Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Spring Security
4,742 Commits 29 Branches 320 Tags 104 MiB
Java 94.7%
Kotlin 4.8%
Groovy 0.3%
Go to file
Nicholas Williams d89ace26ab SEC-2002: Added events to notify of session ID change 
Session fixation protection, whether by clean new session or
migrated session, now publishes an event when a session is
migrated or its ID is changed. This enables application developers
to keep track of the session ID of a particular authentication
from the time the authentication is successful until the time
of logout. Previously this was not possible since session
migration changed the session ID and there was no way to
reliably detect that.

Revised changes per Rob Winch's suggestions.
 		2013-06-05 14:44:17 -05:00
acl SEC-2140: Correct javadoc order of security checkes for AclAuthorizationStrategyImpl 2013-02-28 11:56:55 -06:00
aspects Fixing bundlor warnings. 2011-03-08 16:20:37 +00:00
buildSrc Make rnc transform part of Gradle build 2013-01-03 18:32:32 -06:00
cas SEC-2118: Include missing Bundlor packages 2013-02-25 17:07:09 -06:00
config SEC-2122: Update namespace to support bcrypt. 2013-05-17 19:17:18 +01:00
core SEC-2147: Deprecate .encoding.PasswordEncoding 2013-04-25 08:56:47 -05:00
crypto SEC-2122: Fix broken integration tests. 2013-05-21 23:13:08 +01:00
docs SEC-1785: Remove auto-config from manual. 2013-05-18 21:25:11 +01:00
gradle SEC-2118: Fixing spring and aspectj OSGi version ranges [3.2, 3.2) -> [3.2, 3.3) 2013-02-25 17:05:29 -06:00
itest SEC-2119: Update to 3.2 schema and use default schema version when available 2013-03-01 16:29:27 -06:00
ldap Remove ApacheDSContainerTests successfulStartupAndShutdown since it was commented out 2013-04-25 11:21:23 -05:00
openid SEC-1998: Provide integration with WebAsyncManager#startCallableProcessing 2012-11-28 17:56:03 -06:00
remoting SEC-1975: Ignore anonymous users for AuthenticationSimpleHttpInvokerRequestExecutor 2012-08-09 09:56:07 -05:00
samples SEC-2122: Update samples to use bcrypt. 2013-05-17 18:44:30 +01:00
sandbox SEC-1998: Provide integration with WebAsyncManager#startCallableProcessing 2012-11-28 17:56:03 -06:00
taglibs SEC-1998: Provide integration with WebAsyncManager#startCallableProcessing 2012-11-28 17:56:03 -06:00
web SEC-2002: Added events to notify of session ID change 2013-06-05 14:44:17 -05:00
.gitignore SEC-1995: Move version to gradle.properties so Bamboo can update on releases 2012-07-26 17:26:50 -05:00
CONTRIBUTING.md Update CONTRIBUTING.md 2013-02-25 18:15:23 -06:00
build.gradle SEC-2096: Added release-checks 2012-12-18 15:15:46 -06:00
class_mapping_from_2.0.x.txt SEC-1148: Simple classname mapping from 2.0 to 3.0 2009-12-02 22:44:30 +00:00
gradle.properties Update to 3.2.x and added eclipse suffix to eclipse projects 2012-11-02 10:48:50 -05:00
gradlew Update to Gradle 1.3 2012-11-30 16:33:44 -06:00
gradlew.bat SEC-1906: Fix EmmaPlugin for Gradle 1.0 2012-07-05 22:57:16 -05:00
license.txt Change to Apache License version 2.0. 2004-03-23 04:44:48 +00:00
notice.txt Broaden list of names used and correct URL. 2007-12-03 04:39:17 +00:00
readme.txt SEC-1988: Add contributor guide link to readme.txt 2012-07-10 22:27:19 -05:00
settings.gradle SEC-2092: Add servlet api example 2012-12-11 17:44:57 -06:00

readme.txt 

===============================================================================
                    SPRING SECURITY - README FILE
===============================================================================

-------------------------------------------------------------------------------
OVERVIEW
-------------------------------------------------------------------------------

Spring Security provides security services for the Spring Framework
(http://www.springframework.org). Spring Security 3.1 requires Spring 3.0.3 as
a minimum and also requires Java 5.

For a detailed list of features and access to the latest release, please visit
http://www.springframework.org/projects/.

Spring Security is released under an Apache 2.0 license. See the accompanying
license.txt file.

-------------------------------------------------------------------------------
BUILDING
-------------------------------------------------------------------------------

Please read the "Building from Source" page at
http://static.springframework.org/spring-security/site/.

-------------------------------------------------------------------------------
DOCUMENTATION
-------------------------------------------------------------------------------

Be sure to read the Reference Guide  (docs/reference/html/springsecurity.html).
Extensive JavaDoc for the Spring Security code is also available (in docs/apidocs).
Both can also be found on the website.

-------------------------------------------------------------------------------
QUICK START
-------------------------------------------------------------------------------

We recommend you visit http://static.springframework.org/spring-security/site and
read the "Getting Started" page.

-------------------------------------------------------------------------------
MAVEN REPOSITORY DOWNLOADS
-------------------------------------------------------------------------------

Release jars for the project are available from the central maven repository

http://repo1.maven.org/maven2/org/springframework/security/

Note that milestone releases and snapshots are not uploaded to the central
repository, but can be obtained from the Spring milestone repository, using the
maven repository http://maven.springframework.org/snapshot/. You can't browse this
URL directly, but there is a separate browser interface. Check the downloads page
for more information
http://static.springsource.org/spring-security/site/downloads.html


-------------------------------------------------------------------------------
OBTAINING SUPPORT
-------------------------------------------------------------------------------

There are two types of support available, commercial and community. For
commercial support, please contact SpringSource. SpringSource employ the
people who wrote Spring Security, and lead the development of the project:

  http://www.springsource.com

For peer help and assistance, please use the Spring Security forum
located at the Spring Community's forum site:

  http://forum.springframework.org

Links to the forums, and other useful resources are
available from the web site.

-------------------------------------------------------------------------------
CONTRIBUTING
-------------------------------------------------------------------------------

Contributions are welcome. Please refer to the Contributor Guidelines for details

  https://github.com/SpringSource/spring-security/wiki/Contributor-Guidelines