cdac4d990b
SEC-2747: Remove spring-core dependency from spring-security-crypto
11 years ago
3f24210a2a
SEC-2537: Add nekohtml to openid module
12 years ago
fd6f9da184
SEC-2542: Use exclusions to remove duplicate dependencies
...
A number of projects had duplicate dependencies on their classpaths
as a result of the same classes being available in more than one
artifact, each with different Maven coordinates. Typically this only
affected the tests, but meant that the actual classes that were
loaded was somewhat unpredictable and had the potential to vary
between an IDE and the command line depending on the order in which
the aritfacts appeared on the classpath. This commit adds a number of
exclusions to remove such duplicates.
In addition to the new exclusions, notable other changes are:
- Spring Data JPA has been updated to 1.4.1. This brings its
transitive dependency upon spring-data-commons into line with
Spring LDAP's and prevents both spring-data-commons-core and
spring-data-commons from being on the classpath
- All Servlet API dependencies have been updated to use the official
artifact with all transitive dependencies on unofficial servlet API
artifacts being excluded.
- In places, groovy has been replaced with groovy-all. This removes
some duplicates caused by groovy's transitive dependencies.
- JUnit has been updated to 4.11 which brings its transitive Hamcrest
dependency into line with other components.
There appears to be a bug in Gradle which means that some exclusions
applied to an artifact do not work reliably. To work around this
problem it has been necessary to apply some exclusions at the
configuration level
Conflicts:
samples/messages-jc/pom.xml
12 years ago
ea0466d666
Next developmenet version in pom.xml
12 years ago
7f99a2dfbb
SEC-2487: Update to Spring 3.2.8.RELEASE
12 years ago
ec8b48150d
SEC-2474: Update poms
12 years ago
a34178bc40
SEC-2434: Update to Spring 3.2.6 and Spring 4.0 GA
12 years ago
4460e84b29
Updates to pom.xml author and repo
12 years ago
2c8946c406
Next development version
12 years ago
9c703a3051
Release version 3.2.0.RC2
12 years ago
88f41cdf62
SEC-2341: Update to Gradle 1.8
...
Some dependencies were necessary to update due to issues with JUnit
integration.
13 years ago
3d2f23602f
SEC-2294: Update Spring Version to 3.2.4.RELEASE
13 years ago
086056f191
SEC-2289: Make compatible with Spring 4 as well
...
There are a few subtle changes in Spring 4 that this commit addresses
13 years ago
976d9a9016
SEC-2194: Polish java config sample apps
13 years ago
5e6ca12b01
SEC-2097: Update integrationTestCompile to use optional and provided
...
Also update slf4j version and remove explicit commons-logging from pom generation
13 years ago
02551e1b7a
SEC-2214: Update Spring Version
13 years ago
faa8b354b7
SEC-2209: add pom.xml
13 years ago
07c3fdf8a7
SEC-2195: Update Groovy, Geb, Spock, httpcomponents, and Jetty
13 years ago
e88800cd9b
SEC-2187: Polish
...
Create private utf8UrlEncode method to improve readability
13 years ago
54c1c20c69
SEC-2187: Encode query parameter names and values in return_to URL
13 years ago
1ed643ca1f
SEC-1998: Provide integration with WebAsyncManager#startCallableProcessing
...
Support integration of the Spring SecurityContext on Callable's used with
WebAsyncManager by registering SecurityContextCallableProcessingInterceptor.
13 years ago
a573e7b395
SEC-1820: Added null check for attributesToFetch in OpenID4JavaConsumer.
15 years ago
4a000d040c
SEC-1815: Downgrade openid to use HttpClient 4.1.1 to avoid bug in openid4java's usage of HttpClient
15 years ago
8ce4d326f5
Update HttpClient to 4.1.2 and removed incorrect bundlor references to commons version.
15 years ago
0120643721
SEC-1794: Convert OpenIDAuthenticationStatus to an enum.
15 years ago
89fa771093
SEC-1753: Cater for missing DiscoveryInformation object in OpenID4JavaConsumer.endConsumption.
15 years ago
6c9ab570a2
SEC-1729: Fix openid4java guice dependencies to use Maven Central.
15 years ago
855ea73117
SEC-1729: Updated gradle to reference guice maven repo for all projects
15 years ago
bd74185e41
SEC-1729: Updated openid module and sample to openid4java 0.9.6 and httpclient 4.1.1
15 years ago
ae5b402651
SEC-1729: Revert "SEC-1710: Added shutdown method to OpenID4JavaConsumer that invokes MultiThreadedHttpConnectionManager.shutdownAll()" since it is superseded by SEC-1729
...
This reverts commit 62ba0fca5c
15 years ago
a6b0c265db
SEC-1729: Revert "SEC-1711: Support verifying that attribute exchange parameters were signed" since it is superseded by SEC-1729
...
This reverts commit 68ba11ba7b
15 years ago
8178371927
SEC-1700: Add fixed serializationVersionUID values to security context, authentication tokens and related classes
15 years ago
23df97f44a
Added missing HttpClient version information to openid bundlor template file.
15 years ago
4dc5d7d16e
Typo.
15 years ago
5c05575c0d
Cleaned up warnings in openid module
15 years ago
68ba11ba7b
SEC-1711: Support verifying that attribute exchange parameters were signed
15 years ago
62ba0fca5c
SEC-1710: Added shutdown method to OpenID4JavaConsumer that invokes MultiThreadedHttpConnectionManager.shutdownAll()
15 years ago
4a1908188a
SEC-1701: Trim claimed identity parameter value before submitting to OpenID4Java.
15 years ago
84ba7a0ea9
Additional tests for OpenID classes and minor refactoring of OpenID4JavaConsumer for easier testing.
15 years ago
b0df1bd1b0
SEC-1673: Use a map to store the range values use in the bundlor templates.
15 years ago
43be9ea2a4
SEC-1430: Removed caching of username in session upon failed authentication. Improved Javadoc.
15 years ago
d64efe9747
SEC-1492: Added GrantedAuthoritiesMapper to provide mapping of loaded authorities to those which are eventually stored in the user Authentication object.
15 years ago
265cdaf2a6
SEC-1595: Added extra constructor to OpenID4JavaConsumer which takes a ConsumerManager to allow a version compatible with GAE to be injected.
15 years ago
21ed5feb8d
SEC-1600: Added Implementation-Version and Implementation-Title to manifest templates and checking of version numbers in namespace config module and core. Config checks the version of core it is running against and core checks the Spring version, reporting any mismatches or situations where the app is running with less than the recommended Spring version.
15 years ago
f4d57ab5e8
SEC-1456: Remove maven poms as we are now using gradle for the build.
16 years ago
85c4c91e0e
IDEA inspection refactorings.
16 years ago
2d9a848265
Added missing gradle build files for remaining samples. Some related reordering, dependency fixing etc. CAS sample no longer requires two separate subprojects as both client and server app can be run from a single gradle build.
16 years ago
0e57ce2dc3
SEC-1481: Updated constructors of Authentication types to use a generic wildcard for authorities collection.
16 years ago
2f025fba6c
SEC-1460: Added AxFetchListFactory which matches OpenID identifiers to lists of attributes to use in a fetch-request.
...
This allows different configurations to be used based on the identity-provider (google, yahoo etc). The default implementation iterates through a map of regex patterns to attribute lists. The namespace has also been extended to support this facility, with the "identifier-match" attribute being added to the attribute-exchange element. Multiple attribute-exchange elements can now be defined, each matching a different identifier.
16 years ago
f5468087c2
Remove cached DiscoveryInformation from session in OpenID4JavaConsumer's endConsumption method.
16 years ago
Rob Winch
Rob Winch
Spring Buildmaster
Tom Boettcher
Luke Taylor
Rob Winch