e473897fd9
SEC-1181: Add docs for ActiveDirectoryLdapAuthenticationProvider. Minor fix to initialization checks.
15 years ago
c4a1ce9f1a
SEC-1725: Update docs to remove references to filter-chain-map.
15 years ago
f28a09dfa4
Formatting changes to CAS documentation
15 years ago
01fb4bdb6d
SEC-1718: Update documentation and sample application to demonstrate how to use a PGT to authenticate to stateless services using a PT
15 years ago
11331d34d9
SEC-1717: Document how to perform Single Logout with CAS and added integration test for sample application to test Single Logout
15 years ago
04f1df2a1b
SEC-965: Updated CAS documentation to describe authenticating proxy tickets
15 years ago
74b0c1780e
SEC-1707: Added metadata-source-ref attribute to namespace appendix.
15 years ago
79e17e22bc
SEC-1703: Updated namespace for intercept-url
15 years ago
d9d5ee1114
SEC-1703: Updated cas custom-filter@ref to match example bean id and custom-filter@position to be CAS_FILTER
15 years ago
9c88576992
Added extra FAQ on "Bad Credentials" message and on testing LDAP authentication. Minor mods to LDAP doc.
15 years ago
236efadfb7
SEC-1698: Update documentation to use correct package for RequestHeaderAuthenticationFilter
15 years ago
1dc309b041
SEC-1689: Minor doc updates related to use of password encoding and the crypto package.
15 years ago
a25d131f21
Some doc clarifications on the use of UserDetailService vs AuthenticationProvider.
15 years ago
b26f2309f4
Add paragraph to manual database appendix to clarify that the standard schema is completely optional if you aren't using JdbcDaoImpl.
15 years ago
9cf8ba02ba
Adding some extra section IDs in namespace appendix to provide bookmarkable URLs.
15 years ago
57c3afd31a
SEC-1689: Adjust manual to remove references to separate crypto module.
15 years ago
5f58108717
Typo.
15 years ago
83050f96cb
SEC-1656: Document potential need for pre-emptive session creation if writing the security context manuall.
15 years ago
4e349904e5
Add missing language attributes to programlisting tags for highlighting.
15 years ago
347a2a91a9
SEC-1494: Document the use of system properties for disabling authorize tag functionality.
15 years ago
60befb063a
SEC-1659: Added crypto module to list of project modules in reference manual intro and to dependencies appendix.
15 years ago
38327d1b16
SEC-1659: crypto docs
15 years ago
afd586c96e
Re-instate the CAS integration sequence description in the CAS chapter, with corrections (and minus proxying).
15 years ago
8da0de459b
SEC-1651: Added remaining module information to dependencies appendix.
15 years ago
b858b23927
SEC-1651: Added first draft of dependencies appendix to reference manual.
15 years ago
8d7830a1ee
SEC-1603: Add support in namespace for use of AuthenticationSuccessHandler with remember-me.
15 years ago
48ea0a6249
SEC-1638: Added paragraph to docs explaining that for complete security, an app should not switch out of HTTPS at all.
15 years ago
7cf9740fd4
SEC-1638: Added an example configuration to the Javadoc for ChannelProcessingFilter and a pointer from the reference manual.
15 years ago
ce421f22bf
SEC-1635: Stop security interceptors from calling AfterInvocationManager if exception occurs during invocation
15 years ago
4a40d80da1
SEC-1418: Deprecate GrantedAuthorityImpl in favour of final SimpleGrantedAuthority.
...
It should be noted that equality checks or lookups with Strings or other authority types will now fail where they would have succeeded before.
15 years ago
89f80659a1
Move docs on request matching to correct file and delete unused one
15 years ago
6b691f6fc0
SEC-1613: Corrected preauth docs.
15 years ago
cf0289bc02
SEC-1598: Removed invalid properties from SessionFixationProtectionStrategy bean declaration in Session Management chapter docbook.
15 years ago
fabadff5f1
SEC-1597: Corrected bean class name for RememberMeAuthenticationProvider in docbook source.
15 years ago
31afb9c76d
Deleted superseded dao-auth-provider.xml chapter.
15 years ago
07b9ded126
SEC-1599: Corrected docbook source.
15 years ago
173537f4f2
SEC-1584: Added namespace support for injecting custom HttpFirewall instance into FilterChainProxy.
15 years ago
f455e9a5a4
SEC-1584: Documentation of request-checking and matching process. Logging of servletPath and and pathInfo in DebugFilter for comparison.
15 years ago
7258abbbf4
SEC-1585: changed spring-beans-3.1.xsd to spring-beans-3.0.xsd
15 years ago
1b2b371970
SEC-1544: Added CookieClearingLogoutHandler and 'delete-cookies' attribute to the 'logout' namespace element.
...
When the user logs out, the handler will attempt to delete the named cookies (which it is constructor-injected with) by expiring them in the response.
Also added documentation on the feature and a suggestion for deleting JSESSIONID through an Apache proxy server, if the servlet container doesn't allow clearing the session cookie.
15 years ago
de819378fc
SEC-1536: added JAAS API Integration, updated doc, updated jaas sample
15 years ago
c5231fc213
SEC-1538: Deprecate PreAuthenticatedGrantedAuthoritiesAuthenticationDetails (forgot originally) and update documentation to remove reference to AbstractPreAuthenticationAuthenticationDetailsSource.
15 years ago
58d9903ebc
SEC-1564: JAAS Configuration can now be injected into DefaultJaasAuthenticationProvider
16 years ago
c1418c7536
Minor change in doc information about samples since these are no longer in maven repo.
16 years ago
35335e84b3
Reset post-release build version.
16 years ago
23c4d1ec28
Set version to 3.1.0.M1.
16 years ago
d04e37c0c4
Minor changes to doc on version numbering. It's not true that minor versions are source/binary compatible.
16 years ago
992566b6cb
SEC-1527: Internationalization of contacts sample (Adding message resource bundle and RequestContextFilter). Re-working of L12n section of manual to mention existing localized message files and use of RequestContextFilter.
16 years ago
4935aa07c7
SEC-1535: Added suggested doc fixes.
16 years ago
bb7165ac6e
SEC-1530: Added information on calling getAllPrincipals() on SessionRegistry for direct use in an application to provide currently logged in users.
16 years ago
Luke Taylor
Rob Winch
Keith Donald