Skip to content

INT-3663: Fix early BF access for Security Module #1406

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 3 commits into from
Closed

INT-3663: Fix early BF access for Security Module #1406

wants to merge 3 commits into from

Conversation

@artembilan
Copy link
Member

@artembilan artembilan commented Mar 10, 2015

JIRA: https://jira.spring.io/browse/INT-3663

Previously the ChannelSecurityInterceptorBeanPostProcessor was populated with direct BeanDefinitions for ChannelSecurityInterceptors.
It caused an early access to BeanFactory.
The issue has been introduced by the ChannelSecurityInterceptorFactoryBean

  • Rework SecurityIntegrationConfigurationInitializer do not populate BeanDefinitions to the ChannelSecurityInterceptorBeanPostProcessor, but just bean names
  • Redesign ChannelSecurityInterceptorBeanPostProcessor to the AbstractAutoProxyCreator
  • Introduce SecuredChannel annotation to be used on the @Bean level for MessageChannel definition
  • Move access policy mapping to the SecuredChannel annotation

@artembilan
Copy link
Member Author

artembilan commented Mar 10, 2015

Need some polishing, JavaDocs and Docs.
And Migration Guide note afterwards.

@artembilan
Copy link
Member Author

artembilan commented Mar 14, 2015

@garyrussell , let me know if you are OK with the solution and I go ahead for docs.

garyrussell
garyrussell reviewed Apr 15, 2015
View reviewed changes
...springframework/integration/security/config/ChannelSecurityInterceptorBeanPostProcessor.java Outdated
Copy link
Contributor

@garyrussell garyrussell Apr 15, 2015

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

WARN: serialVersionUID

@garyrussell
Copy link
Contributor

garyrussell commented Apr 15, 2015

Otherwise LGTM

@artembilan
INT-3663: Fix early BF access for Security Module
1ca5c4f 
JIRA: https://jira.spring.io/browse/INT-3663

Previously the `ChannelSecurityInterceptorBeanPostProcessor` was populated with direct `BeanDefinition`s for `ChannelSecurityInterceptor`s.
It caused an `early access to BeanFactory`.
The issue has been introduced by the `ChannelSecurityInterceptorFactoryBean`

* Rework `SecurityIntegrationConfigurationInitializer` do not populate `BeanDefinition`s to the `ChannelSecurityInterceptorBeanPostProcessor`, but just `bean names`
* Redesign `ChannelSecurityInterceptorBeanPostProcessor` to the `AbstractAutoProxyCreator`
* Introduce `SecuredChannel` annotation to be used on the `@Bean` level for `MessageChannel` definition
* Move `access policy` mapping to the `SecuredChannel` annotation
@artembilan
Copy link
Member Author

artembilan commented Apr 15, 2015

Pushed

@garyrussell
Copy link
Contributor

garyrussell commented Apr 16, 2015

LGTM; still needs docs etc, though; right?

@artembilan
Copy link
Member Author

artembilan commented Apr 16, 2015

Yeah... Sure! At least say that we did a deprecation and add a couple samples with JavaConfig

@artembilan
Copy link
Member Author

artembilan commented Apr 16, 2015

Pushed documentation.
After the merge I'll go ahead with Migration Guide note.

@garyrussell
Copy link
Contributor

garyrussell commented Apr 16, 2015

Merged as b6cfd4f

@artembilan artembilan deleted the INT-3663 branch May 8, 2015 14:16
@spring-operator spring-operator mentioned this pull request May 29, 2015
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@artembilan @garyrussell