-$Id: HISTORY,v 1.9 2002/12/17 15:12:49 maxcooper Exp $
-$Revision: 1.9 $
-$Date: 2002/12/17 15:12:49 $
+$Id: HISTORY,v 1.10 2003/01/06 05:05:48 maxcooper Exp $
+$Revision: 1.10 $
+$Date: 2003/01/06 05:05:48 $
- Security Filter v1.0-b5-dev
+ Security Filter v1.0-b5
======================================
http://securityfilter.sourceforge.net/
This document describes the history of the Security Filter project by lising the
changes made for each release.
-Changes since last release:
+Release 1.0-b5, 2003-Jan-05
===========================
+* Fixed sort order for "exact" pattern types:
+http://sourceforge.net/tracker/index.php?func=detail&aid=661261&group_id=59484&atid=491164
+
+* The default mapping / is now supported. This url-pattern will be tried last and will
+match any request:
+http://sourceforge.net/tracker/index.php?func=detail&aid=656697&group_id=59484&atid=491164
+
+* Matching is now tighter for j_security_check. If the request URI ends in
+"/j_security_check", that is a match:
+http://sourceforge.net/tracker/index.php?func=detail&aid=650835&group_id=59484&atid=491164
+
+* Requests for the login page and login error page are now allowed, even if the URL would
+otherwise be restricted by a security constraint:
+http://sourceforge.net/tracker/index.php?func=detail&aid=650833&group_id=59484&atid=491164
+
+* Old session is now invalidated when a user re-authenticates. The session is saved through
+an unauthenticated/authenticated transition, but is invalidated through an
+authenticated/authenticated transition:
+http://sourceforge.net/tracker/index.php?func=detail&aid=620772&group_id=59484&atid=491164
+
* SecurityFilter now encodes URLs on redirects:
https://sourceforge.net/tracker/index.php?func=detail&aid=655221&group_id=59484&atid=491164
* Fixed pattern matching thread safety issues:
http://sourceforge.net/tracker/index.php?func=detail&aid=650697&group_id=59484&atid=491164
-* Fixed pattern matching issues, including resolving patterns to the root of the URI:
+* Fixed pattern matching issues, including resolving patterns to the root of the URI:
http://sourceforge.net/tracker/index.php?func=detail&aid=638556&group_id=59484&atid=491164
-* Changed regular expression library from Jakarta-Regexp to Jakarta-ORO. A performance
-simulation test indicated that Jakarta-ORO Perl5 expressions offer the best performance for
-this application. The old implementation was verified to fail in multi-threaded environments,
+* Changed regular expression library from Jakarta-Regexp to Jakarta-ORO. A performance
+simulation test indicated that Jakarta-ORO Perl5 expressions offer the best performance for
+this application. The old implementation was verified to fail in multi-threaded environments,
and the new implementation technique has proven to be thread-safe.
-$Id: INSTALL,v 1.7 2002/12/17 15:13:17 maxcooper Exp $
-$Revision: 1.7 $
-$Date: 2002/12/17 15:13:17 $
+$Id: INSTALL,v 1.8 2003/01/06 05:05:48 maxcooper Exp $
+$Revision: 1.8 $
+$Date: 2003/01/06 05:05:48 $
- Security Filter v1.0-b5-dev
+ Security Filter v1.0-b5
======================================
http://securityfilter.sourceforge.net/
assumes it was extracted to C:\securityfilter).
* Add c:\securityfilter\lib\commons-logging.jar to the server CLASSPATH by
-editing the server start script. For example, add a line to startWebLogic.cmd
-after the set CLASSPATH line:
+editing the server start script. You must also remove the commons-logging.jar
+from the WEB-INF/lib directory of the app. For example, add a line to
+startWebLogic.cmd after the set CLASSPATH line:
set CLASSPATH=.;.\lib\weblogic_sp.jar;.\lib\weblogic.jar
# add commons-logging.jar to the classpath for securityfiltera applications
-$Id: README,v 1.12 2002/12/17 15:14:55 maxcooper Exp $
-$Revision: 1.12 $
-$Date: 2002/12/17 15:14:55 $
+$Id: README,v 1.13 2003/01/06 05:05:48 maxcooper Exp $
+$Revision: 1.13 $
+$Date: 2003/01/06 05:05:48 $
- Security Filter v1.0-b5-dev
+ Security Filter v1.0-b5
======================================
http://securityfilter.sourceforge.net/
projects / securityfilter.git / commitdiff