Главная Обзор Помощь
Регистрация Вход
github
/
spring-security
зеркало из https://github.com/spring-projects/spring-security
2
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: a6d47203db
Ветки Метки

История коммитов

Автор SHA1 Сообщение Дата
  Luke Taylor a6d47203db FilterInvocation should set queryString on dummy request. 15 лет назад
  Luke Taylor f455e9a5a4 SEC-1584: Documentation of request-checking and matching process. Logging of servletPath and and pathInfo in DebugFilter for comparison. 15 лет назад
  Luke Taylor 0fd2c48dfb SEC-1584: Additional integration tests. 15 лет назад
  Luke Taylor 7d97adc687 SEC-1584: Addition of HttpFirewall strategy to FilterChainProxy to reject un-normalized requests and wrap the incoming request object before processing by the security filter chain to provide a more consistent representation of paths than is guaranteed by the servlet spec. The wrapper strips path parameters from pathInfo and servletPath to provide consistency of URL matching across servlet containers and protect against bypassing security constraints by the malicious addition of such parameters to the URL. The paths are canonicalized further by replacing of multiple sequences of "/" characters with a single "/". 15 лет назад
  Luke Taylor 695c8f4ad6 Import cleaning and suppression of deprecation warnings. 15 лет назад
  Rossen Stoyanchev bd84a2bfa1 SWC-1552 Update .tld in integration test to match change in taglib. 15 лет назад
  Rossen Stoyanchev 70600a0277 SEC-1552 Refactor AuthorizeTag and LegacyAuthorize tag to make them independent of JSP tag rendering. 15 лет назад
  Rob Winch 7258abbbf4 SEC-1585: changed spring-beans-3.1.xsd to spring-beans-3.0.xsd 15 лет назад
  Rob Winch ee12d54bec SEC-1536: moved web.authentication.jaas to web.jaasapi 15 лет назад
  Rob Winch 8249492ce9 SEC-1578: Use ThreadLocal.remove() instead of ThreadLocal.set(null) 15 лет назад
  Luke Taylor e69b981c72 Make method in MatcherType public for use in OAuth. 15 лет назад
  Luke Taylor f978814bb1 Improve entry of username and password for scp upload. 15 лет назад
  Luke Taylor 685e0417a7 SEC-1544: Update the tutorial sample to attempt to delete the JSESSIONID cookie on logout. 15 лет назад
  Luke Taylor 11a87d1fa0 Switch to using xsd:boolean in schema file. 15 лет назад
  Luke Taylor 1b2b371970 SEC-1544: Added CookieClearingLogoutHandler and 'delete-cookies' attribute to the 'logout' namespace element. 15 лет назад
  Luke Taylor 383211561c Moved LDAP placeholder config test into LDAP tests to prevent issues with parallel tests. Converted LdapProviderBDP tests to groovy/spock. Other misc tidying of config tests. 15 лет назад
  Luke Taylor 7dd8cd2fb9 Make sure ApacheDS work directory is set correctly for separate LDAP test task in config module. 15 лет назад
  Luke Taylor 551166a577 ApacheDS workDir property should be passed to the test process, not set as a system property in the main build process. 15 лет назад
  rwinch a128e3b4fe http://forum.springsource.org/showthread.php?p=318755 Added PlaceHolderAndELConfigTests.ldapAuthenticationProviderWorksWithPlaceholders 15 лет назад
  rwinch de819378fc SEC-1536: added JAAS API Integration, updated doc, updated jaas sample 15 лет назад
  Luke Taylor 0217e98bdb Added an AppListener to collect events for use in tests 15 лет назад
  Luke Taylor 62cbd51d54 SEC-1562: Made SecurityExpressionRootPropertyAccessor a package private class as it is no longer referenced from multiple packages. 15 лет назад
  Luke Taylor c5231fc213 SEC-1538: Deprecate PreAuthenticatedGrantedAuthoritiesAuthenticationDetails (forgot originally) and update documentation to remove reference to AbstractPreAuthenticationAuthenticationDetailsSource. 15 лет назад
  Luke Taylor 829444d59b SEC-1564: testCompile configurations should include jcl-over-slf4j rather than logback. 15 лет назад
  rwinch 58d9903ebc SEC-1564: JAAS Configuration can now be injected into DefaultJaasAuthenticationProvider 15 лет назад
  Luke Taylor 8bf1b8420a SEC-1563: Move PermissionEvaluator and related methods to SecurityExpressionRoot 15 лет назад
  Luke Taylor ca44ebd3cc SEC-1338: Applied submitted patch, making use of java.util.concurrent classes in place of traditional synchronization. 15 лет назад
  Luke Taylor af56f4844d SEC-1562: Created SecurityExpressionHandler interface and AbstractSecurityExpressionHandler. 15 лет назад
  Luke Taylor b0998c01bc SEC-1553: Make WebAuthenticationDetails serializable 15 лет назад
  Luke Taylor 577ec27507 Polishing. 15 лет назад

Новее Раньше