d64efe9747
SEC-1492: Added GrantedAuthoritiesMapper to provide mapping of loaded authorities to those which are eventually stored in the user Authentication object.
15 years ago
4b6a2168c7
SEC-1550: Additional signature change (in LdapUserDetailsManager.removeAuthorities())
15 years ago
1c8d28501c
SEC-1550: Convert signatures to use Collection<? extends GrantedAuthority> where appropriate.
15 years ago
20988c8cf6
Minor refactoring of debug filter and tidying up tests.
16 years ago
bdb906e588
Enable parameterization for log levels in logback files to allow the use of command-line options for controlling log output.
16 years ago
3c02989d67
Removal of jmock test dependency and upgrading of mockito version to 1.8.5. Minor adjustments to other build deps and configurations (e.g. prevent groovy from being used as a transitive dep, since we only use it for tests).
16 years ago
85c4c91e0e
IDEA inspection refactorings.
16 years ago
64375484a1
More build and logging tuning.
16 years ago
118af45b8e
SEC-1520: Close NamingEnumeration in LDAP compare implementation.
16 years ago
ea5f2088b5
Comment out OpenLDAP tests to allow running in IDEA, and reduce default load configuration of performance test class.
16 years ago
69a10c48ae
Switch to using slf4j/logback for logging.
...
We still compile modules against commons-logging but all runtime logging and samples will use logback
16 years ago
06368f956a
Minor doc/javadoc updates to clarify use of UserDetailsContextapper.
16 years ago
e1f575c545
SEC-1480: Add simple equals and hashcode methods based on DN value to LdapUserDetailsImpl to allow its use as a map key (in SessionRegistry, for example).
16 years ago
2b9beffd08
SEC-1444: Fix JNDI escaping problems in LDAP authentication.
...
CompositeName adds quotes to names which contain a forward slash ("/") character. These are automatically removed by Spring LDAP's DistinguishedName, but only if they are at the ends of the String. Since we were preprending the base to the (quoted) DN, resulting in something like ["cn=joe/b",ou=people], this was causing problems with the DN value returned from the search. Additionally, the bind succeeds when a DN is used with a slash, but the subsequent call to getAttributes() fails. This call now passes in a DistinguishedName for the user DN instance instead of a String.
16 years ago
977bc2b164
SEC-1433: Reduce the number of direct dependencies on DataAccessException from spring-tx.
...
It is still required as a compile-time dependency by classes which use Spring's JDBC support, but it doesn't really have to be used in many interfaces and classes which are not necessarily backed by JDBC implementations.
16 years ago
2f1479785e
Refactoring to remove remaining circular dependencies indicated by structure101.
16 years ago
c12c43da9e
Javadoc fixes.
16 years ago
36612377e2
Replace package.html with package-info.java files, creating new ones where missing and updating outdated contents.
16 years ago
10cd080090
SEC-1356: Update createUser method in LdapUserDetailsManager to create the LDAP entry before adding authorities. Prevents removal of authorities for an existing user.
16 years ago
052537c8b0
Removing $Id$ markers and stripping trailing whitespace from the codebase.
16 years ago
aeed49393c
Switching StringBuffer to StringBuilder throughout the codebase (APIs permitting).
16 years ago
cad32ffe39
SEC-1325: Tighten up Authentication interface contract to disallow null authorities. Modified internals of AbstractAuthenticationToken to use an empty list instead of null. Clarified Javadoc. removed unnecessary null checks in classes which use the interface.
16 years ago
908e88b802
Import cleaning.
17 years ago
0e9452c17c
SEC-1074: Customized interceptor list for DefaultDirectoryService, including removal of SchemaInterceptor.
17 years ago
caff3ee9ba
SEC-1231: Authentication.getAuthorities should be of type Collection<GrantedAuthority> and not List<GrantedAuthority>. Refactored the interface and related classes to match (UserDetails etc).
17 years ago
245fc96137
SEC-1075: Update the embedded LDAP server to use Apache DS 1.5. Updated to use the new 1.5.5 release for the embedded server.
17 years ago
f6f5855b52
SEC-1222: Provide a constructor for LdapUserDetailsService that does not require an LdapAuthoritiesPopulator. Done.
17 years ago
d47abbc35f
SEC-1223: Added break to bindWithDnLoop when non-null use is returned.
17 years ago
2f9a98c7ce
SEC-214: Update keywords.
17 years ago
8ed9f8a057
Remove wrongly named file
17 years ago
4df370b100
SEC-214: Add functionality to be able to use LDAP password policy request/response controls. Added PasswordPolicyAwareContextSource, ppolicy control implementations (from Sandbox) and modified BindAuthenticator to check for the presence of the response control, adding the control to the retured DirContextAdapter if appropriate. LdapUserDetailsImpl also contains the data for grace logins remaining and time till password expiry. Added OpenLDAP startup script with test data and integration test which operates against the data (must be run manually).
17 years ago
719a5e09d8
SEC-1205: Added comment to Javadoc for PasswordComparisonAuthenticator to indicate that it won't work with SSHA passwords
17 years ago
01b8def455
SEC-1145: Added test to confirm that there is no pooling issue in the trunk. There are already checks for the presence of the pooling flag.
17 years ago
6d655aa514
SEC-1132: More refactoring to remove cycles ad reduce complexity metrics
17 years ago
929b6bb1a0
Refactoring to remove warnings in LDAP module.
17 years ago
1fa46f4ad2
SEC-1104: Added check of "running" flag in stop() method to prevent stopping twice.
17 years ago
b2b2c95e55
SEC-1098: Added ignorePartialResultException property which is set on the LDAP template.
17 years ago
c7baeab172
SEC-1117: Moved check for empty password from LdapAuthenticationProvider to BindAuthenticator to allow use with Ntlm.
17 years ago
350f75f7f3
SEC-1084: Retain Authentication.details when authenticating in LdapAuthenticationProvider.
17 years ago
93bdcccaee
SEC-1132: Moved userdetails into core and added core/authority sub-package
17 years ago
10673780db
OPEN - issue SEC-1136: Removed SpringSecurityException. Introduced new AclException as base class for Acl module. Refactored JAAS authentication to map to AuthenticationExcpetions rather than SpringSecurityException. Modified ExceptionTranslationFilter to look explicitly for AuthenticationException or AccessDeniedException (which it should do since these are the only two it handles).
17 years ago
ca7d055c2b
SEC-1132: Created core and authentication packages within core module.
17 years ago
9efb5a7007
SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet
17 years ago
f746a20ab4
SEC-1132: package refactoring of non-core modules
17 years ago
bec84f874a
SEC-1125: Further refactoring of web packages following creation of web module. Fixing samples.
17 years ago
2c985a1c36
SEC-1126: separated out spring-security-config module containing namespace configuration classes and resources
17 years ago
9b52e7bf69
SEC-1124: Added extra refactored class.
17 years ago
4aae5ec42e
SEC-1124: Refactored LDAP code into separate module
17 years ago
Luke Taylor