Tree: c34eb497c8

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

dependabot/gradle/6.4.x/ch.qos.logback-logback-classic-1.5.23

dependabot/gradle/6.4.x/org.apache.maven-maven-resolver-provider-3.9.12

dependabot/gradle/6.4.x/org.hibernate.orm-hibernate-core-6.6.40.Final

dependabot/gradle/6.5.x/ch.qos.logback-logback-classic-1.5.23

dependabot/gradle/6.5.x/org.apache.maven-maven-resolver-provider-3.9.12

dependabot/gradle/6.5.x/org.hibernate.orm-hibernate-core-6.6.40.Final

dependabot/gradle/main/ch.qos.logback-logback-classic-1.5.23

dependabot/gradle/main/io.spring.nullability-io.spring.nullability.gradle.plugin-0.0.8

dependabot/gradle/main/org.apache.httpcomponents.client5-httpclient5-5.5.2

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'c34eb497c8'

${ noResults }

Commit Graph

2909 Commits (c34eb497c8cf8a06df9c00925daef1491c01c20e)

 

All Branches   

Search

Author	SHA1	Message	Date
Luke Taylor	f269373442	IDE-791: Remove explicit Spring LDAP class dependencies from LdapServerBDP.	18 years ago
Luke Taylor	4f6b4e4bfd	Make sample login pages use c:out for data output	18 years ago
Luke Taylor	8b2c0468ff	OPEN - issue SEC-834: Session fixation attack protection will cause problems with URL rewriting ... http://jira.springframework.org/browse/SEC-834. Modified HttpSecurityBDP to add session-fixation parameters to openId and form-login filters. Also added sessionRegistry property to AbstractProcessingFilter so that it doesn't conflict with concurrent session control.	18 years ago
Luke Taylor	d17a2da9e0	SEC-834: Session fixation attack protection will cause problems with URL rewriting ... http://jira.springframework.org/browse/SEC-834. Changed position of SessionFixationProtectionFilter and modified it to make a decision about whether authentication has taken place prior to calling doFilter(). Previously it did this on the return through the filter chain, which caused the problem described in this issue.	18 years ago
Luke Taylor	7f38c656ca	SEC-820: Expand regular expression used in hierarchical roles.	18 years ago
Luke Taylor	6493df13f8	SEC-803: Removed use of websphere SubjectHelper class.	18 years ago
Luke Taylor	d4defb10fe	SEC-833: Fixed login-failure-url in contacts sample app.	18 years ago
Luke Taylor	59543af4fb	SEC-826: Support for JPA PersistenceContext annotation broken ... http://jira.springframework.org/browse/SEC-826 Moved all injection post-processing to BeanPostProcessors (and deleted bean factory post-processor) to prevent early instantiation problems. Beas should now all be instantiated before the injection takes place.	18 years ago
Luke Taylor	332f8fe5a1	SEC-624: Minor updates to docs	18 years ago
Luke Taylor	7a8eec11da	SEC-765: Brief outline of preauth sample	18 years ago
Luke Taylor	ff61644219	SEC-740: More on preauth	18 years ago
Luke Taylor	1fee538c7e	Fixed typo in setter method (uses of).	18 years ago
Luke Taylor	ae2470127c	Fixed typo in setter method "seAttributePrefix"	18 years ago
Luke Taylor	2a4d859812	SEC-829: Minor doc fix	18 years ago
Luke Taylor	15b893f9ae	SEC-809: OpenIDProcessingFilter updated to set authentication details (to make compatible with concurrent session control).	18 years ago
Luke Taylor	de886e36fa	SEC-624: Expanded general info on obtaining samples and added pointers to ldap and cas versions	18 years ago
Luke Taylor	ad9a667b75	SEC-624: Inserted sub-sections for key class definitions so they appear in toc	18 years ago
Luke Taylor	f70701d55a	SEC-624: Added section on 'getting the source' for reference from samples chapter	18 years ago
Luke Taylor	e1b226ee57	Added 2.0.2 namespace file	18 years ago
Luke Taylor	af0153d833	Extended intro to Authentication part to include pointers to tech overview and namespace config	18 years ago
Luke Taylor	d78a021fe1	Added basic intro to preauth	18 years ago
Luke Taylor	e1c17450b3	Updated faqs to add infinite loop and access denied debug message	18 years ago
Luke Taylor	add2649397	Javadoc typo.	18 years ago
Luke Taylor	781d88bd30	OPEN - issue SEC-825: Query string isn't beig stripped from URLs when ant matcher is in use (regression issue) ... http://jira.springframework.org/browse/SEC-825. Make sure the property is set on DefaultFilterInvocationDefinitionSource when ant paths are in use.	18 years ago
Luke Taylor	1030dca353	SEC-786: Added information on the need ofor a UserDetailsService if using auto-config/remember-me	18 years ago
Luke Taylor	b99f9d343d	SEC-624: Added some info on use of role-prefix	18 years ago
Luke Taylor	c0e829a41d	SEC-700: Added info on new remember-me imlementation and namespace config examples	18 years ago
Luke Taylor	5a1258a4ca	Corrected references to parts and reading order	18 years ago
Luke Taylor	883b92e7bd	SEC-822: Converted to long arithmetic to prevent integer overflowing with long token validity periods	18 years ago
Luke Taylor	301d021bf5	SEC-817: NPE in org.springframework.security.config.FilterChainProxyPostProcessor ... Reversed order of beanName.equals() call as suggested.	18 years ago
Luke Taylor	8ad2d681ab	SEC-818: Changed redirect URL validation to ignore potential property placeholders at parsing time and report a warning through the parser context rather than an error. Also validated the URLs in the beans themselves using Asserts, so an exception will occur later when the beans have been created rather than while assembling the bean definitions.	18 years ago
Luke Taylor	5cf0c84e2f	SEC-814: Added standard bean config to ldap example and updated doc to provide some pointers to DefaultLdapAuthoritiesPopulator	18 years ago
Luke Taylor	afc757e618	Removed reference to LdapDataAccessException since it isn't actually mentioned except in javadoc	18 years ago
Luke Taylor	c333070fe3	Javadoc tidying	18 years ago
Luke Taylor	fca3a2a709	SEC-812: Added missing TextUtils file	18 years ago
Luke Taylor	fa44c74993	SEC-812: Added entity-escaping of username stored under last username key, to prevent problems if it is rendered in a page without escaping the text.	18 years ago
Luke Taylor	06719053f1	Removed commons lang dependency.	18 years ago
Luke Taylor	e7b6fe09e1	Corrected css for 'poweredBy'	18 years ago
Ben Alex	9961c7f867	Moved to correct build location.	18 years ago
Ben Alex	7a2e1e13d3	SEC-811: Provide a mechanism to allocate and rebuild cryptographically strong, randomised tokens.	18 years ago
Luke Taylor	a599ef5398	[maven-release-plugin] prepare for next development iteration	18 years ago
Luke Taylor	3e808335a4	[maven-release-plugin] prepare release spring-security-parent-2.0.1	18 years ago
Luke Taylor	054e2f6c38	SEC-624: Start of preauth document	18 years ago
Luke Taylor	79ca0d1612	Set correct 'test' scope on core-tests dependency	18 years ago
Luke Taylor	18a9965b80	Moved dummy file out of default package for easy exclusion from javadoc	18 years ago
Luke Taylor	de179c3e46	Fixed javadoc links	18 years ago
Luke Taylor	fc498954c6	Updated sample context files to point at 2.0.1 schema	18 years ago
Luke Taylor	014f21ee85	Deleted attributes sample	18 years ago
Luke Taylor	6ecfa0541f	SEC-806: Osgi-ified more modules	18 years ago
Luke Taylor	4984d4be65	OPEN - issue SEC-757: Add validation of redirect URLs on namespace ... http://jira.springframework.org/browse/SEC-757. Added validation method to ConfigUtils and calls to it for url attributes.	18 years ago