969bbff00c
SEC-18: Preemptive method invocation security checking helper.
21 years ago
731d7b2e89
SEC-113 Provide MethodInvocationUtils.
21 years ago
72256a225f
SEC-73: Support storage and retrieval of actual Principal object (such as UserDetails) from PrnicipalAcegiUserToken.
21 years ago
7847af2664
Fix for SEC-111. Added a try/finally block to make sure context is always reset after the invocation.
21 years ago
6a1a4abb1d
SEC-104: Move to org.acegisecurity package.
21 years ago
79c3ba521b
Resolved and/or inhibit build warnings as seen in Eclipse 3.1. Please refer to http://opensource2.atlassian.com/projects/spring/browse/SEC-93 for more info.
21 years ago
b1d247835a
Stop causing an exception when there is no AuthenticationException to ApplicationEvent mapping. Requested by Brian Moseley on acegisecurity-developer 10 November 2005.
21 years ago
c167e9fd87
Change SecurityContextHolder to ThreadLocal due to IBM JDK 1.3 issues as described at http://tinyurl.com/8zhka and reported by Scott McCrory on acegisecurity-developer 8 November 2005.
21 years ago
b938b6b363
Increased SiteminderAuthenticationProcessinfFilter test coverage from 70% to 93%.
21 years ago
df9deea4de
Only clear SecurityContextHolder if the Authentication object has not changed.
21 years ago
97f3ad79cb
Removed unused imports & organized the remnants.
21 years ago
55f5093ec7
SEC-94: DaoAuthenticationProvider to include UserDetails in BadCredentialsException.
21 years ago
309b559a8f
Removed unused imports.
21 years ago
e02dbd5c34
Changed class names to match new context classes.
21 years ago
0aef31d302
Converted ApplicationContextAware classes to ApplicationEventPublisherAware (SEC-69).
21 years ago
6511677f93
Moved duplicate setting of null authentication to setUp method.
21 years ago
bba77b64e9
Corrected javadoc
21 years ago
5cb7575b2b
Corrected references to old context class names in Javadoc and logging.
21 years ago
5a51f391a4
Add UsernameNotFoundException to default exception to event mappings list.
21 years ago
aa4fd8586c
Fix concurrent session interaction bug where UserDetails.getUsername() may have been override to be a different value than the original login request, as per email from Herryanto Siatono on acegisecurity-developer 5 November 2005.
21 years ago
0aa4989dad
JaasAuthenticationProvider no longer supports the useSystemProperty setting.This is because it no longer uses the java.security.auth.login.config system property for configuring Jaas. Custom Jaas configuration needs can be implemented in a subclass that overrides the configureJaas method.
...
JaasAuthenticationProvider now handles logout by associating the LoginContext with a new JaasAuthenticationToken
21 years ago
6049e9ac65
Removed string concatenation from buffer.append methods
21 years ago
9be82a3d8f
SEC-67: Enhance taglib to allow retrieval of custom UserDetails methods.
21 years ago
31a1f0be1a
SEC-52: Move potentially useful methods to an abstract superclass so that other voters can use them.
21 years ago
6e389ca1b8
SEC-51: Use long instead of int for ACL primary keys.
21 years ago
633f2cfe66
SEC-39: Add equals(Object) method to User.
21 years ago
7faf2741f1
SEC-32: Patches to move isPermissable(int) method to the BasicAclEntry interface. Thanks to Andres March for this patch.
21 years ago
a42dec6fbf
SEC-21: Initial commit.
21 years ago
e9b1d9452f
SEC-9 and SEC-55: Refactor DaoAuthenticationProvider and deprecate PasswordDaoAuthenticationProvider.
21 years ago
f50cbd31ba
SEC-38: Make InMemoryDaoImpl support external Properties objects.
21 years ago
0d77abb9c1
SEC-64: Correct operation with Orion Web Application Server. Patch thanks to Paul Brooks.
21 years ago
d9be0f86fd
SEC-53: BasicProcessingFilter only to reauthenticate if the SecurityContextHolder contains an unauthenticated Authentication, or an Authentication with a different username.
21 years ago
690ab27a52
SEC-70 and SEC-71: Refactor event publishing.
21 years ago
b6dbfde55c
SEC-70: Refactor event publishing.
21 years ago
3811200599
Improve debug output.
21 years ago
2cbe42f493
SEC-7: Allow better chaining of authentication providers.
21 years ago
42c47c086a
JavaDocs formatting.
21 years ago
f8b0de3459
Corrected Javadoc link to interface name.
21 years ago
5235727d23
SEC-2
...
Refactor the CaptchaChannelProcessor and extract a CaptchaChannelProcessor that is an abstract class and add its implementations.
Jalopy on all java files.
21 years ago
1ae07779a2
SEC-710: Refactor concurrent session handling support.
21 years ago
a5ffda7369
SEC-63: Do not return an absolute URL unless switching from HTTP to HTTPS.
21 years ago
c6d5363e5d
SEC-60: Make method more friendly towards Hibernate detached object. Please note my comments in the JIRA task, as I believing calling toString() is not an unreasonable expectation.
21 years ago
d49198a944
SEC-43: Eliminate id column.
21 years ago
41202112bc
SEC-37: Only update HttpSession if SecurityContext has actually been changed.
21 years ago
494e35f009
Jalopy styling.
21 years ago
24a78be159
Corrected link in Javadoc.
21 years ago
c065c46668
Javadoc correction: ContextHolder -> SecurityContextHolder
21 years ago
df4b8f602f
Javadoc correction: SecureContext -> SecurityContext
21 years ago
b2363dfe07
SEC-62 Add maven 2 support
21 years ago
a39339674e
login.config.url should be set to a url, not a file path
...
The System property java.security.auth.login.config will only be used if the useSystemProperty option is enabled. This is the default.
21 years ago
Ben Alex
Luke Taylor
Scott McCrory
Ray Krueger
Marc-Antoine Garrigue
Carlos Sanchez