Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 359454

Summary: Test upgrading to a newer version of Spring security (2.0.7)
Product: [Technology] Hudson Reporter: Duncan Mills <duncan.r.mills>
Component: CoreAssignee: Winston Prakash <winston.prakash>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: P3    
Version: unspecified   
Target Milestone: ---   
Hardware: All   
OS: All   
Whiteboard:

Description Duncan Mills CLA 2011-09-29 12:48:11 EDT 
The current version of Acegi is very old and we can't find the source code to upload.
Spring Security 2.0.7 has a requirement of the Spring 2.5 which is the version of spring we're using currently so that is the best fit.
Comment 1 Winston Prakash CLA 2011-10-20 13:11:09 EDT 
I've started looking at Spring Security 2.0.7 which is compatible with Spring Source 2.5.6

The package name has changed, wondering how it would affect plugins if they used acegi
Comment 2 Winston Prakash CLA 2011-10-20 21:20:03 EDT 
AcegiSecurity 1.0.1 is replaced with Spring Security 2.0.7. This involved modification to about 70 classes. I have not tested every permutation combination. Need more testing around this later.

http://git.eclipse.org/c/hudson/org.eclipse.hudson.core.git/commit/?id=f1a3880753e69e47fe7346dabf4833f3b3a7886c

This modification brings in total of three libraries

        <dependency>
            <groupId>org.springframework.security</groupId>
            <artifactId>spring-security-core</artifactId>
            <version>2.0.7</version>
        </dependency>
        <dependency>
            <groupId>org.springframework.security</groupId>
            <artifactId>spring-security-acl</artifactId>
            <version>2.0.7</version>
        </dependency>
        <dependency>
            <groupId>org.springframework.ldap</groupId>
            <artifactId>spring-ldap</artifactId>
            <version>1.2.1</version>
        </dependency>