Эхлэл Бүгдийг харах Тусламж
Бүртгүүлэх Нэвтрэх
github
/
spring-security
-ын хуулбар https://github.com/spring-projects/spring-security
2
0
Салаа 0
Файлууд Асуудлууд 0 Мэдлэгийн сан
Мод: 8b9f02e2e7
Салаанууд Тагууд
spring-security
/
upgrade-05-06.txt

upgrade-05-06.txt 2.0 KB
Түүх Анхны өгөгдөл

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647 
  1. ===============================================================================
    2. 

  2.           ACEGI SECURITY SYSTEM FOR SPRING - UPGRADING FROM 0.5 TO 0.6
    3. 

  3. ===============================================================================
    4. 

  4. 

  5. The following should help most casual users of the project update their
    6. 

  6. applications:
    7. 

  7. 

  8. - Locate and remove all property references to 
    9. 

  9.   DaoAuthenticationProvider.key and 
    10. 

  10.   DaoAuthenticationProvider.refreshTokenInterval.
    11. 

  11. 

  12. - If you are using DaoAuthenticationProvider and either (i) you are using
    13. 

  13.   container adapters or (ii) your code relies on the Authentication object
    14. 

  14.   having its getPrincipal() return a String, you must set the new
    15. 

  15.   DaoAuthenticationProvider property, forcePrincipalAsString, to true.
    16. 

  16.   By default DaoAuthenticationProvider returns an Authentication object
    17. 

  17.   containing the relevant User, which allows access to additional properties.
    18. 

  18.   Where possible, we recommend you change your code to something like this,
    19. 

  19.   so that you can leave forcePrincipalAsString to the false default:
    20. 

  20.   
    21. 

  21.     String username = authentication.getPrincipal();
    22. 

  22.     if (authentication.getPrincipal() instanceof User) {
    23. 

  23.       username = ((User) authentication.getPrincipal()).getUsername();
    24. 

  24.     }
    25. 

  25. 

  26. - The signature of AuthenticationDaos have changed. In concrete
    27. 

  27.   implementations, modify the User to UserDetails, as shown below:
    28. 

  28. 

  29.     public User loadUserByUsername(String username)
    30. 

  30.         throws UsernameNotFoundException, DataAccessException {
    31. 

  31. 

  32.     to:
    33. 

  33.   
    34. 

  34.     public UserDetails loadUserByUsername(String username)
    35. 

  35.         throws UsernameNotFoundException, DataAccessException {
    36. 

  36. 

  37.   Existing concrete implementations would be returning User, which implements
    38. 

  38.   UserDetails, so no further code changes should be required.
    39. 

  39. 

  40. - Similar signature changes (User -> UserDetails) are also required to any
    41. 

  41.   custom implementations of UserCache and SaltSource.
    42. 

  42. 

  43. - Any custom event listeners relying on AuthenticationEvent should note a
    44. 

  44.   UserDetails is now provided in the AuthenticationEvent (not a User).
    45. 

  45. 

  46. 

  47. $Id$
    48.