Re: [Acegisecurity-developer] .classpath file in Subversion
BTW there is a new Eclipse plugin for Maven that can import maven projects directly and keep the classpath synced from the pom http://code.google.com/p/q4e/ Disclaimer: I work on the project On 9/10/07, Ray Krueger [EMAIL PROTECTED] wrote: Why isn't it? If you're only interested in working on core then... cd core mvn eclipse:eclipse On 9/10/07, Scott Battaglia [EMAIL PROTECTED] wrote: Executing mvn eclipse:eclipse creates projects for each of the modules, which is probably not what we want. -Scott Ray Krueger wrote: I think the .classpath files should be removed. They are doomed to be stale. The project is now built with maven2 completely. Maven can create the .classpath files as needed. Executing mvn eclipse:eclipse from the project root will create everything needed. On 9/10/07, Scott Battaglia [EMAIL PROTECTED] wrote: I'm doing some work on some of the JIRA issues assigned to me (finally getting a chance) and I checked out the project and noticed that the .classpath was referring to Spring 1.2.9 while the pom refers to 2.0.6. Anyone have any issues if I update the .classpath file to reflect the latest Spring version? Thanks -Scott - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] maven 2 eclipse integration
there's no way to create eclipse files for the parent directory, eclipse doesn't support hierarchical projects (one inside another one) On 5/1/07, Ray Krueger [EMAIL PROTECTED] wrote: Hmm. That should do it. I work with IDEA not eclipse though, I am not sure if that stuff works. Jetbrains was kind enough to issue us an Open Source development license if you'd like to try it. IDEA just works :) no plugins required. On 5/1/07, Vishal Puri [EMAIL PROTECTED] wrote: I am executing in trunk/acegisecurity directory. Ray Krueger wrote: Are you executing it out of the acegisecurity directory? And not in ./core or one of the other modules? On 4/30/07, Vishal Puri [EMAIL PROTECTED] wrote: Hi All Carlos and Luke, have you been able to generate eclipse .classpath and .project files with maven 2 for acegi ? Doing mvn eclipse:clean and mvn eclipse:eclipse doesn't generate these files for Acegi Security System for Spring - Parent Have you faced this problem? Vishal - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Our build is a mess...
On 4/21/07, Ray Krueger [EMAIL PROTECTED] wrote: * Maven 2.0.5 and 2.0.6 both cause the AuthorizeTagExpressionLanguageTests to fail, whereas 2.0.4 builds it fine. what is the problem? it passes for me * The contacts sample cannot be built with maven2 from the instructions on our website, the multiwar plugin doesn't exist. * Using 'mvn war' in samples/contacts produces an invalid application. It doesn't copy in the common and filter directories. * We have maven1 instructions up for everything, yet we only seem to support maven2. We need to update our instructions. I'd gladly do it if someone can tell me how to build the sample apps with maven2. - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Our build is a mess...
i can't reproduce with 2.0.6 I need the test report in target/surefire-reports/.../AuthorizeTagExpressionLanguageTests.txt On 4/23/07, Ray Krueger [EMAIL PROTECTED] wrote: The AuthorizeTagExpressionLanguageTests fail for me on Windows XP in all Maven versions due to a NoSuchMethod exception. We had a discussion a few months back with one of the users having the same problem. I have no idea what the issue is, but it always fails for me. There is even a bug open for this. http://opensource.atlassian.com/projects/spring/browse/SEC-445 On 4/23/07, Carlos Sanchez [EMAIL PROTECTED] wrote: On 4/21/07, Ray Krueger [EMAIL PROTECTED] wrote: * Maven 2.0.5 and 2.0.6 both cause the AuthorizeTagExpressionLanguageTests to fail, whereas 2.0.4 builds it fine. what is the problem? it passes for me * The contacts sample cannot be built with maven2 from the instructions on our website, the multiwar plugin doesn't exist. * Using 'mvn war' in samples/contacts produces an invalid application. It doesn't copy in the common and filter directories. * We have maven1 instructions up for everything, yet we only seem to support maven2. We need to update our instructions. I'd gladly do it if someone can tell me how to build the sample apps with maven2. - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Our build is a mess...
looks good On 4/23/07, Ray Krueger [EMAIL PROTECTED] wrote: All, I've fixed the http://opensource.atlassian.com/projects/spring/browse/SEC-445 bug. The fix is to bring in servlet-api 2.4 so that we get the correct version of PageContext into the classpath. Is that going to be a problem? On 4/23/07, Ray Krueger [EMAIL PROTECTED] wrote: Running a clean test now, I'll update the bug. Any ideas on the war/multiwar thing? Is there a maven2 equivalent to multiwar? On 4/23/07, Carlos Sanchez [EMAIL PROTECTED] wrote: i can't reproduce with 2.0.6 I need the test report in target/surefire-reports/.../AuthorizeTagExpressionLanguageTests.txt On 4/23/07, Ray Krueger [EMAIL PROTECTED] wrote: The AuthorizeTagExpressionLanguageTests fail for me on Windows XP in all Maven versions due to a NoSuchMethod exception. We had a discussion a few months back with one of the users having the same problem. I have no idea what the issue is, but it always fails for me. There is even a bug open for this. http://opensource.atlassian.com/projects/spring/browse/SEC-445 On 4/23/07, Carlos Sanchez [EMAIL PROTECTED] wrote: On 4/21/07, Ray Krueger [EMAIL PROTECTED] wrote: * Maven 2.0.5 and 2.0.6 both cause the AuthorizeTagExpressionLanguageTests to fail, whereas 2.0.4 builds it fine. what is the problem? it passes for me * The contacts sample cannot be built with maven2 from the instructions on our website, the multiwar plugin doesn't exist. * Using 'mvn war' in samples/contacts produces an invalid application. It doesn't copy in the common and filter directories. * We have maven1 instructions up for everything, yet we only seem to support maven2. We need to update our instructions. I'd gladly do it if someone can tell me how to build the sample apps with maven2. - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer
Re: [Acegisecurity-developer] Unresolved dependency problems
in the previous lines it tells you which test failed On 2/27/07, Ray Krueger [EMAIL PROTECTED] wrote: Maven 2.0.5 says... Results : Tests run: 963, Failures: 0, Errors: 3, Skipped: 0 [INFO] [ERROR] BUILD FAILURE [INFO] [INFO] There are test failures. [INFO] [INFO] For more information, run Maven with the -e switch [INFO] [INFO] Total time: 1 minute 25 seconds [INFO] Finished at: Tue Feb 27 12:22:38 CST 2007 [INFO] Final Memory: 6M/12M [INFO] Is it because these are errors, not failures, that Maven stays silent about the what test went wrong? Why would deleting my repository change fix the 2.0.5 problem, when it builds fine with 2.0.4 using the same repository? On 2/27/07, Carlos Sanchez [EMAIL PROTECTED] wrote: i use 2.0.5 and builds fine for me try deleting your local repo ~/.m2/repository maven reports the tests that fail, just check the lines before [INFO] There are test failures. On 2/27/07, Ray Krueger [EMAIL PROTECTED] wrote: This test only fails in Maven 2.0.5 Executing mvn clean test with Maven 2.0.4 passes fine. This test also passes fine when run directly in the IDE (IntelliJ for me). Maven really does not handle test failures well. There is no clue as to what test failed, you only get [INFO] There are test failures. There should be some clue as to what test failed. Can the html report be generated directly to get a summary? Can I run the maven-surefire-report-plugin direclty? (Sorry for the direct email rather than the list Brad, I do that a lot haha) On 2/27/07, Ray Krueger [EMAIL PROTECTED] wrote: Pasting massive logs to the list makes the listserv mad. I'm truncating this message for clarity. On 2/27/07, Ray Krueger [EMAIL PROTECTED] wrote: I just updated to the latest code from SVN and the build is failing for me as well. Same test actually: org.acegisecurity.taglibs.authz.AuthorizeTagExpressionLanguageTests I'll take a look, but I'm buried at work and can't spend much time on it. Be back in a bit :) On 2/27/07, Brad Cox, Ph.D. [EMAIL PROTECTED] wrote: Ray Krueger wrote: Brad, can you try deleting the following, and trying the build again? YOUR_HOME_FOLDER\.m2\repository\javax\servlet\jsp-api\2.0 Where 'YOUR_HOME_FOLDER' is something like C:\Documents and Settings\bcox Deleted /home/bcox/.m2/repository/javax/servlet/jsp-api/2.0 See attached. Failure still there Also, are you using Maven 2.0.4 or better? imac:/G5B/Java/acegisecurity bcox$ mvn -v Maven version: 2.0.5 - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo
Re: [Acegisecurity-developer] Unresolved dependency problems
run mvn install from the root folder before trying to build the samples so you have the latest acegi jars. Or change the sample to use last release instead of using snapshots. On 2/26/07, Brad Cox, Ph.D. [EMAIL PROTECTED] wrote: Could someone here please advise on how to get started using acegisecurity? Everything I've tried (including both versions of maven + mvn) leads to unresolved dependencies. I've no clue how to get this thing out of the box. Sorry for the delay on getting back on this. It looks like the dependencies are NOT loaded into a maven repository with the structure outlined below. The org/acegisecurity directory does not exist on apache. It does on sourceforge, but a directory of acegi-security-tiger does not exist under org/acegisecurity. The directory acegi-security does exist under or/acegisecurity. This new directory does have the 1.1-SNAPSHOT version, but not as a POM or JAR. It has archive versions in zip format. So, problem is that the POM and JAR expected are NOT loaded in a Maven repo as they are expected to be in the mvn script you are running. --Phillip -- Original Message --- From: Brad Cox [EMAIL PROTECTED] To: [EMAIL PROTECTED], Brian O'Neill [EMAIL PROTECTED] Cc: Phillip Anderson [EMAIL PROTECTED], Jeremy Thorn [EMAIL PROTECTED], [EMAIL PROTECTED] Sent: Sun, 25 Feb 2007 17:29:54 -0500 Subject: Re: Mavn problems. Can you help? I've about concluded that (part of) the problem is that acegisecurity has moved to maven2 but left their instructions for maven1. Everything's guesswork, but blind guesswork at mvn args gets me further than following those instructions. Here's the latest. Still no joy... BTW: acegisecurity seems to have what we need, if I could only figure out how to use it. Can someone pls help? I think I mainly need basic maven vs mvn how to handholding, particularly how to diagnose problems like this myself. imac:/G5B/Java/acegisecurity/samples/contacts bcox$ mvn install [INFO] Scanning for projects... [INFO] [INFO] Building Acegi Security System for Spring - Contacts sample [INFO]task-segment: [install] [INFO] [INFO] [resources:resources] [INFO] Using default encoding to copy filtered resources. [INFO] snapshot org.acegisecurity:acegi-security-tiger:1.1-SNAPSHOT: checking for updates from sourceforge.net [INFO] snapshot org.acegisecurity:acegi-security-tiger:1.1-SNAPSHOT: checking for updates from apache.org Downloading: http://acegisecurity.sourceforge.net/repository/snapshots/org/acegisecur ity/acegi-security-tiger/1.1-SNAPSHOT/acegi-security-tiger-1.1-SNAPSHOT. pom [WARNING] Unable to get resource 'org.acegisecurity:acegi-security-tiger:pom:1.1-SNAPSHOT' from repository sourceforge.net (http://acegisecurity.sourceforge.net/repository/snapshots) Downloading: http://svn.apache.org/maven-snapshot-repository/org/acegisecurity/acegi- security-tiger/1.1-SNAPSHOT/acegi-security-tiger-1.1-SNAPSHOT.pom [WARNING] Unable to get resource 'org.acegisecurity:acegi-security-tiger:pom:1.1-SNAPSHOT' from repository apache.org (http://svn.apache.org/maven-snapshot-repository) Downloading: http://acegisecurity.sourceforge.net/repository/snapshots/org/acegisecur ity/acegi-security-tiger/1.1-SNAPSHOT/acegi-security-tiger-1.1-SNAPSHOT. jar [WARNING] Unable to get resource 'org.acegisecurity:acegi-security-tiger:jar:1.1-SNAPSHOT' from repository sourceforge.net (http://acegisecurity.sourceforge.net/repository/snapshots) Downloading: http://svn.apache.org/maven-snapshot-repository/org/acegisecurity/acegi- security-tiger/1.1-SNAPSHOT/acegi-security-tiger-1.1-SNAPSHOT.jar [WARNING] Unable to get resource 'org.acegisecurity:acegi-security-tiger:jar:1.1-SNAPSHOT' from repository apache.org (http://svn.apache.org/maven-snapshot-repository) Downloading: http://repo1.maven.org/maven2/javax/servlet/servlet-api/2.4/servlet-api- 2.4.jar 95K downloaded [INFO] [ERROR] BUILD ERROR [INFO] [INFO] Failed to resolve artifact. Missing: -- 1) org.acegisecurity:acegi-security-tiger:jar:1.1-SNAPSHOT Try downloading the file manually from the project website. Then, install it using the command: mvn install:install-file -DgroupId=org.acegisecurity -DartifactId=acegi-security-tiger \ -Dversion=1.1-SNAPSHOT -Dpackaging=jar -Dfile=/path/to/file Path to dependency: 1)
Re: [Acegisecurity-developer] Maven2 POM for Acegi-Security
First, i'm very familiar with how acegi m2 build works, and I do know how Maven resolves transitive dependencies. In both cases i can say that I wrote it, literally ;) if you do take a look to the library folder you will see that there are no jars in both 1.2.8 and 2.0.2, they are all different. You are forcing 2.0.2 only in spring-webmvc, thus spring dao, jdbc and remote are not forced to 2.0.2 because they are not part of webmvc dependencies I'd suggest everybody trying to play seriously with maven to take a look at Better builds with Maven, edite by Mergere and downloadable for free from http://www.mergere.com/m2book_download.jsp Take a look to the output of -X an you'll probably understand better [DEBUG] test:test:war:1.0-SNAPSHOT (selected for null) [DEBUG] org.springframework:spring-webmvc:jar:2.0.2:compile (selected for compile) [DEBUG] commons-logging:commons-logging:jar:1.1:compile (selected for compile) [DEBUG] log4j:log4j:jar:1.2.12:compile (selected for compile) [DEBUG] logkit:logkit:jar:1.0.1:compile (selected for compile) [DEBUG] avalon-framework:avalon-framework:jar:4.1.3:compile (selected for compile) [DEBUG] javax.servlet:servlet-api:jar:2.3:compile (selected for compile) [DEBUG] org.springframework:spring-beans:jar:2.0.2:compile (selected for compile) [DEBUG] org.springframework:spring-core:jar:2.0.2:compile (selected for compile) [DEBUG] org.springframework:spring-context:jar:2.0.2:compile (selected for compile) [DEBUG] aopalliance:aopalliance:jar:1.0:compile (selected for compile) [DEBUG] org.springframework:spring-core:jar:2.0.2:compile (selected for compile) [DEBUG] org.springframework:spring-support:jar:2.0.2:compile (selected for compile) [DEBUG] org.springframework:spring-web:jar:2.0.2:compile (selected for compile) [DEBUG] org.acegisecurity:acegi-security:jar:1.0.3:compile (selected for compile) [DEBUG] org.springframework:spring-remoting:jar:1.2.8:compile (selected for compile) [DEBUG] org.springframework:spring-dao:jar:1.2.8:compile (selected for compile) [DEBUG] org.springframework:spring-context:jar:1.2.8:compile (removed - nearer found: 2.0.2) [DEBUG] org.springframework:spring-webmvc:jar:1.2.8:compile (removed - nearer found: 2.0.2) [DEBUG] org.springframework:spring-jdbc:jar:1.2.8:compile (selected for compile) [DEBUG] org.springframework:spring-beans:jar:1.2.8:compile (removed - nearer found: 2.0.2) [DEBUG] org.springframework:spring-support:jar:1.2.8:runtime (removed - nearer found: 2.0.2) [DEBUG] commons-lang:commons-lang:jar:2.1:compile (selected for compile) [DEBUG] commons-logging:commons-logging:jar:1.0.4:compile (removed - nearer found: 1.1) [DEBUG] commons-codec:commons-codec:jar:1.3:compile (selected for compile) [DEBUG] oro:oro:jar:2.0.8:compile (selected for compile) [DEBUG] commons-collections:commons-collections:jar:3.1:compile (selected for compile) [DEBUG] log4j:log4j:jar:1.2.9:runtime (setting scope to: compile) On 2/16/07, Bertrand Renuart [EMAIL PROTECTED] wrote: Before saying Kyle is wrong you probably had better to test it... Give a try the following POM: project modelVersion4.0.0/modelVersion groupIdtest/groupId artifactIdtest/artifactId packagingwar/packaging version1.0-SNAPSHOT/version dependencies dependency groupIdorg.springframework/groupId artifactIdspring-webmvc/artifactId version2.0.2/version /dependency dependency groupIdorg.acegisecurity/groupId artifactIdacegi-security/artifactId version1.0.3/version /dependency /dependencies /project Just do a 'mvn package' - of course Maven will complain because the WAR structure is incorrect but you will get the resolved libraries in the target/test-1.0-SNAPSHOT/WEB-INF/lib. Have a look and you will notice some 1.2.8 Spring libraries are included. The reason is quite straightforward if you know how Maven resolves transitive dependencies... and if you look at the Acegi parent pom. /Bertrand -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Maven2 POM for Acegi-Security
On 2/16/07, Matt Raible [EMAIL PROTECTED] wrote: I'm willing to bet this problem is caused by using the full Spring dependency rather than fine-grained Spring dependencies. I use the full Spring dependency and have experienced this issue as well. It's too bad there's not a way in Maven to say this JAR overrides all others. not yet, but it'll be in this case that's not the problem as i said in my previous answer. This isn't the Maven way as they recommend using Spring's fine-grained dependencies. However, I've found that the fine-grained dependencies refer to artifacts that aren't in the Maven repos - so the this way seems more pragmatic to me. ;-) i don't know what artifacts are missing, if you point it out you know that that things get fixed. if people keep using the coarse grained dependencies we'll keep getting this user questions all the time. Hope this helps, Matt - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Maven2 POM for Acegi-Security
On 2/15/07, Kyle Mallory [EMAIL PROTECTED] wrote: Carlos, Thanks for the reply, but I'm still confused, and concerned. I tried using the exclusions, and it results in excluding all of that artifact, including the version that I DO want. But then doesn't exclude the related dependencies, such as *-aop, *-support, *-beans, *-webmvc, etc. Surely, I shouldn't have to explicitly state all of the artifacts that I DON'T want included... exclusions are for things you DON'T want. If you exclude a dependency, that one and all its children will be excluded, so you don't need to go one by one if you want a different version you have to explicitly add that as a dependency and maven will use YOUR version instead of the one that acegi uses dependencies filesetId=maven.dependencies dependency groupId=org.acegisecurity artifactId=acegi-security-resin version=1.0.3 exclusion groupId=com.caucho artifactId=resin/ exclusion groupId=org.springframework artifactId=spring/ /dependency dependency groupId=org.springframework artifactId=spring version=2.0.2/ dependency groupId=org.springframework artifactId=spring-mock version=2.0.2/ dependencies I would bring this up with Maven, because I don't feel like this is the way Maven should be behaving, but of all the artifacts I'm including, I only have a problem with Acegi. It seems as though, that either the Acegi or Spring POM itself is missing some scope or optional parameters (shouldn't resin be optional for acegi-security-resin?), or Maven is fundamentally flawed, because I don't actually need all of these dependencies for my project, particularly of a specific version. The latest poms are correct as far as i can tell. Why should resin be optional in acegi-security-resin? if you want the resin extension you absolutely need the resin classes In fact, in my previous situation (before specifying the exclusions), Maven was actually downloading both version 1.2.8 and 2.0.2, so simply including the additional dependencies didn't eliminate the 1.2.8 dependency (even though Maven claims it should). yes it should, and it does. You are adding a dependency in spring-1.2.8 while acegi uses all the spring submodules for fine grained dependency management, so you are getting both because they are indeed different dependencies. You need to depend in whatever spring-*-2.0.2 jar you need. Perhaps, I'm doing something wrong in my config, I just can't seem to find it. (remember, I'm using Maven For Ant, not Maven directly). Thanks again, Kyle Message: 2 Date: Wed, 14 Feb 2007 17:07:16 -0800 From: Carlos Sanchez [EMAIL PROTECTED] Subject: Re: [Acegisecurity-developer] Maven2 POM for Acegi-Security To: acegisecurity-developer@lists.sourceforge.net Message-ID: [EMAIL PROTECTED] Content-Type: text/plain; charset=ISO-8859-1; format=flowed You need to use exclusions http://maven.apache.org/guides/introduction/introduction-to-dependency-mechanism.html Acegi is built on top of that dependencies you got, everything is correct. You can change the versions by adding the dependencies to your pom. - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Reusing your LdapTestServer
Remember to add the notice.txt file as the ASL requires https://svn.sourceforge.net/svnroot/acegisecurity/trunk/acegisecurity/notice.txt On 12/12/06, Olivier Grisel [EMAIL PROTECTED] wrote: Hello, I am working on the LDAP directory connector for the Nuxeo5 ECM platform and I found your LdapTestServer class really helpful to test my package so I included a copy of it. Nuxeo5 is under LGPL but I left the ALv2 header with your copyright line unchanged for that file, with a pointer to the original file in your svn repository: http://svn.nuxeo.org/trac/nuxeo/browser/ECMPlatform/NXLDAPDirectory/trunk/test/org/nuxeo/ecm/directory/ldap/LdapTestServer.java I hope this is alright with you. If not, please contact me. Best, -- Olivier - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] Switching completely to Maven 2
Hi, I'd like to remove the Maven 1 build completely because now we are half way. Samples for instance don't build with maven 2. AFAIK there's still some things that need work in Maven 2, like the docbook generation, please raise any concerns, and things that still don't work under Maven 2 so I can look into it. -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Maven 2 Build, Site etc.
+1 to m2 On 10/30/06, Luke Taylor [EMAIL PROTECTED] wrote: Hi all, I've set up a new automated build using maven 2 which is temporarily generating a site at http://monkeymachine.eu/acegisecurity/ until I have time to get it licked into shape properly (n.b. I'm not looking for any feedback on issues with site generation). I think the maven 2 build is likely to be a better bet for users who want to build acegi themselves and we should ditch the Maven 1 build files asap, leaving the 1.0.2 site in place for reference. What do you think? Luke. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Maven 2 Build, Site etc.
i know about this one but never tried it http://mojo.codehaus.org/docbook-maven-plugin/introduction.html On 10/30/06, Aleksei Valikov [EMAIL PROTECTED] wrote: Hi. What's the docbook plugin support like in Maven 2, Carlos? I can probably set something up to generate the docs separately if it's not available yet. This is what I use: http://www.agilejava.com/docbkx/ Here's an example: plugin groupIdcom.agilejava.docbkx/groupId artifactIddocbkx-maven-plugin/artifactId version1.69.1.7/version executions execution goals goalgenerate-html/goal goalgenerate-pdf/goal /goals phasepre-site/phase /execution /executions dependencies dependency groupIdorg.docbook/groupId artifactIddocbook-xml/artifactId version4.4/version scoperuntime/scope /dependency /dependencies configuration sourceDirectory${basedir}/src/reference/sourceDirectory targetDirectory${basedir}/target/site/reference/targetDirectory /configuration /plugin Bye. /lexi. - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Release 1.0.2 ready
I can't right now, I'm in Munich for the Oktoberfest and I can't guarantee my accuracy ;) I'll check for your commits by the weekend in case you already started it. On 9/26/06, Ben Alex [EMAIL PROTECTED] wrote: Hi all 1.0.2 is now ready to release. Carlos, were you still able to take care of it? I can do so, but I won't have time for a few more days. Please feel free to remove the reference guide and README.TXT sections that mention JAR signing. I think we've agreed to drop it. Cheers Ben - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Releasing 1.0.2
It's not automated. As soon as we decide to go for m2 we can automate that. On 9/15/06, Ben Alex [EMAIL PROTECTED] wrote: Carlos Sanchez wrote: I've been deploying snapshot in the maven2 repo after changing stuff http://acegisecurity.sourceforge.net/repository/snapshots/ Is this an automated process that will continue? If so, we should change the downloads.html page to point to it and consider removing the snapshots directory. In this era of SVN, people have few proxy/firewall issues obtaining source directly from SVN over HTTPS. Also, with daily builds on offer, most casual users would prefer to get a compiled JAR rather than the SVN snapshot which still requires compilation. Cheers Ben - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Releasing 1.0.2
On 9/7/06, Ben Alex [EMAIL PROTECTED] wrote: Carlos Sanchez wrote: Will it be possible to make a 1.0.2 bug release in the next two weeks? I can go thorugh all the release process, i just would like to know if people agree in taking what it is curently in svn and tag it as 1.0.2. Hi Carlos You want to be release manager? I would certainly welcome this. If I have time at the time of any release I certainly can help ;) I have just been through JIRA and looked at all bugs. I've moved all but one bug to release 1.0.2 (the one being ignored because it's more a low-impact known limitation than an actual bug). We need to get these bugs quashed before 1.0.2 goes out. Most bugs are relatively trivial to address, and I will hopefully find some time to do so over the next two weeks. My only concern is that we can introduce new bugs in that time. I'd rather fix the most important bugs in next week and have a week of frozen code for test. But if there're no risky changes in those 1.0.2 issues that's ok. We can always get a 1.0.3 out. Other committers are welcome to address the bugs marked for 1.0.2. As I said, most are pretty simple and in many cases the issue itself provides the fix. Once the issues currently against 1.0.2 are sorted, I have no problems with a release. Cheers Ben - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] About The Following Acegi Releases
just one line: mvn eclipse:eclipse -DdownloadSources=true and you'll see how sources and javadocs are downloaded and linked in eclipse project maven makes: acegi-security-1.0.1.jar binaries acegi-security-1.0.1-sources.jar sources acegi-security-1.0.1-javadoc.jar javadocs I think it'll be good to keep this. And if you run the previous line in a multiproject it will link the subprojects between themselves, eg. in the top level acegi dir On 8/28/06, Ben Alex [EMAIL PROTECTED] wrote: Luke Taylor wrote: On the branching front, it seems like we could be making more use of branches with subversion. I am happy for these changes to be made. Whilst changing to Maven 2 we should also give consideration to how we distribute source code for IDE integration. At present we release a separate ZIP file containing the sources (which is not intended for compilation). I noticed that the Maven 2 approach appears to be a name-of-artifact-sources.jar file in the standard jar repository. Whilst I see merit in the above approach, I am not particularly fond of it because I still have to undertake the manual step of configuring Eclipse to look at a particular source JAR or ZIP. In addition, as new releases are made, it is not uncommon to forget to change the old source code attachment location. So your source code appears to be for say release 2.0 but it is really for 1.2.7. I am also unaware if Maven 2 can be made to automatically understand it needs to download source artifacts but not include them as classpath resources. Those of you who have been using Google Web Toolkit (GWT) would know Google bundles both source code and compiled class files into the same JAR. This saves the manual step and I have found it extremely useful. I just point to the new release JAR and my JavaDocs and source code attachment is correct. The only downside is a bigger JAR, which in my view is a low price to pay for enhanced productivity and troubleshooting reliability. To put the bigger JAR issue into context: 63 2006-06-17 03:50 acegi-security-1.0.1.jar 529413 2006-06-23 05:34 acegi-security-1.0.1-sources.jar Based on release 1.0.1, we'd go from a 444Kb release to a 973Kb combined JAR. I don't think this is a serious issue from a download or disk space perspective. Especially concerned people can always re-jar for their production deployment. How would people feel about future Acegi Security release JARs including source code, as per GWT? I guess we could continue to have two releases, but our acegi-security-release-sources.jar would contain *both* classes and source code. It would be good to discuss this and get some feedback from the community. Cheers Ben - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] About The Following Acegi Releases
On 8/28/06, Ray Krueger [EMAIL PROTECTED] wrote: See, I knew Carlos had an answer for that :P That is really good to know. Unfortunately, that only helps people that use mvn for THEIR project. That doesn't really help with Ben's scenario. I didn't think of that when I brought it up. People that are importing acegi into their project and would like to see the source code. then when you get acegi you need to put the source jars by hand in your eclipse project. People need to understand that the the sources.jar is for reference, not compilation. Ben, does eclipse automatically recognize the source code when it is distributed inside the compiled Jar? I don't think so and I don't really like that approach because if you provide the sources, why don't provide the javadocs too? On 8/28/06, Carlos Sanchez [EMAIL PROTECTED] wrote: just one line: mvn eclipse:eclipse -DdownloadSources=true and you'll see how sources and javadocs are downloaded and linked in eclipse project maven makes: acegi-security-1.0.1.jar binaries acegi-security-1.0.1-sources.jar sources acegi-security-1.0.1-javadoc.jar javadocs I think it'll be good to keep this. And if you run the previous line in a multiproject it will link the subprojects between themselves, eg. in the top level acegi dir On 8/28/06, Ben Alex [EMAIL PROTECTED] wrote: Luke Taylor wrote: On the branching front, it seems like we could be making more use of branches with subversion. I am happy for these changes to be made. Whilst changing to Maven 2 we should also give consideration to how we distribute source code for IDE integration. At present we release a separate ZIP file containing the sources (which is not intended for compilation). I noticed that the Maven 2 approach appears to be a name-of-artifact-sources.jar file in the standard jar repository. Whilst I see merit in the above approach, I am not particularly fond of it because I still have to undertake the manual step of configuring Eclipse to look at a particular source JAR or ZIP. In addition, as new releases are made, it is not uncommon to forget to change the old source code attachment location. So your source code appears to be for say release 2.0 but it is really for 1.2.7. I am also unaware if Maven 2 can be made to automatically understand it needs to download source artifacts but not include them as classpath resources. Those of you who have been using Google Web Toolkit (GWT) would know Google bundles both source code and compiled class files into the same JAR. This saves the manual step and I have found it extremely useful. I just point to the new release JAR and my JavaDocs and source code attachment is correct. The only downside is a bigger JAR, which in my view is a low price to pay for enhanced productivity and troubleshooting reliability. To put the bigger JAR issue into context: 63 2006-06-17 03:50 acegi-security-1.0.1.jar 529413 2006-06-23 05:34 acegi-security-1.0.1-sources.jar Based on release 1.0.1, we'd go from a 444Kb release to a 973Kb combined JAR. I don't think this is a serious issue from a download or disk space perspective. Especially concerned people can always re-jar for their production deployment. How would people feel about future Acegi Security release JARs including source code, as per GWT? I guess we could continue to have two releases, but our acegi-security-release-sources.jar would contain *both* classes and source code. It would be good to discuss this and get some feedback from the community. Cheers Ben - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list
Re: [Acegisecurity-developer] About The Following Acegi Releases
On 8/28/06, Ben Alex [EMAIL PROTECTED] wrote: Ray Krueger wrote: Ben were you suggesting having acegi-version.jar would be just binary, and acegi-version-sources.jar would be binary with source? Yes, a traditional .class-only JAR, and a combined .class plus .java JAR. People like me would use the latter, whereas people concerned about the extra 500 Kb in their download can use the former. In my experience delivering training courses, I know how very useful it is to have automatic JavaDocs and source code available to people trying to learn a new API. It is really an issue of what do we value more: * Minimizing bandwidth. Bandwidth is cheap. Every decent library (Spring, Eclipse, Java) is now dozens of megabytes to download. I won't lose much sleep adding 500 Kb (or even 1 Mb!) to a JAR download. * Maximizing productivity. Unlike bandwidth, people are expensive. People are time poor. People are constantly dealing with API changes and new APIs. People don't remember every argument and interface contract they read. We can make peoples' lives easier by including source in the JARs. Besides, we're more likely to get bugs detected and fixes contributed back if more people see the source code. That's why everybody should be using maven :D Google (GWT) have obviously concluded the latter is more important, and I'm not aware of anyone objecting to their inclusion of source code. They don't even offer a source-code-free JAR, yet we would continue to. Cheers Ben - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Bean initialization, constructor injection etc.
anyone? On 7/20/06, Carlos Sanchez [EMAIL PROTECTED] wrote: I'm just wondering what people think about protected empty constructor so I can extend that classes instead of write wrappers. On 7/20/06, Carlos Sanchez [EMAIL PROTECTED] wrote: I have removed the default constructors added. On 7/17/06, Ben Alex [EMAIL PROTECTED] wrote: Luke Taylor wrote: I agree that reusability is important but I'm not convinced that these changes are justified on this basis, or that is just about balancing reusability and ease of use. The use of constructor arguments is about guaranteeing that objects can only be created with a specific state (the dependencies required by their design) and providing a single point for checking that state (the constructor). This is a design issue based on the requirements as determined by the developer at the time they write the class. As time goes on and different requirements become apparent from forum posts and so on, compromises are made, access is provided to state that was previously immutable or unreadable etc etc. The most reusable code may provide no-arg constructors and getters and setters for everything, but it is also the least stable. +1 To summarise, there may be situations where we *do* want to open things up in this way for some classes, to provide extra extensibility, but I don't think accommodating the inadequacies of plexus is sufficient justification for a cross-the-board change. Could it not be argued that the changes should be made to plexus rather than Acegi? Acegi Security should not be changed to accommodate limitations in IoC containers. If Plexus cannot be modified to support the required behaviour, I would encourage the addition of wrapper objects within a third party project (whatever is needing to use Acegi Security with Plexus) to achieve the required integration. I would hope that ultimately the wrapper objects could be removed, when Plexus supports constructor injection. The other issue is that not using Spring for IoC will become a more pronounced issue as we move towards 1.1.0, because the namespaces feature in Spring 2.0 will be leveraged. As part of this most (if not all) classes will be refactored to use [full] constructor injection and end users will be encouraged to wire things up with Acegi Security XML rather than beans XML. This is partly to make things easier on users (XML verbosity and auto-completion), partly to give XML validation, but also to provide a level of indirection between the OO implementation approach and user configuration approach (thus giving us more flexibility to refactor the former without breaking the latter). Therefore, perhaps the easiest thing to do would be look at using Spring as an internal configuration subsystem for Acegi Security and simply wrapping the Spring IoC container inside a bean that is in turn registered with Plexus or any other IoC container for that matter. On another issue, could ask was there a technical reason Plexus was selected instead of Spring? Perhaps you could use namespaces with Spring in your project, as they do give you a lot of genuine benefits aside from simpler Acegi Security integration (as summarized above). The application already uses it. There's no poing on having two IoC containers, but due to Acegi hardcoded dependencies in Spring we'll still have to bundle the spring jars. It'd make lot more sense to have an acegi-spring module and remove all of the non core spring dependencies (exceptions and so) from acegi-core Best regards Ben - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions
Re: [Acegisecurity-developer] Bean initialization, constructor injection etc.
I have removed the default constructors added. On 7/17/06, Ben Alex [EMAIL PROTECTED] wrote: Luke Taylor wrote: I agree that reusability is important but I'm not convinced that these changes are justified on this basis, or that is just about balancing reusability and ease of use. The use of constructor arguments is about guaranteeing that objects can only be created with a specific state (the dependencies required by their design) and providing a single point for checking that state (the constructor). This is a design issue based on the requirements as determined by the developer at the time they write the class. As time goes on and different requirements become apparent from forum posts and so on, compromises are made, access is provided to state that was previously immutable or unreadable etc etc. The most reusable code may provide no-arg constructors and getters and setters for everything, but it is also the least stable. +1 To summarise, there may be situations where we *do* want to open things up in this way for some classes, to provide extra extensibility, but I don't think accommodating the inadequacies of plexus is sufficient justification for a cross-the-board change. Could it not be argued that the changes should be made to plexus rather than Acegi? Acegi Security should not be changed to accommodate limitations in IoC containers. If Plexus cannot be modified to support the required behaviour, I would encourage the addition of wrapper objects within a third party project (whatever is needing to use Acegi Security with Plexus) to achieve the required integration. I would hope that ultimately the wrapper objects could be removed, when Plexus supports constructor injection. The other issue is that not using Spring for IoC will become a more pronounced issue as we move towards 1.1.0, because the namespaces feature in Spring 2.0 will be leveraged. As part of this most (if not all) classes will be refactored to use [full] constructor injection and end users will be encouraged to wire things up with Acegi Security XML rather than beans XML. This is partly to make things easier on users (XML verbosity and auto-completion), partly to give XML validation, but also to provide a level of indirection between the OO implementation approach and user configuration approach (thus giving us more flexibility to refactor the former without breaking the latter). Therefore, perhaps the easiest thing to do would be look at using Spring as an internal configuration subsystem for Acegi Security and simply wrapping the Spring IoC container inside a bean that is in turn registered with Plexus or any other IoC container for that matter. On another issue, could ask was there a technical reason Plexus was selected instead of Spring? Perhaps you could use namespaces with Spring in your project, as they do give you a lot of genuine benefits aside from simpler Acegi Security integration (as summarized above). The application already uses it. There's no poing on having two IoC containers, but due to Acegi hardcoded dependencies in Spring we'll still have to bundle the spring jars. It'd make lot more sense to have an acegi-spring module and remove all of the non core spring dependencies (exceptions and so) from acegi-core Best regards Ben - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] FilterInvocationDefinitionMap and FilterInvocationDefinitionSource
hi, I'm pretty confused with these two interfaces. Seems that the two implementations PathBasedFilterInvocationDefinitionMap and RegExpBasedFilterInvocationDefinitionMap implement both. FilterInvocationDefinitionSourceEditor instead of returning FilterInvocationDefinitionSource it returns FilterInvocationDefinitionMap, which right now is not a problem as the two mentioned implementations implement it too, but that I think semantically is wrong. I've created now a new interface FilterInvocationDefinition that joins both of them and solves a bit the problem keeping backwards compatability. Let me know if you find something wrong. -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] [ANN] Acegi Security 1.0.1 released
Dear Spring Community I'd like to announce the release of Acegi Security 1.0.1 This is mainly a bug fix release which addresses the problem of compatibility with Spring 1.2.x among other things. Please visit http://opensource.atlassian.com/projects/spring/secure/ReleaseNote.jspa?version=10450styleName=HtmlprojectId=10040 for a detailed changelog. This release is a drop in replacement, so no upgrade steps are required. Important: due to time constraints note that this release does not provide signed jars, instead PGP signatures have been provided. It won't be available through the normal Sourceforge download page (for now), the preferred method is through the Maven repository which contains the jars, javadocs and sources, with corresponding signatures. The main Acegi repository is at http://acegisecurity.sourceforge.net/repository/releases/ although is mirrored to the central ibiblio repository, so you don't need any extra configuration in your project. You can still get the zip files from http://acegisecurity.sourceforge.net/acegi-security-1.0.1.zip http://acegisecurity.sourceforge.net/acegi-security-1.0.1-src.zip The project's web site at http://acegisecurity.org provides additional information on Acegi Security's features, access to online documentation, and links to download the latest release. Regards Carlos Sanchez -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Acegi Security 1.0.0 is released!
I took the freedom also to tag the source tree and bump the pom versions to 1.1.0-SNAPSHOT On 5/30/06, Carlos Sanchez [EMAIL PROTECTED] wrote: I'll take care of that On 5/30/06, Ray Krueger [EMAIL PROTECTED] wrote: Can we get the maven repos updated? Right now mvn compile fails because org.acegisecurity:acegi-security-parent:pom:1.0.0 cannot be downloaded. On 5/30/06, Mark St.Godard [EMAIL PROTECTED] wrote: Hi Ben, The configuration was referencing net.sf... some of the config was moved over to org. however not all. Including the userdetails refactoring. Plus some of the JSPs were also referencing net.sf in page imports. I am running through and testing the app right now, currently failing on a call to getPrincipal from User object... I will fix it up, retest it, run the unit testing and check in the changes. Re: the tutorial app... yeah I noticed that .. very nice... much more concise config. I am usng Spring 2.0 and I am really digging the schema-based config... I am also using MethodSecurityInterceptors using the new Aspect pointcuts. Not sure if we should also include examples of usage using Spring 2.0? I assume we need to wait for it to go final. Uri is on it...Great, I'll keep my eyes posted for acegi:config :) Cheers Mark On 5/30/06, Ben Alex [EMAIL PROTECTED] wrote: Mark St.Godard wrote: Just a note, Ben I will be updating the contacts-tiger sample project, I noticed it was not converted over. I will create an JIRA entry for myself and update this tomorow. I just checked and it looked to me like it was built for 1.0.0. What specifically wasn't converted? Also with Spring 2.0, I noticed that a jira entry was created for namespace handlers, XSD support, etc.. http://opensource.atlassian.com/projects/spring/browse/SEC-271 for those interested. If you have someone to do this fine... otherwise I can take it up... its something that I would really like to get in... and reduce some of the XML verbosity. Uri Boness has volunteered, but I'm unsure whether work has commenced. I am happy for anyone to take a look at it who has sufficient time. As for verbose XML, I'd encourage people to take a look at the new tutorial sample, which is just 148 lines of XML. This includes comments, whitespace and full support for form authentication, remember-me, anonymous and web request authorization. I think that's a pretty good base given the features, but nevertheless it will be even less with SEC-271 improvements. Cheers Ben ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] ldap blowing up after upgrade to 1.0 final
I'm afraid it's true. It no longer compiles under Spring 1.2.7. Something to log in JIRA for a 1.0.1. On 5/31/06, Ben Munat [EMAIL PROTECTED] wrote: Hi, We upgraded to the 1.0 final jar the other day and things worked fine on our dev build, which uses an InMemoryDao implementation. However, last night we tried to push out a build to the client and the context will no longer start due to a NoClassDefFound in the Acegi code. (FilterBasedLdapUserSearch) I googled for the class -- org/springframework/dao/EmptyResultDataAccessException -- and it's only in Spring 2.0! I hope 1.0 final hasn't presumed that people will switch to Spring 2.0. Is there something I need to change ldap-wise when moving from 1.0 rc2 to 1.0 final? Stacktrace below. Any help greatly appreciated. Heh, this was supposed to be the real production deploy with the client hitting the system hard tomorrow morning (and needing to do some admin setup today). thanks, Ben 2006-05-31 00:34:15,900 INFO org.springframework.web.context.ContextLoader - Root WebApplicationContext: initialization started 2006-05-31 00:34:15,902 INFO org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/totaltime] - Loading Spring root WebApplicationContext 2006-05-31 00:34:15,952 INFO org.springframework.core.CollectionFactory - JDK 1.4+ collections available 2006-05-31 00:34:15,962 INFO org.springframework.core.CollectionFactory - Commons Collections 3.x available 2006-05-31 00:34:16,119 ERROR org.springframework.web.context.ContextLoader - Context initialization failed org.springframework.beans.factory.BeanDefinitionStoreException: Error registering bean with name 'userSearch' defined in ServletContext resource [/WEB-INF/config/acegi/fragments/ldapAuthenticationProviderCommon.xml]: Class that bean class [org.acegisecurity.ldap.search.FilterBasedLdapUserSearch] depends on not found; nested exception is java.lang.NoClassDefFoundError: org/springframework/dao/EmptyResultDataAccessException java.lang.NoClassDefFoundError: org/springframework/dao/EmptyResultDataAccessException at java.lang.Class.forName0(Native Method) at java.lang.Class.forName(Class.java:242) at org.springframework.util.ClassUtils.forName(ClassUtils.java:109) at org.springframework.beans.factory.support.BeanDefinitionReaderUtils.createBeanDefinition(BeanDefinitionReaderUtils.java:65) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.parseBeanDefinitionElement(DefaultXmlBeanDefinitionParser.java:466) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.parseBeanDefinitionElement(DefaultXmlBeanDefinitionParser.java:432) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.parseBeanDefinitions(DefaultXmlBeanDefinitionParser.java:347) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.registerBeanDefinitions(DefaultXmlBeanDefinitionParser.java:197) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.registerBeanDefinitions(XmlBeanDefinitionReader.java:295) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.doLoadBeanDefinitions(XmlBeanDefinitionReader.java:223) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.loadBeanDefinitions(XmlBeanDefinitionReader.java:173) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.loadBeanDefinitions(XmlBeanDefinitionReader.java:148) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.importBeanDefinitionResource(DefaultXmlBeanDefinitionParser.java:374) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.parseBeanDefinitions(DefaultXmlBeanDefinitionParser.java:338) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.registerBeanDefinitions(DefaultXmlBeanDefinitionParser.java:197) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.registerBeanDefinitions(XmlBeanDefinitionReader.java:295) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.doLoadBeanDefinitions(XmlBeanDefinitionReader.java:223) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.loadBeanDefinitions(XmlBeanDefinitionReader.java:173) at org.springframework.beans.factory.xml.XmlBeanDefinitionReader.loadBeanDefinitions(XmlBeanDefinitionReader.java:148) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.importBeanDefinitionResource(DefaultXmlBeanDefinitionParser.java:374) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.parseBeanDefinitions(DefaultXmlBeanDefinitionParser.java:338) at org.springframework.beans.factory.xml.DefaultXmlBeanDefinitionParser.registerBeanDefinitions(DefaultXmlBeanDefinitionParser.java:197)
Re: [Acegisecurity-developer] Acegi Security 1.0.0 is released!
Usually it's bumped to the main next release that will have new features. Not too important though. On 5/31/06, Ray Krueger [EMAIL PROTECTED] wrote: That should read: I saw that, should it have been 1.0.1 though? mashed the send button mid-correction hehe. On 5/31/06, Ray Krueger [EMAIL PROTECTED] wrote: I saw that, my should it have been 1.0.1 though? On 5/30/06, Carlos Sanchez [EMAIL PROTECTED] wrote: I took the freedom also to tag the source tree and bump the pom versions to 1.1.0-SNAPSHOT On 5/30/06, Carlos Sanchez [EMAIL PROTECTED] wrote: I'll take care of that On 5/30/06, Ray Krueger [EMAIL PROTECTED] wrote: Can we get the maven repos updated? Right now mvn compile fails because org.acegisecurity:acegi-security-parent:pom:1.0.0 cannot be downloaded. On 5/30/06, Mark St.Godard [EMAIL PROTECTED] wrote: Hi Ben, The configuration was referencing net.sf... some of the config was moved over to org. however not all. Including the userdetails refactoring. Plus some of the JSPs were also referencing net.sf in page imports. I am running through and testing the app right now, currently failing on a call to getPrincipal from User object... I will fix it up, retest it, run the unit testing and check in the changes. Re: the tutorial app... yeah I noticed that .. very nice... much more concise config. I am usng Spring 2.0 and I am really digging the schema-based config... I am also using MethodSecurityInterceptors using the new Aspect pointcuts. Not sure if we should also include examples of usage using Spring 2.0? I assume we need to wait for it to go final. Uri is on it...Great, I'll keep my eyes posted for acegi:config :) Cheers Mark On 5/30/06, Ben Alex [EMAIL PROTECTED] wrote: Mark St.Godard wrote: Just a note, Ben I will be updating the contacts-tiger sample project, I noticed it was not converted over. I will create an JIRA entry for myself and update this tomorow. I just checked and it looked to me like it was built for 1.0.0. What specifically wasn't converted? Also with Spring 2.0, I noticed that a jira entry was created for namespace handlers, XSD support, etc.. http://opensource.atlassian.com/projects/spring/browse/SEC-271 for those interested. If you have someone to do this fine... otherwise I can take it up... its something that I would really like to get in... and reduce some of the XML verbosity. Uri Boness has volunteered, but I'm unsure whether work has commenced. I am happy for anyone to take a look at it who has sufficient time. As for verbose XML, I'd encourage people to take a look at the new tutorial sample, which is just 148 lines of XML. This includes comments, whitespace and full support for form authentication, remember-me, anonymous and web request authorization. I think that's a pretty good base given the features, but nevertheless it will be even less with SEC-271 improvements. Cheers Ben ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list
Re: [Acegisecurity-developer] ldap blowing up after upgrade to 1.0 final
Sorry it wasn't spotted earlier. Perhaps we should change the Spring maven dependency back to 1.2.8 to detect this kind of thing? That's what i suggested some time ago. In fact for now only 1.2.7 is in ibiblio. ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] ldap blowing up after upgrade to 1.0 final
In theory Spring is guaranteeing that 2.0 is backwards compatible, so if it works on 1.2.x it'll work on 2.0. In practice we could create a maven 2 profile setting the 2.0 dependencies and setting up continuous integration to build the default (1.2.x) and the profile too (2.x) On 5/31/06, Scott McCrory [EMAIL PROTECTED] wrote: Carlos Sanchez wrote: Sorry it wasn't spotted earlier. Perhaps we should change the Spring maven dependency back to 1.2.8 to detect this kind of thing? That's what i suggested some time ago. In fact for now only 1.2.7 is in ibiblio. Wouldn't that subsequently mean that Spring 2.x could surprise us? In more general terms, how do we maximize compatibility testing with all the major versions of Spring, the JDKs, app servers, etc.? Scott ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] Maven 2 repository
Remeber that there's a Maven 2 repository now at http://acegisecurity.sourceforge.net/repository/releases/ I just deployed the 1.0.0, with sources and javadocs. I changed maven deployed jars for the ones in the distribution because they are signed by Ben. It'll be synced to the main maven repository at ibiblio on demand (that means ping me to sync it). -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Acegi Security 1.0.0 is released!
I'll take care of that On 5/30/06, Ray Krueger [EMAIL PROTECTED] wrote: Can we get the maven repos updated? Right now mvn compile fails because org.acegisecurity:acegi-security-parent:pom:1.0.0 cannot be downloaded. On 5/30/06, Mark St.Godard [EMAIL PROTECTED] wrote: Hi Ben, The configuration was referencing net.sf... some of the config was moved over to org. however not all. Including the userdetails refactoring. Plus some of the JSPs were also referencing net.sf in page imports. I am running through and testing the app right now, currently failing on a call to getPrincipal from User object... I will fix it up, retest it, run the unit testing and check in the changes. Re: the tutorial app... yeah I noticed that .. very nice... much more concise config. I am usng Spring 2.0 and I am really digging the schema-based config... I am also using MethodSecurityInterceptors using the new Aspect pointcuts. Not sure if we should also include examples of usage using Spring 2.0? I assume we need to wait for it to go final. Uri is on it...Great, I'll keep my eyes posted for acegi:config :) Cheers Mark On 5/30/06, Ben Alex [EMAIL PROTECTED] wrote: Mark St.Godard wrote: Just a note, Ben I will be updating the contacts-tiger sample project, I noticed it was not converted over. I will create an JIRA entry for myself and update this tomorow. I just checked and it looked to me like it was built for 1.0.0. What specifically wasn't converted? Also with Spring 2.0, I noticed that a jira entry was created for namespace handlers, XSD support, etc.. http://opensource.atlassian.com/projects/spring/browse/SEC-271 for those interested. If you have someone to do this fine... otherwise I can take it up... its something that I would really like to get in... and reduce some of the XML verbosity. Uri Boness has volunteered, but I'm unsure whether work has commenced. I am happy for anyone to take a look at it who has sufficient time. As for verbose XML, I'd encourage people to take a look at the new tutorial sample, which is just 148 lines of XML. This includes comments, whitespace and full support for form authentication, remember-me, anonymous and web request authorization. I think that's a pretty good base given the features, but nevertheless it will be even less with SEC-271 improvements. Cheers Ben ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Junit error with Acegi Security
Right now it seems to work for me. it'd be a good idea if you can, to change that temp directory to target/something, so it's deleted during clean On 5/28/06, Luke Taylor [EMAIL PROTECTED] wrote: Are you both seeing this error? If not, it may be that the working directory is corrupt. The Ldap server tries to write to {java.io.tmpdir}/apacheds-work. Ideally it should delete the contents of this every time it starts up, or the maven script would, but it doesn't at the moment. Try removing that directory and see if it works. I'll try rebuilding on a couple of different machines too. Carlos Sanchez wrote: I suggest to Luke to wipe out his local repo and try. I think it's best to have the initialization in the constructor or errors wil lbe hard to debug. On 5/27/06, Ben Alex [EMAIL PROTECTED] wrote: Luke Taylor wrote: I'm not seeing any problems with the latest code... I just rebuilt the web site and all the tests seems to be passing. There's quite a serious overhead in starting up the Ldap server which is why I made it a static field. Maven 1 seems to reload the class each time it runs a test so it doesn't an you ke much difference but it's a lot faster running in IntelliJ or Maven 2. Moving it to the constructor would probably be OK, but putting it in the setUp would slow things down a lot. Hi Luke Whether I use Maven 1, Maven 2 or Eclipse, running the unit tests is always reporting: jdbm.helper.WrappedRuntimeException: org.apache.ldap.server.partition.impl.btree.jdbm.JdbmMasterTable$1 at jdbm.helper.DefaultSerializer.deserialize(DefaultSerializer.java:99) etc Whilst researching this, I noticed someone else on the forum reported exactly the same exception. Given the public site is building fine with Maven 1 - including the LDAP tests (http://acegisecurity.org/multiproject/acegi-security/junit-report.html#org_acegisecurity_providers_ldap) - I am wondering if there is a version issue with one of the Apache Directory JARs at http://acegisecurity.sourceforge.net/maven. I've tried deleting all of my local JARs so they refresh from the public repo, but it still fails. By some chance are you running a different version of the JARs, even though their filenames suggest you are not (perhaps try an md5sum on your local JARs and compare them with an md5sum executed on the SourceForge shell server)? We cannot release 1.0.0 whilst this issue remains. Also, I am also going to Brisbane this afternoon until Thursday night, and on Friday morning I am going to Europe. So we really need this resolved ASAP if there is to be any chance at all of getting 1.0.0 out before I return to Australia in July. Cheers Ben ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Junit error with Acegi Security
Not sure about that one, but you can get ${basedir} for sure and append /target On 5/28/06, Luke Taylor [EMAIL PROTECTED] wrote: If the test is running in maven, is there some way I can get hold of the path to the target directory - a system property that maven sets for example? I remember there was a maven.build.dir property. Is that still available in maven 2 and is it set as a system property? Carlos Sanchez wrote: Right now it seems to work for me. it'd be a good idea if you can, to change that temp directory to target/something, so it's deleted during clean On 5/28/06, Luke Taylor [EMAIL PROTECTED] wrote: Are you both seeing this error? If not, it may be that the working directory is corrupt. The Ldap server tries to write to {java.io.tmpdir}/apacheds-work. Ideally it should delete the contents of this every time it starts up, or the maven script would, but it doesn't at the moment. Try removing that directory and see if it works. I'll try rebuilding on a couple of different machines too. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Junit error with Acegi Security
The problem is in org.acegisecurity.ldap.AbstractLdapServerTestCase private static final LdapTestServer SERVER = new LdapTestServer(); This call causes an exception. As it's a static field it happens at the time the class is loaded, so the class can't be loaded. Static and junit ant tasks don't play well together. The new LdapTestServer() should be moved to a setUp() method or the constructor to see the error. Regards On 5/27/06, Ben Alex [EMAIL PROTECTED] wrote: Ben Alex wrote: Hi Carlos I'm trying to get 1.0.0 released, but I am getting a Junit error (Maven 1.0.2) on both my laptop and desktop. I've attached an abbreviated -X log. Do you have any suggestions, as this is blocking our release? Thanks Ben Just noticed the output file missed the actual exception. It's below: C:\dev\eclipse\workspaces\acegi\acegisecurity\coremaven -X jar:install debug. txt BUILD FAILED File.. C:\Documents and Settings\Ben\.maven\cache\maven-test-plugin-1.6.2\pl ugin.jelly Element... junit Line.. 133 Column 41 java.lang.NoClassDefFoundError com.werken.werkz.UnattainableGoalException: Unable to obtain goal [test:test] -- C:\Documents and Settings\Ben\.maven\cache\maven-test-plugin-1.6.2\plugin.jelly :133:41: junit java.lang.NoClassDefFoundError at com.werken.werkz.Goal.fire(Goal.java:646) at com.werken.werkz.Goal.attain(Goal.java:575) at com.werken.werkz.Goal.attainPrecursors(Goal.java:488) at com.werken.werkz.Goal.attain(Goal.java:573) at com.werken.werkz.Goal.attainPrecursors(Goal.java:488) at com.werken.werkz.Goal.attain(Goal.java:573) at org.apache.maven.plugin.PluginManager.attainGoals(PluginManager.java: 671) at org.apache.maven.MavenSession.attainGoals(MavenSession.java:263) at org.apache.maven.cli.App.doMain(App.java:488) at org.apache.maven.cli.App.main(App.java:1239) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl. java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces sorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:585) at com.werken.forehead.Forehead.run(Forehead.java:551) at com.werken.forehead.Forehead.main(Forehead.java:581) org.apache.commons.jelly.JellyTagException: C:\Documents and Settings\Ben\.maven \cache\maven-test-plugin-1.6.2\plugin.jelly:133:41: junit java.lang.NoClassDef FoundError at org.apache.commons.jelly.impl.TagScript.handleException(TagScript.jav a:702) at org.apache.commons.jelly.impl.TagScript.run(TagScript.java:296) at org.apache.commons.jelly.impl.ScriptBlock.run(ScriptBlock.java:135) at org.apache.commons.jelly.TagSupport.invokeBody(TagSupport.java:233) at org.apache.commons.jelly.tags.core.IfTag.doTag(IfTag.java:88) at org.apache.commons.jelly.impl.TagScript.run(TagScript.java:279) at org.apache.commons.jelly.impl.ScriptBlock.run(ScriptBlock.java:135) at org.apache.maven.jelly.tags.werkz.MavenGoalTag.runBodyTag(MavenGoalTa g.java:79) at org.apache.maven.jelly.tags.werkz.MavenGoalTag$MavenGoalAction.perfor mAction(MavenGoalTag.java:110) at com.werken.werkz.Goal.fire(Goal.java:639) at com.werken.werkz.Goal.attain(Goal.java:575) at com.werken.werkz.Goal.attainPrecursors(Goal.java:488) at com.werken.werkz.Goal.attain(Goal.java:573) at com.werken.werkz.Goal.attainPrecursors(Goal.java:488) at com.werken.werkz.Goal.attain(Goal.java:573) at org.apache.maven.plugin.PluginManager.attainGoals(PluginManager.java: 671) at org.apache.maven.MavenSession.attainGoals(MavenSession.java:263) at org.apache.maven.cli.App.doMain(App.java:488) at org.apache.maven.cli.App.main(App.java:1239) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl. java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces sorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:585) at com.werken.forehead.Forehead.run(Forehead.java:551) at com.werken.forehead.Forehead.main(Forehead.java:581) Caused by: java.lang.NoClassDefFoundError at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstruct orAccessorImpl.java:39) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingC onstructorAccessorImpl.java:27) at java.lang.reflect.Constructor.newInstance(Constructor.java:494) at junit.framework.TestSuite.createTest(TestSuite.java:131) at junit.framework.TestSuite.addTestMethod(TestSuite.java:114)
Re: [Acegisecurity-developer] Junit error with Acegi Security
I suggest to Luke to wipe out his local repo and try. I think it's best to have the initialization in the constructor or errors wil lbe hard to debug. On 5/27/06, Ben Alex [EMAIL PROTECTED] wrote: Luke Taylor wrote: I'm not seeing any problems with the latest code... I just rebuilt the web site and all the tests seems to be passing. There's quite a serious overhead in starting up the Ldap server which is why I made it a static field. Maven 1 seems to reload the class each time it runs a test so it doesn't make much difference but it's a lot faster running in IntelliJ or Maven 2. Moving it to the constructor would probably be OK, but putting it in the setUp would slow things down a lot. Hi Luke Whether I use Maven 1, Maven 2 or Eclipse, running the unit tests is always reporting: jdbm.helper.WrappedRuntimeException: org.apache.ldap.server.partition.impl.btree.jdbm.JdbmMasterTable$1 at jdbm.helper.DefaultSerializer.deserialize(DefaultSerializer.java:99) etc Whilst researching this, I noticed someone else on the forum reported exactly the same exception. Given the public site is building fine with Maven 1 - including the LDAP tests (http://acegisecurity.org/multiproject/acegi-security/junit-report.html#org_acegisecurity_providers_ldap) - I am wondering if there is a version issue with one of the Apache Directory JARs at http://acegisecurity.sourceforge.net/maven. I've tried deleting all of my local JARs so they refresh from the public repo, but it still fails. By some chance are you running a different version of the JARs, even though their filenames suggest you are not (perhaps try an md5sum on your local JARs and compare them with an md5sum executed on the SourceForge shell server)? We cannot release 1.0.0 whilst this issue remains. Also, I am also going to Brisbane this afternoon until Thursday night, and on Friday morning I am going to Europe. So we really need this resolved ASAP if there is to be any chance at all of getting 1.0.0 out before I return to Australia in July. Cheers Ben ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] SVN Commit Messages
Check it out here: http://jira.codehaus.org/browse/DOXIA-59?page=com.atlassian.jira.plugin.ext.subversion:subversion-commits-tabpanel On 4/27/06, Baz [EMAIL PROTECTED] wrote: On 4/27/06, Ben Alex [EMAIL PROTECTED] wrote: For the sake of consistency and ease of reviewing history logs, would developers please always format SVN commit messages to begin with the JIRA issue number, followed by a colon, then a brief description of the check-in. More detailed messages can be placed in the JIRA task. eg: SEC-123: Constructor no longer requires null. Sorry if I'm teaching granny to suck eggs here, but have you seen jira's svn plugin: http://confluence.atlassian.com/display/JIRAEXT/JIRA+Subversion+plugin The integration polls and indexes the svn logs hourly with lucene, rather than use post-commit triggers. The indexing means it'll show links to revisions before you installed the plugin, and the format you described should be picked up fine. (I havent set this one up myself, just the trigger-based integration for fogbugz, which isnt as nice). Cheers Baz --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmdlnkkid0709bid3057dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid0709bid3057dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Subversion? (Change completed)
www.ibiblio.org/maven is no longer used. Requests for files are converted to the maven2 repo, if it's in www.ibiblio.org/maven2 then is available for maven1 On 4/26/06, Luke Taylor [EMAIL PROTECTED] wrote: I would like to, but they don't seem to be visible in the maven 1 repository. If we are upgrading to maven 2 then there shouldn't be a problem with apacheds RC1. Carlos Sanchez wrote: I have committed some changes, now the problems are with ldap dependencies, can somebody check if we can upgrade to a non snapshot dependency? there's alreaddy RC1 of apache directory in ibiblio. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid0709bid3057dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Subversion? (Change completed)
I have committed some changes, now the problems are with ldap dependencies, can somebody check if we can upgrade to a non snapshot dependency? there's alreaddy RC1 of apache directory in ibiblio. On 4/25/06, Ben Alex [EMAIL PROTECTED] wrote: Carlos Sanchez wrote: Looks right, only that https://svn.sourceforge.net/svnroot/acegisecurity/trunk/CVSROOT should be deleted Thanks for the feedback, Carlos. Re CVSROOT, that's an artifact of the cvs2svn process. Even automatically migrated SF repositories (eg Spring Rich Client) have this come across. On a related issue, what is stopping us using Maven 2 for Acegi Security now? I would ideally like to release 1.0.0 final with Maven 2, and remove all the old project.xml files. I don't mind if it means we have to lose some plugins, just as long as we can do some form of JAR creation, unit test execution, code coverage measurement and building a PDF and HTML-based DocBook. Are these functions working at present? Cheers Ben --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid0709bid3057dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Subversion? (Change completed)
Looks right, only that https://svn.sourceforge.net/svnroot/acegisecurity/trunk/CVSROOT should be deleted On 4/24/06, Ben Alex [EMAIL PROTECTED] wrote: Ben Alex wrote: Last weekend SF had some CVS issues, so I didn't make the switch as intended. I'm now going to hold-off doing this until early May, because I'm largely on the road until then and don't want to change things and be unavailable if anything goes wrong. Just wanted to let everyone know what's happening with the change. I have now completed the migration from CVS to SVN. This includes: - CVS is no longer visible on the SF project page - SVN is now visible on the SF project page - All developers have had their CVS permissions revoked (in case they don't see this email) - All developers now have SVN permissions granted - The Maven POMs have been modified accordingly - SVN commit messages are now emailed to acegisecurity-cvs, just as CVS used to - The daily script now builds checkouts from SVN only (see http://acegisecurity.sourceforge.net/nightly) As an aside, I had to complete the migration manually (use a SF CVS tarball, run cvs2svn on a local Linux box, SSH the resulting dump file, then import). The SF process didn't work, and cvs2svn failed locally with keyword failure errors. If anyone else has similar difficulties, the --use-cvs option on cvs2svn sorted it out. Would one of our resident Maven experts (Luke, Carlos?) please check that the checkout instructions in /docs/xdocs/cvs-usage.html are correct, as are the various POM files. Cheers Ben --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride --- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid0709bid3057dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] 1.0.0-RC2 in Maven2?
I've uploaded the jars. poms will need to wait for a bit On 4/12/06, Parrott, Jason [EMAIL PROTECTED] wrote: Hey, I was wondering if someone with access could post the 1.0.0-RC2 archive to the Maven2 repo at ibiblio. I see he RC1 version but not the RC2. Thanks. -Jason Parrott -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride --- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnkkid0944bid$1720dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Subversion?
+1 On 3/25/06, Ben Alex [EMAIL PROTECTED] wrote: Hi everyone SourceForge have recently modified their offering so we can migrate to SVN (without losing revision history) - see http://sourceforge.net/docman/display_doc.php?docid=31070group_id=1#import. I have also been using SVN recently and had good results. The Subclipse plugin at Update Manager URL http://subclipse.tigris.org/update_1.0.x works quite well. Does anyone have any concerns with the project migrating from CVS to SVN? If there aren't any objections, I'll make the change in about a week. Cheers Ben --- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnkkid=110944bid=241720dat=121642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride --- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnkkid0944bid$1720dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Building with maven or maven2
Maven2 build is not yet ready. Everything should work with maven 1.0.2 out of the box, the repositories are already added in the project.xml On 3/6/06, Jaap Reitsma [EMAIL PROTECTED] wrote: Hi all, I have tried to follow the instructions to build Acegi Security with maven 1.0.2 as well as 2.0.2, but without success. I have used the CVS snapshot of March 6th. What I am missing for maven 1 is a list of repositories to use. Could one of you give the list that is used to build to code? Especially the ldap related jars are difficult to find: org.apache.ldap.server.core-0.9.4-20060201.032106-7.jar org.apache.ldap.server.shared-0.9.4-20060201.032106-8.jar directory-asn1-0.3.4-20060201.032106-8.jar org.apache.ldap.common-0.9.4-20060201.032106-10.jar Probably these dependencies are not really needed to build the core, but just for testing? The dependency on spring 2-m2 was also unresolved due to the change of repository layout on ibiblio mirrors (springframework -- org.springframework) in the switch to spring 2. With maven2 I was able to build the core (using command mvn package), but the test failed with Caused by: java.lang.NoClassDefFoundError: org/springframework/beans/factory/InitializingBean This was caused by a missing depencencies to several spring modules. Afterr fixing, this one remained: Caused by: java.lang.NoClassDefFoundError: org/apache/log4j/LogManager at org.slf4j.impl.Log4jLoggerFactory.getLogger(Log4jLoggerFactory.java:64) at org.slf4j.LoggerFactory.getLogger(LoggerFactory.java:99) I remember seeing that before on this mailing list. Is it still unresolved? On the top level I get errors on the CAS stuff. So: - What is the preferred maven version? I think maven2 is easier to tame - Which repos are to be used? - Could I expect the build from CVS to fail or am I doing something wrong? Kind regards, Jaap Reitsma -- I could give you my word as a Spaniard. No good. I've known too many Spaniards. -- The Princess Bride --- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/sel?cmd=lnkkid0944bid$1720dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] Re: Problem with Acegi Maven 2 build
Sorry for the late response. First core was not compiling with m2. I tried now and had to change the scope of spring-mock to make classes compile. Second, if you run mvn -X you can see how transitive dependencies are obtained, and there's no reference at all to log4j. Are you talking about any other application that uses other stuff besides acegi? If so you can run mvn -X, check who is using log4j and add a exclusion to that dependency. Also note that apacheds dependecies in pom.xml are not the snaphots as they are not available in ibiblio. I added this ones in the meantime. i imagine tests don't fail because that classes are not tested at all (http://www.acegisecurity.org/multiproject/acegi-security/clover/index.html). The fact that order of dependencies worked in m1 was a coincidence and was not intended at all, and thus that behaviour can change. Regards On 1/30/06, Luke Taylor [EMAIL PROTECTED] wrote: Hi Carlos, Maven 1 seems to set up the classpath in the order the dependencies are specified, hence we got round the problem by moving slf4j/nlog4j above log4j in the list. I think nlog4j provides replacement classes for log4j, which aren't directly compatible. The problem is discussed here: http://www.nabble.com/Re:-upgrading-to-nlog4j.1.2.17-p1089156.html If we can exclude log4j, that might do the trick. How is that achieved? I think it's appearing as a transitive dependency from somewhere else... Thanks, Luke. Carlos Sanchez wrote: Hi, There's no option to specify the order, in m1 that wasn't a feature either. I don't know exactly what's the problem but there're ways to exclude log4j or force a specific version, is that what you're trying to do? On 1/29/06, Luke Taylor [EMAIL PROTECTED] wrote: Hi Carlos, I have a small problem you might know the answer to. I was attempting to add the latest apache-ds jar files to the M2 build. Apache DS is build using slf4j and this can cause a very nasty IncompatibleClassChangeError at logger-related code if log4j is used instead. With Maven 1, we got round this by putting slf4j ahead of log4j in the project.xml. However, if I do this with Maven 2.0.2, log4j always seems to end up ahead of slf4j, even if I put the latter at the top of the dependency list. Do you know if there's a way to exert more control over the order of jars in the classpath with Maven 2, or how it decides the ordering? cheers, Luke. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnkkid3432bid#0486dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] CVS build failing due to test failures.
The test output is in the target folder test-reports or something like that On 2/1/06, Ray Krueger [EMAIL PROTECTED] wrote: I am trying to jump in and see why the Jaas tests would be failing, but I cannot get Maven to play nice. Any ideas anyone? Carlos? *nudge nudge* [junit] [DEBUG] Finding class org.apache.ldap.server.normalization.NormalizationService [junit] [DEBUG] Finding class org.apache.ldap.server.interceptor.BaseInterceptor [junit] [DEBUG] Class org.apache.ldap.server.interceptor.BaseInterceptor loaded from ant loader [junit] [DEBUG] Class org.apache.ldap.server.normalization.NormalizationService loaded from ant loader [junit] [DEBUG] Class javax.naming.NamingEnumeration loaded from parent loader [junit] [DEBUG] Finding class org.apache.ldap.common.filter.FilterVisitor [junit] [DEBUG] Class org.apache.ldap.common.filter.FilterVisitor loaded from ant loader [junit] [DEBUG] Finding class org.apache.ldap.common.name.NameComponentNormalizer popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-java-plugin:maven- java-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-antlr-plugin:mave n-antlr-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-test-plugin:maven- test-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in org.acegisecurity:acegi-s ecurity BUILD FAILED File.. C:\Documents and Settings\rkrueger\.maven\cache\maven-test-plugin-1.6.2\plugin.jelly Element... junit Line.. 133 Column 41 java.lang.NoClassDefFoundError On 1/31/06, Luke Taylor [EMAIL PROTECTED] wrote: Hi, The LDAP tests are failing because of changes in the ApacheDS snaphots which the provider uses as an embedded server for testing. I've been discussing their planned release with them, which should be out this week. Once it appears I'll modify the build to use it so that we have something stable to test against. You can skip the tests by running with maven -Dmaven.test.skip. Alternatively, you can set up the tests to point to an external server by uncommenting the appropriate lines in the base class for the Ldap tests (AbstractLdapServerTestCase, or whatever). I've attached a copy of the test data. It also expects to have an admin user with username manager and password acegisecurity available. cheers, Luke. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk version: 1 dn: dc=acegisecurity,dc=org objectClass: dcObject objectClass: organization dc: acegisecurity description: Acegi Security (Test LDAP DIT) o: Monkey Machine Ltd. dn: ou=people,dc=acegisecurity,dc=org objectClass: organizationalUnit description: All people in organisation ou: people dn: cn=Ben Alex,ou=people,dc=acegisecurity,dc=org objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: person objectClass: top cn: Ben Alex ou:: 5a6J5YWo sn: Alex uid: Ben userPassword:: e1NIQX1uRkNlYldqeGZhTGJISEcxUWs1VVU0dHJidlE9 dn: uid=bob,ou=people,dc=acegisecurity,dc=org objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: person objectClass: top cn: Bob Hamilton sn: Hamilton uid: bob userPassword:: Ym9ic3Bhc3N3b3Jk dn: ou=groups,dc=acegisecurity,dc=org objectClass: top objectClass: organizationalUnit ou: groups dn: cn=developers,ou=groups,dc=acegisecurity,dc=org objectClass: groupOfNames objectClass: top cn: developers description: Acegi Security Developers member: uid=bob,ou=people,dc=acegisecurity,dc=org member: cn=ben alex,ou=people,dc=acegisecurity,dc=org o: Acegi Security System for Spring ou: developer dn: cn=managers,ou=groups,dc=acegisecurity,dc=org objectClass: groupOfNames objectClass: top cn: managers member: cn=ben alex,ou=people,dc=acegisecurity,dc=org ou: manager --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmdlnkkid3432bid#0486dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnkkid3432bid#0486dat1642 ___ Home: http://acegisecurity.org
Re: [Acegisecurity-developer] CVS build failing due to test failures.
A class referenced is not in the classpath On 2/1/06, Ray Krueger [EMAIL PROTECTED] wrote: Good Point, Anythony, can you post this log file please? {acegisourcecode}/core/target/test-reports/TEST-org.acegisecurity.providers.jaas.JaasAuthenticationProviderTests.xml Carlos any idea what that ClassDefNotFound is from? Just so I understand how to read that next time. On 2/1/06, Carlos Sanchez [EMAIL PROTECTED] wrote: The test output is in the target folder test-reports or something like that On 2/1/06, Ray Krueger [EMAIL PROTECTED] wrote: I am trying to jump in and see why the Jaas tests would be failing, but I cannot get Maven to play nice. Any ideas anyone? Carlos? *nudge nudge* [junit] [DEBUG] Finding class org.apache.ldap.server.normalization.NormalizationService [junit] [DEBUG] Finding class org.apache.ldap.server.interceptor.BaseInterceptor [junit] [DEBUG] Class org.apache.ldap.server.interceptor.BaseInterceptor loaded from ant loader [junit] [DEBUG] Class org.apache.ldap.server.normalization.NormalizationService loaded from ant loader [junit] [DEBUG] Class javax.naming.NamingEnumeration loaded from parent loader [junit] [DEBUG] Finding class org.apache.ldap.common.filter.FilterVisitor [junit] [DEBUG] Class org.apache.ldap.common.filter.FilterVisitor loaded from ant loader [junit] [DEBUG] Finding class org.apache.ldap.common.name.NameComponentNormalizer popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-java-plugin:maven- java-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-antlr-plugin:mave n-antlr-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-test-plugin:maven- test-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in org.acegisecurity:acegi-s ecurity BUILD FAILED File.. C:\Documents and Settings\rkrueger\.maven\cache\maven-test-plugin-1.6.2\plugin.jelly Element... junit Line.. 133 Column 41 java.lang.NoClassDefFoundError On 1/31/06, Luke Taylor [EMAIL PROTECTED] wrote: Hi, The LDAP tests are failing because of changes in the ApacheDS snaphots which the provider uses as an embedded server for testing. I've been discussing their planned release with them, which should be out this week. Once it appears I'll modify the build to use it so that we have something stable to test against. You can skip the tests by running with maven -Dmaven.test.skip. Alternatively, you can set up the tests to point to an external server by uncommenting the appropriate lines in the base class for the Ldap tests (AbstractLdapServerTestCase, or whatever). I've attached a copy of the test data. It also expects to have an admin user with username manager and password acegisecurity available. cheers, Luke. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk version: 1 dn: dc=acegisecurity,dc=org objectClass: dcObject objectClass: organization dc: acegisecurity description: Acegi Security (Test LDAP DIT) o: Monkey Machine Ltd. dn: ou=people,dc=acegisecurity,dc=org objectClass: organizationalUnit description: All people in organisation ou: people dn: cn=Ben Alex,ou=people,dc=acegisecurity,dc=org objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: person objectClass: top cn: Ben Alex ou:: 5a6J5YWo sn: Alex uid: Ben userPassword:: e1NIQX1uRkNlYldqeGZhTGJISEcxUWs1VVU0dHJidlE9 dn: uid=bob,ou=people,dc=acegisecurity,dc=org objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: person objectClass: top cn: Bob Hamilton sn: Hamilton uid: bob userPassword:: Ym9ic3Bhc3N3b3Jk dn: ou=groups,dc=acegisecurity,dc=org objectClass: top objectClass: organizationalUnit ou: groups dn: cn=developers,ou=groups,dc=acegisecurity,dc=org objectClass: groupOfNames objectClass: top cn: developers description: Acegi Security Developers member: uid=bob,ou=people,dc=acegisecurity,dc=org member: cn=ben alex,ou=people,dc=acegisecurity,dc=org o: Acegi Security System for Spring ou: developer dn: cn=managers,ou=groups,dc=acegisecurity,dc=org objectClass: groupOfNames objectClass: top cn: managers member: cn=ben alex,ou=people,dc=acegisecurity,dc=org ou: manager --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD
Re: [Acegisecurity-developer] CVS build failing due to test failures.
It is clearer in the test output On 2/1/06, Ray Krueger [EMAIL PROTECTED] wrote: hehe yeah that I knwew :P I was hoping Maven could be a little clearer on what class. I think it's the last one it's trying to Find NameComponentNormalizer. Would that be correct? On 2/1/06, Carlos Sanchez [EMAIL PROTECTED] wrote: A class referenced is not in the classpath On 2/1/06, Ray Krueger [EMAIL PROTECTED] wrote: Good Point, Anythony, can you post this log file please? {acegisourcecode}/core/target/test-reports/TEST-org.acegisecurity.providers.jaas.JaasAuthenticationProviderTests.xml Carlos any idea what that ClassDefNotFound is from? Just so I understand how to read that next time. On 2/1/06, Carlos Sanchez [EMAIL PROTECTED] wrote: The test output is in the target folder test-reports or something like that On 2/1/06, Ray Krueger [EMAIL PROTECTED] wrote: I am trying to jump in and see why the Jaas tests would be failing, but I cannot get Maven to play nice. Any ideas anyone? Carlos? *nudge nudge* [junit] [DEBUG] Finding class org.apache.ldap.server.normalization.NormalizationService [junit] [DEBUG] Finding class org.apache.ldap.server.interceptor.BaseInterceptor [junit] [DEBUG] Class org.apache.ldap.server.interceptor.BaseInterceptor loaded from ant loader [junit] [DEBUG] Class org.apache.ldap.server.normalization.NormalizationService loaded from ant loader [junit] [DEBUG] Class javax.naming.NamingEnumeration loaded from parent loader [junit] [DEBUG] Finding class org.apache.ldap.common.filter.FilterVisitor [junit] [DEBUG] Class org.apache.ldap.common.filter.FilterVisitor loaded from ant loader [junit] [DEBUG] Finding class org.apache.ldap.common.name.NameComponentNormalizer popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-java-plugin:maven- java-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-antlr-plugin:mave n-antlr-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in maven-test-plugin:maven- test-plugin popping off [EMAIL PROTECTED] for [EMAIL PROTECTED] in org.acegisecurity:acegi-s ecurity BUILD FAILED File.. C:\Documents and Settings\rkrueger\.maven\cache\maven-test-plugin-1.6.2\plugin.jelly Element... junit Line.. 133 Column 41 java.lang.NoClassDefFoundError On 1/31/06, Luke Taylor [EMAIL PROTECTED] wrote: Hi, The LDAP tests are failing because of changes in the ApacheDS snaphots which the provider uses as an embedded server for testing. I've been discussing their planned release with them, which should be out this week. Once it appears I'll modify the build to use it so that we have something stable to test against. You can skip the tests by running with maven -Dmaven.test.skip. Alternatively, you can set up the tests to point to an external server by uncommenting the appropriate lines in the base class for the Ldap tests (AbstractLdapServerTestCase, or whatever). I've attached a copy of the test data. It also expects to have an admin user with username manager and password acegisecurity available. cheers, Luke. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk version: 1 dn: dc=acegisecurity,dc=org objectClass: dcObject objectClass: organization dc: acegisecurity description: Acegi Security (Test LDAP DIT) o: Monkey Machine Ltd. dn: ou=people,dc=acegisecurity,dc=org objectClass: organizationalUnit description: All people in organisation ou: people dn: cn=Ben Alex,ou=people,dc=acegisecurity,dc=org objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: person objectClass: top cn: Ben Alex ou:: 5a6J5YWo sn: Alex uid: Ben userPassword:: e1NIQX1uRkNlYldqeGZhTGJISEcxUWs1VVU0dHJidlE9 dn: uid=bob,ou=people,dc=acegisecurity,dc=org objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: person objectClass: top cn: Bob Hamilton sn: Hamilton uid: bob userPassword:: Ym9ic3Bhc3N3b3Jk dn: ou=groups,dc=acegisecurity,dc=org objectClass: top objectClass: organizationalUnit ou: groups dn: cn=developers,ou=groups,dc=acegisecurity,dc=org objectClass: groupOfNames objectClass: top cn: developers description: Acegi Security Developers member: uid=bob,ou=people,dc
Re: [Acegisecurity-developer] Maven blues
beginig with 1.0.0 it's under org.acegisecurity groupId m2 it's not suported yet, but it works On 1/20/06, Jettro Coenradie [EMAIL PROTECTED] wrote: Hi all, I am trying to get maven 2 to work with a spring example. I am having some issues or questions that I hope someone can help with. First the code I added to my pom: dependency groupIdacegisecurity/groupId artifactIdacegi-security/artifactId version1.0.0-RC1/version /dependency I tried multiple versions, all with different results: 1.0.0-RC1 - No jar file is available 0.9.0 Two libraries are missing : asn1-ber:asn1-codec:jar:0.3 and commons-test:commons-test:jar:0.1 0.8.3 This is working Does someone know how to get this to work? Is maven2 now supported? (I found an item that stated the opposite). There is also an item in Jira, this is closed saying everything is fine now. Still it does not work for me. Any advise is welcome, thank you so much Jettro Coenradie --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnkkid3432bid#0486dat1642 ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] LDAP Provider
Hi, I've notice that this change was included after the RC1. This goes against the version naming policy, 1.0.0 must be the same as 1.0.0-RC1 except for critical bug fixes. It'd be better to create a branch for 1.0.0 from the 1.0.0-RC1 tag and set HEAD to 1.1, where you could keep development. Regards On 12/21/05, Luke Taylor [EMAIL PROTECTED] wrote: Hi all, Just a short note to say that the new incarnation of the LDAP provider is now available if you want to take a look at it. It's still a work in progress but I'm keen to get feedback and suggestions so that any changes can be nailed down before the 1.0 release. The code is in org.apache.providers.ldap. I haven't written anything for the reference guide yet, but will get round to it soon. The tests are a good place to start and there is quite a bit of Javadoc and a simple LDAP version of the contacts sample app (though you'll need a server with the appropriate data for this to work at the moment). I'll include an embedded apache DS instance in the app later. cheers, Luke. -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637alloc_id=16865op=click ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_idv37alloc_id865op=click ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] 1.0.0 Progress
I upgraded the maven jalopy plugin to the latest jalopy jar and I'm getting exceptions. On 11/26/05, Ben Alex [EMAIL PROTECTED] wrote: Mark St.Godard wrote: Hey Ben, Have you had any luck getting the latest Jalopy plugin ? When I go to: http://jalopy.sourceforge.net/jalopy/download.html I get 404s will try again.. could be SF I used http://jalopy.sourceforge.net/jalopy-eclipse/downloads.html. Alternatively, you could just go to http://sourceforge.net/project/showfiles.php?group_id=45216 and access them via the SF File Release System. Cheers Ben --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637alloc_id=16865op=click ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_idv37alloc_id865op=click ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] 1.0.0 Progress
I believe this can be solved upgrading the jalopy version http://jalopy.sourceforge.net/ Let me take a look. On 11/24/05, Ben Alex [EMAIL PROTECTED] wrote: Hi everyone We're making good progress towards releasing 1.0.0 RC 1, the target date of which is 4 December 2005 (to coincide with The Spring Experience). *** Would the community please report any outstanding bugs in JIRA ASAP so they are tracked and fixed. Thanks. *** The outstanding 1.0.0 tasks are in JIRA at http://opensource2.atlassian.com/projects/spring/secure/BrowseProject.jspa?id=10040. Would developers please take a look and update the status of their respective tasks. Please modify the fix version of your tasks to unknown if you won't get time to complete your task before RC 1. Also regarding SEC-97, is anyone aware of a replacement for Jalopy source code formatter? Jalopy fails with Java 1.5 generics, which is an issue. We should take advantage of this task to update to a tool that supports Java 5. Best regards Ben --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637alloc_id=16865op=click ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_idv37alloc_id865op=click ___ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Vote: Release 0.9.0
I'm working on that. You'll have news soon. On 11/7/05, Andreas Brenk [EMAIL PROTECTED] wrote: It seems to me the Maven 2 build (SEC-62) is not up-to-date and should be marked as unresolved. Regards, Andreas On 11/7/05, Ben Alex [EMAIL PROTECTED] wrote: The JIRA changelog is now complete, and I've just updated the reference guide to reflect the latest changes: http://opensource2.atlassian.com/projects/spring/browse/SEC?report=com.atlassian.jira.plugin.system.project:roadmap-panel I would like to propose we release 0.9.0 at this point. Please let me know if you agree. --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Vote: Release 0.9.0
Hi all, Some comments: - Currently acegi depends on apache directory 0.9-SNAPSHOT, which means this version has to be fixed (never release depending on SNAPSHOTS as they can change). I'm committing now a project.xml change to depend on 0.9 (although there're newer versions released). - whenever a new dependency is needed and is not in ibiblio the best way is to post a maven upload request (http://maven.apache.org/guides/mini/guide-ibiblio-upload.html) and only use the private repo at http://acegisecurity.sourceforge.net/maven/ to use snapshots and maybe in the meantime the jar is not in ibiblio. - about maven2 I'm still working on that, improving the build. Can you send me the output when you run it with -X Regards On 11/7/05, Luke Taylor [EMAIL PROTECTED] wrote: Hola Carlos, When I try the build with Maven 2.0 (with a view to switching the automated build to M2 eventually), I'm getting a problem with tools.jar as a dependency, both running on linux and on OS X (I would have expected it on the latter, 'cos it doesn't have one). When building the CAS adapter module, I get: [INFO] Failed to resolve artifact. GroupId: java ArtifactId: tools Version: 1.4 Reason: Unable to download the artifact from any repository java:tools:1.4:jar from the specified remote repositories: central (http://repo1.maven.org/maven2) Have you any idea where this is coming from? Are there still problems with Maven 2 itself, or are they specific to our Acegi stuff. I'm keen to start using it. cheers, Luke. P.S. +1 I'm all for doing the release if no one has any reported problems. Carlos Sanchez wrote: I'm working on that. You'll have news soon. On 11/7/05, Andreas Brenk [EMAIL PROTECTED] wrote: It seems to me the Maven 2 build (SEC-62) is not up-to-date and should be marked as unresolved. Regards, Andreas On 11/7/05, Ben Alex [EMAIL PROTECTED] wrote: The JIRA changelog is now complete, and I've just updated the reference guide to reflect the latest changes: http://opensource2.atlassian.com/projects/spring/browse/SEC?report=com.atlassian.jira.plugin.system.project:roadmap-panel I would like to propose we release 0.9.0 at this point. Please let me know if you agree. --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer -- Luke Taylor. Monkey Machine Ltd. PGP Key ID: 0x57E9523Chttp://www.monkeymachine.ltd.uk --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] FW: Trouble getting maven test:test goal to run
Try running clean first. Seems that you've compiled classes with clover and maven is picking those. On 11/5/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Hi all, I'm having trouble running the core test:test maven goal to run. Any ideas on what I'm doing wrong? Thanks, Scott C:\java\eclipse\workspace\acegisecurity\coremaven test:test __ __ | \/ |__ _Apache__ ___ | |\/| / _` \ V / -_) ' \ ~ intelligent projects ~ |_| |_\__,_|\_/\___|_||_| v. 1.0.2 Attempting to download apacheds-main-0.9-SNAPSHOT.jar. [echo] Using root dir: C:\java\eclipse\workspace\acegisecurity build:start: java:prepare-filesystem: java:compile: [echo] Compiling to C:\java\eclipse\workspace\acegisecurity\core/target/classes java:jar-resources: test:prepare-filesystem: test:test-resources: test:compile: test:test: [junit] Running net.sf.acegisecurity.acl.AclProviderManagerTests [CLOVER] FATAL ERROR: Clover could not be initialised. Are you sure you have Clover in the runtime classpath? (class java.lang.NoCla ssDefFoundError:com_cenqua_clover/CloverVersionInfo) [CLOVER] FATAL ERROR: Clover could not be initialised. Are you sure you have Clover in the runtime classpath? (class java.lang.NoCla ssDefFoundError:com_cenqua_clover/CloverVersionInfo) [junit] Tests run: 9, Failures: 0, Errors: 9, Time elapsed: 0.156 sec [junit] [ERROR] TEST net.sf.acegisecurity.acl.AclProviderManagerTests FAILED [junit] Running net.sf.acegisecurity.acl.basic.BasicAclProviderTests [CLOVER] FATAL ERROR: Clover could not be initialised. Are you sure you have Clover in the runtime classpath? (class java.lang.NoCla ssDefFoundError:com_cenqua_clover/CloverVersionInfo) [CLOVER] FATAL ERROR: Clover could not be initialised. Are you sure you have Clover in the runtime classpath? (class java.lang.NoCla ssDefFoundError:com_cenqua_clover/CloverVersionInfo) [junit] Tests run: 13, Failures: 0, Errors: 13, Time elapsed: 0.297 sec [junit] [ERROR] TEST net.sf.acegisecurity.acl.basic.BasicAclProviderTests FAILED [junit] Running net.sf.acegisecurity.acl.basic.cache.BasicAclEntryHolderTests [CLOVER] FATAL ERROR: Clover could not be initialised. Are you sure you have Clover in the runtime classpath? (class java.lang.NoCla ssDefFoundError:com_cenqua_clover/CloverVersionInfo) [junit] Tests run: 1, Failures: 0, Errors: 1, Time elapsed: 0.016 sec [junit] [ERROR] TEST net.sf.acegisecurity.acl.basic.cache.BasicAclEntryHolderTests FAILED [CLOVER] FATAL ERROR: Clover could not be initialised. Are you sure you have Clover in the runtime classpath? (class java.lang.NoCla ssDefFoundError:com_cenqua_clover/CloverVersionInfo) BUILD FAILED File.. C:\Documents and Settings\smccrory\.maven\cache\maven-test-plugin-1.6.2\plugin.jelly Element... junit Line.. 133 Column 41 java.lang.NoClassDefFoundError Total time: 4 seconds Finished at: Sat Nov 05 14:39:29 EST 2005 C:\java\eclipse\workspace\acegisecurity\core --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Problem checking out from CVS with Maven
It works for me in maven 1.1-beta-2. Deprecated properties still work. On 11/4/05, Ballard, Ken [EMAIL PROTECTED] wrote: Hi, Someone I work with pointed out that the instructions for checking out Maven [http://www.acegisecurity.org/building.html] don't work. It might just be because the SCM plugin has deprecated maven.scm.method, maven.scm.cvs.module, maven.scm.method, and maven.scm.cvs.root. I tried to use other properties, but I don't have a CVS client (We use SVN and StarTeam). I think it would be a quick fix. I'll try to download a CVS client when I get a chance and try it with other properties. Thanks, Ken --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] Cobertura reports
Hi, I've uploaded the results of the cobertura report for acegi core project, if you like we can add them to the generated reports (and maybe remove commercial clover). One drawback is that afaik it doesn't allow filtering statements like logging. http://maven-plugins.sourceforge.net/maven-cobertura-plugin/index.html http://acegisecurity.sourceforge.net/multiproject/acegi-security/cobertura/index.html http://acegisecurity.sourceforge.net/multiproject/acegi-security/cobertura/cobertura-check.html The second one requires maven 1.1, which I plan to support asap http://opensource2.atlassian.com/projects/spring/browse/SEC-57. Regards --- SF.Net email is sponsored by: Tame your development challenges with Apache's Geronimo App Server. Download it for free - -and be entered to win a 42 plasma tv or your very own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
Re: [Acegisecurity-developer] Security Annotation support (initial)
Hi, I'd really encourage the use of two jars, core and core-tiger, instead of packaging the tiger classes inside core jar, because the core-tiger probably depends on core and you don't want core to depend on tiger. You'll notice the problem of that approach in any tool with transitive dependency resolution like Maven2, Ivy or any other. Anyway the solution maybe something like this, check the java.version property and run maven in the other project. This will require having the sources for core-tiger. It'd be better adding a dependency to the core-tiger jar and extract it in classes before making the jar, but then you propably get circular dependencies, which it's a reson to go back to my first suggestion. !-- Compile core-tiger if using java 5 -- goal name=java5:compile j:if test=${context.getVariable('java.version').startsWith('1.5') } echoJava5/echo maven:maven descriptor=${rootdir}/core-tiger/project.xml goals=clean,java:compile ignoreFailures=false/ /j:if /goal this won't work if you're using another compiler other than the used to run maven (overriding maven.compile.executable http://maven.apache.org/reference/plugins/java/properties.html), but I don't think that's a common case. Regards Carlos Sanchez http://www.jroller.com/page/carlossg On 8/21/05, Ben Alex [EMAIL PROTECTED] wrote: Mark St.Godard wrote: I just wanted to make sure I dont check in code that breaks JDK 1.4 users from building the CVS HEAD examples, etc. Therefore to sum up: - can we package the core-tiger classes into the single acegi security dist? - where should the new samples (for java5) be located? Thoughts? Yesterday I asked whether anyone was using the Commons Attributes support. The reason is that when you install commons-attributes-plugin, you in effect add a plugin to Maven that will throw exceptions if you are using any Java 1.5 features such as annotations and enums. http://jakarta.apache.org/commons/attributes/maven_demo.html indicates that 2.1 is the latest version of the Commons Attributes plugin, so you install using: maven plugin:download -DgroupId=commons-attributes-plugin -DartifactId=commons-attributes-plugin -Dversion=2.1 However, if you install the plugin and then use Java 1.5-specific features in your build, this is what the Maven build will give you: (What happens for an enum): Error parsing File .\CounterEnum.java:Encountered enum at line 9, column 8. Was expecting one of: abstract ... interface ... public ... strictfp ... final ... class ... (What happens for a generics declaration): Error parsing File \RoleDaoHibernate.java:Encountered at line 21, column 51. Was expecting one of: implements ... { ... . ... According to http://jakarta.apache.org/commons/attributes/faq.html: *Q: What are the future plans for Commons-Attributes?** A:* As indicated above, C-A isn't expected to live beyond widespread adoption of Java 5.0. But until then, the main area of concern is ease of use The above issue is therefore only a concern for people wishing to build the /samples/attributes sample, as then the plugin is required. I think we should therefore disable the /samples/attributes as part of the /docs multiproject build, leaving it to users of Commons Attributes to manually build (and install the problematic plugin) if they so wish. Does anyone have a concern with that? Assuming we do the above, I think that having a new sample specifically for annotations would be appropriate. We can use the same classes as used in the attributes sample, so that people can compare the two approaches. Of course, the attributes sample would have in its project.properties the 1.5-specific source and compile properties. I have no issue with having the 1.5-specific classes in the acegi-security-xxx.jar. Achieving that will need some /core/maven.xml jar:jar pre-goal customisation. Two approaches would be to run the /core-tiger build if 1.5 is detected and then copy the files across to /core/target/classes. Alternatively, just copy the /core-tiger/target/classes if they exist to /core/target/classes and expect users to first build core-tiger (such that the /core-tiger/target/classes exists). The latter approach is easier, but I'm sure the former is achievable with Maven as well. Cheers Ben --- SF.Net email is Sponsored by the Better Software Conference EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile Plan-Driven Development * Managing Projects Teams * Testing QA Security * Process Improvement Measurement * http://www.sqe.com/bsce5sf ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer
Re: [Acegisecurity-developer] IMPORTANT: Project management procedures
+1 Regards Carlos Sanchez On 7/28/05, Ben Alex [EMAIL PROTECTED] wrote: Scott McCrory wrote: On Mon, 25 Jul 2005 12:17:29 +1000, Ben Alex wrote Hi everyone Now that we've got 14 developers with CVS rights, and we've recently introduced JIRA, I wish to propose some project management {...} These are good and I'd recommend converting it into a new developer's guide or orientation artifact that can be referenced on the Agegi site. Thanks Scott. Did anyone else have any feedback? I received some off-list support for the proposals, but I'd like to encourage some more discussion before we standardise on anything. Even a +1 if you're in agreement would be good (non-developers are invited to vote or provide feedback as well). Cheers Ben --- SF.Net email is Sponsored by the Better Software Conference EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile Plan-Driven Development * Managing Projects Teams * Testing QA Security * Process Improvement Measurement * http://www.sqe.com/bsce5sf ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- SF.Net email is Sponsored by the Better Software Conference EXPO September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices Agile Plan-Driven Development * Managing Projects Teams * Testing QA Security * Process Improvement Measurement * http://www.sqe.com/bsce5sf ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
RE: [Acegisecurity-developer] Reducing the number of filters needed in web.xml
To sum up, I'll create a class called net.sf.acegisecurity.FilterChain, with a property called filters. About the syntax, I looked at map, that would suit here, but Spring application context don't allow beans as keys, maybe a lack of functionality? If we use this one we lose validation, so another option could be: bean id=filterMapping abstract=true class=net.sf.acegisecurity.FilterMapping property name=mappingvalue/*/value/property /bean bean id=channelProcessingFilterMapping parent=filterMapping property name=filterref local=channelProcessingFilter//property /bean bean id=authenticationProcessingFilterMapping parent=filterMapping property name=filterref local=authenticationProcessingFilter//property /bean bean id=filterChain class=net.sf.acegisecurity.FilterChain property name=filters list ref local=channelProcessingFilterMapping/ ref local=authenticationProcessingFilterMapping/ /list /property /bean More verbose, sure, but allows validation and avoids parsing and it's unlikely to change from one app to another. If you are using XML you should avoid parsing text, that's the goal of XML. The problem is that Spring DTD is a bit verbose. On Mon, 24 Jan 2005 11:15:03 +1100, Ben Alex [EMAIL PROTECTED] wrote: bryan ( [EMAIL PROTECTED]) wrote: bean id=filterChain class=net.sf.acegisecurity.FilterChain property name=filters value channelProcessingFilter=/* authenticationProcessingFilter=/* basicProcessingFilter=/* sessionIntegrationFilter=/* securityEnforcementFilter=/* /value /property /bean +1, especially using the syntax shown above as it's nice and intuitive. --- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag--drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting Tool for open source databases. Create drag--drop reports. Save time by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc. Download a FREE copy at http://www.intelliview.com/go/osdn_nl ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
RE: [Acegisecurity-developer] Preparing for 0.7.0
Hi all, The docbook stuff should be ready now. I'm trying to release the maven sdocbook plugin, so we can remove the SNAPSHOT dependency, in the meantime I've created a dated version so it doesn't get downloaded every time. Regards Carlos Sanchez A Coruña, Spain http://www.jroller.com/page/carlossg -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Scott McCrory Sent: Wednesday, December 29, 2004 11:48 PM To: acegisecurity-developer@lists.sourceforge.net Subject: Re: [Acegisecurity-developer] Preparing for 0.7.0 Ben, Just curious - what's your approach towards an eventual 1.0 release? I ask because technical managers, architecture review boards, etc. can misinterpret sub-1.0 versions as unstable, whereas even Acegi 0.6 most certainly is not! Thanks in advance, Scott --- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almosthttp://www.thinkgeek.com/sfshirt ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- The SF.Net email is sponsored by: Beat the post-holiday blues Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek. It's fun and FREE -- well, almosthttp://www.thinkgeek.com/sfshirt ___ Home: http://acegisecurity.sourceforge.net Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] RE: Maven and acegi docbook
I'm moving docs now, I'll take a look to the stylesheet later this week. I agree with your multiproject suggestion. Regards Carlos Sanchez A Coruña, Spain http://www.jroller.com/page/carlossg -Original Message- From: Ben Alex [mailto:[EMAIL PROTECTED] Sent: Sunday, November 14, 2004 9:06 PM To: [EMAIL PROTECTED]; Carlos Sanchez Subject: Re: Maven and acegi docbook Carlos Sanchez wrote: Hi, What do you think about moving docs to a new subproject? this way people building the core don't need to download docbook zip nor jimi by hand. Hi Carlos Good idea, go for it. Had a chance to look at that stylesheet issue? On a related note, what subprojects are we going to include in multiproject:artifact? I feel that goal is mostly for developers so it should include core, samples, adapters and docs. Most people wanting to do a quick change to the code would probably just use jar:jar from the core directory. Your thoughts? Ben --- This SF.Net email is sponsored by: InterSystems CACHE FREE OODBMS DOWNLOAD - A multidimensional database that combines robust object and relational technologies, making it a perfect match for Java, C++,COM, XML, ODBC and JDBC. www.intersystems.com/match8 ___ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
[Acegisecurity-developer] Write a rule overriding a less specific one, allowing any user to call a specific url
Hi, My question is: can I write a rule in filter security interceptor so an URL doesn't need to have a role (needed to override a less specific one)? e.g. in the following bean I want that all *.do except populateDatabase.do need ROLE_USER. populateDatabase.do can be called by any user although he hadn't logged in before. bean id=filterInvocationInterceptor class=net.sf.acegisecurity.intercept.web.FilterSecurityInterceptor property name=authenticationManagerref bean=authenticationManager//property property name=accessDecisionManagerref bean=accessDecisionManager//property property name=objectDefinitionSource value CONVERT_URL_TO_LOWERCASE_BEFORE_COMPARISON PATTERN_TYPE_APACHE_ANT /secure/**=ROLE_ADMIN /populateDatabase.do=SOMETHING HERE /**/*.do=ROLE_USER /value /property /bean Regards Carlos Sanchez A Coruña, Spain Oness Project http://oness.sourceforge.net --- This SF.Net email is sponsored by BEA Weblogic Workshop FREE Java Enterprise J2EE developer tools! Get your free copy of BEA WebLogic Workshop 8.1 today. http://ads.osdn.com/?ad_idG21alloc_id040op=click ___ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
RE: [Acegisecurity-developer] Maven Build in CVS
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ben Alex Sent: Wednesday, June 09, 2004 1:52 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: [Acegisecurity-developer] Maven Build in CVS Thanks to Carlos Sanchez for providing an initial Maven build file. I've just checked it into CVS along with some required changes to library names. Would others running from CVS please check if this works. As previously stated, I haven't used Maven before. It seems to build the main JAR correctly, and I guess that's the main requirement for being added to iBiblio. It's not required to build the jar with maven, you have to provide a project.xml with at least dependencies, id, name, currentVersion and groupId. But if you use maven everything is easier ;) just check maven create-upload-bundle There is a common directory layout that I've seen in almost every maven project and you should consider althought is not mandatory. This improves readability of maven projects. src/java for java classes src/conf for resources src/test for test classes and test resources In project.properties there are lots of properties not needed by maven. Also those related to the build can be moved to build.properties (as debug=on) What is the best practise on which libraries we should be keeping in CVS now that we have a Maven build file? When you have tested that everything works with maven I suggest to remove those jars available at ibiblio (keep only those that I've sent you) Also I have guessed some version numbers, but if everything works that should be ok ;) Comments/feedback appreciated. Carlos, are you on the acegisecurity-developer list? Yes Luke, have you had a chance to look at running builds for Acegi Security alongside Spring as yet? Thanks Ben --- This SF.Net email is sponsored by: GNOME Foundation Hackers Unite! GUADEC: The world's #1 Open Source Desktop Event. GNOME Users and Developers European Conference, 28-30th June in Norway http://2004/guadec.org ___ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer --- This SF.Net email is sponsored by: GNOME Foundation Hackers Unite! GUADEC: The world's #1 Open Source Desktop Event. GNOME Users and Developers European Conference, 28-30th June in Norway http://2004/guadec.org ___ Acegisecurity-developer mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer