Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
SpringPlainTextPasswordValidationCallbackHandler [SWS-805] #885
The wss4j plain text password validation callback handler (org.springframework.ws.soap.security.wss4j.callback.SpringPlainTextPasswordValidationCallbackHandler) has been removed from the latest production version - 2.1.1
It appears to have been deleted in the unreleased tag 2.0.6 but is still referenced in the reference documentation. This class is also missing from trunk in svn.
Has this functionality been replaced and the documentation requires updating or is this an oversight?
I discovered this when upgrading to the latest version of spring ws.
For reference here are the urls:
2.0.5 svn - https://src.springframework.org/svn/spring-ws/tags/spring-ws-2.0.5.RELEASE/security/src/main/java/org/springframework/ws/soap/security/wss4j/callback/SpringPlainTextPasswordValidationCallbackHandler.java
Referenced from: commits d7ed005
Arjen Poutsma commented
As stated in the release notes, the SpringDigestPasswordValidationCallbackHandler and SpringPlainTestPasswordValidationCallbackHandler have been merged into SpringSecurityPasswordValidationCallbackHandler, which works the same way as the SpringDigestPasswordValidationCallbackHandler (i.e. supply it with a UserDetailsService).
Benjamin Morgan commented
The documentation still seems to be out of date:
It now has the right class in the sample configuration but the sample configuration still shows an AuthenticationManager. The SpringPlainTextPasswordValidationCallbackHandler only has a user details service not AuthenticationManager.