Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-25 00:46:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,340 Commits 34 Branches 337 Tags
Commit Graph

642 Commits

Author SHA1 Message Date
Ben Alex
de4af379cc SEC-252: Stop NPE if principal object is null. 2006-04-26 03:00:14 +00:00
Ben Alex
fba45cb19e SEC-208: Fix threading issue. 2006-04-26 02:54:18 +00:00
Carlos Sanchez
88e8e60861 [SEC-240] Moved log4j.properties to test folder to avoid including it in jar 2006-04-26 02:39:56 +00:00
Ben Alex
5f79a25860 SEC-243: SessionRegistryImpl no longer incorrectly includes expired sessions. 2006-04-26 02:36:37 +00:00
Ben Alex
948f79e2e2 SEC-219: Support complex tokenization scenarios. 2006-04-26 02:23:19 +00:00
Ben Alex
14683dcbc7 SEC-190: Add hashCode() and equals() methods. 2006-04-26 01:41:10 +00:00
Ben Alex
36c096858d SEC-223: Improve hashCode() performance. 2006-04-26 01:31:17 +00:00
Ben Alex
57aee4e605 SEC-218: Fix authentication exception cleanup of SecurityContextHolder. 2006-04-26 01:28:06 +00:00
Ben Alex
8cff715599 SEC-222: Improve hashCode() to use XOR. 2006-04-26 01:18:42 +00:00
Scott McCrory
e39bd43541 SEC-217 - Improve Siteminder Filter - now authenticates on calls to both j_security_check and the default target URL if the user isn't already authenticated. Thanks Paul Garvey for determining this and providing solution code. 2006-04-25 23:19:30 +00:00
Scott McCrory
e44c5e66d3 As per SEC-193, removed unnecessarily overridden methods. 2006-04-25 23:01:04 +00:00
Luke Taylor
4d9f99acc4 Added getter for authoritiesPopulator. Fix for SEC-227. 2006-04-18 23:44:07 +00:00
Luke Taylor
596882804f First commit of LdapTemplate class, a la Spring JdbcTemplate, as suggested by Ben to simplify Ldap connection handling etc. 2006-04-18 22:34:04 +00:00
Luke Taylor
3d51c46575 Added license header. 2006-04-18 22:27:17 +00:00
Luke Taylor
f61a58d98b Added a couple more tests. 2006-04-16 21:18:12 +00:00
Luke Taylor
7a0a87a167 Added support for LDAP SSHA (salted SHA) encoded passwords. 2006-04-16 21:12:39 +00:00
Luke Taylor
c6dd545de0 Javadoc change. 2006-04-16 17:11:44 +00:00
Luke Taylor
e5bef3f31b Added doc for @throws 2006-04-16 17:11:06 +00:00
Luke Taylor
9c8a4c2f74 Fix for SEC-237. Make LDAP Provider reject empty username. 2006-04-16 16:41:08 +00:00
Luke Taylor
743cc9fec7 Fix for SEC-215. Check for empty nameInNameSpace before appending. 2006-04-16 16:11:02 +00:00
Luke Taylor
d5885baf6b Added some comments. 2006-04-16 16:00:32 +00:00
Luke Taylor
3f06c51379 Fix for SEC-225. Allow empty search base in authorities populator. 2006-04-16 15:37:48 +00:00
Luke Taylor
48716af20a Removed unnecessary package names left over from refactoring. 2006-04-16 15:25:33 +00:00
Luke Taylor
072a4c3d18 Fix for SEC-226. Added ability to set derefLinkFlag property. 2006-04-16 15:15:55 +00:00
Luke Taylor
267c846e12 Sort out LDAP tests to match up with moved production classes. 2006-04-16 14:31:13 +00:00
Luke Taylor
bf4fca9126 Move non security-specific LDAP classes to org.acegisecurity.ldap package 2006-04-16 14:26:46 +00:00
Luke Taylor
7c69668589 Deprecated, pending deletion. 2006-04-16 14:12:23 +00:00
Luke Taylor
bbd250e442 Modified to use classes from org.acegisecurity.ldap package 2006-04-16 14:05:28 +00:00
Luke Taylor
7f24e209a6 Move non security-specific LDAP classes to org.acegisecurity.ldap package 2006-04-16 13:56:36 +00:00
Luke Taylor
0c1ab7f98c Corrected a couple of Javadoc typos. 2006-04-15 12:32:50 +00:00
Scott Battaglia
9a8fdcd269 SEC-196 
updated references to Yale CAS to JA-SIG CAS
 2006-03-28 15:41:20 +00:00
Scott Battaglia
b0d4cbceac updated javadoc to reflect proper value of getPrincipal 2006-03-28 14:05:57 +00:00
Scott Battaglia
3d0f746719 SEC-224 
updated CasAuthenticationToken to be consistant with approach taken by other providers with regards to authentication.getPrincipal()
 2006-03-14 16:15:51 +00:00
Ben Alex
51f1b33af9 SEC-209: Make eventPublisher protected. 2006-03-07 13:04:12 +00:00
Luke Taylor
7e7920ce00 Fix for SEC-202. Intialize manager password to default "manager_password_not_set". 2006-02-28 17:47:55 +00:00
Scott Battaglia
5607da8d67 updated references from Yale CAS to JA-SIG CAS 2006-02-27 13:52:41 +00:00
Luke Taylor
6abceb7ab0 Additional changes related to SEC-192 (avoiding session creation when creating WebAuthenticationDetails). Also fixed Jalopy chaos in SwitchUserProcessingFilter. 2006-02-20 00:37:39 +00:00
Luke Taylor
52a212e609 Removed "== true" in boolean. 2006-02-20 00:27:36 +00:00
Luke Taylor
5475ab0575 Modify AbstractAuthenticationManager to transfer the details object from authentication request to the resulting authentication token, provided it has not already been set on the latter by an authentication provider. 2006-02-19 23:50:21 +00:00
Luke Taylor
c88b9093c0 Remove unnecessary check for null. 2006-02-19 22:35:37 +00:00
Luke Taylor
ee41d24447 Javadoc correction. 2006-02-19 22:23:04 +00:00
Luke Taylor
e12c8310eb Remove unnecessary default constructors which throw IllegalArgumentException. Favours compile time over runtime errors. 2006-02-16 16:44:35 +00:00
Luke Taylor
4b4d4d3332 Added some uses of Spring Assert class and removed one to prevent unnecessary StringBuffer creation. 2006-02-16 01:11:31 +00:00
Luke Taylor
84ccd89061 More readable javadoc. 2006-02-15 19:06:04 +00:00
Luke Taylor
cd7efaf567 Fix for SEC-189. Added getter for initialDirContextFactory. 2006-02-13 16:20:42 +00:00
Luke Taylor
6c29a6d17e Added test for immutability of authorities array. Refactored standard authorities array into an instance field. 2006-02-13 16:16:43 +00:00
Ben Alex
2ab5af0a69 SEC-188: Fix JavaDocs. 2006-02-12 06:29:53 +00:00
Ben Alex
a28a932598 SEC-183: Minimise session creation as a consequence of SEC-168 and SEC-182 changes. 2006-02-09 23:04:29 +00:00
Ben Alex
0282696202 SEC-182: Remember-me compatibility with concurrent session support. 2006-02-09 10:32:49 +00:00
Ben Alex
b1dd784dee SEC-180: BasicProcessingFilter should configurably ignore authentication failures. 2006-02-09 06:41:31 +00:00