From f8247fa34608dc2eb8dd74d3f6eeeb72d8db0439 Mon Sep 17 00:00:00 2001 From: Josh Cummings Date: Thu, 19 Apr 2018 08:21:50 -0600 Subject: [PATCH] Remove Default URLs and Parameters Commentary This paragraph was originally there to explain why Spring Security was moving from the old default URLs and parameters to new ones. Now that the defaults are the same in XML and well as Java Config, the explanation is now no longer relevant. Fixes: gh-5242 --- .../docs/asciidoc/_includes/preface/java-configuration.adoc | 6 ------ 1 file changed, 6 deletions(-) diff --git a/docs/manual/src/docs/asciidoc/_includes/preface/java-configuration.adoc b/docs/manual/src/docs/asciidoc/_includes/preface/java-configuration.adoc index 148a59d209..4f2d9ebbef 100644 --- a/docs/manual/src/docs/asciidoc/_includes/preface/java-configuration.adoc +++ b/docs/manual/src/docs/asciidoc/_includes/preface/java-configuration.adoc @@ -167,12 +167,6 @@ The Java Configuration equivalent of closing an XML tag is expressed using the ` If you read the code it also makes sense. I want to configure authorized requests __and__ configure form login __and__ configure HTTP Basic authentication. -However, Java Configuration has different defaults URLs and parameters. -Keep this in mind when creating custom login pages. -The result is that our URLs are more RESTful. -Additionally, it is not quite so obvious we are using Spring Security which helps to prevent https://www.owasp.org/index.php/Information_Leak_(information_disclosure)[information leaks]. -For example: - [[jc-form]] === Java Configuration and Form Login You might be wondering where the login form came from when you were prompted to log in, since we made no mention of any HTML files or JSPs.