| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100 |
- = Reactive
- If you have already performed the xref:migration/index.adoc[initial migration steps] for your Reactive application, you're now ready to perform steps specific to Reactive applications.
- == Use `AuthorizationManager` for Method Security
- In 6.0, `@EnableReactiveMethodSecurity` defaults `useAuthorizationManager` to `true`.
- So, to complete migration, {security-api-url}org/springframework/security/config/annotation/method/configuration/EnableReactiveMethodSecurity.html[`@EnableReactiveMethodSecurity`] remove the `useAuthorizationManager` attribute:
- [tabs]
- ======
- Java::
- +
- [source,java,role="primary"]
- ----
- @EnableReactiveMethodSecurity(useAuthorizationManager = true)
- ----
- Kotlin::
- +
- [source,kotlin,role="secondary"]
- ----
- @EnableReactiveMethodSecurity(useAuthorizationManager = true)
- ----
- ======
- changes to:
- [tabs]
- ======
- Java::
- +
- [source,java,role="primary"]
- ----
- @EnableReactiveMethodSecurity
- ----
- Kotlin::
- +
- [source,kotlin,role="secondary"]
- ----
- @EnableReactiveMethodSecurity
- ----
- ======
- == Propagate ``AuthenticationServiceException``s
- {security-api-url}org/springframework/security/web/server/authentication/AuthenticationWebFilter.html[`AuthenticationWebFilter`] propagates {security-api-url}org/springframework/security/authentication/AuthenticationServiceException.html[``AuthenticationServiceException``]s to the {security-api-url}org/springframework/security/web/server/ServerAuthenticationEntryPoint.html[`ServerAuthenticationEntryPoint`].
- Because ``AuthenticationServiceException``s represent a server-side error instead of a client-side error, in 6.0, this changes to propagate them to the container.
- So, if you opted into this behavior by setting `rethrowAuthenticationServiceException` too `true`, you can now remove it like so:
- [tabs]
- ======
- Java::
- +
- [source,java,role="primary"]
- ----
- AuthenticationFailureHandler bearerFailureHandler = new ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint);
- bearerFailureHandler.setRethrowAuthenticationServiceException(true);
- AuthenticationFailureHandler basicFailureHandler = new ServerAuthenticationEntryPointFailureHandler(basicEntryPoint);
- basicFailureHandler.setRethrowAuthenticationServiceException(true);
- ----
- Kotlin::
- +
- [source,kotlin,role="secondary"]
- ----
- val bearerFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint)
- bearerFailureHandler.setRethrowAuthenticationServiceException(true)
- val basicFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(basicEntryPoint)
- basicFailureHandler.setRethrowAuthenticationServiceException(true)
- ----
- ======
- changes to:
- [tabs]
- ======
- Java::
- +
- [source,java,role="primary"]
- ----
- AuthenticationFailureHandler bearerFailureHandler = new ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint);
- AuthenticationFailureHandler basicFailureHandler = new ServerAuthenticationEntryPointFailureHandler(basicEntryPoint);
- ----
- Kotlin::
- +
- [source,kotlin,role="secondary"]
- ----
- val bearerFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(bearerEntryPoint)
- val basicFailureHandler: AuthenticationFailureHandler = ServerAuthenticationEntryPointFailureHandler(basicEntryPoint)
- ----
- ======
- [NOTE]
- ====
- If you configured the `ServerAuthenticationFailureHandler` only for the purpose of updating to 6.0, you can remove it completely.
- ====
|
