Commit Graph

108 Commits

Author SHA1 Message Date
David Key
9a9b5dc439 fixed typo of "successful" in src and test 2015-07-15 19:01:43 -04:00
Janne Valkealahti
5e28e87f58 SPNEGO auth fails if client proposes MS krb5 OID
- Tweak incoming oid order in spnego token to
  workaround jdk regression.
- Fixes #34
2015-05-13 13:15:21 +01:00
Spring Buildmaster
aa5aa8615f Next development version 2015-04-23 07:51:55 -07:00
Rob Winch
ed7d025807 Disable artifactory publish for sample projects 2015-04-23 09:39:41 -05:00
Rob Winch
66e471e79c Revert "Next development version"
Failed push to central requires rolling back the release

This reverts commit 42ead0e99f.
2015-04-23 09:34:54 -05:00
Rob Winch
b843b84d3e Revert "Fix versions"
Failed push to central requires we rollback our changes

This reverts commit a1427dc82d.
2015-04-23 09:34:26 -05:00
Janne Valkealahti
a1427dc82d Fix versions 2015-04-23 08:16:27 +01:00
Spring Buildmaster
42ead0e99f Next development version 2015-04-23 00:02:17 -07:00
Janne Valkealahti
3ba8632e6e Change KerberosLdapContextSource package
- From client to ldap to better indicate that ldap
  classes are optional.
- Fixes #23
2015-04-22 18:01:51 +01:00
Janne Valkealahti
f046bd7c69 Handle possible NPE bug in some jkd versions.
- Check if GSSContext initiator is null, which it should
  not be, and throw BadCredentialsException instead of NPE.
2015-04-22 11:55:22 +01:00
Rob Winch
9a6165d7dc Improve Modularity
* Create spring-security-kerberos-web to limit dependencies for non-web based projects
* Add org.springframework.security.kerberos.authentication to better align with Spring Security packaging
* Add org.springframework.security.kerberos.authentication.sun to isolate Sun implementations of APIs
* Remove unnecessary dependencies

Fixes gh-20
2015-04-01 11:04:05 -05:00
Janne Valkealahti
f354bc29f2 Fix sec-server-win-auth sample
- Create SunJaasKrb5LoginConfig as bean
  so that InitializingBean method gets
  called, thus properly setting keytab.
- Fixes #21
2015-04-01 13:16:17 +01:00
Janne Valkealahti
186ce830a0 Ref doc updates 2015-03-26 09:45:00 +00:00
Janne Valkealahti
f608e474e8 Update deps
- Pump up security to 3.2.7 and
  framework to 4.1.6.
- Fixes #17
2015-03-26 08:08:22 +00:00
Janne Valkealahti
042b165661 Update developer info 2015-03-25 16:21:46 +00:00
Janne Valkealahti
0b071bd35a Updates to ref docs 2015-03-25 14:14:56 +00:00
Janne Valkealahti
34bbc910fc Don't publish boot packaged samples
- Simply disable jar artifacts for samples
- Fixes #18
2015-03-25 08:41:40 +00:00
Janne Valkealahti
4bc60d1740 Drop extensions from package names
- Throughout the codebase dropping extensions
  from org.springframework.security.extensions.kerberos.
- Fixes #16
2015-03-25 08:00:09 +00:00
Janne Valkealahti
19667a5cec Fixes for pr #13
- Fixing formatting and javadocs
- Change spring-security-ldap dep to optional to
  reduce risks because we're so close to GA.
- Modified sec-server-win-auth sample to use
  LdapUserDetailsService instead of DummyUserDetailsService.
  Added output of user principal to hello page.
2015-03-24 17:12:31 +00:00
Nelson Rodrigues
958c705509 Add Kerberized LdapContextSource 2015-03-24 17:12:20 +00:00
Janne Valkealahti
b4347084e7 Fix jdk8 javadoc errors
- Fixes #14
- Fixing javadoc formatting
- Some polish
2015-03-18 09:59:56 +00:00
Janne Valkealahti
a30a5cd46a Fix typo in ref doc 2015-03-11 09:32:52 +00:00
Janne Valkealahti
44c693e368 Update README for samples 2015-03-11 09:25:38 +00:00
Janne Valkealahti
c390b24547 Add better support for KerberosRestTemplate
- Better configuration model
- Updates to ref docs
- New boot based client sample
2015-03-11 09:19:59 +00:00
Janne Valkealahti
66c66892cf Remove bogus file 2015-03-10 17:43:07 +00:00
Janne Valkealahti
2bd3762921 Reference doc updates 2015-03-10 17:40:08 +00:00
Janne Valkealahti
7c3ff33235 Remove old sample project 2015-03-10 11:58:53 +00:00
Janne Valkealahti
2d471ee9d3 Add new boot based samples 2015-03-10 11:54:48 +00:00
Rob Winch
55c8ac2b13 Create README.adoc 2015-03-06 10:47:14 -06:00
Rob Winch
04f2710351 Create CONTRIBUTING.md 2015-03-06 10:46:50 -06:00
Janne Valkealahti
8e3c8646a6 Updates to ref docs 2015-03-06 13:25:11 +00:00
Janne Valkealahti
49eaab45ee Start of new ref doc structure with asciidoc 2015-03-05 12:50:41 +00:00
Janne Valkealahti
74575ad46f Merge PR #5
- Fixing merge conflicts
- Tidy up and polish
- Changed KerberosTicketValidation to be transient in KerberosServiceRequestToken
  because we get NotSerializableException for SPRING_SECURITY_CONTEXT. Not really
  sure if that is ever needed in sec context.
- Added simple RestTemplate test to see that this doesn't break anything,
  should somehow to come up with a test verify some WinRM functionality.
2015-03-02 12:40:59 +00:00
Janne Valkealahti
19f6f70aeb More tests for PR #4 2015-03-02 09:18:57 +00:00
Janne Valkealahti
6777601072 Merge PR #4
- Tidy up and polish
2015-03-02 08:26:29 +00:00
Janne Valkealahti
fc005b49b8 Polish 2015-02-26 13:41:28 +00:00
Janne Valkealahti
e8633c0e2f Trying to fix localhost hostname usage, take2 2015-02-26 12:11:17 +00:00
Janne Valkealahti
3d7c0365bd Trying to fix localhost hostname usage
- Created principal needs to match resolved hostname
  so trying to add a tweak to make it happen.
2015-02-26 11:42:26 +00:00
Janne Valkealahti
b1b3eefa41 Add Kerberized RestTemplate
- New KerberosRestTemplate which is able to use principal
  and keytab file to do privileged action so that jvm does
  a kerberos login and SPNEGO should work without trouble.
- Added Apache DS based MiniKdc implementation which allows
  to create test cases for both server and client without having
  a running real kerberos setup within the host OS.
2015-02-26 10:45:30 +00:00
Janne Valkealahti
89305ff5f4 Project updates
- change from 1.0.0.CI-SNAPSHOT to 1.0.0.BUILD-SNAPSHOT
- clean and update build with latest spring versions
2015-02-20 11:18:00 +00:00
Jeremy Stone
d8646b5762 Remove extraneous comments 2014-04-08 18:27:45 +01:00
Jeremy.Stone
81c7b0b2ad Add encrypt capability and make holding on to gss context optional. 2014-04-07 15:39:20 +01:00
Jeremy.Stone
3fa6b153fe Add support for Kerberos (as well as Negotiate) authentication.
Include support for WWW-Authenticate response.
Include support for decrypt.
(Dispose gss context and encrypt still to do)
2014-04-07 11:29:43 +01:00
aschaefer
f8d514a5df SES-136 Option to provide content with WWW-Authentication:Negotiate Response of SpnegoEntryPoint by forward 2014-01-08 10:19:07 +01:00
Mike Wiesner
cd892788a5 SES-55 SpnegoAuthenticationProcessingFilter should allow setting an AuthenticationDetailsSource bean 2013-05-03 14:26:48 +02:00
Mike Wiesner
b90e907310 SES-63 Changed success order in SpnegoAuthenticationProcessingFilter 2013-05-03 12:41:31 +02:00
Mike Wiesner
04869f5f64 Added SessionAuthenticationStrategy to SpnegoAuthenticationProcessingFilter 2013-05-03 12:37:37 +02:00
Mike Wiesner
c9a4ffec48 Changed gitignore 2013-05-03 12:05:08 +02:00
Mike Wiesner
f1a9f0a9da Default config in samples is now spnego-with-server-side-kerberos-option 2013-05-03 12:03:47 +02:00
Mike Wiesner
75ea798249 Kerberos settings are now in kerberos.properties instead of in XML 2013-05-03 12:03:27 +02:00