bfd4bcfdb7
SEC-1012: Java5ing of RunAsUserToken constructor.
17 years ago
b25d6958d7
SEC-1036: Removed references to SpringSecurityContextSource
17 years ago
66897e1849
SEC-1036: Upgraded Spring LDAP to 1.3 and made corresponding code changes. Also some general tidying up of LDAP code. Removed deprecated context factory classes.
17 years ago
1918c50fd7
SEC-1039: Deprecated HttpSessionContextIntegrationFilter and made it extend SecurityContextPersistenceFilter.
17 years ago
8cfd515b27
SEC-988: Added Javadoc for UserDetailsChecker interface.
17 years ago
d508adbf8b
SEC-1037: Made LdapAuthenticationProvider implement MessageSourceAware.
17 years ago
843d0e6910
SEC-985: Added hideUsernameNotFoundException property to LdapAuthenticationProvider and set default to true.
17 years ago
4d81d750cd
SEC-1039: Created new filter SecurityContextPersistenceFilter and SecurityContextRepository strategy to replace HttpSessionContextIntegrationFilter functionality.
17 years ago
789be71d8c
SEC-398: Rolled back addition of erroneous test method for this issue (the fix was incorrect and the test method does nothing useful).
17 years ago
2dfd006665
SEC-1012: Converted Groupsmanager to use List<String>
17 years ago
1f78974073
Improved javadoc and debug message relating to clearing of security context.
17 years ago
dca0505d23
SEC-1012: generification
17 years ago
05e753de61
Converted to use jmock for mocks.
17 years ago
6b24637fbc
Further SavedRequestWrapper related tests and tidying up.
17 years ago
1cf59b249a
Added test class for DefaultLoginPageGeneratingFilter.
17 years ago
13caa48a24
Added clearContext() in @After . Test was leaving a TestingAuthenticationToken in the context.
17 years ago
18e74e7d3f
Import cleaning.
17 years ago
22cca49d4a
Added clearContext() call in @Before method. Test class appears to be failing on the build server because of a left over security context from a previous test
17 years ago
67c06d3d52
SEC-1012: Adding generics and general tidying up of tests etc
17 years ago
a535c5bd05
Removed unused imports.
17 years ago
9dc50bce82
SEC-1013: Removed ConfigAttributeDefinition
17 years ago
e259fe43a9
SEC-1034: Removed classes for converting a FilterInvocationDefinitionSource to a map for use in FilterChainProxy
17 years ago
31375b7212
SEC-1012: Futher generification. Also changed method signature of ObjectDefinitionSource.getAllConfigAtributes to return a single collection
17 years ago
5c1f4e60e3
Tidying stuff
17 years ago
3261fcb174
Tidying stuff
17 years ago
fa630a430d
Removed unused test files
17 years ago
3ce5ea7710
Add missing @Test attributes
17 years ago
df26b2447c
SEC-1035: Switch to using spring-el from the Spring 3 build
17 years ago
bd9b199599
Import cleaning.
17 years ago
648ba1c43a
SEC-1034: Fix broken tests.
17 years ago
ae05e74085
Replace use of deprecated Spring methods (addConstructorArg) with non-deprecated versions.
17 years ago
7a8bd8a673
SEC-1034: Removed FilterInvocationDefinitionSourceEditor.
17 years ago
464da0f0df
SEC-999: Refactored namespace to take an expression handler instead of a permission evaluator, allowig fo greater cusomtomization and for a single handler to be used in both web and method security expressions.
17 years ago
ee13be47b7
Call setAuthenticated() in constructor with authorities to mimic behaviour of UsernamePasswordAuthenticationToken
17 years ago
3ef34122fc
Converted to using JMock.
17 years ago
e18971fdf0
Fix test. BasicProcessingFilter doesn't work with TestingAuthenticationToken.
17 years ago
3acd515c6c
SEC-999: Refactored expression security classes for better separation of concerns and of method vs web authorization expressions.
17 years ago
0bbab88504
SEC-1031: LdapShaPasswordEncoder.isPasswordValid startOfHash off by one
...
http://jira.springframework.org/browse/SEC-1031 . Fixed startOfHash value and added tests to check full length of password is used.
17 years ago
0ba690fb0e
SEC-1015: Removed acl package from core and also related taglib declaration and implementation class (AclTag).
17 years ago
e5b1073501
SEC-1012: Added more generics and warning suppression
17 years ago
be34724207
Matchers for use with JMock expectations
17 years ago
62986c700b
SEC-1027: Removed bnd plugin and 'bundle' package types from pom.xml files
17 years ago
e11114ce77
SEC-1023: Add hasPermission() support to SecurityExpressionRoot
...
http://jira.springframework.org/browse/SEC-1023 .
hasPermission() now delegates to a PermissionEvaluator interface, with a default implementation provided by the Acl module. The contacts sample now uses expressions on the ContactManager interface. The permission-evaluator element on global-method-security can be used to set the instance to an AclPermissionEvaluator. If not set, all hasPermission() expressions will evaluate to 'false'.
17 years ago
d6bb6ccbf5
Removed .cvsignore files
17 years ago
d33b13e52e
SEC-1023: Added support for hasPermission() based on Id and type
17 years ago
a207acf7cb
SEC-999: Fix broken test which was failing due to use of incorrect authentication object.
17 years ago
56141e9c5f
SEC-999: Refactoring out specific dependencies on Spring EL into SecurityExpressionHandler.
...
SEC:1023: Updates to expression root to allow evaluationof permissions.
17 years ago
dabb719456
SEC-1023: Add hasPermission() support to SecurityExpressionRoot
...
http://jira.springframework.org/browse/SEC-1023 . PermissionEvaluator interface for use by expressions when evaluating hasPermisson() expressions.
17 years ago
b42fc7221f
Upgraded to jmock 2.5.1
17 years ago
514bca669f
SEC-999: Introduced custom SecurityExpressionEvaluationContext which is responsible for lazy initialization of parameter values in the context. Also some further conversion of code using GrantedAuthority arrays.
17 years ago
Luke Taylor