This is an automated email from the ASF dual-hosted git repository.
rombert pushed a change to annotated tag org.apache.sling.auth.form-1.0.2
in repository
https://gitbox.apache.org/repos/asf/sling-org-apache-sling-auth-form.git.
at cdadb1a (tag)
tagging ed58e47108a960394972b121a59422312e7ff810 (commit)
by Carsten Ziegeler
on Wed Dec 15 15:52:39 2010 +0000
- Log -----------------------------------------------------------------
org.apache.sling.auth.form-1.0.2
-----------------------------------------------------------------------
This annotated tag includes the following new commits:
new f467e0e SLING-1116 Initial Version based on Eric Norman's patch
(thanks alot)
new 8b679bf SLING-1116 cleanup dependencies
new a0fcd1a SLING-1116 Implement support for the j_validate login form
parameter and add support to convey a reason to render the login form using the
j_reason request parameter for the login form request
new 44c5ccd SLING-1116 Fix service description
new a812358 SLING-1116 Ensure the FormLoginModulePlugin is actually
registered as a service (otherwise authenticaiton may fail). Also the resource
attribute is set in the extractRequestParameterAuthentication method to ensure
a redirect takes place after successful login
new 0a41f41 SLING-1380 Do not return anything from getPrincipal to allow
DefaultLoginModule.getPrincipal to kick in and validate the user name against
the existing users (and also to provide the correct principal for the user)
new a25ef67 SLING-1116 make sure the login form action is an absolute path
new 33e89b6 SLING-1419 : Remove dependency to JCR
new 64b2394 SLING-1498 - saving resource being requested
new 0a8abcc SLING-1497 - adding tentative configuration for configuring
service.ranking via ConfigAdmin/Metatype
new 1cb242e forgot that maven 3 dropped support for latest. oh well, new
scr plugin should be released rsn
new 6b812d8 Use released parent pom.
new 4e10552 SLING-1116 Improve FormReason to convey the human-readable
message by toString()
new 217e197 SLING-1565 Move private implementation classes to the impl
package and export the o.a.s.formauth package for login forms to be able to
interpret the j_reason value with the FormReason enum.
new a606003 SLING-1565 - need to move the login form as well to be in the
same package as the servlet
new d5ecfb9 SLING-1564 - adding support for form inclusion as well as
custom form pages via fragments
new 196a11f SLING-1587 - file name wasn't being logged
new d3222a7 SLING-1575 Adapt Form and OpenID authentication handler to
use new abstract form servlet and authentication handler
new 531e943 SLING-1575 Add @scr.service tag for login form servlets and
fully qualify path property definition in the authentication handler
new 03ed695 Remove unneeded (and commented out) version element
new 99b1053 SLING-1588 Fixed, cookie needs to be removed when found to be
invalid.
new d24ad09 SLING-1614 Added config settings that allow a login form to
be re-displayed when the login token expires, by default the login form is not
displayed on expiry, on the basis that it was not displayed by default when the
anon user first came to the site.
new e561eda SLING-1614 Added missing property name and metatype text.
new 008d39d SLING-1647 Set handler specific properties in the
AuthenticationInfo instead of the credentials. The properties will be
transferred to the session by the ResourceResolverFactory implementation
new bdb9503 SLING-1650 Consolidate authentication stuff in a new auth
component; * rename commons/auth to auth/core * rename extensions/formauth to
auth/form * rename extensions/openidauth to auth/openid
new f4f4bfc SLING-1650 Refactor auth/core, auth/form, auth/openid for the
new packages identifying the auth component and refer to the new auth/core for
the authentication handlers.
new 5ba6c25 SLING-1650 Remove old packages; make sure the login.html form
source is in the correct (new) location
new 9946c7c Set JIRA version id and fix JavaDoc exclusions
new dc98910 Update to Sling API 2.1.0
new af26b77 use Auth Core 1.0.0 to prepare the release
new 9e52b4e [maven-release-plugin] prepare release
org.apache.sling.auth.form-1.0.0
new 00fad8b [maven-release-plugin] prepare for next development iteration
new f045f34 Use previous Auth Core SNAPSHOT until after release
new 11448fa SLING-1695 - set the cookie domain either by a config admin
property or using a key within the AuthenticationInfo object
new aee24d0 SLING-1714 Convert @scr JavaDoc tags to SCR annotations
new acc1f6b SLING-1714 Metatype descriptor generation is not enabled by
default for annotations
new 2574aa6 SLING-1722 Do not embed StringUtils class but import the
Commons Lang package
new 1bf2250 SLING-1721 Use no cookie domain if the configured (or
requested) cookie domain is an empty string
new 18d11b7 SLING-1729 Provide a simple and faster alternative to the
default SecureRandom seeding. This might be of interest mostly for the Linux
and Solaris platforms which seed SecureRandom from the blocking /dev/random by
default.
new 4d1d59e SLING-1729 Emit a log message if regular SecureRandom seeding
is used
new ebdcfd7 Use released version of auth/core dependency
new 93fe53e SLING-1744 Split the authentication data into exactly three
fields leaving any excess field separators in the user name field thus
supporting user names with @ signs such as email addresses.
new dc0a50e SLING-1752 Unify resource attribute/parameter setting and
default value handling
new e633f47 Revert changes from commit 996477 which are not intended to
go into that commit (relative to handling auth failures for XHR requests and
handling the cookie)
new bfe05c2 SLING-1762 Add the HttpOnly attribute to setting the
authentication cookie to make sure the cookie is not available to client side
JavaScript. Also, when extracting the authentication data from the cookie
ignore empty values.
new 1e178f5 SLING-1783 Make the use of the j_reason request attribute to
inform about failures for authentication official
new b087302 Don't quote cookie value and attributes
new 8a77e54 SLING-1785 Use new redirect helper method of tha
AbstractAuthenticationHandler
new e4d4eff SLING-1428 Reimplement full j_validate functionality: Send a
403 response if either the provided cookie value is invalid or if the provided
user name and password cannot be used to login. Created methods to actually
send back the success or failure responses for validation requests.
new 888cdb3 SLING-1428 Implement generalized support for validating
credentials supplied by a request using the j_validate request parameter.
new 64b8cf5 updating all modules to parent 10-SNAPSHOT in anticipation of
emma additions to parent
new 8972039 SLING-1869 - upgrading to latest SCR plugin and putting
scr.annotations in parent
new ad83c4f Update to recent snapshots
new 09f89ed Use latest releases.
new ef7843d Prepare releases
new 17bfd16 [maven-release-plugin] prepare release
org.apache.sling.auth.form-1.0.2
new ed58e47 [maven-scm] copy for tag org.apache.sling.auth.form-1.0.2
The 57 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
--
To stop receiving notification emails like this one, please contact
['"[email protected]" <[email protected]>'].
