Home Verkennen Help
Registreren Inloggen
github
/
spring-security
spiegel van https://github.com/spring-projects/spring-security
2
0
Vork 0
Bestanden Issues 0 Wiki
Boom: fabca162a7
Aftakkingen Labels
spring-security
/
doc
/
xdocs
/
upgrade
/
upgrade-070-080.html

upgrade-070-080.html 2.3 KB
Geschiedenis Ruwe

12345678910111213141516171819202122232425262728293031323334353637383940414243444546 
  1. <html>
    2. 

  2. <head>
    3. 

  3. <title>Acegi Security - Upgrading from version 0.7.0 to 0.8.0</title>
    4. 

  4. </head>
    5. 

  5. <body>
    6. 

  6. <h1>Upgrading from 0.7.0 to 0.8.0</h1>
    7. 

  7. 

  8. <p>
    9. 

  9. The following should help most casual users of the project update their
    10. 

  10. applications:
    11. 

  11. 

  12.     <ul>
    13. 

  13. 

  14.     <li>HttpSessionIntegrationFilter has been removed. Use net.sf.acegisecurity.context.HttpSessionContextIntegrationFilter instead. 
    15. 

  15.     Note you will need to set the mandatory "context" property to something like "net.sf.acegisecurity.context.security.SecureContextImpl".
    16. 

  16.     It's not the default because we want no dependencies between the context package and the rest of Acegi Security.<br><br></li>
    17. 

  17.     
    18. 

  18. 	<li>Filter ordering has changed. See the reference guide for confirmation of the correct ordering. Basically you should have
    19. 

  19. 	HttpSessionContextIntegrationFilter appear before any of your authentication mechanisms.<br><br></li>
    20. 

  20.     
    21. 

  21. 	<li>IoC container hosted filter chains can now be used instead of lengthy web.xml declarations. See the reference guide or the
    22. 

  22. 	Contacts Sample for further information.<br><br></li>
    23. 

  23. 

  24. 	<li>Certain classes have been moved to new packages: ContextHolderAwareRequestWrapper (and its filter),
    25. 

  25. 	AuthenticationSimpleHttpInvokerRequestExecutor, ContextPropagatingRemoteInvocation,
    26. 

  26. 	SecureContext (and its implementation). These classes were moved as part of refactorings aimed at
    27. 

  27. 	improving the simplicity of the project's design.<br><br></li>
    28. 

  28. 

  29. 	<li>If you wish to use the new ConcurrentSessionController you must declare the HttpSessionEventPublisher context listener in your
    30. 

  30. 	web.xml<br><br></li>
    31. 

  31. 

  32.     <li>The JaasAuthenticationCallbackHandler interface has had it's setAuthentication method removed.
    33. 

  33.     The handle method now takes both the Callback and Authentication objects as arguments.<br><br></li>
    34. 

  34.     
    35. 

  35.     <li>Added AuthenticationException to the AutenticationEntryPoint.commence method signature.<br><br></li>
    36. 

  36.     
    37. 

  37.     <li>Added AccessDeniedException to the SecurityEncorcementFilter.sendAccessDeniedError method signature.<br><br></li>
    38. 

  38. 

  39.     <li>The Authentication.getDetails() no longer returns simply the IP address used for authentication.
    40. 

  40.     It now returns a WebAuthenticationDetails instance, which contains the IP address, session information,
    41. 

  41.     and can be extended to store further details.<br><br></li>
    42. 

  42. 

  43.     </ul>
    44. 

  44. 

  45. </body>
    46. 

  46. </html>
    47.