-
Notifications
You must be signed in to change notification settings - Fork 5.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SecurityExpressionHandler#createEvaluationContext should defer lookup of Authentication #9667
Comments
@jzheaux I can take this. |
@jzheaux I've opened the PR, please take a look. |
- Added createEvaluationContext method that accepts Supplier<Authentication> - Refactored classes that use EvaluationContext to use lazy initialization of Authentication Closes spring-projectsgh-9667
In order to accommodate changing to Classes that extend |
- Added createEvaluationContext method that accepts Supplier<Authentication> - Refactored classes that use EvaluationContext to use lazy initialization of Authentication Closes gh-9667
Like
AuthorizationManager
, it would be nice to be able to defer the looking upAuthentication
inSecurityExpressionHandler
.A default
createEvaluationContext
method could be added:And then
DefaultXXXSecurityExpressionHandler
s would be updated to defer evaluation until the authentication was inspected.The text was updated successfully, but these errors were encountered: