11331d34d9
SEC-1717: Document how to perform Single Logout with CAS and added integration test for sample application to test Single Logout
15 years ago
04f1df2a1b
SEC-965: Updated CAS documentation to describe authenticating proxy tickets
15 years ago
761d5af6ec
SEC-965: Added integration tests for CAS Sample Application
15 years ago
f1c064b3b9
SEC-965: Updated CAS Sample application for proxy authentication
...
* Configured for proxy authentication
* Cleaned up the jsps
* Changed the cas sample context root to cas-sample so the CAS Server's JSESSIONID cookie doesn't remove the cas samples
15 years ago
a76a947b12
SEC-965: Added support for CAS proxy ticket authentication on any URL
15 years ago
373d07ce46
SEC-1181: Added mock testing, to avoid need for AD server
15 years ago
6db7472928
SEC-1181: Added extra I18N messages for LDAP locked, disabled etc.
15 years ago
59ac4c8b96
SEC-1181: Added option to parse AD sub-error codes.
15 years ago
428991d997
Some additional tests to confirm there are no issues with spaces in LDAP URL.
15 years ago
530f686149
SEC-1181: Basic AuthenticationProvider for Active Directory.
15 years ago
4dc5d7d16e
Typo.
15 years ago
8d702a4f98
SEC-1699: Make sure a FilterInvocation is passed to the AccessDecisionManager when checking the login page access in DefaultFilterChainValidator.
15 years ago
acf4b91a89
SEC-1674: Test to check that absolute URLs work in SimpleUrlLogoutSuccessHandler.
15 years ago
f9625836bb
Typo in Javadoc.
15 years ago
ef72dd1986
SEC-1714: RegexRequestMatcher should prepend question mark to query string.
15 years ago
49dd928faa
SEC-1712: Javadoc typo fix.
15 years ago
160fed1bfe
SEC-1713: Fix typo in schema RNC file.
15 years ago
5c05575c0d
Cleaned up warnings in openid module
15 years ago
68ba11ba7b
SEC-1711: Support verifying that attribute exchange parameters were signed
15 years ago
62ba0fca5c
SEC-1710: Added shutdown method to OpenID4JavaConsumer that invokes MultiThreadedHttpConnectionManager.shutdownAll()
15 years ago
3f1d8782c3
Minor fix to bundlor template for config module.
15 years ago
01c9c4e4db
SEC-1697: Don't publish authorization success events in AbstractSecurityInterceptor by default.
15 years ago
74b0c1780e
SEC-1707: Added metadata-source-ref attribute to namespace appendix.
15 years ago
8d99918798
SEC-1491: Add support for an external priority SecurityMetadataSource to be referenced from global-method-security.
15 years ago
3084ad878f
SEC-1491: Added AnnotationMetadataExtractor to SecuredAnnotationSecurityMetadataSource to allow a custom security annotation to be used.
15 years ago
244047ffe9
Delete unused test entities.
15 years ago
ead669f10c
Move single-use annotation test classes into SecuredAnnotationSecurityMetadataDefinitionSourceTests.
15 years ago
ddaf9eb64f
SEC-1705: Make sure a single OpenIDAuthenticationFilter bean is created by the namespace. Likewise for UsernamePasswordAuthenticationFilter.
15 years ago
79e17e22bc
SEC-1703: Updated namespace for intercept-url
15 years ago
d9d5ee1114
SEC-1703: Updated cas custom-filter@ref to match example bean id and custom-filter@position to be CAS_FILTER
15 years ago
9c88576992
Added extra FAQ on "Bad Credentials" message and on testing LDAP authentication. Minor mods to LDAP doc.
15 years ago
78d5495945
SEC-1702: Add Burt's patch implementing hashcode method in AntPathRequestMatcher
15 years ago
4a1908188a
SEC-1701: Trim claimed identity parameter value before submitting to OpenID4Java.
15 years ago
236efadfb7
SEC-1698: Update documentation to use correct package for RequestHeaderAuthenticationFilter
15 years ago
1dc309b041
SEC-1689: Minor doc updates related to use of password encoding and the crypto package.
15 years ago
e470eaa41d
SEC-1689: Moved core codec code into crypto package and removed existing duplication (Hex encoding etc). Refactoring of crypto code to use CharSequence for where possible instead of String.
15 years ago
3a3b2df1c5
Minor rewording of "child web context" FAQ.
15 years ago
bb3b8e4683
Update AspectJPlugin to configure EclipseProject and EclipseClasspath tasks
15 years ago
315c225bcb
Removed unused aspectj gradle file
15 years ago
4654f7065a
SEC-1693: Expand upper bound on EHCache OSGi version to version 2.5
15 years ago
9c09f0b73d
Remove unnecessary repos from main build file (EBR should only be needed for bundlor) and we generally have no need to build against snapshots other than for one-off testing.
15 years ago
50828cdd43
SEC-1689: Move crypto module code to core for simplicity.
15 years ago
a25d131f21
Some doc clarifications on the use of UserDetailService vs AuthenticationProvider.
15 years ago
b26f2309f4
Add paragraph to manual database appendix to clarify that the standard schema is completely optional if you aren't using JdbcDaoImpl.
15 years ago
9cf8ba02ba
Adding some extra section IDs in namespace appendix to provide bookmarkable URLs.
15 years ago
ccc548b9e4
Fixing bundlor warnings.
15 years ago
5a6afbff95
SEC-1688: Allow injection of a PasswordEncoder from the crypto module into DaoAuthenticationProvider.
15 years ago
885f0270dc
Some adjustments to the core build to make sure crypto classes are correctly exported to other tasks.
15 years ago
57c3afd31a
SEC-1689: Adjust manual to remove references to separate crypto module.
15 years ago
a50c9afbab
Modified jaas sample's LoginModule to prevent empty string username/password
15 years ago
Rob Winch
Luke Taylor