 Rob Winch
|
6584b65489
SEC-1898: Added test to demonstrate JdbcAclService#readAclById throws NotFoundException when the Acl is missing
|
il y a 13 ans |
|
Rob Winch
|
520b65e2e3
SEC-1865: Remove invalid OWASP link in TextEscapeUtils
|
il y a 13 ans |
|
Rob Winch
|
a8b30ed6d9
.gitignore */src/*/java/META-INF
|
il y a 13 ans |
 Rob Winch
|
254333ce82
SEC-1957: DefaultFilterChainValidator no longer casts to DefaultFilterInvocationSecurityMetadataSource
|
il y a 13 ans |
|
Rob Winch
|
b626a63b85
Suppress warnings in AbstractAuthorizeTag and AuthorizeTagCustomGrantedAuthorityTests
|
il y a 13 ans |
 Christian Hilmersson
|
d57f1d56d5
SEC-1900: AbstractAuthorizeTag now compares using getAuthority()
|
il y a 13 ans |
|
Rob Winch
|
c446697de3
Cleaned up warnings in FilterChainProxyTests
|
il y a 13 ans |
|
Rob Winch
|
bb8f3bae7c
SEC-1950: Defensively invoke SecurityContextHolder.clearContext() in FilterChainProxy
|
il y a 13 ans |
|
Rob Winch
|
ca741ab18f
SEC-1943: Corrected namespace doc to state SecurityContextHolderAwareRequestFilter instead of SecurityContextHolderAwareFilter
|
il y a 13 ans |
|
Rob Winch
|
488efbc97e
SEC-1901: Changed DebugFilter to no longer extend OncePerRequesetFilter so that the FilterChainProxy is invoked on forwards
|
il y a 13 ans |
|
Rob Winch
|
a4322d70ba
Merge pull request #5 from tburch/setUseSecureCookie-typo
|
il y a 13 ans |
|
Rob Winch
|
f78c11650f
SEC-1893: Namespace now register PortMapper with custom mappings for all components that use a PortMapper
|
il y a 13 ans |
|
Rob Winch
|
84141c4c76
SEC-1927: Corrected debug log in SessionManagementFilter to have a space between ID and the session and added guard to log statement
|
il y a 13 ans |
 Tristan Burch
|
e7f47964ee
fix typo in setUseSecureCookie method documentation
|
il y a 13 ans |
 ltaylor
|
6bde4caa77
Merge pull request #4 from Abdull/master
|
il y a 13 ans |
 Abdull
|
dec44811fc
Gave correct role name
|
il y a 13 ans |
|
Abdull
|
0e413cedcb
Gave correct role name
|
il y a 13 ans |
 Luke Taylor
|
3760d792ea
SEC-1890: Add checks for validity of stored bcrypt hash
|
il y a 13 ans |
|
Luke Taylor
|
5d71d2a4fa
SEC-1887: Add MethodSecurityOperations interface.
|
il y a 13 ans |
|
Luke Taylor
|
2434564d6c
SEC-1904: Fixed LDAP object class name in docs.
|
il y a 13 ans |
|
Luke Taylor
|
538e75ce1b
SEC-1903: Use a static CRLF Pattern in FirewalledResponse
|
il y a 13 ans |
 Andrei Stefan
|
0f9ee81df1
SEC-1887: Improve extensibility of expression-based security classes
|
il y a 13 ans |
|
Luke Taylor
|
b493afa18c
SEC-1888: Improving the doc on (not) using multiple annotation types in the same class.
|
il y a 13 ans |
|
Luke Taylor
|
f97463cdb5
Minor comment fixes
|
il y a 13 ans |
|
Rob Winch
|
2d556c7b4f
SEC-1885: Change SecurityDebugBeanFactoryPostProcessor to only interact with BeanDefinitions rather than instances to prevent premature instatiation of FilterChainProxy and its dependencies
|
il y a 13 ans |
|
Rob Winch
|
22225effcc
Call SecurityContextHolder.clearContext() in tear down of HttpSessionSecurityContextRepositoryTests
|
il y a 14 ans |
|
Rob Winch
|
5d94cd5e13
SEC-1735: Do not remove SecurityContext from HttpSession when anonymous Authentication is saved if original SecurityContext was anonymous
|
il y a 14 ans |
|
Rob Winch
|
1f835fec43
SEC-1867: Perform null check on Authentication.getCredentials() prior to calling toString()
|
il y a 14 ans |
|
Rob Winch
|
448a42916d
SEC-1880: Corrected error message when using both logout-success-url and success-handler-ref
|
il y a 14 ans |
|
Rob Winch
|
ea56a98883
SEC-1868: Remove error level logs from SecurityNamespaceHandler when the web classes are not available and not required
|
il y a 14 ans |
