aec23749d7
SEC-1056: Remove deprecated FilterToBeanProxy: It's gone
17 years ago
3fcc7b5403
SEC-1051: Moved voter and afterinvocation packages into acl package. Also moved filterer classes fom core, as they are used in the acl after-invocation classes
17 years ago
a443e55832
SEC-1057: Refactored TargetUrlResolver to remove SavedRequest from determineTargetUrl method.
17 years ago
093365b2f4
Removed unnecessary cast.
17 years ago
30f9b3e72c
SEC-995: AbstractSecurityInterceptor exception message improvement. Added the secured object to the exception message to make it easier to track down the originating method which causes a problem with public invocations.
17 years ago
3f40604b82
SEC-1055: Converted interfaces and methods using ServletRequest/Response to HttpServletRequest/Response where appropriate.
17 years ago
acfcac4594
SEC-996: AccessDeniedhandlerimpl doesn't write response code if used with errorPage
...
Applied supplied patch which checks the committed flag before forwarding to the error page.
17 years ago
7fe6a0fc0d
SEC-1033: Added support for web IP ranges based on an address and netmask.
17 years ago
7767a9ed60
SEC-1033: Add basic equality support for hasIpAddress() expression.
17 years ago
3da68a7a82
Java5 stuff
17 years ago
046456c142
Removed unused constants.
17 years ago
3e8de229be
Java5 updates.
17 years ago
98422b69a8
Java5 updates.
17 years ago
c2ac125719
Tidying up.
17 years ago
a2ef10e65f
SEC-1033: Fixed missing AuthenticationTrustResolver in web SecurityExpressionRoot. Converted some logging to trace level.
17 years ago
6b4045667a
SEC-1033: Completed working version of web expression support.
...
SEC-999: Added getExpressionParser() method to the security handler interface to allow both web and method expression security to obtain a suitable parser from the configuration for parsing their expression attributes.
17 years ago
fd3990c1f8
SEC-1033: Refactored DefaultFilterInvocationDefinitionSource to remove legacy methods and make it immutable.
17 years ago
bed00e10f5
Reduced visibility of attribute names in HttpSecurityBDP.
17 years ago
9bb64d1974
Removed out of date javadoc reference to SecurityEnforcementFilter.
17 years ago
7265a70f0a
SEC-1012: Java5 - use of vararg methods.
17 years ago
c3d216e7bb
SEC-1012: Minor improvements to SecurityContextHolderAwareRequestFilter and conversion to use jmock for test.
17 years ago
953a4ab9ea
SEC-1036: Removed deprecated class and unnecessary mock.
17 years ago
6293541b73
SEC-1036: Updated DefaultSpringSecurityContextSource to enable pooling for "manager" users by default but not when binding directly as a user.
17 years ago
bc6878c1c5
SEC-1044: Removed remember-me functionality from http auto-config namespace configuration. Added explicit <remember-me> elements to contacts and tutorial sample configurations.
17 years ago
58c237fa74
SEC-1015: Removed final packages/directories for old acl code.
17 years ago
38f466dcfc
SEC-1039: Refactored post-request session-creation logic into separate method. Some comment improvements.
17 years ago
48874d69a7
SEC-1039: Made sure "old" security context session key points to new one so they always match.
17 years ago
fd7fc0c8a5
SEC-1039: Corrected reference to security context key to match new value.
17 years ago
c5e1fd77ec
SEC-1045: Added testsfor use of external context storage strategy through the namespace
17 years ago
7dfbcf2ddf
SEC-990: Clarify the semantics of the ConsensusBased ADM. Added the suggested patch to the Javadoc for this class.
17 years ago
ffc8637def
Tidying up.
17 years ago
8587d4c635
Switch to non-deprecated methods.
17 years ago
3e2930d785
SEC-1045: Added security-context-repository-ref attribute to <http>
17 years ago
f2969392a6
SEC-1043: Improved Javadoc for LdapAuthenticationProvider user details mapping methods.
17 years ago
9ab69ddcaf
Converted to use jmock.
17 years ago
72eee6f1ca
Removing unused mock classes.
17 years ago
fba57bdf5b
Removed unused MockAccessDecisionManager class
17 years ago
283b932fe0
Minor tidying up.
17 years ago
f3387cd879
17 years ago
a09b15ce5f
Added tests for AuthenticationDetailsSourceImpl (and AuthenticationDetails).
17 years ago
8283074097
Tidying.
17 years ago
e3dd12021b
Added extra calls to exercise CachingUserDetailsService
17 years ago
a2f7b7e4f1
Added optional args argument to constructor.
17 years ago
3fe112f769
Added tests for AbstractAclVoter.
17 years ago
e864dfa796
SEC-1039: Converted HttpBeanDefinitionParser to use new context persistence filter instead of HttpSessionContextIntegrationFilter
17 years ago
08ea70909d
Fixed broken test due to missing context file.
17 years ago
a318aacc4f
Converted MethodSecurityInterceptorTests to use mocks and deleted app context file.
17 years ago
bfd4bcfdb7
SEC-1012: Java5ing of RunAsUserToken constructor.
17 years ago
b25d6958d7
SEC-1036: Removed references to SpringSecurityContextSource
17 years ago
66897e1849
SEC-1036: Upgraded Spring LDAP to 1.3 and made corresponding code changes. Also some general tidying up of LDAP code. Removed deprecated context factory classes.
17 years ago
Luke Taylor