summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Kai Moritz [Fri, 22 Jan 2016 10:08:05 +0000 (11:08 +0100)]
Authentication through the canvas-attribute signed_request
Kai Moritz [Mon, 25 Jan 2016 01:23:20 +0000 (02:23 +0100)]
Refactored authorization from HomeController to UserCookieInterceptor
The educationally authorization-concept now roughly resembles the behavior
of Spring-Security.
Kai Moritz [Mon, 25 Jan 2016 01:18:47 +0000 (02:18 +0100)]
Sign in users via Facebook and sign up new users automatically
Kai Moritz [Mon, 25 Jan 2016 01:01:28 +0000 (02:01 +0100)]
Implemented a simple UserIdSource, that stores the user in a cookie
This concept was borrowed from the official example "Spring Social Canvas".
The idea to store the internal user-id in a cookie and later load the data
of the user according to the cookie is inherent insecure and must not be
used in a production environment.
One simply can use Spring-Security instead - we will show how to switch in
a later example.
This implementation was choosen only for educational purposes, because it
clarifys the design of Spring Social.
Kai Moritz [Fri, 22 Jan 2016 09:19:53 +0000 (10:19 +0100)]
Make Spring-Boot's implicit autoconfiguration explicit
Kai Moritz [Mon, 25 Jan 2016 00:07:32 +0000 (01:07 +0100)]
Moved Thymeleaf-templates to src/main/webapp to enable hot reload
See http://juplo.de/fix-hot-reload-of-thymeleaf-templates-in-spring-bootrun/
Kai Moritz [Thu, 21 Jan 2016 15:58:46 +0000 (16:58 +0100)]
Added a second page to proof, that the connection is persisted
Kai Moritz [Fri, 15 Jan 2016 16:30:00 +0000 (17:30 +0100)]
Authenticate against Facebook
Based on the "Getting Started"-example:
http://spring.io/guides/gs/accessing-facebook/