| 1234567891011121314151617181920 |
- [[new]]
- = What's New in Spring Security 6.0
- Spring Security 6.0 provides a number of new features.
- Below are the highlights of the release.
- == Breaking Changes
- * https://github.com/spring-projects/spring-security/issues/10556[gh-10556] - Remove EOL OpenSaml 3 Support.
- Use the OpenSaml 4 Support instead.
- * https://github.com/spring-projects/spring-security/issues/8980[gh-8980] - Remove unsafe/deprecated `Encryptors.querableText(CharSequence,CharSequence)`.
- Instead use data storage to encrypt values.
- * https://github.com/spring-projects/spring-security/issues/11520[gh-11520] - Remember Me uses SHA256 by default
- * https://github.com/spring-projects/spring-security/issues/8819 - Move filters to web package
- Reorganize imports
- * https://github.com/spring-projects/spring-security/issues/7349 - Move filter and token to appropriate packages
- Reorganize imports
- * https://github.com/spring-projects/spring-security/issues/11026[gh-11026] - Use `RequestAttributeSecurityContextRepository` instead of `NullSecurityContextRepository`
- * https://github.com/spring-projects/spring-security/pull/11887[gh-11827] - Change default authority for `oauth2Login()`
- * https://github.com/spring-projects/spring-security/issues/10347[gh-10347] - Remove `UsernamePasswordAuthenticationToken` check in `BasicAuthenticationFilter`
|
