From ece4a0f0674f93dc9f24c17ede30017b28f8ba45 Mon Sep 17 00:00:00 2001
From: Rob Winch <rwinch@vmware.com>
Date: Thu, 6 Dec 2012 09:03:07 -0600
Subject: [PATCH] SEC-2078: Updated Javadoc to reflect that updates to
 Principal will also trigger reauthentication

---
 .../preauth/AbstractPreAuthenticatedProcessingFilter.java   | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/web/src/main/java/org/springframework/security/web/authentication/preauth/AbstractPreAuthenticatedProcessingFilter.java b/web/src/main/java/org/springframework/security/web/authentication/preauth/AbstractPreAuthenticatedProcessingFilter.java
index aa055f4d74..deaa90b664 100755
--- a/web/src/main/java/org/springframework/security/web/authentication/preauth/AbstractPreAuthenticatedProcessingFilter.java
+++ b/web/src/main/java/org/springframework/security/web/authentication/preauth/AbstractPreAuthenticatedProcessingFilter.java
@@ -250,9 +250,9 @@ public abstract class AbstractPreAuthenticatedProcessingFilter extends GenericFi
     }
 
     /**
-     * If set, the pre-authenticated principal will be checked on each request and compared
-     * against the name of the current <tt>Authentication</tt> object. If a change is detected,
-     * the user will be reauthenticated.
+     * If set, the pre-authenticated principal will be checked on each request and compared against the name of the
+     * current <tt>Authentication</tt> object. A check to determine if {@link Authentication#getPrincipal()} is equal
+     * to the principal will also be performed. If a change is detected, the user will be reauthenticated.
      *
      * @param checkForPrincipalChanges
      */