Luke Taylor
|
0f6642d3ab
|
SEC-1216: Replacement of custom-after-invocation-provider with after-invocation-provider element. Some changes to help prevent proxying of aop infrastructure classes (use of AopInfrastructureBean marker interface)
|
17 years ago |
|
Luke Taylor
|
5953af0f6b
|
SEC-1196: Change use of <authentication-manager> to actually register the global ProviderManager instance. This element now registers the global ProviderManager instance and must contain any authentication-provider elements (or ldap-authentication-provider elements).
|
17 years ago |
|
Luke Taylor
|
1afa67c954
|
SEC-1195: Added internal AuthenticationManager for use by beans which are generated by the <http> block.
|
17 years ago |
|
Luke Taylor
|
6346e31517
|
SEC-1195: Change <http> parsing behaviour to use an internal AuthenticationManager instance. Implemented "parent" AuthenticationManager in ProviderManager which is delegated to when no authentication is returned by the instances list of authentication providers. Extracted the Authentication success/failure publishing into a separate strategy.
|
17 years ago |
|
Luke Taylor
|
1ca2e6e6fc
|
Tidying.
|
17 years ago |
|
Luke Taylor
|
5d389d953d
|
RoleVoter test class.
|
17 years ago |
|
Luke Taylor
|
946f3d1067
|
Converted to use mockito.
|
17 years ago |
|
Luke Taylor
|
8a3930e673
|
Refactoring of ProviderManager to ensure that any AuthenticationException from the ConcurrentSessionController will prevent further polling of providers.
|
17 years ago |
|
Luke Taylor
|
c6b9371029
|
Updated to latest Spring build snapshot. Required minor EL changes to parser class name
|
17 years ago |
|
Luke Taylor
|
ab7f06c108
|
SEC-1156: Modified JdbcUserDetailsManager to only save/update authorities if enableAuthorities is set
|
17 years ago |
|
Luke Taylor
|
4e0d3c644f
|
Committed deletion of previous AuthorityUtilsTests
|
17 years ago |
|
Luke Taylor
|
4768e4b13c
|
Removed methods relating to current context from AuthorityUtils, making it a simple factory for GrantedAuthority lists etc.
|
17 years ago |
|
Luke Taylor
|
5808da12ff
|
SEC-1094: Simplified WebXml attribute mapping. Removed generic jaxen-based implementation on which it was based in favour of simple DOM model traversal. Updated sample.
|
17 years ago |
|
Luke Taylor
|
45c54c558c
|
Updated build to use maven.springframework.org deps
|
17 years ago |
|
Luke Taylor
|
4bad213b19
|
SEC-1132: Moved remaining preauth code from core to web
|
17 years ago |
|
Luke Taylor
|
c7a2e12c65
|
Moved python script to correct directory
|
17 years ago |
|
Luke Taylor
|
76438b3347
|
SEC-1132: Refactoring of access/intercept package to extract packages and classes which are externally depended on or potentially may be used outside of the standard interceptor model (e.g. SecurityMetadataSource)
|
17 years ago |
|
Luke Taylor
|
14c4739605
|
SEC-1158: Decoupling of Pre/Post annotations implementation from Spring EL.
|
17 years ago |
|
Luke Taylor
|
5b543f83ec
|
Removed web dependency on core-tests
|
17 years ago |
|
Luke Taylor
|
e94baf38b3
|
Tidying up to remove warnings (generics, use of deprecated test classes etc).
|
17 years ago |
|
Luke Taylor
|
50ac9d3b05
|
More generification to remove last warnings in core package.
|
17 years ago |
|
Luke Taylor
|
1454cbb78e
|
SEC-1132: Moved TextUtils to web module and StringSplit utils into Digest authentication package (as they aren't used elsewhere).
|
17 years ago |
|
Luke Taylor
|
a76cbee4bc
|
SEC-1132: Moved ThrowableAnalyzer code to web module as it is only used in ExceptionTranslationFilter
|
17 years ago |
|
Luke Taylor
|
305ce125fb
|
SEC-863: Hierarchical roles should use the interface GrantedAuthority. Applied submitted patch.
|
17 years ago |
|
Luke Taylor
|
ba6664f77f
|
SEC-1012: Refactor SessionRegistry interface to use Java 5 generics.
|
17 years ago |
|
Luke Taylor
|
cac2bce382
|
Refactored SessionRegistryImpl to remove servlet API deps and moved back into core, along with other concurrent authentication package classes.
|
17 years ago |
|
Luke Taylor
|
93bdcccaee
|
SEC-1132: Moved userdetails into core and added core/authority sub-package
|
17 years ago |
|
Luke Taylor
|
c770998d92
|
SEC-1132: Move authoritymapping to core as it is actually used in loading authorities for a use, not in making access decisions.
|
17 years ago |
|
Luke Taylor
|
10673780db
|
OPEN - issue SEC-1136: Removed SpringSecurityException. Introduced new AclException as base class for Acl module. Refactored JAAS authentication to map to AuthenticationExcpetions rather than SpringSecurityException. Modified ExceptionTranslationFilter to look explicitly for AuthenticationException or AccessDeniedException (which it should do since these are the only two it handles).
|
17 years ago |
|
Luke Taylor
|
ca7d055c2b
|
SEC-1132: Created core and authentication packages within core module.
|
17 years ago |
|
Luke Taylor
|
9efb5a7007
|
SEC-1132: Moved access-control/authorization specific code to org.sf.security.access package. Created provisioning package for user management classes to remove cyclical deps. Some other moving of classes to remove code tangles. Restructuring of portlet module under org.sf.security.portlet
|
17 years ago |
|
Luke Taylor
|
7c4d54f356
|
SEC-1131: Applied patch for portlet upgrade
|
17 years ago |
|
Luke Taylor
|
365ae3936e
|
Moved MockAuthenticationManager to test package.
|
17 years ago |
|
Luke Taylor
|
bec84f874a
|
SEC-1125: Further refactoring of web packages following creation of web module. Fixing samples.
|
17 years ago |
|
Luke Taylor
|
2a9a8a41db
|
SEC-1125: Created separate web module spring-security-web
|
17 years ago |
|
Luke Taylor
|
2c985a1c36
|
SEC-1126: separated out spring-security-config module containing namespace configuration classes and resources
|
17 years ago |
|
Luke Taylor
|
4aff4b2350
|
SEC-1123: Renamed ObjectDefinitionSource to SecurityMetadataSourceand performed related refactoring
|
17 years ago |
|
Luke Taylor
|
4aae5ec42e
|
SEC-1124: Refactored LDAP code into separate module
|
17 years ago |
|
Luke Taylor
|
591681c180
|
Upgrade to Spring M2 and correct expression classes and pom files to match changes
|
17 years ago |
|
Luke Taylor
|
9de9f638fe
|
SEC-1083: Removed unnecessary import
|
17 years ago |
|
Luke Taylor
|
30748e8615
|
SEC-1083: PersistentTokenBasedRememberMeServices does not clear tokens on logout. Override logout method to remove tokens for user.
|
17 years ago |
|
Luke Taylor
|
ddffdf1699
|
SEC-745: Renamed failureHandler and successHandler to have prefix 'authentication'
|
17 years ago |
|
Luke Taylor
|
4a41416c9b
|
Tidying up and removing compiler warnings.
|
17 years ago |
|
Luke Taylor
|
9cb361e88a
|
SEC-745: Added LogoutSuccessHandler strategy for use in LogoutFilter.
|
17 years ago |
|
Luke Taylor
|
cc5966bc7e
|
Tidying up, removing compiler warnings etc.
|
17 years ago |
|
Luke Taylor
|
8f598e9b11
|
SEC-1052: Add support for the namespace option 'disable-url-rewriting'.
|
17 years ago |
|
Luke Taylor
|
171456a26c
|
SEC-1018: Changes to allow external reference to SaltSource bean from the namespace.
|
17 years ago |
|
Luke Taylor
|
585e5f393a
|
Added warning suppression for deprecation.
|
17 years ago |
|
Luke Taylor
|
d8b5f770e9
|
Added warning suppression for deprecation.
|
17 years ago |
|
Luke Taylor
|
db5f1e69f1
|
SEC-949: Added the option of specifying -1 as the token-validity-seconds value in order to set the cookie maxAge to expire when the browser closes.
|
17 years ago |
