Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge branch '5.8.x' into 6.0.x 

Closes gh-13278
This commit is contained in:
Josh Cummings 2023-06-05 12:48:43 -06:00
parent 590e9e23d9 9ac286e8ea
commit 45683349a4
No known key found for this signature in database
GPG Key ID: A306A51F43B8E5A5
1 changed files with 1 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
web/src/main/java/org/springframework/security/web/authentication/www/BasicAuthenticationFilter.java
View File

@ -81,9 +81,7 @@ import org.springframework.web.filter.OncePerRequestFilter;
* <p> * <p>
* Basic authentication is an attractive protocol because it is simple and widely * Basic authentication is an attractive protocol because it is simple and widely
* deployed. However, it still transmits a password in clear text and as such is * deployed. However, it still transmits a password in clear text and as such is
* undesirable in many situations. Digest authentication is also provided by Spring * undesirable in many situations.
* Security and should be used instead of Basic authentication wherever possible. See
* {@link org.springframework.security.web.authentication.www.DigestAuthenticationFilter}.
* <p> * <p>
* Note that if a {@link RememberMeServices} is set, this filter will automatically send * Note that if a {@link RememberMeServices} is set, this filter will automatically send
* back remember-me details to the client. Therefore, subsequent requests will not need to * back remember-me details to the client. Therefore, subsequent requests will not need to