Luke Taylor
|
8398e940cf
|
SEC-449: Corrected comment.
|
19 years ago |
|
Luke Taylor
|
fdbcbec9d8
|
SEC-449: Reamed template test class to match tested class. Added test method for case when no attribute value is found.
|
19 years ago |
|
Luke Taylor
|
223a597208
|
SEC-449: Changed role searching to use parent spring ldap template search method.
|
19 years ago |
|
Luke Taylor
|
b7d9466f99
|
SEC-449: Remoned unnecessary declaration of ContextMapper interface.
|
19 years ago |
|
Luke Taylor
|
97ef5f389f
|
SEC-449: Remoned unnecessary declaration of ContextMapper interface.
|
19 years ago |
|
Luke Taylor
|
d208cf3824
|
SEC-449: Make LdapUserDetailsMapper a pure ContextMapper so it can be used with LdapTemplate.
|
19 years ago |
|
Luke Taylor
|
6d8f92e1b8
|
Allow an ldif file to be set in the configuration and loaded on initialization.
|
19 years ago |
|
Luke Taylor
|
ae40919d13
|
Tidying up class.
|
19 years ago |
|
Luke Taylor
|
c0f5230667
|
SEC-302: Add rolePrefix property to SecurityContextHolderAwareRequestFilter.
|
19 years ago |
|
Luke Taylor
|
6a6bafa219
|
Make sure test classes which are setting the context clear it in their tearDown methods.
|
19 years ago |
|
Luke Taylor
|
c56b8c4117
|
SEC-471: Allow names of username and password parameters to be customized in AuthenticationProcessingFilter.
|
19 years ago |
|
Luke Taylor
|
3326525b65
|
SEC-368: Tidied up captcha spelling.
|
19 years ago |
|
Luke Taylor
|
dd2a46c7ca
|
SEC-368: Tidied up captcha spelling.
|
19 years ago |
|
Luke Taylor
|
448e8cfb42
|
SEC-551: Convert RegExpBasedFilterInvocationDefinitionMap and DaoX509AuthoritiesPopulator to use JDK regexps. Removed ORO dependency from the project.
|
19 years ago |
|
Luke Taylor
|
6eb17c8546
|
SEC-513: Ldap user manager implementation classes changed to use new spring ldap apis.
|
19 years ago |
|
Luke Taylor
|
afaa169e97
|
SEC-449: Test data ldif file for ApacheDS.
|
19 years ago |
|
Luke Taylor
|
0503c3e1ab
|
SEC-449: Refactoring towards more use of Spring LDAP. Also borrowed the Spring LDAP integration testing setup which is much better and makes use of the full LDAP stack. There were still problems with using Apache DS's CoreContextFactory (e.g. compare operations) so it is an improvement on that front too. Moved spring ldap to 1.2-RC1 version.
|
19 years ago |
Scott Battaglia
|
f7815e8da2
|
SEC-520
added parameter to determine whether to encode the session id or not and an explanation on when it should/should not be used.
|
19 years ago |
|
Luke Taylor
|
e7ede68352
|
Update ldap test base class to use LdapContext by default.
|
19 years ago |
|
Luke Taylor
|
ff1f1d8ef5
|
SEC-449: Rename internal LdapTemplate class to SpringSecurityLdapTemplate to avoid confusion.
|
19 years ago |
|
Luke Taylor
|
70239a9769
|
SEC-513: First check in of user management stuff.
|
19 years ago |
|
Luke Taylor
|
9b71b5aa00
|
SEC-449: Mostly changes to aid moving towards compatibility with spring-ldap.
|
19 years ago |
|
Luke Taylor
|
3de8745494
|
Commented out (another) failing captcha test whose behaviour varies with speed of the build server (makes assumptions about the interval within which certain lines of code are executed).
|
19 years ago |
|
Luke Taylor
|
6289503643
|
Commented out failing captcha test whose behaviour varies with speed of the build server (makes assumptions about the interval within which certain lines of code are executed).
|
19 years ago |
|
Luke Taylor
|
15ee5b2364
|
SEC-540,SEC-541: Changes for maven 2 site generation and use of docbkx.
|
19 years ago |
|
Luke Taylor
|
4e452046ec
|
Comment out System.out.println
|
19 years ago |
Ray Krueger
|
edd7bbeceb
|
Removed repeated downcasting of ServletRequest and ServletResponse
|
19 years ago |
|
Luke Taylor
|
b2799985f2
|
SEC-398: Added patch which uses response wrapper to set context in session on redirect or error.
|
19 years ago |
|
Luke Taylor
|
219b865c01
|
SEC-544: Added German localization messages from Andreas Senft.
|
19 years ago |
|
Luke Taylor
|
c021bf4682
|
SEC-542: Made SessionInformation serializable. Also remove unused default constructor.
|
19 years ago |
|
Luke Taylor
|
0adf0d6f1c
|
SEC-529: Added French translation of messages from Laurent Pireyn
|
19 years ago |
|
Luke Taylor
|
bc411c7c3b
|
SEC-457: Added Czech translation of messages from Jan Novotný
|
19 years ago |
|
Luke Taylor
|
ea61964f56
|
SEC-483: Fix. Make getGroupSearchBase protected.
|
19 years ago |
|
Luke Taylor
|
0c4916ee98
|
SEC-427: Fix. Added NullAuthoritiesPopulator and extra constructor.
|
19 years ago |
|
Luke Taylor
|
301626fd6e
|
SEC-346: Fix. Added suggested change. Also some minor tidying up of comments etc.
|
19 years ago |
|
Luke Taylor
|
2e8d16c538
|
SEC-484: Multithreaded tests for SessionRegistryImpl.
|
19 years ago |
|
Luke Taylor
|
ad43d433b4
|
SEC-484: Fix for NPE concurreny issue. Also reinstated synchronized on registerNewSession (had removed it for testing).
|
19 years ago |
|
Luke Taylor
|
aa4ee54f86
|
Added logging to SessionRegistryImpl.
|
19 years ago |
|
Luke Taylor
|
7fcdd4a6ff
|
More tidying...
|
19 years ago |
|
Luke Taylor
|
510cd5050f
|
Tidied up SessionRegistryImpl and rolled back reformatting of its test class to incorrect width.
|
19 years ago |
|
Luke Taylor
|
5f993e5627
|
SEC-534: Refactored JaasAuthenticationProvider to use ApplicationPublisherAware rather than ApplicationContextAware.
|
19 years ago |
|
Luke Taylor
|
5b7ed79b6a
|
SEC-539: Reformatted "divider" comments (//~ Methods=== etc). Simplified boolean expression in afterPropertiesSet.
|
19 years ago |
|
Luke Taylor
|
d7cef1ba31
|
SEC-539: Moved SecurityContextHolder.setContext() call into the try {} block to emphasize that it is only set for the duration of chain.doFilter() and immediately cleared afterwards. Changed the debug messages about setting the context, since it has not strictly taken place when they are logged.
|
19 years ago |
|
Luke Taylor
|
47c5a6d43f
|
SEC-539: Renamed extractSecurityContextFromSession to readSecurityContextFromSession to emphasize that it doesn't actually modify anything (the context is still stored in the session).
|
19 years ago |
|
Luke Taylor
|
f7a6129657
|
SEC-539: Removed unnecessary check for a null request object. Removed unnecessary catch/rethrow of IOException and ServletException from try/finally around chain.doFilter.
|
19 years ago |
|
Luke Taylor
|
d1be9f9980
|
SEC-539: Refactored so that SecurityContextHolder.setContext() is called in exactly one place. Moved setting of httpSession = null to point immediately after its last use.
|
19 years ago |
|
Luke Taylor
|
3dd0716611
|
SEC-539: Altered storeSecurityContextInSession to take the SecurityContext as a parameter rather than calling SecurityContextHolder.getContext(). This allows SecurityContextHolder.clearContext() to be called immediately after reading the context in the finally block of doFilter().
|
19 years ago |
|
Luke Taylor
|
fa63d8ecfb
|
SEC-539: Refactored if (httpSession == null) block in storeSecurityContextInSession()
|
19 years ago |
|
Luke Taylor
|
ce3eb599ed
|
SEC-539: Renamed populateSecurityContextFromSession to extractSecurityContextFromSession and removed the side-effect of setting SecurityContextHolder. It now returns the context found in the session (or null) and SecurityContextHolder.setContext() is called in a single place in doFilter().
|
19 years ago |
|
Luke Taylor
|
ba88214d1d
|
SEC-539: Refactored populateSecurityContextFromSession() to reduce nested blocks and clarify logic.
|
19 years ago |
