 Luke Taylor
|
fc75b69ab8
SEC-1607: Report correct version for Spring Security (not Spring version).
|
15 年之前 |
|
Luke Taylor
|
6141ef79b3
Remove use of @Override with an interface method
|
15 年之前 |
|
Luke Taylor
|
3cfe23f60d
Update versions to 3.0.5.CI-SNAPSHOT
|
15 年之前 |
|
Luke Taylor
|
82d140ffb1
Version 3.0.4.RELEASE
|
15 年之前 |
|
Luke Taylor
|
1563491322
SEC-1600: Added Implementation-Version and Implementation-Title to manifest templates and checking of version numbers in namespace config module and core. Config checks the version of core it is running against and core checks the Spring version, reporting any mismatches or situations where the app is running with less than the recommended Spring version.
|
15 年之前 |
|
Luke Taylor
|
b688bb69ee
SEC-1543: Change IpAddressMatcher to return false when comparing an Inet6Address with an Inet4Address rather than raising an exception.
|
15 年之前 |
|
Luke Taylor
|
36f008643d
SEC-1598: Removed invalid properties from SessionFixationProtectionStrategy bean declaration in Session Management chapter docbook.
|
15 年之前 |
|
Luke Taylor
|
cbdf77e991
SEC-1597: Corrected bean class name for RememberMeAuthenticationProvider in docbook source.
|
15 年之前 |
|
Luke Taylor
|
399e921d14
SEC-1599: Corrected docbook source.
|
15 年之前 |
|
Luke Taylor
|
c458311d2d
SEC-1548: Added extra logging to Dao-authentication classes to clarify reasons for authentication failure (missing user vs wrong password etc.).
|
15 年之前 |
|
Luke Taylor
|
d6f408e8bf
SEC-1583: Added hasAuthority and hasAnyAuthority imlementations to SecurityExpressionRoot.
|
15 年之前 |
|
Luke Taylor
|
1739628e6a
SEC-1589: Add support for property placeholder in intercept-methods access attribute.
|
15 年之前 |
|
Luke Taylor
|
8e68fa1334
SEC-1584: Added namespace support for injecting custom HttpFirewall instance into FilterChainProxy.
|
15 年之前 |
|
Luke Taylor
|
82cd72768d
doc updates to be merged with orgininal sec-1584 doc changes
|
15 年之前 |
|
Luke Taylor
|
161710cc87
SEC-1584: Doc updates to explain request matching process.
|
15 年之前 |
|
Luke Taylor
|
dc1b652512
SEC-1584: Additional integration tests.
|
15 年之前 |
|
Luke Taylor
|
ed9411c660
SEC-1584: Addition of HttpFirewall strategy to FilterChainProxy to reject un-normalized requests and wrap the incoming request object before processing by the security filter chain to provide a more consistent representation of paths than is guaranteed by the servlet spec. The wrapper strips path parameters from pathInfo and servletPath to provide consistency of URL matching across servlet containers and protect against bypassing security constraints by the malicious addition of such parameters to the URL. The paths are canonicalized further by replacing of multiple sequences of "/" characters with a single "/".
|
15 年之前 |
|
Luke Taylor
|
e58f982351
Updating gitignore and removing unnecessary casts from FilterChainProxyConfigTests.
|
15 年之前 |
|
Luke Taylor
|
072b73354f
Update namespace handler message to account for later schema versions being used by mistake.
|
15 年之前 |
 Rob Winch
|
443231d1e8
SEC-1578: Use ThreadLocal.remove() instead of ThreadLocal.set(null)
|
15 年之前 |
|
Luke Taylor
|
45674a16ea
SEC-1540: Apply patch to support HTTP method matching for requires-channel namespace attribute.
|
15 年之前 |
|
Luke Taylor
|
a1b124def5
SEC-1532: Add cache of previously matched beans to ProtectPointcutPostProcessor to ensure that it doesn't perform pointcut matching every time a new prototype bean is created.
|
15 年之前 |
|
Luke Taylor
|
f6abc24ed6
SEC-1529: More user-friendly expression @PreAuthorize expression in EL chapter.
|
15 年之前 |
|
Luke Taylor
|
1a9b7e1b6f
SEC-1520: Close NamingEnumeration in LDAP compare implementation.
|
15 年之前 |
|
Luke Taylor
|
8b5c70951d
SEC-1518: Fix element ordering in security.tld
|
15 年之前 |
|
Luke Taylor
|
c891ab45ec
Remove optional qualifier from apacheds dependencies in LDAP sample.
|
15 年之前 |
|
Luke Taylor
|
657a69b906
Minor doc/javadoc updates to clarify use of UserDetailsContextapper.
|
15 年之前 |
|
Luke Taylor
|
3b8fbe8bee
Minor doc updates.
|
15 年之前 |
|
Luke Taylor
|
4ad85cdfdf
SEC-1508: Update docbook processing to use Docbook 5 namespaces.
|
15 年之前 |
|
Luke Taylor
|
845c50a1c3
SEC-1507: Applied patch to return empty authority list rather than null from RoleHierarchyImpl.
|
15 年之前 |
