28:44 +00:00
Luke Taylor 5808da12ff SEC-1094: Simplified WebXml attribute mapping. Removed generic jaxen-based implementation on which it was based in favour of simple DOM model traversal. Updated sample. 2009-06-08 15:23:41 +00:00
Luke Taylor 0134a5646d Changed to use expressions in commented-out XML instead of outdated syntax. 2009-05-31 21:26:52 +00:00
Luke Taylor 131ba5c62e Reset poms to 3.0.0.CI-SNAPSHOT after tagging M1 release 2009-05-27 00:12:30 +00:00
Luke Taylor e2c218e8c9 [maven-release-plugin] prepare release spring-security-3.0.0.M1 2009-05-26 23:44:11 +00:00
Luke Taylor f976080d1d Fixes to sample app context files 2009-05-26 22:15:05 +00:00
Luke Taylor 1788dfdba0 Removed duplicate logging from cas sample 2009-05-26 22:14:34 +00:00
Luke Taylor 45c54c558c Updated build to use maven.springframework.org deps 2009-05-13 06:16:05 +00:00
Luke Taylor a8215fa2cb SEC-1160: Renaming of authentication filters and entry points and associated doc changes 2009-05-12 05:37:11 +00:00
Luke Taylor 4bad213b19 SEC-1132: Moved remaining preauth code from core to web 2009-05-12 00:11:06 +00:00
Luke Taylor 1a69a4d45a SEC-1132: Restructuring of ACL packages 2009-05-11 05:37:36 +00:00
Luke Taylor 14c4739605 SEC-1158: Decoupling of Pre/Post annotations implementation from Spring EL. 2009-05-11 05:18:20 +00:00
Luke Taylor 29fafbbf18 Misc tidying up of old files and refactoring of tests 2009-05-05 13:29:59 +00:00
Luke Taylor 331a04c07c Some changes to make it easier to run the sample with the database driver as part of the jetty plugin configuration, preventing classloader leaks. 2009-05-05 03:21:07 +00:00
Luke Taylor 6d655aa514 SEC-1132: More refactoring to remove cycles ad reduce complexity metrics 2009-05-04 14:24:54 +00:00
Luke Taylor e1bc1819da SEC-1150: Update Contacts sample to use modernized Spring MVC controllers 2009-05-04 09:22:31 +00:00
Luke Taylor e94baf38b3 Tidying up to remove warnings (generics, use of deprecated test classes etc). 2009-04-28 06:49:43 +00:00
Luke Taylor 21e36e0a57 Updated version number from 2.5.0-SNPSHOT to 3.0.0.CI-SNAPSHOT 2009-04-22 12:55:52 +00:00
Luke Taylor 13af4b95a2 Sample package name updates 2009-04-18 06:04:56 +00:00
Luke Taylor ace6d225b4 SEC-1131: Correct portlet API version (again). 2009-04-17 05:26:14 +00:00
Luke Taylor 446bcb9b1d SEC-1131: Correct portlet API version. 2009-04-17 04:56:59 +00:00
Luke Taylor 101203b44d SEC-1132: Updates to samples to reflect ACL refactoring. 2009-04-15 10:07:23 +00:00
Luke Taylor 93bdcccaee SEC-1132: Moved userdetails into core and added core/authority sub-package 2009-04-15 07:39:21 +00:00
Luke Taylor c770998d92 SEC-1132: Move authoritymapping to core as it is actually used in loading authorities for a use, not in making access decisions. 2009-04-14 04:22:57 +00:00
Luke Taylor ca7d055c2b SEC-1132: Created core and authentication packages within core module. 2009-04-13 13:43:23 +00:00
Luke Taylor 9efb5a7007 SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet 2009-04-12 12:23:23 +00:00
Luke Taylor 7c4d54f356 SEC-1131: Applied patch for portlet upgrade 2009-04-12 05:52:20 +00:00
Luke Taylor f746a20ab4 SEC-1132: package refactoring of non-core modules 2009-03-27 05:01:03 +00:00
Luke Taylor bec84f874a SEC-1125: Further refactoring of web packages following creation of web module. Fixing samples. 2009-03-26 07:18:36 +00:00
Luke Taylor 2a9a8a41db SEC-1125: Created separate web module spring-security-web 2009-03-25 06:28:18 +00:00
Luke Taylor 2c985a1c36 SEC-1126: separated out spring-security-config module containing namespace configuration classes and resources 2009-03-23 04:23:48 +00:00
Luke Taylor 4aff4b2350 SEC-1123: Renamed ObjectDefinitionSource to SecurityMetadataSourceand performed related refactoring 2009-03-20 04:32:06 +00:00
Luke Taylor 4aae5ec42e SEC-1124: Refactored LDAP code into separate module 2009-03-19 06:30:32 +00:00
Luke Taylor 591681c180 Upgrade to Spring M2 and correct expression classes and pom files to match changes 2009-03-19 01:17:16 +00:00
Luke Taylor ef3ea65fdb Switching back to 2.5.0-SNAPSHOT after tagging M1 release 2009-01-03 07:42:19 +00:00
Luke Taylor fc5f50501e [maven-release-plugin] prepare release 2.5.0.M1 2009-01-03 07:08:25 +00:00
Luke Taylor 4eb4d08825 Added -o to mven:jetty-run in runall.sh to speed up script 2009-01-03 06:45:41 +00:00
Luke Taylor d6ee9a9a93 Commented out hessian and burlap remoting beans to avoid missing class exceptions on startup 2009-01-03 05:51:45 +00:00
Luke Taylor 0ead104b86 Update CAS server information to latest version 2009-01-03 05:20:22 +00:00
Luke Taylor 65a78ce4a4 SEC-745: updated cas sample filter bean configuration 2008-12-29 01:33:27 +00:00
Luke Taylor 4a41416c9b Tidying up and removing compiler warnings. 2008-12-21 16:36:16 +00:00
Luke Taylor 0d7002e322 SEC-1012: Extra fixes to dependent modules following changes to Acl APIs. 2008-12-21 02:06:55 +00:00
Luke Taylor cc5966bc7e Tidying up, removing compiler warnings etc. 2008-12-20 00:16:49 +00:00
Luke Taylor 8154161ef5 SEC-1035: Updated build to use Spring 3.0.0.M1 Release 2008-12-18 02:37:00 +00:00
Luke Taylor 7fa9a959b5 Added webAppRootKey context-param to samples to prevent conflicts when run together in Tomcat. 2008-12-16 21:13:03 +00:00
Luke Taylor 681f1ee00c Fix duplicate logging. 2008-12-16 19:07:31 +00:00
Luke Taylor 2927b8464f SEC-1058: Substantial refactoring of AbstractProcessingFilter to use AuthenticationFailureHandler strategy. Also changed attemptAuthentication method to take a response object and have the option of returning null, to allow OpenIDAuthenticationProcessingFilter to work without having to throw exceptions between the template methods (which made the logic very hard to follow). The OpenID filter now redirects to the OpenID provider service from this method, rather than treating it as a temporary failure and throwing OpenIDAuthenticationRequiredException. 2008-12-14 22:20:21 +00:00
Luke Taylor df771038b4 SEC-1051: Fixed class names in dms sample app context. 2008-12-12 17:43:09 +00:00
Luke Taylor 6ccdcec629 SEC-1033: Added web expressions to tutorial sample configuration. 2008-12-08 21:56:44 +00:00
Luke Taylor bc6878c1c5 SEC-1044: Removed remember-me functionality from http auto-config namespace configuration. Added explicit <remember-me> elements to contacts and tutorial sample configurations. 2008-12-05 16:36:43 +00:00
Luke Taylor 3cbad3ebd7 Corrected comment. 2008-12-05 16:04:22 +00:00
Luke Taylor 781b09e889 SEC-1036: Updated ldap sample pom 2008-11-29 14:16:08 +00:00
Ben Alex 7e562031cc Better demonstrate the new EL-based "overdraft" authorization rules. 2008-11-19 09:32:04 +00:00
Luke Taylor f3b3004085 Removed references to Acegi in contacts sample home page 2008-11-15 06:28:01 +00:00
Luke Taylor 78065ba47c Fixed up contacts sample: removed casfailed page, corrected debug.jsp errors and fixed incorrect bean reference in context files. 2008-11-15 03:38:49 +00:00
Luke Taylor 3261fcb174 Tidying stuff 2008-11-14 07:16:30 +00:00
Luke Taylor 464da0f0df SEC-999: Refactored namespace to take an expression handler instead of a permission evaluator, allowig fo greater cusomtomization and for a single handler to be used in both web and method security expressions. 2008-11-13 07:41:21 +00:00
Luke Taylor e5b1073501 SEC-1012: Added more generics and warning suppression 2008-11-11 09:06:50 +00:00
Luke Taylor 7731a3df57 Typo. 2008-11-11 03:41:50 +00:00
Luke Taylor e11114ce77 SEC-1023: Add hasPermission() support to SecurityExpressionRoot
http://jira.springframework.org/browse/SEC-1023.

hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
2008-11-10 04:27:25 +00:00
Luke Taylor d6cd392a9e Tidying up some stuff in tutorial app 2008-11-07 06:55:00 +00:00
Luke Taylor d6bb6ccbf5 Removed .cvsignore files 2008-11-06 01:11:08 +00:00
Luke Taylor a7d046357b SEC-1013: Refactored out use of ConfigAttributeDefinition from remaining interfaces 2008-10-30 04:10:54 +00:00
Luke Taylor 4aa32f7d06 SEC-999: First commit of expression-based authorization implementation 2008-10-24 00:38:36 +00:00
Luke Taylor 6c8a82fa13 Updated poms to Spring 2.5 and fixed up sandbox to work with latest build 2008-10-15 05:52:40 +00:00
Luke Taylor a62eae4587 Script for running all the sample apps 2008-10-15 05:49:31 +00:00
Luke Taylor 7cc0965383 SEC-1001: Move core tiger code into core and adjust pom files 2008-10-03 15:23:31 +00:00
Luke Taylor 5b9bb8ba54 [maven-release-plugin] prepare for next development iteration 2008-09-05 19:04:22 +00:00
Luke Taylor 73eed2656d [maven-release-plugin] prepare release spring-security-parent-2.0.4 2008-09-05 18:57:43 +00:00
Luke Taylor 6e06789a28 SEC-937: Added CAS logout filter to sample application 2008-07-28 10:53:55 +00:00
Luke Taylor d9634bcb39 SEC-920: Update preauth sample to make use of internal authentication manager
http://jira.springframework.org/browse/SEC-920. Updated context file to use <custom-authentication-provider>.
2008-07-11 10:56:57 +00:00
Luke Taylor 6ff0b969d5 Corrected ldap sample config (traditional bean version was wrong) 2008-06-23 23:43:48 +00:00
Luke Taylor 775a6c3939 [maven-release-plugin] prepare for next development iteration 2008-06-23 14:10:35 +00:00
Luke Taylor 87d50aecce [maven-release-plugin] prepare release spring-security-parent-2.0.3 2008-06-23 14:05:36 +00:00
Luke Taylor 57558de3ec Added error page URL to openid login sample 2008-06-23 13:18:35 +00:00
Luke Taylor 5ec06778f5 removed optional scope from jaxen dependecy in preauth sample as it breaks war file 2008-06-23 13:00:03 +00:00
Scott Battaglia 5b089aea16 SEC-852
provided mechanism to do get a proxy ticket
2008-06-18 17:34:14 +00:00
Ben Alex de897ad1ac SEC-867: Remove superfluous <property /> entry. 2008-06-05 22:51:47 +00:00
Luke Taylor ff785a829f [maven-release-plugin] prepare for next development iteration 2008-06-03 16:07:20 +00:00
Luke Taylor db1d8604a6 [maven-release-plugin] prepare release spring-security-parent-2.0.2 2008-06-03 16:05:40 +00:00
Luke Taylor d784d854cd Corrected log file name. 2008-06-03 14:57:40 +00:00
Luke Taylor cf4072c517 Context file improvements (based on sts suggestions) 2008-05-25 20:57:07 +00:00
Luke Taylor 859e99edf4 SEC-851: Fix port number in LDAP sample. 2008-05-23 21:24:48 +00:00
Luke Taylor 4f6b4e4bfd Make sample login pages use c:out for data output 2008-05-15 12:48:13 +00:00
Luke Taylor d4defb10fe SEC-833: Fixed login-failure-url in contacts sample app. 2008-05-14 22:41:13 +00:00
Luke Taylor 5cf0c84e2f SEC-814: Added standard bean config to ldap example and updated doc to provide some pointers to DefaultLdapAuthoritiesPopulator 2008-05-06 14:50:14 +00:00
Luke Taylor a599ef5398 [maven-release-plugin] prepare for next development iteration 2008-05-01 20:09:03 +00:00
Luke Taylor 3e808335a4 [maven-release-plugin] prepare release spring-security-parent-2.0.1 2008-05-01 20:07:46 +00:00
Luke Taylor 18a9965b80 Moved dummy file out of default package for easy exclusion from javadoc 2008-05-01 19:45:36 +00:00
Luke Taylor fc498954c6 Updated sample context files to point at 2.0.1 schema 2008-05-01 17:51:48 +00:00
Luke Taylor 014f21ee85 Deleted attributes sample 2008-05-01 17:50:47 +00:00
Luke Taylor 882509fb2a Renamed context file 2008-04-24 00:27:37 +00:00
Luke Taylor eba18675fc Removed old acegi file from tutorial sample as it's causing confusion with users. 2008-04-23 21:08:41 +00:00
Luke Taylor 80cd7f4acc Removed accidental commit of tutorial context file 2008-04-23 13:13:56 +00:00
Luke Taylor 0cf745b85f Updated clean plugin to 2.2 2008-04-22 21:59:40 +00:00
Luke Taylor 1663142cf1 SEC-784: removed 'optional' tag on dependencies 2008-04-19 12:40:17 +00:00
Ben Alex b5dc523041 [maven-release-plugin] prepare for next development iteration 2008-04-14 07:06:44 +00:00
Ben Alex 0c42670431 [maven-release-plugin] prepare release spring-security-parent-2.0.0 2008-04-14 07:05:46 +00:00
Luke Taylor 8f52c6a79c Corrected name in cas samples pom 2008-04-13 21:26:43 +00:00
Luke Taylor da72a7dc00 Forgot to add cas samples parent pom 2008-04-13 00:25:11 +00:00
Luke Taylor 0422cb1f8f Fixed artifact groups for aspectjrt and added cas sample to project build 2008-04-13 00:08:18 +00:00
Luke Taylor 83c152e379 SEC-768: Changed exception to error reported through parser context. Added entry-point-ref to cas config 2008-04-13 00:02:46 +00:00
Luke Taylor 42cd91e259 Some updates to contacts sample to match description in docs, remove unnecessary cas code etc. 2008-04-12 18:08:35 +00:00
Luke Taylor c7f182309f Removed excess config from tutorial sample file 2008-04-12 17:17:46 +00:00
Ben Alex 677607bcad SEC-530: Refactor ACL module so ACE manipulation is index-based as
opposed to AccessControlEntry.getId() based.
2008-04-05 20:43:10 +00:00
Luke Taylor d5a751e784 Added log4j dependency 2008-04-01 19:14:41 +00:00
Ben Alex f7ae69880c Minor tweaking so the tutorial is a little more illustrative of the present namespace capabilities. 2008-04-01 17:15:31 +00:00
Luke Taylor 21e83e8364 [maven-release-plugin] prepare for next development iteration 2008-04-01 15:03:29 +00:00
Luke Taylor 91ed7dceb6 [maven-release-plugin] prepare release release_2_0_0_RC1 2008-04-01 15:01:30 +00:00
Luke Taylor 4d306c2c1e Fix spring-portlet dep at 2.0.8 2008-04-01 12:43:08 +00:00
Luke Taylor e05d1da102 Refactored AuthenticationUserDetailsService to userdetails package as it isn't preauth specific 2008-03-31 23:08:30 +00:00
Scott Battaglia ea489baf6f SEC-730
updated configuration to new CAS client
2008-03-28 18:25:02 +00:00
Ben Alex 1490fe0b0a Various fine-tuning so people can see AspectJ expressions and a simple, minimal configuration. 2008-03-28 00:47:08 +00:00
Ben Alex 595a14dbd5 Sample should permit people to anonymously call all methods except post(Account). 2008-03-28 00:44:42 +00:00
Luke Taylor ef5b3e2f9c SEC-733: Changed names of <global-method-security> attributes as discussed with Ben and updated sample to reflect the changes. Also changed explicit instantiation of Jsr250 and Secured annotation MethodDefinitionSource beans in GlobalMethodSecurityBDP into bean definitions to make more tooling friendly. 2008-03-26 21:48:24 +00:00
Luke Taylor 071c91540c SEC-722: Added explicit login page to open-id element in openid sample. 2008-03-26 17:01:54 +00:00
Luke Taylor 743d72ca7b Added log4j support to tutorial app 2008-03-26 15:27:09 +00:00
Luke Taylor 1cd7865ed5 SEC-729: Removed version numbers and jstl declarations from sample parent pom 2008-03-26 15:21:41 +00:00
Ben Alex 0860333a3f SEC-733: AspectJ Pointcut Expression Parsing support. 2008-03-25 08:28:53 +00:00
Ben Alex f67c7bcb38 Update dependency versions and POM structure 2008-03-24 09:06:46 +00:00
Ben Alex 6ab301981c Update dependency versions and POM structure. 2008-03-24 09:05:44 +00:00
Luke Taylor 9a02b9862e Fixed preauth sample configuration to match recent changes in naming in core code. 2008-03-23 23:03:28 +00:00
Luke Taylor b54e3978dc SEC-729: Organization of pom dependencies, particularly for servlet-api and jstl. Some other adjustments, removal of unrequired deps etc 2008-03-23 00:31:32 +00:00
Luke Taylor 1d47945893 Added portlet and ldap samples to build 2008-03-22 11:43:24 +00:00
Luke Taylor 69f2075872 SEC-722: Fix jstl versions in openID sample login page. 2008-03-22 00:05:53 +00:00
Luke Taylor 563dabda2f SEC-722: Add Open ID Namespace Support
http://jira.springframework.org/browse/SEC-722. Added OpenIDProvider to bean registry and fixed login page generator to use correct URL for OpenID. Added user-service-ref to namespace element. Changed OpenID sample to use <openid-login />.
2008-03-21 23:47:09 +00:00
Luke Taylor d333655b0b Updated to commons logging 1.1.1 to get rid of servlet api dependency in their pom 2008-03-20 19:43:55 +00:00
Luke Taylor f3a6f768ba SEC-724: Create portlet sample
http://jira.springframework.org/browse/SEC-724
2008-03-19 17:58:07 +00:00
Luke Taylor 8f7b216de3 Import cleaning, removal of unnecessary constructors etc based on eclipse warnings 2008-03-17 14:10:22 +00:00
Luke Taylor 114969f7f7 SEC-706: Removed LDAP dependencies from tutorial app, since we now have a separate sample 2008-03-17 14:06:13 +00:00
Luke Taylor 1e28a67410 SEC-706: Added sample app with LDAP configuration 2008-03-14 12:14:27 +00:00
Luke Taylor e5a7303015 Remove unnecessary deps 2008-03-06 22:23:40 +00:00
Luke Taylor ff16c413dd [maven-release-plugin] prepare for next development iteration 2008-02-29 14:55:31 +00:00
Luke Taylor b8916ffaba [maven-release-plugin] prepare release release_2_0_M2 2008-02-29 14:54:15 +00:00