Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Changed AuthorizeTag to use StringUtils.deleteAny(), instead of replace()

Luke Taylor 17 years ago
parent
a40bb11be3
commit
48620f3550
1 changed files with 1 additions and 4 deletions
Split View Show Diff Stats
  1. 1 4
      core/src/main/java/org/springframework/security/taglibs/authz/AuthorizeTag.java

+ 1 - 4
core/src/main/java/org/springframework/security/taglibs/authz/AuthorizeTag.java
View File 

@@ -151,10 +151,7 @@ public class AuthorizeTag extends TagSupport {
 
             // Remove the role's whitespace characters without depending on JDK 1.4+
 
             // Includes space, tab, new line, carriage return and form feed.
 
             String role = authority.trim(); // trim, don't use spaces, as per SEC-378
 
-            role = StringUtils.replace(role, "\t", "");
 
-            role = StringUtils.replace(role, "\r", "");
 
-            role = StringUtils.replace(role, "\n", "");
 
-            role = StringUtils.replace(role, "\f", "");
 
+            role = StringUtils.deleteAny(role, "\t\n\r\f");
 
 
             requiredAuthorities.add(new GrantedAuthorityImpl(role));
 
         }