Disable anonymous auth for resource server

Support for Jackson2 in JdbcClientDetailsService

Add support for authorization code services in @Configuration

Ensure AccessDeniedException is thrown from expression handler
... otherwise the AccessDeniedHandler doesn't get a chance to send
the proper response and user just sees 500 status

Fixes gh-118

Fix potential duplicate token problem in JdbcTokenStore
It shouldn't happen in practice, but the JdbcTokenStore, since it
didn't check for the existence of a token with the same value
before doing an insert, might break confusingly later. I think
I would recommend a uniqueness constraint in the database anyway
but now we have a "last one wins" rule.

Fix potential duplicate token problem in JdbcTokenStore
It shouldn't happen in practice, but the JdbcTokenStore, since it
didn't check for the existence of a token with the same value
before doing an insert, might break confusingly later. I think
I would recommend a uniqueness constraint in the database anyway
but now we have a "last one wins" rule.

Add support for authorization code services in @Configuration

Support for Jackson2 in JdbcClientDetailsService

Ensure AccessDeniedException is thrown from expression handler
... otherwise the AccessDeniedHandler doesn't get a chance to send
the proper response and user just sees 500 status

Fixes gh-118

Disable anonymous auth for resource server

Created OAuth2ExpressionParser that automatically wraps a Spring Expression
... with a method that provides meaningful errors.

This allows Spring Security OAuth to check for errors and throw Excepions when an error occurs
while ensuring that the exception is only thrown when necessary. For example, if an expression
has an or statment we do not want to throw the Exception if only part of the expression is false.

Fixes gh-41, Fixes gh-118

Created OAuth2ExpressionParser that automatically wraps a Spring Expression
... with a method that provides meaningful errors.

This allows Spring Security OAuth to check for errors and throw Excepions when an error occurs
while ensuring that the exception is only thrown when necessary. For example, if an expression
has an or statment we do not want to throw the Exception if only part of the expression is false.

Fixes gh-41, Fixes gh-118

Remove unused @Suppress annotations

Fix XML validation

Add Jackson2 support for BaseClientDetails

Java 1.6 for JWT

Updgrade to Spring 4.0.3

Remove unused @Suppress annotations

Updgrade to Spring 4.0.3

Fix XML validation

Add Jackson2 support for BaseClientDetails

Java 1.6 for JWT

Ignore .springBeans

Ignore .springBeans

Tidy up build, removing unnecessary plugins
See gh-163

Tidy up build, removing unnecessary plugins
See gh-163

Update versions to 1.1.0

Fix javadoc error

Move gemstone repo declarations to samples

SECOAUTH-388: apply ClientCredentialsTokenEndpointFilter only if not already authenticated

BATCH-1950: Patch up build
* Ensure bundlor is available and remove from sample
* Tidy dependencies in some poms
* Update some template.mf dependencies
* Add .travis.yml for automated builds independent of bamboo

SECOAUTH-383: fix iterator logic for multi-valued parameters

Add javadocs for central release

SECOAUTH-383: fix iterator logic for multi-valued parameters

Fix some javadoc errors

Merge pull request #104 from mminella/BATCH-1667
* BATCH-1667:
  BATCH-1667: Update to update the StepExecution as the listener is being processed

BATCH-1667: Update to update the StepExecution as the listener is being processed

SECOAUTH-371: handle all client registration exceptions the same way

SECOAUTH-363: add old-style Pragma: no-cache to error responses

SECOAUTH-361: Allow user to inject AuthenticationDetailsSource into <oauth:resource-server/>
Also fixed TestOAuth2ClientContextFilter test case

SECOAUTH-360: Add Basic prefix to auth errors from token endpoint

Add support for handling AccountStatus exceptions (expired, locked).

Fix key error in implicit grant response (for additional info)

SECOAUTH-400: ensure implicit response is encoded

SECOAUTH-400: add integration test for scope in implicit grant

SECOAUTH-366: add optional filter for token endpoint

Fix broken integration test
Recent changes to the sparklr sample mean that it is using a vanilla
basic auth entry point for the token endpoint.

More defensive StepScope schlepping in tests

Defensively clear step context to prevent test failure

Defensively clear step context to prevent test failure

Add javadocs for central release

SECOAUTH-318: Add denyAll() catch all to token admin endpoints

SECOAUTH-361: Allow user to inject AuthenticationDetailsSource into <oauth:resource-server/>
Also fixed TestOAuth2ClientContextFilter test case

Merge pull request #76 from dsyer/BATCH-1913
* BATCH-1913:
  BATCH-1913: Add step builders

BATCH-1913: Add step builders

BATCH-1913: add javadocs and some more convenience methods

SECOAUTH-362: add toSTring() to auth details