Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-25 13:32:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

Deprecate storage of Authentication object in AuthenticationException.

Browse Source
This commit is contained in:
Luke Taylor 2011-11-01 13:05:42 +00:00
parent b60367e30c
commit 8fd2963e6b
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
core/src/main/java/org/springframework/security/core/AuthenticationException.java
View File

@ -64,11 +64,14 @@ public abstract class AuthenticationException extends RuntimeException {
/** /**
* The authentication request which this exception corresponds to (may be {@code null}) * The authentication request which this exception corresponds to (may be {@code null})
* @deprecated to avoid potential leaking of sensitive information (e.g. through serialization/remoting).
*/ */
@Deprecated
public Authentication getAuthentication() { public Authentication getAuthentication() {
return authentication; return authentication;
} }
@Deprecated
public void setAuthentication(Authentication authentication) { public void setAuthentication(Authentication authentication) {
this.authentication = authentication; this.authentication = authentication;
} }