fb3f4af3b2
when extracting the original user, fix by referencing by the interface (UserDetail) rather than the concrete class (User)
2005-09-20 02:28:01 +00:00
24394b7b2b
added fix to preserve custom UserDetails implementations (Matt DeHoust fix recommendation)
2005-09-19 02:22:44 +00:00
d44b570087
Disable failing tests until Marc-Antoine has a chance to look at them.
2005-09-18 22:38:37 +00:00
ae9e7733db
Fix broken tests.
2005-09-18 22:38:05 +00:00
1455029435
Refactor lifecycle methods into separate files, so that subclasses can extend specific classes or interfaces to achieve the desired subset of lifecycle capabilities.
2005-09-15 08:13:09 +00:00
be578c99d1
Add setId(Long) back into class, as Hibernate 3.0.5 gives Lazy Initialization Exception if using field="access" when trying to do a getId() on a lazily loaded association.
2005-09-09 06:10:13 +00:00
ddd69c751f
Automatically ensure Validators accessing DAOs receive detached instances. Also provide DetachmentContextHolder ThreadLocal, so that this behaviour can be specified whenever required.
2005-09-09 03:59:34 +00:00
1119b665f8
Make createOrUpdate(E) delegate to Manager methods, not to the DAO method of the same name.
2005-09-09 03:58:04 +00:00
3794c608ad
Remove setId(Long). This means access="field" needs to be used with Hibernate.
2005-09-09 03:56:58 +00:00
35ca25f085
BasicAuthenticationProcessingFilter no longer creates HttpSession via WebAuthenticationDetails call.
2005-09-08 11:15:48 +00:00
c64a3770de
Prove that 403 errors are handled by web.xml <error-page>.
2005-09-08 10:20:34 +00:00
c7dcceb05c
Do not setAuthenticated(false) in the event of a public (unsecured) invocation. Thanks to Joseph Dane for reporting this issue on acegisecurity-developer on 3 September 2005.
2005-09-08 09:32:24 +00:00
1bd4d0beca
Started adding Java 5 Annotation documentation, including example configuration and usage.
2005-09-05 05:56:39 +00:00
e850849be5
Added Java 5 Annotations version of the BankService sample. Note: This project requires the Secured annotation which is in "core-tiger"... make sure you have built and installed the acegi-security-tiger-0.9.0-SNAPSHOT.jar in your local maven repo.
2005-09-05 04:38:45 +00:00
61df8e9f7b
Support multiple SessionFactory instances (not just one).
2005-09-04 23:08:02 +00:00
3f24824f66
updated config, added switchUserProcessingFilter to the filter chain, added the ROLE_SUPERVISOR the ability to switch to other users (i.e. ROLE_USER)
...
For example: 'marissa' can login, goto the /switchUser.jsp, then assume the role of another user such as 'scott'. marissa will then see scotts contacts, etc.
Then marissa can goto the /exitUser.jsp, and go back to 'marissa'
This is the similar to the Unix 'su' analogy that Ben made
2005-09-04 20:09:56 +00:00
fce510fa9f
added core-tiger
2005-09-04 20:07:12 +00:00
230d1946b9
added switchUserProcessingFilter config, not added to filter chain (yet)
2005-09-03 21:45:32 +00:00
3dcea7ace0
initial pages for user switching
2005-09-03 21:44:05 +00:00
486bbee35d
added context path to redirect
2005-09-03 21:43:08 +00:00
9d359780d9
finish user context switch event publishing
2005-09-03 20:24:35 +00:00
4ae14cc7bc
ignore target
2005-08-25 03:07:12 +00:00
c68dbf1090
renamed to acegi-security-tiger
2005-08-25 03:05:15 +00:00
20ebb668a6
Added event for user context switching and updated switch user filter
2005-08-25 02:59:19 +00:00
55f5c3397a
Relocated JdbcDaoExtendedImpl.convertAclObjectIdentityToString to superclass (pursuant to suggestion made by Tim Kettering on acegisecurity-developer).
2005-08-23 22:45:17 +00:00
2bda6ec25c
Fix: SEC-48 http://opensource2.atlassian.com/projects/spring/browse/SEC-48
...
If the principal is an instanceof UserDetails, UserDetails.getUsername();
2005-08-23 15:15:06 +00:00
438130ef4c
Use same groupId as Apache Repo and iBiblio Repo.
2005-08-22 21:42:47 +00:00
9b648357fe
Fixed sdocbook plugin url
2005-08-22 21:30:54 +00:00
fc1fe03871
Automatically introspect generic to determine supports(Class) instead of relying on IoC container or Java code to specify it.
2005-08-21 10:36:26 +00:00
ebb99abc78
Ensure that classes implementing the BindBeforeValidation interface have the method called *before* validation, as Validator implementations will sometimes check the properties modified by BindBeforeValidation implementations.
2005-08-21 10:34:50 +00:00
c5e060dc09
Fix generics.
2005-08-21 10:31:41 +00:00
9ea795927e
Provide Maven POM for sandbox, so that users can easily build its contents.
2005-08-21 10:30:18 +00:00
204582d2fc
For convenience of users of Acegi Security Domain subproject, include the source code in the sources ZIP file.
2005-08-21 10:29:22 +00:00
cbdb3ed8da
Add Jared Odulio's blog entry.
2005-08-21 10:18:26 +00:00
40a81ed220
Revisit synchonization issue and correct problem identified by Volker Malzahn.
2005-08-21 10:10:16 +00:00
e805aa2e73
Add annotation support.
2005-08-21 09:40:09 +00:00
c2e927e01d
Add Pascal Gehl's blog entry.
2005-08-21 08:43:29 +00:00
975de1e043
Add .cvsignore files so that empty directories are created in CVS. Remove package.html files that do not belong to a particular package and were simply directory markers.
2005-08-21 08:19:02 +00:00
0f1c802b47
adding core-tiger to the multiproject includes
2005-08-13 03:21:41 +00:00
0a8699003f
Initial checkin of Security Java 5 Annotation support
...
(see http://opensource.atlassian.com/projects/spring/browse/SEC-4 )
Note: I have created a new source dir "core-tiger" for Java 5 related core security classes, as well as test dir.
Note: project.properties should compile this project using 1.5.
WAR test application using Spring 1.2 Transaction Annotations and Security to follow
2005-08-12 02:57:38 +00:00
ec5e39c2e8
Initial checkin of user security context switching (see SEC-15). This is the first cut of the SwitchUserProcessingFilter that handles switching to a target uesr and exiting back to the original user. Note: This is going to be used for the common use-case of an Administrator 'switching' to another user (i.e. ROLE_ADMIN -> ROLE_USER). This is the initial cut of a Unix 'su' for Acegi managed web applications.
2005-08-04 05:49:12 +00:00
27a57410c1
Update to latest Spring tld
2005-08-02 17:27:30 +00:00
72e3a24c22
Merged from the refactoring branch. Needs user tested, and better documented; but its stable enough that I'm committing it.
2005-08-02 02:50:27 +00:00
b371f35cfc
File created in the LDAP refactoring branch; (currently not being used) in the MAIN/HEAD branch. This is a JavaBean which is used to create JNDI SearchControls Objects for use in searching LDAP DirContexts.
2005-08-02 02:34:16 +00:00
1502ba9409
File as created in the LDAP refactoring branch. with a number of JavaDoc comments added for clarity.
2005-08-02 02:31:51 +00:00
725ec767b6
Javadoc typo corrected (as suggested on mailing list)
2005-08-01 20:05:02 +00:00
9421b66611
These are really renamings, not deletions, but since its CVS we have to make do with adding a "new" file with a different name.
2005-08-01 18:24:49 +00:00
1f46005dad
Renamed, and refactored version of the LdapPasswordAuthenticationTest which works with the newest 'stable' verion of the LdapPasswordAuthenticationDao.
2005-08-01 18:22:00 +00:00
3762ba25e8
Fixed dumb mistake in the DN of the second user object.
2005-08-01 18:17:06 +00:00
b634b27550
Fixed license header, updated to point to new location of helper classes in the .support package.
2005-08-01 03:12:04 +00:00
Mark St. Godard
Ben Alex
Ray Krueger
Carlos Sanchez
Luke Taylor
Robert Sanders