Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Tree: c699f7d40e
Branches Tags
spring-security
/
doc
/
xdocs
/
upgrade
/
upgrade-080-090.html

upgrade-080-090.html 2.6 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546 
  1. <html>
    2. 

  2. <head>
    3. 

  3. <title>Acegi Security - Upgrading from version 0.8.0 to 1.0.0</title>
    4. 

  4. </head>
    5. 

  5. <body>
    6. 

  6. <h1>Upgrading from 0.8.0 to 1.0.0</h1>
    7. 

  7. 

  8. <p>
    9. 

  9. The following should help most casual users of the project update their
    10. 

  10. applications:
    11. 

  11. 

  12.     <ul>
    13. 

  13. 

  14.     <li>The most significant change in 0.9.0 is that <code>ContextHolder</code> and all of its
    15. 

  15.     related classes have been removed. This significant change was made for the sake of consistency
    16. 

  16.     with the core Spring project's approach of a single <code>ThreadLocal</code> per use case, 
    17. 

  17.     instead of a shared <code>ThreadLocal</code> for multiple use cases as the previous 
    18. 

  18.     <code>ContextHolder</code> allowed. <b>This is an important change in 0.9.0.</b> Many applications
    19. 

  19.     will need to modify their code (and possibly web views) if they directly interact with the old 
    20. 

  20.     <code>ContextHolder</code>. The replacement security <code>ThreadLocal</code> is called
    21. 

  21.     <a href="../multiproject/acegi-security/xref/net/sf/acegisecurity/context/SecurityContextHolder.html">
    22. 

  22.     SecurityContextHolder</a> and provides a single getter/setter for a
    23. 

  23.     <a href="../multiproject/acegi-security/xref/net/sf/acegisecurity/context/SecurityContextHolder.html">SecurityContext</a>.
    24. 

  24.     <code>SecurityContextHolder</code> guarantees to never return a <cod>null</code> <code>SecurityContext</code>.
    25. 

  25.     <code>SecurityContext</code> provides single getter/setter for <code>Authentication</code>.<BR><BR>
    26. 

  26.     
    27. 

  27.     To migrate, simply modify all your code that previously worked with <code>ContextHolder</code>,
    28. 

  28.     <code>SecureContext</code> and <code>Context</code> to directly call <code>SecurityContextHolder</code>
    29. 

  29.     and work with the <code>SecurityContext</code> (instead of the now removed <code>Context</code>
    30. 

  30.     and <code>SecureContext</code> interfaces).<br><br>
    31. 

  31.     
    32. 

  32.     We apologise for the inconvenience, but on a more positive note this means you receive strict
    33. 

  33.     type checking, you no longer need to mess around with casting to and from <code>Context</code>
    34. 

  34.     implementations, your applications no longer need to perform checking of <code>null</code> and
    35. 

  35.     unexpected <code>Context</code> implementation types, and the new <code>SecurityContextHolder</code>
    36. 

  36.     is an <code>InheritableThreadLocal</code> - which should make life easier in rich client 
    37. 

  37.     environments.<br><br></li>
    38. 

  38. 

  39.     <li>AbstractProcessingFilter has changed its getter/setter approach used for customised
    40. 

  40.     authentication exception directions. See the <a href="../multiproject/acegi-security/xref/net/sf/acegisecurity/ui/AbstractProcessingFilter.html">
    41. 

  41.     AbstractProcessingFilter JavaDocs</a> to learn more.<br><br></li>
    42. 

  42.     
    43. 

  43.     </ul>
    44. 

  44. 

  45. </body>
    46. 

  46. </html>
    47.