07fb2af74b
SEC-3011: AbstractUrlAuthorizationConfigurer postProcess default AccessDecisionManager
2015-07-21 08:52:36 -05:00
ab1b7a1eb6
Remove unnecessary @SuppressWarnings
2015-07-21 08:51:32 -05:00
7c725a60e2
SEC-3047: SecurityContextHolderAwareRequestFactory update RequestFactory
2015-07-20 14:06:44 -05:00
9b92d5a1e7
SEC-2963: Fix tests
2015-07-20 12:53:21 -05:00
e25b84c902
SEC-2963: Update to latest Google AppEngine
2015-07-20 12:36:29 -05:00
9654df2cc3
SEC-3045: Conditionally add MethodSecurityMetadataSourceAdvisor
2015-07-17 15:16:09 -05:00
a3df41b380
Clean Import Statements
2015-07-17 14:52:23 -05:00
abc445d5a7
SEC-2965: Polish
2015-07-16 15:52:00 -05:00
518a1c3c08
SEC-2965: Fix invalid formatted links in reference documentation
2015-07-16 15:27:04 -05:00
1ca5946d74
SEC-3003: Document invalid intercept-url attributes for filter-security-metadata-source
2015-07-16 15:03:51 -05:00
76a2fb9488
SEC-3020: SecurityContextHolderAwareRequestWrapper conditional rolePrefix
...
Previously SecurityContextHolderAwareRequestWrapper always prefixed with
rolePrefix. This meant the defaults would never return true for a role
that started with the prefix (i.e. ROLE_).
We no longer apply the rolePrefix if the value passed in already starts
with rolePrefix.
2015-07-16 14:49:32 -05:00
2d448658cd
SEC-3042: Add SecurityTestExecutionListeners
2015-07-16 13:51:37 -05:00
4cafd575c0
SEC-3041: Fix WithSecurityContextTestExecutionListener w/ no ApplicationContext
2015-07-16 13:13:46 -05:00
0e36f85dab
SEC-3019: Java Config for Http Basic supports Rememberme
2015-07-16 11:12:44 -05:00
b96cee7950
SEC-2984: WithMockUser authorities doc
2015-07-16 08:48:53 -05:00
e4517016ca
SEC-2984: Add @WithMockUser authorities property
2015-07-16 08:41:40 -05:00
08b1b56e2c
SEC-2973: Add OnCommittedResponseWrapper
...
This ensures that Spring Session & Security's logic for performing
a save on the response being committed can easily be kept in synch.
Further this ensures that the SecurityContext is now persisted when
the response body meets the content length.
2015-07-14 14:48:41 -05:00
316886affc
SEC-2931: Fix CsrfFilter Javadoc
2015-07-14 13:40:59 -05:00
75f57b96cb
SEC-2493: Fix javadoc for DefaultLdapAuthoritiesPopulator
2015-07-14 13:20:05 -05:00
3832647ecf
Remove unused imports
2015-07-14 16:35:11 +03:00
aad4e70374
SEC-3034: AclPermissionEvaluator specifies Locale.ENGLISH
2015-07-13 23:54:32 -05:00
821333434d
SEC-3013: Add messages_en.properties
2015-07-13 23:18:45 -05:00
474d624e8e
SEC-2988: Renamed OnBeanCondition.java to OnMissingBeanCondition.java
2015-07-13 22:51:45 -05:00
64938ebcfc
SEC-2996: Suport configuring SecurityExpressionHandler<Message<Object>>
2015-07-13 22:45:35 -05:00
3db01bd9d6
SEC-3002: Add JUnit Assume to GCM encryption tests
...
Not all JDKs have GCM installed on them.
2015-07-13 16:22:18 -05:00
92c23fbbdc
Upgrade to a version of Powermock that’s compatible with JUnit 4.12
2015-07-13 15:42:50 -05:00
a48cc18858
SEC-3002: Add new option for AES encryption with GCM
...
The Galois Counter Mode (GCM) is held to be superior than the current
default CBC. This change adds an extra parameter to the constructor
of AesBytesEncryptor and a new convenience method in Encryptors.
2015-07-09 23:27:33 -05:00
ca0ffb8b5d
SEC-2948: Fix error message for wrong xsd schema
...
When using the wrong xsd schema < 4.0 a message was shown that the
schema needed to be version 3.2.
In reality this schema had to be version 4.0.
2015-07-09 23:17:16 -05:00
aed288da05
Fix Spring IO Tests
2015-07-08 11:48:43 -05:00
1f74ac811e
Fix Spring IO Tests
2015-07-08 11:09:29 -05:00
350b48e3fd
Use the latest version of the Spring IO Plugin
...
Spring IO Platform 2.0 will remove the managed versions .properties
file as support for it has been removed in Spring Boot 1.3.
This commit moves the build onto a new version of the Spring IO Plugin
that uses the Maven bom rather than the properties file.
2015-07-08 08:42:07 -05:00
197ddb3cd1
SEC-3029: Fix Compatibility with Spring 4.2.x
2015-07-07 22:46:31 -05:00
848523e47a
SEC-3029: Add springSnapshotTests
...
Test against Spring Framework's latest Snapshots
2015-07-07 22:43:06 -05:00
d1cfb1ca74
SEC-2757: Removed assertion of 'sn' needing to be defined on Person when creating LdapUserDetails
2015-06-15 16:54:54 -04:00
d272b069aa
Fix a broken link to a blog posting on the Spring website
2015-06-15 10:11:00 +09:00
7b4a37f27e
SEC-2967w: Update to Gradle 2.4
2015-05-07 10:16:07 -05:00
7b158d0525
SEC-2966: Fix preauth-xml sample config attributes
2015-05-07 10:10:20 -05:00
0a118336d4
SEC-2955: Convert to "static" for inner classes
2015-04-30 12:54:52 -05:00
1a716d0593
SEC-2954: Update ActiveDirectoryLdapAuthenticationProvider javadoc
...
Cleaning up docs to match
cd352f665b (diff-c7d6415af2848047b4b7bde824f66fcb)
2015-04-30 11:54:18 -05:00
a67ef1c3a2
SEC-2944: Polish
2015-04-30 10:00:04 -05:00
3099f92154
SEC-2944 Add HttpStatusReturningLogoutSuccessHandler
...
* Add HttpStatusReturningLogoutSuccessHandler to provide better logout capabilities for RESTful APIs
2015-04-30 09:56:02 -05:00
a46ad0f446
SEC-2951: Polish
2015-04-30 09:52:52 -05:00
013177c644
SEC-2951: Document Logouthandler and LogoutSuccesshandler
...
Jira: https://jira.spring.io/browse/SEC-2951
2015-04-30 09:37:17 -05:00
600927def6
SEC-2952: Document Spring Security leveraging WebMvcConfigurerAdapter
2015-04-29 10:18:02 -05:00
f1352ba492
SEC-2942: Add test EnableWebSecurity supports AuthenticationPrincipal
2015-04-23 16:34:04 -05:00
81055feb82
Next development version
2015-04-22 18:04:28 -07:00
f548d89b27
SEC-2932: SecurityContextConfigurer defaults SecurityContextRepository
2015-04-22 16:50:51 -05:00
1bca645add
SEC-2935: Multiple MockMvc invocations proper SecurityContext setup
...
Previously if a MockMvc instance was setup with a user and then again with
no user, then the original user would be setup.
This commit ensures that if a user is setup and then no user is setup no
user is used.
2015-04-22 16:12:18 -05:00
e08e9cda00
SEC-2851: Remove DataAccessException import from Persistent RememberMe
2015-04-21 14:57:32 -05:00
09acc2b7a5
SEC-2962: SecurityContextHolderAwareRequestFilter default rolePrefix
2015-04-21 11:42:48 -05:00
Rob Winch
Andrew Barchuk
Andy Wilkinson
Dave Syer
Stijn
Carl Karawani
Yi EungJun
Alex Panchenko
kris
Gunnar Hillert
Spring Buildmaster