grails-spring-security-core
grails-spring-security-core copied to clipboard
grails
Grails Spring Security Core Plugin
I know we can manually use withForm() on each post/put/delete/patch method in every controller, but it would be great to have a Filter option for CSRF to take care of...
It would be handy to also support (+) on JOINED_FILTERS, e.g. for BasicAuth on a url-pattern, otherwise you need to state the whole default filter chain, or need to add...
user->group->role validation fails and user cant be validated - defect in code plugin code I think
i think there is a bug in GormUserDetailsService.groovy:92, in the V3.1.1 plugin i'm using. I noted this on stackoverflow here [stackoverlow ref ](http://stackoverflow.com/questions/42460249/bug-in-grails-spring-security-when-using-user-groups-and-roles-cant-authentic). essentially i wanted to use user groups...
Original Reporter: confile Environment: grails 2.2.4 Version: Grails-Spring-Security-Core 1.2.7.3 Migrated From: http://jira.grails.org/browse/GPSPRINGSECURITYCORE-232 I am not sure if this issue belongs to spring security but the stack trace shows a lot...
Original Reporter: rogovskiy Environment: Not Specified Version: Grails-Spring-Security-Core 2.0 Migrated From: http://jira.grails.org/browse/GPSPRINGSECURITYCORE-203 Our application has 400 roles. If you look at the performance numbers in profiler you can see that...
Original Reporter: daniel_henrique Environment: Not Specified Version: Not Specified Migrated From: http://jira.grails.org/browse/GPSPRINGSECURITYCORE-30 When requesting http(s)://host/mywebapp/, InterceptUrlMapFilterInvocationDefinition.determineUrl() produce different results for Tomcat and Weblogic. This behavior can be observed using a...
Original Reporter: burtbeckwith Environment: Not Specified Version: Not Specified Migrated From: http://jira.grails.org/browse/GPSPRINGSECURITYCORE-184
Original Reporter: christianjunk Environment: Not Specified Version: Grails-Spring-Security-Core 2.0 Migrated From: http://jira.grails.org/browse/GPSPRINGSECURITYCORE-252 In order to achieve the stateless authentication with Spring please support _create-session="stateless"_. The option was introduced in Spring...
Original Reporter: burtbeckwith Environment: Not Specified Version: Not Specified Migrated From: http://jira.grails.org/browse/GPSPRINGSECURITYCORE-213
Original Reporter: steven_a_s Environment: Not Specified Version: Grails-Spring-Security-Core 1.2.7.3 Migrated From: http://jira.grails.org/browse/GPSPRINGSECURITYCORE-228 After setting the useX509 flag to true, users that attempt to access the site without a certificate with...