24155d4abe
SEC-1022: Remove use of static methods/initializers in Acl Permissions. Added setter for PermissionFactory to AclPermissionEvaluator
17 years ago
3f70d79df5
SEC-1022: Remove use of static methods/initializers in Acl Permissions. Converted PermissionFactory to a strategy which is used to convert integers and names to Permission instances.
17 years ago
0d7b990e0a
SEC-1184: Moved ACL cache classes and interface out of jdbc package.
17 years ago
6236858356
SEC-951: Acl Serialization Errors that cohere with parent-child-structure of Acls. Modified tests to reproduce the issue and applied suggested fix (recursive call to set transient fields on parent).
17 years ago
72af366a72
SEC-1172: Added extra constructor which allows setting of the config attribute name.
17 years ago
39d76d5b5f
SEC-1165: Relax the requirement that the ObjectIdentity "type" be a Java class. Modified ObjectIdentity, changing the javaType property to "type" which is now a plain String. Also removes the requirement that the class be present on the classpath when creating the ObjectIdentityImpl instance (e.g. in the case of a permissions administration app which doesn't actually use the domain classes itself).
17 years ago
76438b3347
SEC-1132: Refactoring of access/intercept package to extract packages and classes which are externally depended on or potentially may be used outside of the standard interceptor model (e.g. SecurityMetadataSource)
17 years ago
9875cbec8b
SEC-1132: Restructuring of ACL packages
17 years ago
acd7dc1f2d
SEC-1151: Fixed check on ACE list bounds in AclImpl and updated tests
17 years ago
c6dfee69d4
SEC-1038: Changed JdbcMutableAclServiceTests to facilitate testing with PostgreSQL and updated JdbcMutableAclService to use a the id obtained from the ObjectIdentity directly rather than calling toString() on it before passing to the JDBC call.
17 years ago
29fafbbf18
Misc tidying up of old files and refactoring of tests
17 years ago
459a3095c4
SEC-1041: Applied patch with minor modifications - introduces permission constructor which sets pattern "on" code to '*' as a default.
17 years ago
c96da98e14
Removed unnecessary toString()
17 years ago
da823b2396
Tidying up.
17 years ago
d0a308c99b
SEC-1107: Added test to attempt to reproduce issue.
17 years ago
bd1d19f372
Fix mockito usage error.
17 years ago
a5792b094a
More generification to remove last warnings in Acl package.
17 years ago
8570d864dc
Generifying DefaultPermissionFactory
17 years ago
30fe9a0935
Remove dependency on commons collections (ArrayIterator).
17 years ago
5509da7a2e
SEC-1141: ObjectIdentityImpl has incorrect hashCode implementation. Modified equals method to compare longValue of Number identifier types and use standard equals for other serializable identifiers.
17 years ago
21c608389c
SEC-1128: Changed to use ClassUtils.forName to load "javaType" class.
17 years ago
fd1af34add
Minor javadoc stuff.
17 years ago
75d5e8f5f2
Spelling correction.
17 years ago
3adbbdf50d
SEC-1081: Minor Acl refactoring to remove generic warnings. Minor efficiency improvements.
17 years ago
d5f5b0860e
SEC-1132: Refactoring to remove package cycles in ACL module.
17 years ago
93bdcccaee
SEC-1132: Moved userdetails into core and added core/authority sub-package
17 years ago
10673780db
OPEN - issue SEC-1136: Removed SpringSecurityException. Introduced new AclException as base class for Acl module. Refactored JAAS authentication to map to AuthenticationExcpetions rather than SpringSecurityException. Modified ExceptionTranslationFilter to look explicitly for AuthenticationException or AccessDeniedException (which it should do since these are the only two it handles).
17 years ago
ca7d055c2b
SEC-1132: Created core and authentication packages within core module.
17 years ago
9efb5a7007
SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet
17 years ago
2a9a8a41db
SEC-1125: Created separate web module spring-security-web
17 years ago
766aca885b
SEC-1054: Add method "clear" to interface AclCache. As requested.
17 years ago
4a41416c9b
Tidying up and removing compiler warnings.
17 years ago
6003291a68
Updated to use new Sprig test classes and to remove data dependencies between tests.
17 years ago
14c50a9c96
SEC-1012: Java-5-ifying the ACL package.
17 years ago
cc5966bc7e
Tidying up, removing compiler warnings etc.
17 years ago
3fcc7b5403
SEC-1051: Moved voter and afterinvocation packages into acl package. Also moved filterer classes fom core, as they are used in the acl after-invocation classes
17 years ago
6197668fa6
renamed test file
17 years ago
7505b734d6
Converted to use jmock.
17 years ago
7bf47f2d97
Converted to use jmock.
17 years ago
51549a9f6f
Added missing '$' to Id.
17 years ago
67c06d3d52
SEC-1012: Adding generics and general tidying up of tests etc
17 years ago
a9d69ac4e8
Tidied up test class.
17 years ago
31375b7212
SEC-1012: Futher generification. Also changed method signature of ObjectDefinitionSource.getAllConfigAtributes to return a single collection
17 years ago
e5b1073501
SEC-1012: Added more generics and warning suppression
17 years ago
e11114ce77
SEC-1023: Add hasPermission() support to SecurityExpressionRoot
...
http://jira.springframework.org/browse/SEC-1023 .
hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
17 years ago
d33b13e52e
SEC-1023: Added support for hasPermission() based on Id and type
17 years ago
d601301de6
SEC-1023: Fix broken test.
17 years ago
1c3b576d91
SEC-1023: PermissionEvaluator based on the Acl module.
17 years ago
7ff5602dbc
Convert AclImplTests to use JMock mocks.
17 years ago
04e2fc7daf
Tidying.
17 years ago
Luke Taylor