github/spring-security @ 20e65a93ea958470209ee535fce467e1df5261ec

Açıklama Yok

Luke Taylor 20e65a93ea Minor test updates.		14 yıl önce
acl	1b32babbf9 SEC-1545: Removed unused i18n keys, changed keys to follow naming conventions, found missing keys based upon old keys, sorted keys, any unknown keys are entered as a comment with the English value.	14 yıl önce
aspects	21ed5feb8d SEC-1600: Added Implementation-Version and Implementation-Title to manifest templates and checking of version numbers in namespace config module and core. Config checks the version of core it is running against and core checks the Spring version, reporting any mismatches or situations where the app is running with less than the recommended Spring version.	15 yıl önce
buildSrc	49242729e4 Added imgSrcPath parameter for use in docbookFopPdf task.	15 yıl önce
cas	3f7f87e19f SEC-1592: Updated CasAuthenticationFilter so that it does not continue FilterChain when handling proxy requests.	14 yıl önce
config	866615ceaa SEC-1662: Cater for the case where a user uses two <http> elements without patterns and the RequestMatcher does not have two arguments.	14 yıl önce
core	20e65a93ea Minor test updates.	14 yıl önce
crypto	8c08eeb57b SEC-1666: Use constant time comparison for sensitive data.	14 yıl önce
docs	5f58108717 Typo.	14 yıl önce
gradle	5caa41753a Add check for coverage data before trying to produce report.	14 yıl önce
itest	c1f2fa1983 SEC-1558: Changed signatures of PrePostInvocationAttributeFactory to take strings rather than annotation types to allow the metadata to be obtained from other sources (not just annotations).	14 yıl önce
ldap	a790c7e192 SEC-1670: Take account of JNDI CompositeName escaping in value of SearchResult.getName() when performing a search for a user entry in SpringSecurityLdapTemplate.	14 yıl önce
openid	43be9ea2a4 SEC-1430: Removed caching of username in session upon failed authentication. Improved Javadoc.	15 yıl önce
samples	d58dd79a52 SEC-1494: Updated the tutorial webapp to use CSS and make use of the securityHiddenUI element when UI security is disabled.	14 yıl önce
sandbox	43be9ea2a4 SEC-1430: Removed caching of username in session upon failed authentication. Improved Javadoc.	15 yıl önce
taglibs	00200cecbc SEC-1494: Added system property "spring.security.disableUISecurity" which will prevent authorize tags from hiding content. By default, the property will also cause the area that would normally be hidden to be decorated with a <span class="securityHiddenUI"> tag, thus allowing the area to be rendered with some distinguishing css (e.g. a different background colour).	14 yıl önce
web	8c08eeb57b SEC-1666: Use constant time comparison for sensitive data.	14 yıl önce
.gitignore	7d97adc687 SEC-1584: Addition of HttpFirewall strategy to FilterChainProxy to reject un-normalized requests and wrap the incoming request object before processing by the security filter chain to provide a more consistent representation of paths than is guaranteed by the servlet spec. The wrapper strips path parameters from pathInfo and servletPath to provide consistency of URL matching across servlet containers and protect against bypassing security constraints by the malicious addition of such parameters to the URL. The paths are canonicalized further by replacing of multiple sequences of "/" characters with a single "/".	15 yıl önce
build.gradle	39b48c6d95 Update gradle wrapper to 0.9.1 in order to use mavenLocal() repo syntax.	14 yıl önce
class_mapping_from_2.0.x.txt	48dcc211e9 SEC-1148: Simple classname mapping from 2.0 to 3.0	16 yıl önce
gradlew	f1fe3ce7e6 Update wrapper to gradle 0.9 release	14 yıl önce
gradlew.bat	c9b0bc1bd9 Added gradle wrapper support.	15 yıl önce
license.txt	c3507b26c9 Change to Apache License version 2.0.	21 yıl önce
notice.txt	9cf146ecf1 Broaden list of names used and correct URL.	18 yıl önce
readme.txt	2c219f7a66 Bringing readme file up to date.	15 yıl önce
settings.gradle	ffa7301e7f SEC-1569: initial commit of spring-security-crypto module, consisting of encrypt, keygen, password, and util packages	14 yıl önce

		
			
			
				readme.txt
			
		
		
	
			
				===============================================================================
                    SPRING SECURITY - README FILE
===============================================================================

-------------------------------------------------------------------------------
OVERVIEW
-------------------------------------------------------------------------------

Spring Security provides security services for the Spring Framework
(http://www.springframework.org). Spring Security 3.1 requires Spring 3.0.3 as
a minimum and also requires Java 5.

For a detailed list of features and access to the latest release, please visit
http://www.springframework.org/projects/.

Spring Security is released under an Apache 2.0 license. See the accompanying
license.txt file.

-------------------------------------------------------------------------------
BUILDING
-------------------------------------------------------------------------------

Please read the "Building from Source" page at
http://static.springframework.org/spring-security/site/.

-------------------------------------------------------------------------------
DOCUMENTATION
-------------------------------------------------------------------------------

Be sure to read the Reference Guide  (docs/reference/html/springsecurity.html).
Extensive JavaDoc for the Spring Security code is also available (in docs/apidocs).
Both can also be found on the website.

-------------------------------------------------------------------------------
QUICK START
-------------------------------------------------------------------------------

We recommend you visit http://static.springframework.org/spring-security/site and
read the "Getting Started" page.

-------------------------------------------------------------------------------
MAVEN REPOSITORY DOWNLOADS
-------------------------------------------------------------------------------

Release jars for the project are available from the central maven repository

http://repo1.maven.org/maven2/org/springframework/security/

Note that milestone releases and snapshots are not uploaded to the central
repository, but can be obtained from the Spring milestone repository, using the
maven repository http://maven.springframework.org/snapshot/. You can't browse this
URL directly, but there is a separate browser interface. Check the downloads page
for more information
http://static.springsource.org/spring-security/site/downloads.html


-------------------------------------------------------------------------------
OBTAINING SUPPORT
-------------------------------------------------------------------------------

There are two types of support available, commercial and community. For
commercial support, please contact SpringSource. SpringSource employ the
people who wrote Spring Security, and lead the development of the project:

  http://www.springsource.com

For peer help and assistance, please use the Spring Security forum
located at the Spring Community's forum site:

  http://forum.springframework.org

Links to the forums, and other useful resources are
available from the web site.


			
		