Luke Taylor
|
46cc1bec1e
|
SEC-268: allow for delayed obtaining of app context reference
|
20 years ago |
|
Luke Taylor
|
5d811c4a94
|
Removed "==true" in boolean conditional.
|
20 years ago |
|
Luke Taylor
|
f546e2bbad
|
Remove default constructor as class is now only responsible for group searches which need the args version.
|
20 years ago |
|
Luke Taylor
|
30d878b22e
|
Change essence class to use a new ArrayList for the authorities (list from Arrays.asList() doesn't support add method).
|
20 years ago |
|
Luke Taylor
|
fc8ead3c54
|
Make sure populator roles are added rather than overwriting any roles loaded with the user entry.
|
20 years ago |
|
Luke Taylor
|
f8db6a4c78
|
Switch LDAP tests back to embedded server and comment out apacheds-broken ones.
|
20 years ago |
|
Luke Taylor
|
9219c6548e
|
SEC-264: Delete classes which are no longer used after LDAP changes.
|
20 years ago |
|
Luke Taylor
|
65fe641900
|
SEC-264: changes to LDAP services.
|
20 years ago |
|
Luke Taylor
|
db042046e9
|
Introduce LDAPUserDetails.
|
20 years ago |
Scott Battaglia
|
ab05cb95ff
|
SEC-239: changed order url is created in to reflect new processing filter url order
|
20 years ago |
|
Scott Battaglia
|
aee934812a
|
SEC-239: switched to encoding a url with response.encodeURL to get the jsession.
|
20 years ago |
Carlos Sanchez
|
76ce826345
|
Remove spring transitive deps, add log4j
|
20 years ago |
|
Luke Taylor
|
a7d7631f2f
|
Fixed potential problem with multiple userDn patterns.
|
20 years ago |
|
Luke Taylor
|
f0b11109b4
|
Added tests for nameExists method
|
20 years ago |
|
Luke Taylor
|
9f385eb1e0
|
Typo in Javadoc.
|
20 years ago |
|
Luke Taylor
|
a468f03cae
|
Add functionality to LdapTemplate for checking that an entry exists, and for retrieving an entry as an object, mapped from its attributes.
|
20 years ago |
|
Luke Taylor
|
3f0f45706c
|
Update Javadoc to include SSHA info.
|
20 years ago |
|
Luke Taylor
|
def8a849a2
|
Added String-only 'compare' operation tests which now work with ApacheDS RC2 (unlike byte[] comparisons which are still broken).
|
20 years ago |
|
Luke Taylor
|
98887f37da
|
Change to more appropriate inline inner class name.
|
20 years ago |
|
Luke Taylor
|
0b2be28def
|
Added search method which will be used for finding roles.
|
20 years ago |
|
Luke Taylor
|
91f5fc30be
|
SEC-258: Removed use of URI class
|
20 years ago |
|
Luke Taylor
|
25c643970a
|
Change package names to match apacheds RC1.
|
20 years ago |
|
Luke Taylor
|
a50695a1a8
|
Upgrade apacheds to RC1
|
20 years ago |
Ben Alex
|
890864ed00
|
SEC-194: Allow remember-me services to be used with BASIC authentication.
|
20 years ago |
|
Ben Alex
|
9b63051149
|
SEC-204: Improve startup time detection of errors by FilterInvocationDefinitionSourceEditor.
|
20 years ago |
|
Ben Alex
|
cc07f620df
|
SEC-257: ExceptionTranslationFilter to use AccessDeniedHandler.
|
20 years ago |
|
Ben Alex
|
21aaf2b9db
|
SEC-256: Contacts sample not displaying localized exceptions correctly.
|
20 years ago |
|
Ben Alex
|
d125569bd6
|
SEC-29: Save POST parameters on AuthenticationEntryPoint redirect.
|
20 years ago |
|
Ben Alex
|
22aa0e898f
|
SEC-243: SessionRegistry.getAllSessions() now accepts an "includeExpiredSessions" argument.
|
20 years ago |
|
Ben Alex
|
0648c65b0b
|
SEC-243: SessionRegistry.getAllSessions() now accepts an "includeExpiredSessions" argument.
|
20 years ago |
|
Ben Alex
|
d8a56d4e60
|
SEEC-255: Always create HttpSession before calling AuthenticationDetailsSource.
|
20 years ago |
Marc-Antoine Garrigue
|
2af791a801
|
Error in javadoc concerning the default keyword
REQUIRES_CAPTCHA_BELOW_AVERAGE_TIME_IN_MILLIS_REQUESTS
|
20 years ago |
|
Ben Alex
|
81603832be
|
SEC-152: Strategy pattern for SecurityContextHoldder.
|
20 years ago |
|
Ben Alex
|
b05709df6a
|
SEC-152: Strategy pattern for SecurityContextHoldder.
|
20 years ago |
Scott McCrory
|
88ff43017d
|
Added unit test for the overridden requiresAuthentication method
|
20 years ago |
|
Scott McCrory
|
481a9377e4
|
Added NPE check for defaultTargetUrl in requiresAuthentication
|
20 years ago |
|
Ben Alex
|
8cc5dcde30
|
SEC-249: Support logout filter.
|
20 years ago |
|
Luke Taylor
|
8400341399
|
Tidy up screwy formatting.
|
20 years ago |
Ray Krueger
|
a7d0f88e01
|
Fixed no authority check so that it is after addCustomAuthorities
http://opensource.atlassian.com/projects/spring/browse/SEC-253
Also removed the unused logger
|
20 years ago |
|
Ben Alex
|
a47a342ce6
|
SEC-234: Allow pluggable AuthenticationDetailsSource strategy interface.
|
20 years ago |
|
Ben Alex
|
b1becf9277
|
SEC-242: Make logger reflect subclass, not superclass.
|
20 years ago |
|
Ben Alex
|
f4156a22bd
|
SEC-246: Enable late binding on DaoAuthenticationProvider.userDetailsService field.
|
20 years ago |
|
Ben Alex
|
d541c8e257
|
SEC-238: Add AuthenticationException to onUnsuccessfulAuthentication method signature.
|
20 years ago |
|
Ben Alex
|
540c7b2e6a
|
SEC-229: Allow external URLs from AbstractProcessingFilter.
|
20 years ago |
|
Ben Alex
|
97ac9f7e98
|
SEC-191: Look in parent bean factories for AclManager.
|
20 years ago |
|
Ben Alex
|
f6b7429947
|
SEC-187: Tidy up URL composition logic basedon default HTTP(S) ports.
|
20 years ago |
|
Ben Alex
|
307ac99ec5
|
SEC-199: Use ServletException.getRootCause() to extract any Acegi Security exceptions.
|
20 years ago |
|
Ben Alex
|
4e09777dec
|
SEC-247: Allow #NONE# to be used to specify paths that shouldn't have any filters fire.
|
20 years ago |
|
Ben Alex
|
185d63f23c
|
SEC-221: AbstractProcessingFilter.onPreAuthentication() should have exceptions caught.
|
20 years ago |
|
Ben Alex
|
6bae43d380
|
SEC-206: Include context root when generating cookies.
|
20 years ago |
