spring-security

Spring Security

java framework spring spring-framework security

Rob Winch 11331d34d9 SEC-1717: Document how to perform Single Logout with CAS and added integration test for sample application to test Single Logout		15 years ago
acl	Fixing bundlor warnings.	15 years ago
aspects	Fixing bundlor warnings.	15 years ago
buildSrc	Update AspectJPlugin to configure EclipseProject and EclipseClasspath tasks	15 years ago
cas	SEC-965: Added support for CAS proxy ticket authentication on any URL	15 years ago
config	SEC-1699: Make sure a FilterInvocation is passed to the AccessDecisionManager when checking the login page access in DefaultFilterChainValidator.	15 years ago
core	SEC-1181: Added extra I18N messages for LDAP locked, disabled etc.	15 years ago
docs	SEC-1717: Document how to perform Single Logout with CAS and added integration test for sample application to test Single Logout	15 years ago
gradle	Removed unused aspectj gradle file	15 years ago
itest	SEC-1675: Add missing body-content elements to tag descriptor and update it to use 2.0 tag library schema.	15 years ago
ldap	SEC-1181: Added mock testing, to avoid need for AD server	15 years ago
openid	Typo.	15 years ago
samples	SEC-1717: Document how to perform Single Logout with CAS and added integration test for sample application to test Single Logout	15 years ago
sandbox	SEC-1430: Removed caching of username in session upon failed authentication. Improved Javadoc.	15 years ago
taglibs	Fixing bundlor warnings.	15 years ago
web	SEC-965: Added support for CAS proxy ticket authentication on any URL	15 years ago
.gitignore	SEC-1584: Addition of HttpFirewall strategy to FilterChainProxy to reject un-normalized requests and wrap the incoming request object before processing by the security filter chain to provide a more consistent representation of paths than is guaranteed by the servlet spec. The wrapper strips path parameters from pathInfo and servletPath to provide consistency of URL matching across servlet containers and protect against bypassing security constraints by the malicious addition of such parameters to the URL. The paths are canonicalized further by replacing of multiple sequences of "/" characters with a single "/".	15 years ago
build.gradle	Remove unnecessary repos from main build file (EBR should only be needed for bundlor) and we generally have no need to build against snapshots other than for one-off testing.	15 years ago
class_mapping_from_2.0.x.txt	SEC-1148: Simple classname mapping from 2.0 to 3.0	16 years ago
gradlew	Updated gradle wrapper to gradle-1.0-milestone-1	15 years ago
gradlew.bat	Updated gradle wrapper to gradle-1.0-milestone-1	15 years ago
license.txt	Change to Apache License version 2.0.	22 years ago
notice.txt	Broaden list of names used and correct URL.	18 years ago
readme.txt	Bringing readme file up to date.	16 years ago
settings.gradle	SEC-1689: Move crypto module code to core for simplicity.	15 years ago

readme.txt

===============================================================================
                    SPRING SECURITY - README FILE
===============================================================================

-------------------------------------------------------------------------------
OVERVIEW
-------------------------------------------------------------------------------

Spring Security provides security services for the Spring Framework
(http://www.springframework.org). Spring Security 3.1 requires Spring 3.0.3 as
a minimum and also requires Java 5.

For a detailed list of features and access to the latest release, please visit
http://www.springframework.org/projects/.

Spring Security is released under an Apache 2.0 license. See the accompanying
license.txt file.

-------------------------------------------------------------------------------
BUILDING
-------------------------------------------------------------------------------

Please read the "Building from Source" page at
http://static.springframework.org/spring-security/site/.

-------------------------------------------------------------------------------
DOCUMENTATION
-------------------------------------------------------------------------------

Be sure to read the Reference Guide  (docs/reference/html/springsecurity.html).
Extensive JavaDoc for the Spring Security code is also available (in docs/apidocs).
Both can also be found on the website.

-------------------------------------------------------------------------------
QUICK START
-------------------------------------------------------------------------------

We recommend you visit http://static.springframework.org/spring-security/site and
read the "Getting Started" page.

-------------------------------------------------------------------------------
MAVEN REPOSITORY DOWNLOADS
-------------------------------------------------------------------------------

Release jars for the project are available from the central maven repository

http://repo1.maven.org/maven2/org/springframework/security/

Note that milestone releases and snapshots are not uploaded to the central
repository, but can be obtained from the Spring milestone repository, using the
maven repository http://maven.springframework.org/snapshot/. You can't browse this
URL directly, but there is a separate browser interface. Check the downloads page
for more information
http://static.springsource.org/spring-security/site/downloads.html


-------------------------------------------------------------------------------
OBTAINING SUPPORT
-------------------------------------------------------------------------------

There are two types of support available, commercial and community. For
commercial support, please contact SpringSource. SpringSource employ the
people who wrote Spring Security, and lead the development of the project:

  http://www.springsource.com

For peer help and assistance, please use the Spring Security forum
located at the Spring Community's forum site:

  http://forum.springframework.org

Links to the forums, and other useful resources are
available from the web site.