Commit Graph

336 Commits

Author SHA1 Message Date
Luke Taylor 893f212fa5 Tidying 2010-01-02 19:53:19 +00:00
Luke Taylor 115d5b84ff [maven-release-plugin] prepare for next development iteration 2009-12-22 22:20:01 +00:00
Luke Taylor 6c6ef08353 [maven-release-plugin] prepare release spring-security-3.0.0.RELEASE 2009-12-22 22:19:38 +00:00
Luke Taylor e64866ae6a Updated bundlor templates and introduced spring.version variable 2009-12-22 01:10:04 +00:00
Luke Taylor aeed49393c Switching StringBuffer to StringBuilder throughout the codebase (APIs permitting). 2009-12-18 18:44:42 +00:00
Luke Taylor 520e733cb2 [maven-release-plugin] prepare for next development iteration 2009-12-08 21:19:41 +00:00
Luke Taylor f2cf17bd49 [maven-release-plugin] prepare release spring-security-3.0.0.RC2 2009-12-08 21:19:20 +00:00
Luke Taylor adfac7e718 Added gradle file for cas and standardised ehcache version 2009-12-08 01:54:15 +00:00
Luke Taylor dab76249db Added gradle build files (experimental) 2009-12-04 21:33:17 +00:00
Luke Taylor 4582afa739 Spelling fix in Javadoc 2009-11-29 13:17:58 +00:00
Luke Taylor 999eadc540 Minor refactoring to use generics and avoid converting collections to arrays. 2009-11-25 22:51:53 +00:00
Luke Taylor 330e71eb8f Minor Javadoc. 2009-11-25 21:01:04 +00:00
Luke Taylor 693d2bce03 SEC-1286: Fixed toString() output. 2009-11-17 21:44:52 +00:00
Luke Taylor c922021d28 SEC-1287: Regression with fix SEC-1022 - cannot register custom permissions w/BasicLookupStrategy. Added setter method for PermissionFactory field. 2009-11-17 13:13:54 +00:00
Luke Taylor 3f963ef8ca Restore versions and svn URLs in trunk (release plugin fail) 2009-10-11 21:59:38 +00:00
Luke Taylor af563e826c [maven-release-plugin] prepare release spring-security-3.0.0.RC1 2009-10-11 21:43:42 +00:00
Luke Taylor 6aee4f0ee4 Removed commented out method. 2009-10-07 15:45:32 +00:00
Luke Taylor f213cc5d9e SEC-1257: APIs using List<ConfigAttribute> should use a Collection instead. Converted. 2009-10-06 19:46:44 +00:00
Luke Taylor caff3ee9ba SEC-1231: Authentication.getAuthorities should be of type Collection<GrantedAuthority> and not List<GrantedAuthority>. Refactored the interface and related classes to match (UserDetails etc). 2009-10-05 19:28:53 +00:00
Luke Taylor 40759ab232 SEC-925: BasicLookupStrategy - support for schema qualifier. Added setters for ACL SQL statements. 2009-09-30 12:32:22 +00:00
Luke Taylor 9639340fef SEC-1049: RoleHierarchy in SidRetrievalStrategy. Added optional RoleHierarchy injection to SidRetrievalStrategyImpl 2009-09-16 19:59:37 +00:00
Luke Taylor 9374bddceb Added test class for AccessControlListTag. 2009-09-16 19:20:07 +00:00
Luke Taylor 9f76db0606 SEC-1022: Remove use of static methods/initializers in Acl Permissions. Added extra constructors to DefaultPermissionFactory to allow injection of custom permissions to the registry. 2009-09-16 18:42:44 +00:00
Luke Taylor 24155d4abe SEC-1022: Remove use of static methods/initializers in Acl Permissions. Added setter for PermissionFactory to AclPermissionEvaluator 2009-09-16 15:32:17 +00:00
Luke Taylor 3f70d79df5 SEC-1022: Remove use of static methods/initializers in Acl Permissions. Converted PermissionFactory to a strategy which is used to convert integers and names to Permission instances. 2009-09-16 12:45:53 +00:00
Luke Taylor 0d7b990e0a SEC-1184: Moved ACL cache classes and interface out of jdbc package. 2009-08-31 22:15:37 +00:00
Luke Taylor 6236858356 SEC-951: Acl Serialization Errors that cohere with parent-child-structure of Acls. Modified tests to reproduce the issue and applied suggested fix (recursive call to set transient fields on parent). 2009-08-31 19:15:13 +00:00
Luke Taylor 5a8772df5b Reset pom versions post release 2009-08-21 12:02:49 +00:00
Luke Taylor 0e5aa7008d [maven-release-plugin] prepare release spring-security-3.0.0.M2 2009-08-20 15:51:26 +00:00
Luke Taylor 72af366a72 SEC-1172: Added extra constructor which allows setting of the config attribute name. 2009-06-09 14:21:42 +00:00
Luke Taylor 39d76d5b5f SEC-1165: Relax the requirement that the ObjectIdentity "type" be a Java class. Modified ObjectIdentity, changing the javaType property to "type" which is now a plain String. Also removes the requirement that the class be present on the classpath when creating the ObjectIdentityImpl instance (e.g. in the case of a permissions administration app which doesn't actually use the domain classes itself). 2009-06-09 00:17:45 +00:00
Luke Taylor 131ba5c62e Reset poms to 3.0.0.CI-SNAPSHOT after tagging M1 release 2009-05-27 00:12:30 +00:00
Luke Taylor e2c218e8c9 [maven-release-plugin] prepare release spring-security-3.0.0.M1 2009-05-26 23:44:11 +00:00
Luke Taylor 45c54c558c Updated build to use maven.springframework.org deps 2009-05-13 06:16:05 +00:00
Luke Taylor 76438b3347 SEC-1132: Refactoring of access/intercept package to extract packages and classes which are externally depended on or potentially may be used outside of the standard interceptor model (e.g. SecurityMetadataSource) 2009-05-11 05:44:31 +00:00
Luke Taylor 9875cbec8b SEC-1132: Restructuring of ACL packages 2009-05-11 05:20:09 +00:00
Luke Taylor acd7dc1f2d SEC-1151: Fixed check on ACE list bounds in AclImpl and updated tests 2009-05-08 03:10:25 +00:00
Luke Taylor c6dfee69d4 SEC-1038: Changed JdbcMutableAclServiceTests to facilitate testing with PostgreSQL and updated JdbcMutableAclService to use a the id obtained from the ObjectIdentity directly rather than calling toString() on it before passing to the JDBC call. 2009-05-06 14:29:53 +00:00
Luke Taylor 29fafbbf18 Misc tidying up of old files and refactoring of tests 2009-05-05 13:29:59 +00:00
Luke Taylor 459a3095c4 SEC-1041: Applied patch with minor modifications - introduces permission constructor which sets pattern "on" code to '*' as a default. 2009-04-30 07:58:53 +00:00
Luke Taylor c96da98e14 Removed unnecessary toString() 2009-04-27 10:41:16 +00:00
Luke Taylor da823b2396 Tidying up. 2009-04-27 10:37:55 +00:00
Luke Taylor d0a308c99b SEC-1107: Added test to attempt to reproduce issue. 2009-04-27 10:21:31 +00:00
Luke Taylor bd1d19f372 Fix mockito usage error. 2009-04-26 11:20:03 +00:00
Luke Taylor a5792b094a More generification to remove last warnings in Acl package. 2009-04-26 10:05:55 +00:00
Luke Taylor 8570d864dc Generifying DefaultPermissionFactory 2009-04-26 09:57:41 +00:00
Luke Taylor 22e7142f45 SEC-998: Bundlor enabled in web, ldap, config and core modules 2009-04-24 09:12:53 +00:00
Luke Taylor 30fe9a0935 Remove dependency on commons collections (ArrayIterator). 2009-04-23 05:39:50 +00:00
Luke Taylor 21e36e0a57 Updated version number from 2.5.0-SNPSHOT to 3.0.0.CI-SNAPSHOT 2009-04-22 12:55:52 +00:00
Luke Taylor 5509da7a2e SEC-1141: ObjectIdentityImpl has incorrect hashCode implementation. Modified equals method to compare longValue of Number identifier types and use standard equals for other serializable identifiers. 2009-04-22 02:08:00 +00:00
Luke Taylor 21c608389c SEC-1128: Changed to use ClassUtils.forName to load "javaType" class. 2009-04-21 07:54:49 +00:00
Luke Taylor fd1af34add Minor javadoc stuff. 2009-04-21 06:06:13 +00:00
Luke Taylor 75d5e8f5f2 Spelling correction. 2009-04-21 03:38:43 +00:00
Luke Taylor 3adbbdf50d SEC-1081: Minor Acl refactoring to remove generic warnings. Minor efficiency improvements. 2009-04-21 02:54:17 +00:00
Luke Taylor d5f5b0860e SEC-1132: Refactoring to remove package cycles in ACL module. 2009-04-15 10:04:45 +00:00
Luke Taylor 93bdcccaee SEC-1132: Moved userdetails into core and added core/authority sub-package 2009-04-15 07:39:21 +00:00
Luke Taylor 10673780db OPEN - issue SEC-1136: Removed SpringSecurityException. Introduced new AclException as base class for Acl module. Refactored JAAS authentication to map to AuthenticationExcpetions rather than SpringSecurityException. Modified ExceptionTranslationFilter to look explicitly for AuthenticationException or AccessDeniedException (which it should do since these are the only two it handles). 2009-04-13 14:56:49 +00:00
Luke Taylor ca7d055c2b SEC-1132: Created core and authentication packages within core module. 2009-04-13 13:43:23 +00:00
Luke Taylor 9efb5a7007 SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet 2009-04-12 12:23:23 +00:00
Luke Taylor 2a9a8a41db SEC-1125: Created separate web module spring-security-web 2009-03-25 06:28:18 +00:00
Luke Taylor 766aca885b SEC-1054: Add method "clear" to interface AclCache. As requested. 2009-03-16 09:31:52 +00:00
Luke Taylor ef3ea65fdb Switching back to 2.5.0-SNAPSHOT after tagging M1 release 2009-01-03 07:42:19 +00:00
Luke Taylor fc5f50501e [maven-release-plugin] prepare release 2.5.0.M1 2009-01-03 07:08:25 +00:00
Luke Taylor 4a41416c9b Tidying up and removing compiler warnings. 2008-12-21 16:36:16 +00:00
Luke Taylor 6003291a68 Updated to use new Sprig test classes and to remove data dependencies between tests. 2008-12-21 16:34:26 +00:00
Luke Taylor 14c50a9c96 SEC-1012: Java-5-ifying the ACL package. 2008-12-21 01:41:30 +00:00
Luke Taylor cc5966bc7e Tidying up, removing compiler warnings etc. 2008-12-20 00:16:49 +00:00
Luke Taylor 8154161ef5 SEC-1035: Updated build to use Spring 3.0.0.M1 Release 2008-12-18 02:37:00 +00:00
Luke Taylor 3fcc7b5403 SEC-1051: Moved voter and afterinvocation packages into acl package. Also moved filterer classes fom core, as they are used in the acl after-invocation classes 2008-12-12 12:47:42 +00:00
Luke Taylor 6197668fa6 renamed test file 2008-12-02 15:36:35 +00:00
Luke Taylor 7505b734d6 Converted to use jmock. 2008-12-02 12:17:13 +00:00
Luke Taylor 7bf47f2d97 Converted to use jmock. 2008-12-02 12:06:09 +00:00
Luke Taylor 51549a9f6f Added missing '$' to Id. 2008-11-30 23:20:49 +00:00
Luke Taylor 67c06d3d52 SEC-1012: Adding generics and general tidying up of tests etc 2008-11-15 13:00:38 +00:00
Luke Taylor a9d69ac4e8 Tidied up test class. 2008-11-15 10:54:34 +00:00
Luke Taylor 31375b7212 SEC-1012: Futher generification. Also changed method signature of ObjectDefinitionSource.getAllConfigAtributes to return a single collection 2008-11-15 09:35:11 +00:00
Luke Taylor e5b1073501 SEC-1012: Added more generics and warning suppression 2008-11-11 09:06:50 +00:00
Luke Taylor 62986c700b SEC-1027: Removed bnd plugin and 'bundle' package types from pom.xml files 2008-11-11 01:09:37 +00:00
Luke Taylor e11114ce77 SEC-1023: Add hasPermission() support to SecurityExpressionRoot
http://jira.springframework.org/browse/SEC-1023.

hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
2008-11-10 04:27:25 +00:00
Luke Taylor d33b13e52e SEC-1023: Added support for hasPermission() based on Id and type 2008-11-05 22:44:46 +00:00
Luke Taylor d601301de6 SEC-1023: Fix broken test. 2008-11-05 04:14:29 +00:00
Luke Taylor 1c3b576d91 SEC-1023: PermissionEvaluator based on the Acl module. 2008-11-05 03:45:50 +00:00
Luke Taylor 7ff5602dbc Convert AclImplTests to use JMock mocks. 2008-11-04 06:43:08 +00:00
Luke Taylor 04e2fc7daf Tidying. 2008-11-04 06:36:49 +00:00
Luke Taylor 514bca669f SEC-999: Introduced custom SecurityExpressionEvaluationContext which is responsible for lazy initialization of parameter values in the context. Also some further conversion of code using GrantedAuthority arrays. 2008-10-31 11:40:11 +00:00
Luke Taylor ec44f2bdfe SEC-1012: Refactoring of use of GrantedAuthority[] to generified collections 2008-10-31 03:53:00 +00:00
Luke Taylor a7d046357b SEC-1013: Refactored out use of ConfigAttributeDefinition from remaining interfaces 2008-10-30 04:10:54 +00:00
Luke Taylor c947d42146 SEC-1010: Moved TestingAuthenticationProvider and token to main core src tree and updated poms to match 2008-10-15 06:35:11 +00:00
Luke Taylor 6c8a82fa13 Updated poms to Spring 2.5 and fixed up sandbox to work with latest build 2008-10-15 05:52:40 +00:00
Luke Taylor 7cc0965383 SEC-1001: Move core tiger code into core and adjust pom files 2008-10-03 15:23:31 +00:00
Luke Taylor 5b9bb8ba54 [maven-release-plugin] prepare for next development iteration 2008-09-05 19:04:22 +00:00
Luke Taylor 73eed2656d [maven-release-plugin] prepare release spring-security-parent-2.0.4 2008-09-05 18:57:43 +00:00
Ben Alex c45b4e0989 SEC-951: Overcome serialization error caused by BasicLookupStrategy failing to modify AccessControlEntryImpl.acl field to the replacement AclImpl (previously old references to StubAclParent were retained). 2008-09-05 05:33:41 +00:00
Ben Alex 0f8ea229c2 SEC-908: Correct issue with BasePermission static initialization failure. 2008-09-05 04:33:52 +00:00
Luke Taylor 4165e15861 Fix issues with move of TestingAuthenticationToken 2008-08-04 20:14:20 +00:00
Luke Taylor 775a6c3939 [maven-release-plugin] prepare for next development iteration 2008-06-23 14:10:35 +00:00
Luke Taylor 87d50aecce [maven-release-plugin] prepare release spring-security-parent-2.0.3 2008-06-23 14:05:36 +00:00
Ben Alex b403216494 SEC-838: Make fields in AbstractAclProvider protected to facilitate subclass reuse. 2008-06-06 03:01:51 +00:00
Ben Alex 371769740a SEC-831: Improve support for Postges, which requires "AS" for table aliasing, together with stored procedures for sequence allocation. 2008-06-06 02:55:53 +00:00
Ben Alex e38d5dfd87 SEC-813: Allow custom Permission classes to be used. 2008-06-06 02:37:19 +00:00
Ben Alex ff5666ae83 SEC-819: Properly support integer (and other numeric) identifiers. 2008-06-06 01:05:46 +00:00
Luke Taylor ff785a829f [maven-release-plugin] prepare for next development iteration 2008-06-03 16:07:20 +00:00
Luke Taylor db1d8604a6 [maven-release-plugin] prepare release spring-security-parent-2.0.2 2008-06-03 16:05:40 +00:00
Luke Taylor 4b45e5d7c2 Fixed OSGi version numbers in ranges [x,y] by adding a property pom.version.osgi 2008-05-25 20:55:17 +00:00
Luke Taylor a599ef5398 [maven-release-plugin] prepare for next development iteration 2008-05-01 20:09:03 +00:00
Luke Taylor 3e808335a4 [maven-release-plugin] prepare release spring-security-parent-2.0.1 2008-05-01 20:07:46 +00:00
Luke Taylor 6ecfa0541f SEC-806: Osgi-ified more modules 2008-05-01 17:11:31 +00:00
Ben Alex e7e256a9d5 SEC-787: Consistently use lowercase in all ACL module SQL statements. 2008-05-01 07:48:10 +00:00
Luke Taylor 0c28845d4e SEC-787: Converted SQL in BasicLookupStrategy to lower case to make it consistent with other classes. 2008-04-26 13:08:31 +00:00
Ben Alex b5dc523041 [maven-release-plugin] prepare for next development iteration 2008-04-14 07:06:44 +00:00
Ben Alex 0c42670431 [maven-release-plugin] prepare release spring-security-parent-2.0.0 2008-04-14 07:05:46 +00:00
Ben Alex 54882fe1ea SEC-670: Provide mutator for JdbcMutableAclService.foreignKeysInDatabase property. 2008-04-05 22:57:02 +00:00
Ben Alex 8a7bfafce9 SEC-670: Deadlock avoidance. 2008-04-05 22:49:37 +00:00
Ben Alex 64442b6645 SEC-590: Correct misuse of "continue" keyword so ACLs retrieved even when last element is already cached. 2008-04-05 22:33:59 +00:00
Ben Alex 8919b203e6 SEC-422: Correct SQL to increase database compatibility. 2008-04-05 22:13:23 +00:00
Ben Alex d79485a975 SEC-547: Release database connections between each layer of parent lookups. 2008-04-05 21:19:42 +00:00
Ben Alex 677607bcad SEC-530: Refactor ACL module so ACE manipulation is index-based as
opposed to AccessControlEntry.getId() based.
2008-04-05 20:43:10 +00:00
Ben Alex 9e9b69ec8f SEC-572: Permit null parent for an AclImpl. 2008-04-05 08:16:19 +00:00
Ben Alex c6ea734d8f SEC-589: Fine-tune NotFoundException handling and JavaDocs generally. 2008-04-05 08:07:20 +00:00
Ben Alex 340020ad3a SEC-655: Evict from the cache any children ACLs of the ACL being updated. 2008-04-05 06:17:05 +00:00
Ben Alex 5cf5140029 SEC-527: Correct serialization issues with EH-CACHE. 2008-04-05 05:58:11 +00:00
Ben Alex f5a464bc39 Make compile Java 1.4 compatible (no autoboxing). 2008-04-05 05:17:19 +00:00
Ben Alex 8f645f97f7 Improve toString() method to use Class.getName(). 2008-04-05 04:05:07 +00:00
Ben Alex 833b76c011 SEC-676: Remove child ACLs from cache during delete. 2008-04-05 03:42:16 +00:00
Ben Alex 1036074d26 More robust null handling in equals(Object) method. 2008-04-05 03:41:25 +00:00
Ben Alex af9715c168 SEC-697: Add setOwner(Sid) to MutableAcl interface. 2008-04-05 03:08:45 +00:00
Ben Alex 337155f0ea SEC-602: Retrieve true underlaying class, properly handling CGLIB enhanced versions. 2008-04-05 02:46:27 +00:00
Ben Alex bf41423b5b Various modest documentation improvements. 2008-04-04 00:49:34 +00:00
Luke Taylor 21e83e8364 [maven-release-plugin] prepare for next development iteration 2008-04-01 15:03:29 +00:00
Luke Taylor 91ed7dceb6 [maven-release-plugin] prepare release release_2_0_0_RC1 2008-04-01 15:01:30 +00:00
Ben Alex 6ab301981c Update dependency versions and POM structure. 2008-03-24 09:05:44 +00:00
Luke Taylor 8f7b216de3 Import cleaning, removal of unnecessary constructors etc based on eclipse warnings 2008-03-17 14:10:22 +00:00
Luke Taylor ff16c413dd [maven-release-plugin] prepare for next development iteration 2008-02-29 14:55:31 +00:00
Luke Taylor b8916ffaba [maven-release-plugin] prepare release release_2_0_M2 2008-02-29 14:54:15 +00:00
Luke Taylor 5187f89fe8 SEC-679: Removed use of MockApplicationContext and improved use of ehcache (shutting down cache managers after tests are run). Upgraded ehcache version to 1.3 as used in Spring pom. 2008-02-22 13:34:20 +00:00
Luke Taylor 2dd9faabc0 SEC-674: Created new project modules for cas, captcha, acls and taglibs 2008-02-19 20:30:53 +00:00