GitHub-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Documents the new @AuthenticationPrincipal in more detail. 

Fixes gh-3771
pull/3813/head
Joe Grandja 10 years ago
parent
95a3e30d9f
commit
2ef3da1b47
4 changed files with 14 additions and 10 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      core/src/main/java/org/springframework/security/core/annotation/AuthenticationPrincipal.java
  2. 16
      docs/manual/src/docs/asciidoc/index.adoc
  3. 3
      web/src/main/java/org/springframework/security/web/bind/annotation/AuthenticationPrincipal.java
  4. 3
      web/src/main/java/org/springframework/security/web/bind/support/AuthenticationPrincipalArgumentResolver.java

2
core/src/main/java/org/springframework/security/core/annotation/AuthenticationPrincipal.java
Unescape View File

@ -30,7 +30,7 @@ import org.springframework.security.core.Authentication; @@ -30,7 +30,7 @@ import org.springframework.security.core.Authentication;
* @author Rob Winch
* @since 4.0
*
* See: <a href="{@docRoot}/org/springframework/security/messaging/context/AuthenticationPrincipalArgumentResolver.html">
* See: <a href="{@docRoot}/org/springframework/security/web/method/annotation/AuthenticationPrincipalArgumentResolver.html">
* AuthenticationPrincipalArgumentResolver
* </a>
*/

16
docs/manual/src/docs/asciidoc/index.adoc
Unescape View File

@ -6572,7 +6572,13 @@ NOTE: Spring Security provides the configuration using Spring MVC's http://docs. @@ -6572,7 +6572,13 @@ NOTE: Spring Security provides the configuration using Spring MVC's http://docs.
[[mvc-authentication-principal]]
=== @AuthenticationPrincipal
Spring Security provides `AuthenticationPrincipalArgumentResolver` which can automatically resolve the current `Authentication.getPrincipal()` for Spring MVC arguments. By using <<mvc-enablewebmvcsecurity>> you will automatically have this added to your Spring MVC configuration. If you use XML based configuraiton, you must add this yourself.
Spring Security provides `AuthenticationPrincipalArgumentResolver` which can automatically resolve the current `Authentication.getPrincipal()` for Spring MVC arguments. By using `@EnableWebSecurity` you will automatically have this added to your Spring MVC configuration. If you use XML based configuration, you must add this yourself. For example:
[source,xml]
----
<bean class="org.springframework.security.web.method.annotation.AuthenticationPrincipalArgumentResolver" />
----
Once `AuthenticationPrincipalArgumentResolver` is properly configured, you can be entirely decoupled from Spring Security in your Spring MVC layer.
@ -6580,10 +6586,6 @@ Consider a situation where a custom `UserDetailsService` that returns an `Object @@ -6580,10 +6586,6 @@ Consider a situation where a custom `UserDetailsService` that returns an `Object
[source,java]
----
import org.springframework.security.web.bind.annotation.AuthenticationPrincipal;
// ...
@RequestMapping("/messages/inbox")
public ModelAndView findMessagesForUser() {
Authentication authentication =
@ -6598,6 +6600,10 @@ As of Spring Security 3.2 we can resolve the argument more directly by adding an @@ -6598,6 +6600,10 @@ As of Spring Security 3.2 we can resolve the argument more directly by adding an
[source,java]
----
import org.springframework.security.core.annotation.AuthenticationPrincipal;
// ...
@RequestMapping("/messages/inbox")
public ModelAndView findMessagesForUser(@AuthenticationPrincipal CustomUser customUser) {

3
web/src/main/java/org/springframework/security/web/bind/annotation/AuthenticationPrincipal.java
Unescape View File

@ -29,8 +29,7 @@ import org.springframework.security.core.Authentication; @@ -29,8 +29,7 @@ import org.springframework.security.core.Authentication;
* should be resolved to the current user rather than a user that might be edited on a
* form.
*
* @deprecated Use org.springframework.security.core.annotation.AuthenticationPrincipal
* instead
* @deprecated Use {@link org.springframework.security.core.annotation.AuthenticationPrincipal} instead.
*
* @author Rob Winch
* @since 3.2

3
web/src/main/java/org/springframework/security/web/bind/support/AuthenticationPrincipalArgumentResolver.java
Unescape View File

@ -77,8 +77,7 @@ import org.springframework.web.method.support.ModelAndViewContainer; @@ -77,8 +77,7 @@ import org.springframework.web.method.support.ModelAndViewContainer;
* }
* </pre>
*
* @deprecated use org.springframework.security.web.method.annotation.
* AuthenticationPrincipalArgumentResolver
* @deprecated Use {@link org.springframework.security.web.method.annotation.AuthenticationPrincipalArgumentResolver} instead.
*
* @author Rob Winch
* @since 3.2

Write Preview
Loading…
Cancel
Save