 Luke Taylor
|
82bbd09b71
SEC-1460: Documentation of changes.
|
15 年之前 |
 Luke Taylor
|
dada047e04
SEC-1456: Set rtexprvalue=true for "url" attribute in access tag to allow dynamic values (such as URL of current page).
|
15 年之前 |
|
Luke Taylor
|
def5f88c8c
SEC-1431: Added openid-selector to openid sample, plus AX configuration for myopenid.com.
|
15 年之前 |
|
Luke Taylor
|
2f025fba6c
SEC-1460: Added AxFetchListFactory which matches OpenID identifiers to lists of attributes to use in a fetch-request.
|
15 年之前 |
|
Luke Taylor
|
3af75afec1
Clarify that multiple authentication-provider elements can be used in combination.
|
15 年之前 |
|
Luke Taylor
|
ee1fd1bc50
SEC-1431: Modify OpenID sample to use a custom UserDetailsService which allows any user to authenticate, allocating them a standard role and "registers" their ID in a map, allowing it to be retrieved in subsequent logins.
|
15 年之前 |
|
Luke Taylor
|
f5468087c2
Remove cached DiscoveryInformation from session in OpenID4JavaConsumer's endConsumption method.
|
15 年之前 |
|
Luke Taylor
|
d3d9c5db59
Refactoring of UserDetailsService injection (for X509, OpenID and RememberMeServices) to use a factory bean rather than a post-processor.
|
15 年之前 |
|
Luke Taylor
|
74896f217b
SEC-1459: Generifying AuthenticationUserDetailsService. Now parameterized with <? extends Authentication>.
|
15 年之前 |
|
Luke Taylor
|
a45d2a4fb2
SEC-1462: Only apply session fixation protection strategy if request.isRequestedSessionIdValid() returns true. We don't need to create a new session if the current one already has a different Id from the client.
|
15 年之前 |
|
Luke Taylor
|
93deec8d40
SEC-1458: Remove logger field in HttpSessionEventPublisher in favour of direct lookup. Prevents early initialization of logging system when listener is initialized.
|
15 年之前 |
|
Luke Taylor
|
0521d10069
SEC-1294: Enable access to beans from ApplicationContext in EL expressions.
|
15 年之前 |
|
Luke Taylor
|
12a6ae2ffa
SEC-1232: Add config dependency to maven build for aspectj sample.
|
15 年之前 |
|
Luke Taylor
|
a5a95a8ebc
Upgrade jython and disable cachedir.
|
15 年之前 |
|
Luke Taylor
|
a3ef8255d8
SEC-1232: GlobalMethodSecurityBeanDefinitionParser support for mode='aspectj'
|
15 年之前 |
|
Luke Taylor
|
020e0aa49a
SEC-1448: Fixed failure to resolve generic method argument names in MethodSecurityEvaluationContext.
|
15 年之前 |
|
Luke Taylor
|
d334f6fa09
Latest gradle syntax updates.
|
15 年之前 |
|
Luke Taylor
|
2b9beffd08
SEC-1444: Fix JNDI escaping problems in LDAP authentication.
|
15 年之前 |
|
Luke Taylor
|
977bc2b164
SEC-1433: Reduce the number of direct dependencies on DataAccessException from spring-tx.
|
15 年之前 |
|
Luke Taylor
|
57150a6717
SEC-1440: Add entry-point-ref to http-basic element to allow setting a separate AuthenticationEntryPoint for the BasicAuthenticationFilter.
|
15 年之前 |
|
Luke Taylor
|
2a0aae1904
SEC-524: Document addition of "var" attribute in authorization tags.
|
15 年之前 |
|
Luke Taylor
|
0849dd93e9
Minor correction to namespace appendix
|
15 年之前 |
|
Luke Taylor
|
472c1fac84
SEC-1450: Replace use of ClassUtils.getMostSpecificMethod() in AbstractFallbackMethodDefinitionSource with AopUtils.getMostSpecificMethod() equivalent.
|
15 年之前 |
|
Luke Taylor
|
bf91f2ca67
SEC-524: Added "var" attribute to authorize and accesscontrollist JSP tags.
|
15 年之前 |
|
Luke Taylor
|
2e2625873c
SEC-1446: Modified BasicAuthenticationFilter to treat invalid base64 and invalid Basic authentication tokens as a failed authentication (raising a BadCredentialsException, without calling the AuthenticationManager).
|
15 年之前 |
|
Luke Taylor
|
e60108ca8c
SEC-1443: Modify Jsr250Voter to handle multiple "RolesAllowed" roles.
|
15 年之前 |
|
Luke Taylor
|
d5df53f1db
SEC-1439: Make getters and setters public on HttpRequestResponseHolder.
|
15 年之前 |
|
Luke Taylor
|
111d49d68a
Added build file for itest-context.
|
15 年之前 |
|
Luke Taylor
|
9e049dfef4
SEC-1438: Removed JoinPoint support from AbstractMethodSecurityMetadataSource
|
15 年之前 |
|
Luke Taylor
|
1be44ecd18
SEC-1262: Added extra test for PostFilter with AspectJ interceptor.
|
15 年之前 |
