Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Tree: 3009bdb2f9
Branches Tags
spring-security
/
docs
/
modules
/
ROOT
/
pages
/
migration
/
reactive.adoc

reactive.adoc 3.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 
  1. = Reactive
    2. 

  2. 

  3. If you have already performed the xref:migration/index.adoc[initial migration steps] for your Reactive application, you're now ready to perform steps specific to Reactive applications.
    4. 

  4. 

  5. == Use `AuthorizationManager` for Method Security
    6. 

  6. 

  7. In 6.0, `@EnableReactiveMethodSecurity` defaults `useAuthorizationManager` to `true`.
    8. 

  8. So, to complete migration, {security-api-url}org/springframework/security/config/annotation/method/configuration/EnableReactiveMethodSecurity.html[`@EnableReactiveMethodSecurity`] remove the `useAuthorizationManager` attribute:
    9. 

  9. 

  10. ====
    11. 

  11. .Java
    12. 

  12. [source,java,role="primary"]
    13. 

  13. ----
    14. 

  14. @EnableReactiveMethodSecurity(useAuthorizationManager = true)
    15. 

  15. ----
    16. 

  16. 

  17. .Kotlin
    18. 

  18. [source,kotlin,role="secondary"]
    19. 

  19. ----
    20. 

  20. @EnableReactiveMethodSecurity(useAuthorizationManager = true)
    21. 

  21. ----
    22. 

  22. ====
    23. 

  23. 

  24. changes to:
    25. 

  25. 

  26. ====
    27. 

  27. .Java
    28. 

  28. [source,java,role="primary"]
    29. 

  29. ----
    30. 

  30. @EnableReactiveMethodSecurity
    31. 

  31. ----
    32. 

  32. 

  33. .Kotlin
    34. 

  34. [source,kotlin,role="secondary"]
    35. 

  35. ----
    36. 

  36. @EnableReactiveMethodSecurity
    37. 

  37. ----
    38. 

  38. ====
    39. 

  39. 

  40. == Propagate ``AuthenticationServiceException``s
    41. 

  41. 

  42. {security-api-url}org/springframework/security/web/server/authentication/AuthenticationWebFilter.html[`AuthenticationWebFilter`] propagates {security-api-url}org/springframework/security/authentication/AuthenticationServiceException.html[``AuthenticationServiceException``]s to the {security-api-url}org/springframework/security/web/server/ServerAuthenticationEntryPoint.html[`ServerAuthenticationEntryPoint`].
    43. 

  43. Because ``AuthenticationServiceException``s represent a server-side error instead of a client-side error, in 6.0, this changes to propagate them to the container.
    44. 

  44. 

  45. So, if you opted into this behavior by setting `rethrowAuthenticationServiceException` too `true`, you can now remove it like so:
    46. 

  46. 

  47. ====
    48. 

  48. .Java
    49. 

  49. [source,java,role="primary"]
    50. 

  50. ----
    51. 

  51. AuthenticationFailureHandler bearerFailureHandler = new ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint);
    52. 

  52. bearerFailureHandler.setRethrowAuthenticationServiceException(true);
    53. 

  53. AuthenticationFailureHandler basicFailureHandler = new ServerAuthenticationEntryPointFailureHandler(basicEntryPoint);
    54. 

  54. basicFailureHandler.setRethrowAuthenticationServiceException(true);
    55. 

  55. ----
    56. 

  56. 

  57. .Kotlin
    58. 

  58. [source,kotlin,role="secondary"]
    59. 

  59. ----
    60. 

  60. val bearerFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint)
    61. 

  61. bearerFailureHandler.setRethrowAuthenticationServiceException(true)
    62. 

  62. val basicFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(basicEntryPoint)
    63. 

  63. basicFailureHandler.setRethrowAuthenticationServiceException(true)
    64. 

  64. ----
    65. 

  65. ====
    66. 

  66. 

  67. changes to:
    68. 

  68. 

  69. ====
    70. 

  70. .Java
    71. 

  71. [source,java,role="primary"]
    72. 

  72. ----
    73. 

  73. AuthenticationFailureHandler bearerFailureHandler = new ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint);
    74. 

  74. AuthenticationFailureHandler basicFailureHandler = new ServerAuthenticationEntryPointFailureHandler(basicEntryPoint);
    75. 

  75. ----
    76. 

  76. 

  77. .Kotlin
    78. 

  78. [source,kotlin,role="secondary"]
    79. 

  79. ----
    80. 

  80. val bearerFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint)
    81. 

  81. val basicFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(basicEntryPoint)
    82. 

  82. ----
    83. 

  83. ====
    84. 

  84. 

  85. [NOTE]
    86. 

  86. ====
    87. 

  87. If you configured the `ServerAuthenticationFailureHandler` only for the purpose of updating to 6.0, you can remove it completely.
    88. 

  88. ====
    89.