Inicio Explorar Axuda
Rexistro Iniciar sesión
github
/
spring-security
réplica de https://github.com/spring-projects/spring-security
2
0
Fork 0
Ficheiros Incidencias 0 Wiki

Sen descrición

Árbore: a25d131f21
Ramas Etiquetas
spring-security
ZIP TAR.GZ
Luke Taylor a25d131f21 Some doc clarifications on the use of UserDetailService vs AuthenticationProvider. %!s(int64=14) %!d(string=hai) anos
acl ccc548b9e4 Fixing bundlor warnings. %!s(int64=14) %!d(string=hai) anos
aspects ccc548b9e4 Fixing bundlor warnings. %!s(int64=14) %!d(string=hai) anos
buildSrc db6edfb512 Pull in changes to convert emma, aspectj and bundlor usage to plugins %!s(int64=14) %!d(string=hai) anos
cas b0df1bd1b0 SEC-1673: Use a map to store the range values use in the bundlor templates. %!s(int64=14) %!d(string=hai) anos
config ccc548b9e4 Fixing bundlor warnings. %!s(int64=14) %!d(string=hai) anos
core 5a6afbff95 SEC-1688: Allow injection of a PasswordEncoder from the crypto module into DaoAuthenticationProvider. %!s(int64=14) %!d(string=hai) anos
crypto 8c08eeb57b SEC-1666: Use constant time comparison for sensitive data. %!s(int64=14) %!d(string=hai) anos
docs a25d131f21 Some doc clarifications on the use of UserDetailService vs AuthenticationProvider. %!s(int64=14) %!d(string=hai) anos
gradle bd53ff1832 Updated gradle build so that eclipse is configured for AJDT %!s(int64=14) %!d(string=hai) anos
itest 94b7868039 SEC-1675: Add missing body-content elements to tag descriptor and update it to use 2.0 tag library schema. %!s(int64=14) %!d(string=hai) anos
ldap 44fb3aa4ab SEC-1677: Create integrationTest task for Java projects and make all tests in itest module run as integration tests only. %!s(int64=14) %!d(string=hai) anos
openid 84ba7a0ea9 Additional tests for OpenID classes and minor refactoring of OpenID4JavaConsumer for easier testing. %!s(int64=14) %!d(string=hai) anos
samples a50c9afbab Modified jaas sample's LoginModule to prevent empty string username/password %!s(int64=14) %!d(string=hai) anos
sandbox 43be9ea2a4 SEC-1430: Removed caching of username in session upon failed authentication. Improved Javadoc. %!s(int64=15) %!d(string=hai) anos
taglibs ccc548b9e4 Fixing bundlor warnings. %!s(int64=14) %!d(string=hai) anos
web 44252207db SEC-1683: Corrected typo %!s(int64=14) %!d(string=hai) anos
.gitignore 7d97adc687 SEC-1584: Addition of HttpFirewall strategy to FilterChainProxy to reject un-normalized requests and wrap the incoming request object before processing by the security filter chain to provide a more consistent representation of paths than is guaranteed by the servlet spec. The wrapper strips path parameters from pathInfo and servletPath to provide consistency of URL matching across servlet containers and protect against bypassing security constraints by the malicious addition of such parameters to the URL. The paths are canonicalized further by replacing of multiple sequences of "/" characters with a single "/". %!s(int64=15) %!d(string=hai) anos
build.gradle 6983b166d8 Configure Eclipse wtp to use the same context root as jetty %!s(int64=14) %!d(string=hai) anos
class_mapping_from_2.0.x.txt 48dcc211e9 SEC-1148: Simple classname mapping from 2.0 to 3.0 %!s(int64=16) %!d(string=hai) anos
gradlew c7de933cb9 Updated gradle wrapper to gradle-1.0-milestone-1 %!s(int64=14) %!d(string=hai) anos
gradlew.bat c7de933cb9 Updated gradle wrapper to gradle-1.0-milestone-1 %!s(int64=14) %!d(string=hai) anos
license.txt c3507b26c9 Change to Apache License version 2.0. %!s(int64=21) %!d(string=hai) anos
notice.txt 9cf146ecf1 Broaden list of names used and correct URL. %!s(int64=18) %!d(string=hai) anos
readme.txt 2c219f7a66 Bringing readme file up to date. %!s(int64=15) %!d(string=hai) anos
settings.gradle ffa7301e7f SEC-1569: initial commit of spring-security-crypto module, consisting of encrypt, keygen, password, and util packages %!s(int64=14) %!d(string=hai) anos

readme.txt

===============================================================================
SPRING SECURITY - README FILE
===============================================================================

-------------------------------------------------------------------------------
OVERVIEW
-------------------------------------------------------------------------------

Spring Security provides security services for the Spring Framework
(http://www.springframework.org). Spring Security 3.1 requires Spring 3.0.3 as
a minimum and also requires Java 5.

For a detailed list of features and access to the latest release, please visit
http://www.springframework.org/projects/.

Spring Security is released under an Apache 2.0 license. See the accompanying
license.txt file.

-------------------------------------------------------------------------------
BUILDING
-------------------------------------------------------------------------------

Please read the "Building from Source" page at
http://static.springframework.org/spring-security/site/.

-------------------------------------------------------------------------------
DOCUMENTATION
-------------------------------------------------------------------------------

Be sure to read the Reference Guide (docs/reference/html/springsecurity.html).
Extensive JavaDoc for the Spring Security code is also available (in docs/apidocs).
Both can also be found on the website.

-------------------------------------------------------------------------------
QUICK START
-------------------------------------------------------------------------------

We recommend you visit http://static.springframework.org/spring-security/site and
read the "Getting Started" page.

-------------------------------------------------------------------------------
MAVEN REPOSITORY DOWNLOADS
-------------------------------------------------------------------------------

Release jars for the project are available from the central maven repository

http://repo1.maven.org/maven2/org/springframework/security/

Note that milestone releases and snapshots are not uploaded to the central
repository, but can be obtained from the Spring milestone repository, using the
maven repository http://maven.springframework.org/snapshot/. You can't browse this
URL directly, but there is a separate browser interface. Check the downloads page
for more information
http://static.springsource.org/spring-security/site/downloads.html


-------------------------------------------------------------------------------
OBTAINING SUPPORT
-------------------------------------------------------------------------------

There are two types of support available, commercial and community. For
commercial support, please contact SpringSource. SpringSource employ the
people who wrote Spring Security, and lead the development of the project:

http://www.springsource.com

For peer help and assistance, please use the Spring Security forum
located at the Spring Community's forum site:

http://forum.springframework.org

Links to the forums, and other useful resources are
available from the web site.