SessionSecurityFilterOrderProvider should be in security instead of security-session #1

sdelamo · 2019-04-16T15:36:37Z

SessionSecurityFilterOrderProvider should be in security annotated with @Requires(beans = {HttpSessionFilter.class}) with a compileOnly dependency to session instead of inside the security-session module.

it will achieve correct filter order even if the user is not including the security-session module.

The text was updated successfully, but these errors were encountered:

jameskleeh · 2019-05-17T06:19:11Z

This was resolved with https://github.com/micronaut-projects/micronaut-security/blame/d54b57ba52df9ae05068593d3c0c1966ce5d0050/security/src/main/java/io/micronaut/security/filters/SessionSecurityFilterOrderProvider.java

jameskleeh transferred this issue from micronaut-projects/micronaut-core Apr 18, 2019

jameskleeh closed this as completed May 17, 2019

jameskleeh added this to the 1.2.0 milestone May 17, 2019

jameskleeh self-assigned this May 17, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SessionSecurityFilterOrderProvider should be in security instead of security-session #1

SessionSecurityFilterOrderProvider should be in security instead of security-session #1

sdelamo commented Apr 16, 2019

jameskleeh commented May 17, 2019

SessionSecurityFilterOrderProvider should be in security instead of security-session #1

SessionSecurityFilterOrderProvider should be in security instead of security-session #1

Comments

sdelamo commented Apr 16, 2019

jameskleeh commented May 17, 2019