The following steps relate to how to finish migrating authorization support.
In 6.0, <websocket-message-broker>
defaults use-authorization-manager
to true
.
So, to complete migration, remove any websocket-message-broker@use-authorization-manager=true
attribute.
For example:
- Xml
-
<websocket-message-broker use-authorization-manager="true"/>
changes to:
- Xml
-
<websocket-message-broker/>
There are no further migrations steps for Java or Kotlin for this feature.
In 6.0, <http>
defaults once-per-request
to false
, filter-all-dispatcher-types
to true
, and use-authorization-manager
to true
.
Also, authorizeRequests#filterSecurityInterceptorOncePerRequest
defaults to false
and authorizeHttpRequests#filterAllDispatcherTypes
defaults to true
.
So, to complete migration, any defaults values can be removed.
For example, if you opted in to the 6.0 default for filter-all-dispatcher-types
or authorizeHttpRequests#filterAllDispatcherTypes
like so:
- Java
-
http .authorizeHttpRequests((authorize) -> authorize .filterAllDispatcherTypes(true) // ... )
- Kotlin
-
http { authorizeHttpRequests { filterAllDispatcherTypes = true // ... } }
- Xml
-
<http use-authorization-manager="true" filter-all-dispatcher-types="true"/>
then the defaults may be removed:
- Java
-
http .authorizeHttpRequests((authorize) -> authorize // ... )
- Kotlin
-
http { authorizeHttpRequests { // ... } }
- Xml
-
<http/>
Note
|
|