SEC-1538: Deprecate PreAuthenticatedGrantedAuthoritiesAuthenticationDetails (forgot originally) and update documentation to remove reference to AbstractPreAuthenticationAuthenticationDetailsSource.

2010-09-13 12:19:21 +01:00 · 2010-09-13 12:19:21 +01:00 · c5231fc213
parent 829444d59b
commit c5231fc213
2 changed files with 10 additions and 14 deletions
--- a/docs/manual/src/docbook/preauth.xml
+++ b/docs/manual/src/docbook/preauth.xml
@ -52,9 +52,6 @@
                data and submit it for authentication. By <quote>authentication</quote> here, we
                really just mean further processing to perhaps load the user's authorities, but the
                standard Spring Security authentication architecture is followed. </para>
-        </section>
-        <section>
-            <title>AbstractPreAuthenticatedAuthenticationDetailsSource</title>
            <para> Like other Spring Security authentication filters, the pre-authentication filter
                has an <literal>authenticationDetailsSource</literal> property which by default will
                create a <classname>WebAuthenticationDetails</classname> object to store additional
@ -62,12 +59,10 @@
                    <literal>details</literal> property of the
                    <interfacename>Authentication</interfacename> object. In cases where user role
                information can be obtained from the pre-authentication mechanism, the data is also
-                stored in this property. Subclasses of
-                <classname>AbstractPreAuthenticatedAuthenticationDetailsSource</classname> use an
-                extended details object which implements the
-                <interfacename>GrantedAuthoritiesContainer</interfacename> interface, thus enabling
-                the authentication provider to read the authorities which were externally allocated
-                to the user. We'll look at a concrete example next. </para>
+                stored in this property, with the details implementing the
+                    <interfacename>GrantedAuthoritiesContainer</interfacename> interface. This
+                enables the authentication provider to read the authorities which were externally
+                allocated to the user. We'll look at a concrete example next. </para>
            <section xml:id="j2ee-preauth-details">
                <title>J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource</title>
                <para> If the filter is configured with an
--- a/web/src/main/java/org/springframework/security/web/authentication/preauth/PreAuthenticatedGrantedAuthoritiesAuthenticationDetails.java
+++ b/web/src/main/java/org/springframework/security/web/authentication/preauth/PreAuthenticatedGrantedAuthoritiesAuthenticationDetails.java
@ -15,6 +15,7 @@ import org.springframework.util.Assert;
 * @author Ruud Senden
 * @since 2.0
 */
+@Deprecated
 public class PreAuthenticatedGrantedAuthoritiesAuthenticationDetails extends AuthenticationDetails implements
        MutableGrantedAuthoritiesContainer {
    public static final long serialVersionUID = 1L;