3879 Commits

All Branches

Search

Author	SHA1	Message	Date
Scott Battaglia	46ef4239ca	SEC-1228 ... added NO_PASSWORD instead of passing in NULL since the User object does not allowe NULL for the password.	2009-11-18 15:19:55 +00:00
Scott Battaglia	585311aa4a	SEC-1299 ... upgraded to CAS Client for Java 3.1.9	2009-11-18 15:10:16 +00:00
Scott Battaglia	f35cb48407	NOJIRA ... changed constructor back to collection. Accidentally set to List due to old code residing on notebook.	2009-11-18 15:09:56 +00:00
Luke Taylor	6eec9c4d95	Added custom-filter element to namespace appendix in manual	2009-11-17 23:59:36 +00:00
Scott Battaglia	e812c58e04	NOJIRA ... fixed changed constructor	2009-11-17 23:52:26 +00:00
Luke Taylor	5546698fef	SEC-1253: Decouple spring-security-config module from spring-security-web. Added ClassUtils.isPresent() check for FilterChainProxy before attempting to register web-related parsers and decorators. Added use of namespace to dms sample for testing.	2009-11-17 23:39:42 +00:00
Luke Taylor	4d8956a227	SEC-1288: Changed claimedIdentityFieldName in OpenIDAuthenticationFilter to "openid_identifier", as recommended by the 2.0 spec.	2009-11-17 22:05:38 +00:00
Luke Taylor	693d2bce03	SEC-1286: Fixed toString() output.	2009-11-17 21:44:52 +00:00
Luke Taylor	66b1b1957c	SEC-1298: Deleted custom-filter BeanDefinitionDecorator	2009-11-17 21:36:11 +00:00
Luke Taylor	9b49dce8b5	SEC-1297: Added bundlor support to taglibs jar	2009-11-17 17:58:51 +00:00
Luke Taylor	3444b31615	SEC-1291: Add logout namespace support for custom success handler. Added attribute "success-handler-ref" to <logout> element in namespace.	2009-11-17 17:29:43 +00:00
Scott Battaglia	f0a5572188	SEC-1228 ... fixed mistyped class name	2009-11-17 16:26:53 +00:00
Luke Taylor	9eae7b899c	SEC-1284: Added proxy-target-class attribute to method security namespace	2009-11-17 16:19:05 +00:00
Luke Taylor	d84542cf88	SEC-1285: minor vulnerability in BasicProcessingFilter. Changed logging of Basic authentication information.	2009-11-17 15:29:07 +00:00
Luke Taylor	afdd80235c	SEC-1272: <authentication-manager> does not register default event handler DefaultAuthenticationEventPublisher. Fixed Spring RC1 - RC2 regression problem with test (addApplicationListener() behaviour has changed).	2009-11-17 14:34:43 +00:00
Luke Taylor	b39db5b711	Removed jaxen from template.mf	2009-11-17 14:25:20 +00:00
Luke Taylor	c922021d28	SEC-1287: Regression with fix SEC-1022 - cannot register custom permissions w/BasicLookupStrategy. Added setter method for PermissionFactory field.	2009-11-17 13:13:54 +00:00
Luke Taylor	d4d5012035	SEC-1272: <authentication-manager> does not register default event handler DefaultAuthenticationEventPublisher. Update AuthenticationManagerBeanDefinitionParser to register a DefaultAuthenticationeventPublisher and set it on the registered ProviderManager.	2009-11-17 12:55:53 +00:00
Luke Taylor	1898b4df52	Updated scope of commons collections to 'test'	2009-11-17 00:00:59 +00:00
Luke Taylor	ea8d5a8897	Update spring version to RC2	2009-11-17 00:00:28 +00:00
Luke Taylor	fdf46b99eb	Corrected sample code for request-header authentication.	2009-11-14 15:20:19 +00:00
Luke Taylor	9d85168a10	Fix apache-ds shard-ldap version in template.mf (should be 0.9.15)	2009-11-04 18:18:46 +00:00
Luke Taylor	a2468c523a	SEC-1283: AuthenticationConfigBuilder.createAnonymousFilter uses httpElt instead of anonymousElt. Corrected element name.	2009-11-04 17:39:26 +00:00
Luke Taylor	617e517e5e	SEC-1280: NullPointerException in PersistentTokenBasedRememberMeServices when logging out twice. Added check for null authentication in logout method.	2009-11-04 17:20:13 +00:00
Luke Taylor	197737a2b4	SEC-1281: make sure correct 'key' value is used for RememberMeAuthenticationProvider when external RememberMeServices is used	2009-11-04 14:55:58 +00:00
Luke Taylor	248e826342	SEC-1282: Clarified javadoc	2009-11-03 16:31:55 +00:00
Luke Taylor	0b1d0d11d7	Update bundlor to 1.0.0.M6	2009-11-03 15:33:18 +00:00
Luke Taylor	8f5c414b00	Improve cleanup in sample script	2009-10-17 13:00:24 +00:00
Luke Taylor	ce8ac8a5e6	Corrected Spring Version	2009-10-17 12:49:18 +00:00
Luke Taylor	f02f5a1891	Updated mockito to 1.8.0	2009-10-16 15:17:34 +00:00
Luke Taylor	e94c7739d2	Remove dependency on MockAuthenticationManager	2009-10-14 22:14:01 +00:00
Luke Taylor	930c1b6b53	Coverted to Junit 4 test.	2009-10-14 21:48:30 +00:00
Luke Taylor	11e476c486	Added issue numbers in comment.	2009-10-14 14:23:34 +00:00
Luke Taylor	d4d45e1311	Make getHeader() methods check case-insensitive matching on header name.	2009-10-14 14:12:27 +00:00
Luke Taylor	7282eed197	Import cleaning.	2009-10-14 00:30:55 +00:00
Luke Taylor	799b96520b	SEC-1269: Combining <form-login> and <open-id> fails to find entry point. Fixed entry point choice conditions when using openID and/or form-login	2009-10-14 00:30:28 +00:00
Luke Taylor	12d825e557	Removed src-readme.txt (out of date)	2009-10-11 22:12:44 +00:00
Luke Taylor	3f963ef8ca	Restore versions and svn URLs in trunk (release plugin fail)	2009-10-11 21:59:38 +00:00
Luke Taylor	af563e826c	[maven-release-plugin] prepare release spring-security-3.0.0.RC1	2009-10-11 21:43:42 +00:00
Luke Taylor	5f3ff97ce0	Disable aspectj sample	2009-10-11 21:39:14 +00:00
Luke Taylor	16de9920a0	Disable aspects module for release	2009-10-11 21:24:47 +00:00
Luke Taylor	d0c3b5717b	Updated version to RC1	2009-10-11 20:56:12 +00:00
Luke Taylor	768264d717	Enabled bundlor in OpenID and CAS	2009-10-11 20:17:51 +00:00
Luke Taylor	4dc231b3bc	Enabled bundlor in OpenID and CAS	2009-10-11 20:17:18 +00:00
Luke Taylor	7fd03409fc	Updating dependency versions to match spring RC1 ones	2009-10-11 19:58:52 +00:00
Luke Taylor	73df14c912	Allow any ordering of authentication-provider elements within authentication-manager	2009-10-11 19:58:04 +00:00
Luke Taylor	5d3aa1a144	Formatting	2009-10-11 19:41:13 +00:00
Luke Taylor	021f650f3d	Tidying up ldap pom	2009-10-11 15:28:00 +00:00
Luke Taylor	735ecac215	SEC-1255: Forot dispathcer-servlet context	2009-10-11 15:27:09 +00:00
Luke Taylor	bf7d691c45	Update and fix tests	2009-10-11 15:24:42 +00:00