d0dc47cb66
Remove logging for "Skip invoking on" response committed
...
Fixes gh-3683
2016-02-25 11:01:51 -06:00
9008a7af1d
Allow override of SwitchUserFilter.ROLE_PREVIOUS_ADMINISTRATOR
...
Fixes gh-3697
2016-02-15 09:03:27 -06:00
56fad169db
request.setMethod("POST")
2015-12-21 14:53:13 -06:00
7d5af63510
Merge pull request #243 from panchenko/SEC-3158
...
SEC-3158 findRequiredWebApplicationContext() compatibility with spring framework 4.1
2015-12-03 22:14:58 -06:00
81db6abbe0
SEC-3164: JDK6 compatability
2015-12-02 14:16:57 -06:00
cfa23b152e
SEC-3164 Optimization in DefaultRequiresCsrfMatcher
2015-12-01 13:19:13 +06:00
3af4140742
SEC-3158 findRequiredWebApplicationContext() compatibility with spring framework 4.1.x
2015-12-01 12:54:08 +06:00
4144de9376
SEC-3082: make SavedRequest parameters case sensitive
2015-10-29 16:46:11 -05:00
8f13beccb7
SEC-2190: Fix Javadoc
2015-10-29 11:41:39 -05:00
8b641e5f79
SEC-2190: Support WebApplicationContext in ServletContext attribute
2015-10-28 15:12:35 -05:00
5c73816a1a
SEC-3108: DigestAuthenticationFilter should use SecurityContextHolder.createEmptyContext()
2015-10-27 13:56:51 -05:00
a88ac0fcc1
SEC-3109: Fix web tests
2015-10-26 21:31:07 -05:00
cda6532c43
SEC-3070: Logout invalidate-session=false and Spring Session doesn't
...
work
2015-10-20 14:58:57 -05:00
3925ed90c4
SEC-3124: Fix broken Javadoc related to `<` and `>`
2015-10-13 13:33:28 -05:00
29f2cc0ab1
snasphot -> snapshot
2015-09-25 15:28:39 -05:00
97969ea9d2
SEC-2059: Ignore Query String for Resolving Path Variables
2015-09-01 09:53:29 -05:00
6b05b298ff
SEC-2059: Support Path Variables in Web Expressions
2015-08-20 17:11:01 -05:00
969f3a7d1b
Update pom.xml to latest snapshots
2015-08-03 09:46:01 -05:00
ad1d858e2b
SEC-3056 - Fix JavaDoc errors.
...
Fixed JavaDoc errors accross multiple modules in order to make javadoc happy with Java 8.
2015-08-03 08:02:24 -05:00
117f892c91
SEC-3031: DelegatingSecurityContext(Runnable|Callable) only modify SecurityContext on new Thread
...
Modifying the SecurityContext on the same Thread can cause issues. For example, with a
RejectedExecutionHandler the SecurityContext may be cleared out on the original Thread.
This change modifies both the DelegatingSecurityContextRunnable and DelegatingSecurityContextCallable to,
by default, only modify the SecurityContext if they are invoked on a new Thread. The behavior can be changed
by setting the property enableOnOrigionalThread to true.
2015-07-22 16:07:21 -05:00
e8c9f75f9c
Update pom.xml to latest versions
2015-07-22 12:51:04 -05:00
432123daa2
SEC-2964: Fix CsrfTokenArgumentResolver Javadoc
2015-07-22 11:32:36 -05:00
92ae45a04d
SEC-3051: Add AbstractPreAuthenticatedProcessingFilter#principalChanged
2015-07-22 08:41:33 -05:00
7c725a60e2
SEC-3047: SecurityContextHolderAwareRequestFactory update RequestFactory
2015-07-20 14:06:44 -05:00
76a2fb9488
SEC-3020: SecurityContextHolderAwareRequestWrapper conditional rolePrefix
...
Previously SecurityContextHolderAwareRequestWrapper always prefixed with
rolePrefix. This meant the defaults would never return true for a role
that started with the prefix (i.e. ROLE_).
We no longer apply the rolePrefix if the value passed in already starts
with rolePrefix.
2015-07-16 14:49:32 -05:00
08b1b56e2c
SEC-2973: Add OnCommittedResponseWrapper
...
This ensures that Spring Session & Security's logic for performing
a save on the response being committed can easily be kept in synch.
Further this ensures that the SecurityContext is now persisted when
the response body meets the content length.
2015-07-14 14:48:41 -05:00
316886affc
SEC-2931: Fix CsrfFilter Javadoc
2015-07-14 13:40:59 -05:00
aed288da05
Fix Spring IO Tests
2015-07-08 11:48:43 -05:00
1f74ac811e
Fix Spring IO Tests
2015-07-08 11:09:29 -05:00
197ddb3cd1
SEC-3029: Fix Compatibility with Spring 4.2.x
2015-07-07 22:46:31 -05:00
0a118336d4
SEC-2955: Convert to "static" for inner classes
2015-04-30 12:54:52 -05:00
a67ef1c3a2
SEC-2944: Polish
2015-04-30 10:00:04 -05:00
3099f92154
SEC-2944 Add HttpStatusReturningLogoutSuccessHandler
...
* Add HttpStatusReturningLogoutSuccessHandler to provide better logout capabilities for RESTful APIs
2015-04-30 09:56:02 -05:00
e08e9cda00
SEC-2851: Remove DataAccessException import from Persistent RememberMe
2015-04-21 14:57:32 -05:00
09acc2b7a5
SEC-2962: SecurityContextHolderAwareRequestFilter default rolePrefix
2015-04-21 11:42:48 -05:00
d5dfeeca49
SEC-2927: Update chat-jc pom so Maven Builds
...
Previously there were some incorrect dependency versions. This commit fixes
that.
We added dependencyManagement for Spring Framework and corrected
Thymeleaf and embedded redis versions.
2015-04-20 15:53:26 -05:00
0bfbd2923a
SEC-2915: Fix defaut login page tests with tabs
2015-04-17 12:13:44 -05:00
4fdfb8caba
SEC-2915: More Tabs -> Spaces
2015-04-17 11:34:34 -05:00
db531d9100
SEC-2917: Update to Spring 4.1.6
2015-03-25 15:18:59 -05:00
ae6af5d73c
SEC-2915: Updated Java Code Formatting
2015-03-25 13:09:18 -05:00
0a2e496a84
SEC-2915: groovy/gradle spaces->tabs
2015-03-25 13:08:59 -05:00
cf9f58a4ac
SEC-2915: XML spaces->tabs
2015-03-25 13:08:52 -05:00
b85ad33aef
SEC-2888: Polish
2015-03-13 16:10:39 -05:00
85955015f7
SEC-2888 AntPathRequestMatcher ignores variables in pattern when pattern
...
finishes with /**
2015-03-13 16:03:08 -05:00
e776a1fd35
SEC-2803: Add HttpStatusEntryPoint
2015-03-11 14:45:59 -05:00
9d0085bb64
SEC-2882: DefaultLoginPageGeneratingFilter match on /login
...
Previously DefaultLoginPageGeneratingFilter would match on /**/login
which was not ideal since other parts of the application may want to
match on the URL.
Now it matches on /login.
2015-03-10 11:52:26 -05:00
217152c8fd
Polish Http403ForbiddenEntryPoint whitespace
2015-03-10 10:58:58 -05:00
b04388ad62
SEC-2805: Remove unnecessary cast in Http403ForbiddenEntryPoint
2015-03-10 10:58:21 -05:00
62d74aef3d
Merge pull request #103 from bcecchinato/fix-logs
...
Trivial logging fix in saveContext method in HttpSessionSecurityContextRepository
2015-02-25 00:02:44 -06:00
6fd45df1e4
SEC-2879: Add Test
2015-02-24 23:19:04 -06:00
Rob Winch
Andrei Ivanov
Rob Winch
Alex Panchenko
izeye
zhanhb
Thomas Darimont
Gunnar Hillert
Pascal Gehl