On Thu, 23 Sep 2004 22:57:38 -0700, March, Andres wrote
+1 for Apache guidelines
And +1 for a 1.0 release after a maven build is implemented
+1 to what he said :-) .
Scott
---
This SF.Net email is sponsored by: YOU BE THE JUDGE. Be
On Fri, 24 Sep 2004 13:53:12 +0100, App Fuse mailing list wrote
hi all,
I'm just starting to learn about acegisecurity. I've been looking
at the archive and was just wondering what the current status of:
Instance security in .61
Documentation on the above.
Example applications/code
Ben,
Just curious - what's your approach towards an eventual 1.0 release? I
ask because technical managers, architecture review boards, etc. can
misinterpret sub-1.0 versions as unstable, whereas even Acegi 0.6 most
certainly is not!
Thanks in advance,
Scott
Ben,
Excellent, sounds like a well thought-out plan towards 1.0.
I'd recommend an in-between approach for the container adapters. I
agree that including lightly-used, non-portable modules in the main
distribution can lead to expectations that they be maintained as fully as the
core.
On Thu, 30 Dec 2004 15:13:18 -0500, Matt Raible wrote
Finally, the status of the project is up for discussion. I met Rod a
few days back and we briefly discussed making Acegi Security a formal
Spring subproject. This, coupled with a 1.0.0+ version number, would
make some people and
On Mon, 28 Feb 2005 21:56:34 -0500, Dmitriy Kopylenko wrote
Ben,
so what's the story with Spring subproject?
+999 :-)
---
SF email is sponsored by - The IT Product Guide
Read honest candid reviews on hundreds of IT Products from real
On Wed, 20 Apr 2005 23:19:05 +1000, Ben Alex wrote
In terms of your other email's suggestion to use a SecurityContext
ThreadLocal instead of ContextHolder, I've given this some more
thought and we can do this and still offer a clean migration path
for 99% of existing ContextHolder users.
I'm not using it to this extent, but the logic sounds good to me :-)
Scott
On Sat, 07 May 2005 17:33:34 -0400, Colin Sampaleanu wrote
Colin Sampaleanu wrote:
Ben Alex wrote:
Pursuant to Juergen's recommendation
(http://article.gmane.org/gmane.comp.java.springframework.devel/8290),
On Tue, 12 Jul 2005 08:13:09 -1000, Seth Ladd wrote
Luckily the security fix is available for Acegi 0.7.x. That's still
compatible with Spring 1.1.x.
True, but that's a stiff downgrade from 0.8.1, especially considering the
filter changes.
Scott
On Wed, 13 Jul 2005 08:28:18 +1000, Ben Alex wrote
Just for the record, 0.8.2 was motivated as many people were happily
on 0.8.1 but then Spring 1.2 came out and this broke Acegi Security
0.8.1. The majority of the community wanted 0.8.2 to be released
ASAP which supports Spring 1.2.
On Wed, 13 Jul 2005 12:49:24 +1000, Ben Alex wrote
Scott McCrory wrote:
In short, I'd be just a tiny voice asking for Spring 1.2+ to maintain JDK
1.3 compatability, but is it too late to decouple Acegi from Spring 1.2+?
I'll move this to the Spring Developers mailing list, as it's
On Wed, 13 Jul 2005 12:49:24 +1000, Ben Alex wrote
Scott McCrory wrote:
In short, I'd be just a tiny voice asking for Spring 1.2+ to maintain JDK
1.3 compatability, but is it too late to decouple Acegi from Spring 1.2+?
I'll move this to the Spring Developers mailing list, as it's
On Fri, 15 Jul 2005 07:37:54 +1000, Ben Alex wrote
We should make a list of SSO implementations we want to provide
pluggable interoperability for. JOSSO, CAS, OpenSSO - are there any
others we can get access to that people need?
I can provide help with Siteminder integration if desired.
On Mon, 25 Jul 2005 12:17:29 +1000, Ben Alex wrote
Hi everyone
Now that we've got 14 developers with CVS rights, and we've recently
introduced JIRA, I wish to propose some project management {...}
These are good and I'd recommend converting it into a new developer's guide
or orientation
Oliver,
You were absolutely right - it's an IBM JDK 1.3 issue. I can't post to the
developer group from work right now, so could you forward this for me?
I started WSAD 5.1 and its Websphere 5.0's test environment in run mode
(debug disabled) and everything ran fine with 0.9.0-SNAPSHOT, but
Quoting Ben Alex [EMAIL PROTECTED]:
Ben Alex wrote:
I'd prefer to avoid multiple releases floating around. We should
revert back to a standard ThreadLocal and not an
InheritableThreadLocal and release 0.9.0. Does anyone really
require
InheritableThreadLocal behaviour?
I've checked in the
I'm not using JSF, but this sounds pretty cool, so I'll bump it for
other's attention :-)ScottQuoting Cagatay Civici
[EMAIL PROTECTED]: Hi, I've
created custom components to bring Acegi support to the JSF Framework. I've mapped Acegi's JSP tags authorize and authentication to JSF as components.
I've never seen Siteminder used to protect client-side apps because we've
always used it as a server-side ISAPI filter or Apache module. I'd recommend
first checking with Siteminder to see what their solutions are for rich client
apps, then once you know the mechanism of how the user's identity
Paul,I don't extend SiteminderAuthenticationProcessingFilter and
override the requiresAuthentication() method because every one of my protected
action classes first checks to see if the user is authenticated (i.e. has an
security context holder) before processing the request. I do this by calling
Ben all,
I don't see any items that I'd be able to tackle, so if others feel
the same way, I'd suggest moving them to 1.0.1 or
1.1.0.
Scott
Quoting Ben Alex [EMAIL PROTECTED]:
Hi everyone
I would like to release 1.0.0 final on Friday 26 May. All JIRA issues
assigned to me are now
Carlos Sanchez wrote:
Sorry it wasn't spotted earlier. Perhaps we should change the Spring
maven dependency back to 1.2.8 to detect this kind of thing?
That's what i suggested some time ago. In fact for now only 1.2.7 is in
ibiblio.
Wouldn't that subsequently mean that Spring 2.x
One word - AppFuse: http://raibledesigns.com/wiki/Wiki.jsp?page=AppFuse
Scott
Diosmani Merino Hechavarría wrote:
I need integrate asegi, myfaces, spring and hibernate. Who can help me to do
it? I need to know what librarys I can use?
Thanks.
I think your reasoning is sound...!
Scott
Luke Taylor wrote:
I agree that reusability is important but I'm not convinced that these
changes are justified on this basis, or that is just about balancing
reusability and ease of use. The use of constructor arguments is about
guaranteeing that
Excellent add-on points, Ray. Resonates with me too.
Scott
Ray Krueger wrote:
Well put...
Dual jars covers both camps.
I spend 85% of my day in mentor mode for Spring, Hibernate, and Acegi.
So your people are time poor comment really swung my vote heh.
On 8/28/06, Ben Alex [EMAIL
Ben Alex wrote:
Could other developers please finalize their 1.0.2-related tasks (see
http://opensource.atlassian.com/projects/spring/secure/BrowseProject.jspa).
Ben, I'd like to get the Siteminder improvements noted in SEC-319 in
with the 1.0.2 release if permissible. The fix version was
Ben Alex wrote:
Hi Scott
As we're now post-1.0.0, it's important that we follow the APR
versioning guidelines which state that patch releases (ie 1.0.x) should
be binary and source compatible with previous releases in that series.
In other words, people should be able to simply drop in the
Garvey, Paul M (GE Comm Fin) wrote:
Ben,
what are the Siteminder improvements?
- Paul
SEC-319:
http://opensource.atlassian.com/projects/spring/browse/SEC-319
Scott
-
Take Surveys. Earn Cash. Influence the Future
Although not listed below, I went ahead and reverted the Siteminder
filter to the 1.0.1 version so that backward compatibility could be
preserved. I'll resolve SEC-319 in 1.1.0.
Scott (McCrory)
Ben Alex wrote:
Hi everyone
23 issues are now resolved, with 3 more still outstanding
Carlos Sanchez wrote:
I suggest copying trunk to branches/1.0.x and roll it back from there
Work keeps going in trunk merging all bugfixes to 1.0.x branch as soon
as they are committed.
New features go to trunk only.
That way we can release new features in 1.1 while still porting
bugfixes
Jose Luis Huertas Fernández wrote:
Hi everybody,
I was thinking about developing a new module to integrate Acegi with
OpenSSO (https://opensso.dev.java.net/) in a similar way that the
existing CAS integration.
I think I have a good understanding of Acegi and I have successfully
used it
Carlos Sanchez wrote:
Hi,
I'd like to remove the Maven 1 build completely because now we are
half way. Samples for instance don't build with maven 2.
AFAIK there's still some things that need work in Maven 2, like the
docbook generation, please raise any concerns, and things that still
Arturo San Feliciano Martín wrote:
Hi,
It´s posible to make acegi work in a application server that uses Servlet
2.3 Specification?
Thanks
Arturo San Feliciano Martín
Yes.
-
This SF.net email is sponsored
Is Joao looking for a Roadmap document for 2.x?
Scott
Shi Lei wrote:
I think the latest version is 1.0.5.
On 10/16/07, *João Kreuzberg* [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] wrote:
Hi guys,
Is there any documentation for Acegi Security 2.x, in terms of
Or does he mean to get a list of users currently on his system (i.e.
with active HTTP Sessions)?
If so, Matt Raible wrote a very nice UserCounterListener that did the
trick nicely for me:
http://raibledesigns.com/downloads/appfuse/api/org/appfuse/webapp/listener/UserCounterListener.java.html
34 matches
Mail list logo