Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

SEC-159: Comment about use of SecurityContextHolder.clearContext().

This commit is contained in:
Ben Alex 2006-02-09 00:12:56 +00:00
parent dc959b1847
commit c8e81bd425
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
doc/xdocs/upgrade/upgrade-090-100.html
View File

@ -66,6 +66,15 @@ applications:
an additional filter entry to web.xml and use FilterToBeanProxy to access the FilterSecurityInterceptor. an additional filter entry to web.xml and use FilterToBeanProxy to access the FilterSecurityInterceptor.
</li> </li>
<li>
If you are directly using SecurityContextHolder.setContext(SecurityContext) - which is not
very common - please not that best practise is now to call SecurityContextHolder.clearContext()
if you wish to erase the contents of the SecurityContextHolder. Previously code such as
SecurityContextHolder.setContext(new SecurityContextImpl()) would have been used. The revised
method internally stores null, which helps avoids redeployment issue caused by the previous
approaches (see SEC-159 for further details).
</li>
</ul> </ul>
</body> </body>