spring-security-web

Deprecated API


Contents
Deprecated Interfaces
org.springframework.security.web.access.expression.WebSecurityExpressionHandler
           
 

Deprecated Classes
org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesAuthenticationDetails
           
org.springframework.security.web.authentication.preauth.websphere.WebSphere2SpringSecurityPropagationInterceptor
           
org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedAuthenticationDetailsSource
           
 

Deprecated Fields
org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.SPRING_SECURITY_LAST_EXCEPTION_KEY
          Use the value in WebAttributes directly. 
org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter.SPRING_SECURITY_LAST_USERNAME_KEY
          If you want to retain the username, cache it in a customized AuthenticationFailureHandler 
 

Deprecated Methods
org.springframework.security.web.authentication.AnonymousAuthenticationFilter.applyAnonymousForThisRequest(HttpServletRequest)
          no obvious use case and can easily be achieved by other means 
org.springframework.security.web.FilterChainProxy.getFilterChainMap()
          use the list of SecurityFilterChains instead 
org.springframework.security.web.authentication.www.BasicAuthenticationFilter.setAuthenticationEntryPoint(AuthenticationEntryPoint)
          Use constructor injection 
org.springframework.security.web.access.ExceptionTranslationFilter.setAuthenticationEntryPoint(AuthenticationEntryPoint)
          Use constructor 
org.springframework.security.web.authentication.www.BasicAuthenticationFilter.setAuthenticationManager(AuthenticationManager)
          Use constructor injection 
org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter.setAuthenticationManager(AuthenticationManager)
          Use constructor injection 
org.springframework.security.web.session.ConcurrentSessionFilter.setExpiredUrl(String)
          use constructor injection instead 
org.springframework.security.web.FilterChainProxy.setFilterChainMap(Map>)
          Use the constructor which takes a List<SecurityFilterChain> instead. 
org.springframework.security.web.authentication.www.BasicAuthenticationFilter.setIgnoreFailure(boolean)
          Use the constructor which takes a single AuthenticationManager parameter 
org.springframework.security.web.authentication.AnonymousAuthenticationFilter.setKey(String)
          use constructor injection instead 
org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices.setKey(String)
          Use constructor injection 
org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint.setLoginFormUrl(String)
          use constructor injection 
org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter.setRememberMeServices(RememberMeServices)
          Use constructor injection 
org.springframework.security.web.savedrequest.RequestCacheAwareFilter.setRequestCache(RequestCache)
          Use constructor injection 
org.springframework.security.web.access.ExceptionTranslationFilter.setRequestCache(RequestCache)
          Use constructor 
org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy.setRetainedAttributes(List)
          Override the extractAttributes method instead 
org.springframework.security.web.context.SecurityContextPersistenceFilter.setSecurityContextRepository(SecurityContextRepository)
          Use constructor injection 
org.springframework.security.web.session.SessionManagementFilter.setSessionAuthenticationStrategy(SessionAuthenticationStrategy)
          Use constructor injection 
org.springframework.security.web.session.ConcurrentSessionFilter.setSessionRegistry(SessionRegistry)
          use constructor injection instead 
org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices.setTokenRepository(PersistentTokenRepository)
          Use constructor injection 
org.springframework.security.web.authentication.AnonymousAuthenticationFilter.setUserAttribute(UserAttribute)
          use constructor injection instead 
org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices.setUserDetailsService(UserDetailsService)
          Use constructor injection 
org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.successfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication)
          since 3.1. Use AbstractAuthenticationProcessingFilter.successfulAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, Authentication) instead. 
 

Deprecated Constructors
org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices()
          Use constructor injection 
org.springframework.security.web.authentication.AnonymousAuthenticationFilter()
          Use constructor injection version 
org.springframework.security.web.authentication.www.BasicAuthenticationFilter()
          Use constructor injection 
org.springframework.security.web.session.ConcurrentSessionFilter()
          Use constructor which injects the SessionRegistry. 
org.springframework.security.web.access.ExceptionTranslationFilter()
          Use constructor injection 
org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint()
          Use constructor injection 
org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices()
          Use constructor injection 
org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter()
          Use constructor injection 
org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices()
          Use with-args constructor 
 


spring-security-web