Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki

No Description

Tree: 19e56f4397
Branches Tags
spring-security
ZIP TAR.GZ
Luke Taylor 19e56f4397 Stripping out unnecessary dependencies from sample jars. 14 years ago
acl c8820166c8 SEC-1576: Parameterize the secured object type in AccessDecisionVoter. 14 years ago
aspects 21ed5feb8d SEC-1600: Added Implementation-Version and Implementation-Title to manifest templates and checking of version numbers in namespace config module and core. Config checks the version of core it is running against and core checks the Spring version, reporting any mismatches or situations where the app is running with less than the recommended Spring version. 15 years ago
buildSrc 49242729e4 Added imgSrcPath parameter for use in docbookFopPdf task. 15 years ago
cas 4a40d80da1 SEC-1418: Deprecate GrantedAuthorityImpl in favour of final SimpleGrantedAuthority. 14 years ago
config 6779822325 Remove GRADLE-1090 workarounds from config.gradle. 14 years ago
core c1f2fa1983 SEC-1558: Changed signatures of PrePostInvocationAttributeFactory to take strings rather than annotation types to allow the metadata to be obtained from other sources (not just annotations). 14 years ago
docs b858b23927 SEC-1651: Added first draft of dependencies appendix to reference manual. 14 years ago
gradle 39b48c6d95 Update gradle wrapper to 0.9.1 in order to use mavenLocal() repo syntax. 14 years ago
itest c1f2fa1983 SEC-1558: Changed signatures of PrePostInvocationAttributeFactory to take strings rather than annotation types to allow the metadata to be obtained from other sources (not just annotations). 14 years ago
ldap 592782dc7f Added test for getAdditionalRoles in DefaultLdapAuthoritiesPopulator. 14 years ago
openid 43be9ea2a4 SEC-1430: Removed caching of username in session upon failed authentication. Improved Javadoc. 15 years ago
samples 19e56f4397 Stripping out unnecessary dependencies from sample jars. 14 years ago
sandbox 43be9ea2a4 SEC-1430: Removed caching of username in session upon failed authentication. Improved Javadoc. 15 years ago
taglibs 85d685f7d3 SEC-1611: Make access attribute in authorize tag a runtime expression 14 years ago
web bf59c75886 Test class to improve coverage of WAS-specific preauth code. 14 years ago
.gitignore 7d97adc687 SEC-1584: Addition of HttpFirewall strategy to FilterChainProxy to reject un-normalized requests and wrap the incoming request object before processing by the security filter chain to provide a more consistent representation of paths than is guaranteed by the servlet spec. The wrapper strips path parameters from pathInfo and servletPath to provide consistency of URL matching across servlet containers and protect against bypassing security constraints by the malicious addition of such parameters to the URL. The paths are canonicalized further by replacing of multiple sequences of "/" characters with a single "/". 15 years ago
build.gradle 39b48c6d95 Update gradle wrapper to 0.9.1 in order to use mavenLocal() repo syntax. 14 years ago
class_mapping_from_2.0.x.txt 48dcc211e9 SEC-1148: Simple classname mapping from 2.0 to 3.0 16 years ago
gradlew f1fe3ce7e6 Update wrapper to gradle 0.9 release 14 years ago
gradlew.bat c9b0bc1bd9 Added gradle wrapper support. 15 years ago
license.txt c3507b26c9 Change to Apache License version 2.0. 21 years ago
notice.txt 9cf146ecf1 Broaden list of names used and correct URL. 18 years ago
readme.txt 2c219f7a66 Bringing readme file up to date. 15 years ago
settings.gradle 58d9903ebc SEC-1564: JAAS Configuration can now be injected into DefaultJaasAuthenticationProvider 15 years ago

readme.txt

===============================================================================
SPRING SECURITY - README FILE
===============================================================================

-------------------------------------------------------------------------------
OVERVIEW
-------------------------------------------------------------------------------

Spring Security provides security services for the Spring Framework
(http://www.springframework.org). Spring Security 3.1 requires Spring 3.0.3 as
a minimum and also requires Java 5.

For a detailed list of features and access to the latest release, please visit
http://www.springframework.org/projects/.

Spring Security is released under an Apache 2.0 license. See the accompanying
license.txt file.

-------------------------------------------------------------------------------
BUILDING
-------------------------------------------------------------------------------

Please read the "Building from Source" page at
http://static.springframework.org/spring-security/site/.

-------------------------------------------------------------------------------
DOCUMENTATION
-------------------------------------------------------------------------------

Be sure to read the Reference Guide (docs/reference/html/springsecurity.html).
Extensive JavaDoc for the Spring Security code is also available (in docs/apidocs).
Both can also be found on the website.

-------------------------------------------------------------------------------
QUICK START
-------------------------------------------------------------------------------

We recommend you visit http://static.springframework.org/spring-security/site and
read the "Getting Started" page.

-------------------------------------------------------------------------------
MAVEN REPOSITORY DOWNLOADS
-------------------------------------------------------------------------------

Release jars for the project are available from the central maven repository

http://repo1.maven.org/maven2/org/springframework/security/

Note that milestone releases and snapshots are not uploaded to the central
repository, but can be obtained from the Spring milestone repository, using the
maven repository http://maven.springframework.org/snapshot/. You can't browse this
URL directly, but there is a separate browser interface. Check the downloads page
for more information
http://static.springsource.org/spring-security/site/downloads.html


-------------------------------------------------------------------------------
OBTAINING SUPPORT
-------------------------------------------------------------------------------

There are two types of support available, commercial and community. For
commercial support, please contact SpringSource. SpringSource employ the
people who wrote Spring Security, and lead the development of the project:

http://www.springsource.com

For peer help and assistance, please use the Spring Security forum
located at the Spring Community's forum site:

http://forum.springframework.org

Links to the forums, and other useful resources are
available from the web site.