Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2026-01-28 09:10:24 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,522 Commits 49 Branches 370 Tags
Commit Graph

106 Commits

Author SHA1 Message Date
Luke Taylor
2222a7be07 Use Integer.valueOf() in preference to new Integer() 2010-08-11 18:17:23 +01:00
Luke Taylor
1a838c2049 SEC-1533: AclAuthorizationStrategyImpl can now take either one or three GrantedAuthority arguments. If only one is supplied, it will be used for all 3 of the permissions supported by the class. 2010-08-07 14:41:25 +01:00
Luke Taylor
64375484a1 More build and logging tuning. 2010-08-04 22:55:17 +01:00
Luke Taylor
1474e73b11 SEC-1166: Added new interface PermissionGrantingStrategy to allow customization of ACL permission granting logic. 
The DefaultPermissionGrantingStrategy contains the standard behaviour that was previously in AclImpl.
 2010-02-20 18:02:11 +00:00
Luke Taylor
052537c8b0 Removing $Id$ markers and stripping trailing whitespace from the codebase. 2010-01-08 21:05:13 +00:00
Luke Taylor
893f212fa5 Tidying 2010-01-02 19:53:19 +00:00
Luke Taylor
c922021d28 SEC-1287: Regression with fix SEC-1022 - cannot register custom permissions w/BasicLookupStrategy. Added setter method for PermissionFactory field. 2009-11-17 13:13:54 +00:00
Luke Taylor
9639340fef SEC-1049: RoleHierarchy in SidRetrievalStrategy. Added optional RoleHierarchy injection to SidRetrievalStrategyImpl 2009-09-16 19:59:37 +00:00
Luke Taylor
9f76db0606 SEC-1022: Remove use of static methods/initializers in Acl Permissions. Added extra constructors to DefaultPermissionFactory to allow injection of custom permissions to the registry. 2009-09-16 18:42:44 +00:00
Luke Taylor
3f70d79df5 SEC-1022: Remove use of static methods/initializers in Acl Permissions. Converted PermissionFactory to a strategy which is used to convert integers and names to Permission instances. 2009-09-16 12:45:53 +00:00
Luke Taylor
0d7b990e0a SEC-1184: Moved ACL cache classes and interface out of jdbc package. 2009-08-31 22:15:37 +00:00
Luke Taylor
6236858356 SEC-951: Acl Serialization Errors that cohere with parent-child-structure of Acls. Modified tests to reproduce the issue and applied suggested fix (recursive call to set transient fields on parent). 2009-08-31 19:15:13 +00:00
Luke Taylor
39d76d5b5f SEC-1165: Relax the requirement that the ObjectIdentity "type" be a Java class. Modified ObjectIdentity, changing the javaType property to "type" which is now a plain String. Also removes the requirement that the class be present on the classpath when creating the ObjectIdentityImpl instance (e.g. in the case of a permissions administration app which doesn't actually use the domain classes itself). 2009-06-09 00:17:45 +00:00
Luke Taylor
9875cbec8b SEC-1132: Restructuring of ACL packages 2009-05-11 05:20:09 +00:00
Luke Taylor
acd7dc1f2d SEC-1151: Fixed check on ACE list bounds in AclImpl and updated tests 2009-05-08 03:10:25 +00:00
Luke Taylor
c6dfee69d4 SEC-1038: Changed JdbcMutableAclServiceTests to facilitate testing with PostgreSQL and updated JdbcMutableAclService to use a the id obtained from the ObjectIdentity directly rather than calling toString() on it before passing to the JDBC call. 2009-05-06 14:29:53 +00:00
Luke Taylor
29fafbbf18 Misc tidying up of old files and refactoring of tests 2009-05-05 13:29:59 +00:00
Luke Taylor
da823b2396 Tidying up. 2009-04-27 10:37:55 +00:00
Luke Taylor
d0a308c99b SEC-1107: Added test to attempt to reproduce issue. 2009-04-27 10:21:31 +00:00
Luke Taylor
bd1d19f372 Fix mockito usage error. 2009-04-26 11:20:03 +00:00
Luke Taylor
a5792b094a More generification to remove last warnings in Acl package. 2009-04-26 10:05:55 +00:00
Luke Taylor
5509da7a2e SEC-1141: ObjectIdentityImpl has incorrect hashCode implementation. Modified equals method to compare longValue of Number identifier types and use standard equals for other serializable identifiers. 2009-04-22 02:08:00 +00:00
Luke Taylor
3adbbdf50d SEC-1081: Minor Acl refactoring to remove generic warnings. Minor efficiency improvements. 2009-04-21 02:54:17 +00:00
Luke Taylor
d5f5b0860e SEC-1132: Refactoring to remove package cycles in ACL module. 2009-04-15 10:04:45 +00:00
Luke Taylor
93bdcccaee SEC-1132: Moved userdetails into core and added core/authority sub-package 2009-04-15 07:39:21 +00:00
Luke Taylor
ca7d055c2b SEC-1132: Created core and authentication packages within core module. 2009-04-13 13:43:23 +00:00
Luke Taylor
9efb5a7007 SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet 2009-04-12 12:23:23 +00:00
Luke Taylor
2a9a8a41db SEC-1125: Created separate web module spring-security-web 2009-03-25 06:28:18 +00:00
Luke Taylor
4a41416c9b Tidying up and removing compiler warnings. 2008-12-21 16:36:16 +00:00
Luke Taylor
6003291a68 Updated to use new Sprig test classes and to remove data dependencies between tests. 2008-12-21 16:34:26 +00:00
Luke Taylor
14c50a9c96 SEC-1012: Java-5-ifying the ACL package. 2008-12-21 01:41:30 +00:00
Luke Taylor
cc5966bc7e Tidying up, removing compiler warnings etc. 2008-12-20 00:16:49 +00:00
Luke Taylor
6197668fa6 renamed test file 2008-12-02 15:36:35 +00:00
Luke Taylor
7505b734d6 Converted to use jmock. 2008-12-02 12:17:13 +00:00
Luke Taylor
7bf47f2d97 Converted to use jmock. 2008-12-02 12:06:09 +00:00
Luke Taylor
a9d69ac4e8 Tidied up test class. 2008-11-15 10:54:34 +00:00
Luke Taylor
e11114ce77 SEC-1023: Add hasPermission() support to SecurityExpressionRoot 
http://jira.springframework.org/browse/SEC-1023.

hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
 2008-11-10 04:27:25 +00:00
Luke Taylor
d601301de6 SEC-1023: Fix broken test. 2008-11-05 04:14:29 +00:00
Luke Taylor
1c3b576d91 SEC-1023: PermissionEvaluator based on the Acl module. 2008-11-05 03:45:50 +00:00
Luke Taylor
7ff5602dbc Convert AclImplTests to use JMock mocks. 2008-11-04 06:43:08 +00:00
Luke Taylor
514bca669f SEC-999: Introduced custom SecurityExpressionEvaluationContext which is responsible for lazy initialization of parameter values in the context. Also some further conversion of code using GrantedAuthority arrays. 2008-10-31 11:40:11 +00:00
Luke Taylor
ec44f2bdfe SEC-1012: Refactoring of use of GrantedAuthority[] to generified collections 2008-10-31 03:53:00 +00:00
Ben Alex
0f8ea229c2 SEC-908: Correct issue with BasePermission static initialization failure. 2008-09-05 04:33:52 +00:00
Luke Taylor
4165e15861 Fix issues with move of TestingAuthenticationToken 2008-08-04 20:14:20 +00:00
Ben Alex
e38d5dfd87 SEC-813: Allow custom Permission classes to be used. 2008-06-06 02:37:19 +00:00
Ben Alex
ff5666ae83 SEC-819: Properly support integer (and other numeric) identifiers. 2008-06-06 01:05:46 +00:00
Ben Alex
54882fe1ea SEC-670: Provide mutator for JdbcMutableAclService.foreignKeysInDatabase property. 2008-04-05 22:57:02 +00:00
Ben Alex
8a7bfafce9 SEC-670: Deadlock avoidance. 2008-04-05 22:49:37 +00:00
Ben Alex
64442b6645 SEC-590: Correct misuse of "continue" keyword so ACLs retrieved even when last element is already cached. 2008-04-05 22:33:59 +00:00
Ben Alex
677607bcad SEC-530: Refactor ACL module so ACE manipulation is index-based as 
opposed to AccessControlEntry.getId() based.
 2008-04-05 20:43:10 +00:00