Deprecated API


Contents
Deprecated Interfaces
org.springframework.security.access.intercept.aspectj.AspectJAnnotationCallback
            
 

Deprecated Classes
org.springframework.security.web.authentication.AbstractProcessingFilter
          Use AbstractAuthenticationProcessingFilter instead. 
org.springframework.security.access.intercept.aspectj.AspectJAnnotationSecurityInterceptor
          Use AspectJMethodSecurityInterceptor instead 
org.springframework.security.access.intercept.aspectj.AspectJSecurityInterceptor
          Use AspectJMethodSecurityInterceptor instead 
org.springframework.security.web.authentication.AuthenticationProcessingFilter
          Use UsernamePasswordAuthenticationFilter instead. 
org.springframework.security.web.authentication.AuthenticationProcessingFilterEntryPoint
          Use LoginUrlAuthenticationEntryPoint instead. 
org.springframework.security.access.ConfigAttributeEditor
            
org.springframework.security.util.EncryptionUtils
          Use a dedicated encryption library instead. 
org.springframework.security.web.context.HttpSessionContextIntegrationFilter
          Use SecurityContextPersistenceFilter instead. 
org.springframework.security.access.vote.LabelBasedAclVoter
          Use new spring-security-acl module instead 
org.springframework.security.access.method.MethodSecurityMetadataSourceEditor
          use method annotations or the protect-pointcut support from the namespace 
org.springframework.security.web.authentication.preauth.PreAuthenticatedProcessingFilterEntryPoint
          Use Http403ForbiddenEntryPoint instead. 
org.springframework.security.access.hierarchicalroles.UserDetailsServiceWrapper
          use a RoleHierarchyVoter instead of populating the user Authentication object with the additional authorities. 
org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
          use a RoleHierarchyVoter instead. 
org.springframework.security.core.userdetails.memory.UserMap
          Use a plain map instead 
 

Deprecated Fields
org.springframework.security.config.Elements.FILTER_INVOCATION_DEFINITION_SOURCE
           
org.springframework.security.web.access.AccessDeniedHandlerImpl.SPRING_SECURITY_ACCESS_DENIED_EXCEPTION_KEY
          Use the value in WebAttributes directly. 
org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.SPRING_SECURITY_LAST_EXCEPTION_KEY
          Use the value in WebAttributes directly. 
org.springframework.security.web.savedrequest.DefaultSavedRequest.SPRING_SECURITY_SAVED_REQUEST_KEY
          Use the value in WebAttributes directly. 
 

Deprecated Methods
org.springframework.security.core.AuthenticationException.clearExtraInformation()
           
org.springframework.security.cas.web.CasAuthenticationEntryPoint.getEncodeServiceUrlWithSessionId()
          since 3.0.0 because CAS is currently on 3.3.5. 
org.springframework.security.core.AuthenticationException.getExtraInformation()
          Use the exception message or use a custom exception if you really need additional information. 
org.springframework.security.authentication.AbstractAuthenticationManager.setClearExtraInformation(boolean)
          the extraInformation property is deprecated 
org.springframework.security.web.context.HttpSessionSecurityContextRepository.setCloneFromHttpSession(boolean)
          Override the loadContext method and copy the created context instead. 
org.springframework.security.cas.web.CasAuthenticationEntryPoint.setEncodeServiceUrlWithSessionId(boolean)
          since 3.0.0 because CAS is currently on 3.3.5. 
org.springframework.security.authentication.dao.DaoAuthenticationProvider.setIncludeDetailsObject(boolean)
          use AbstractAuthenticationManager.setClearExtraInformation(boolean) 
org.springframework.security.web.access.intercept.FilterSecurityInterceptor.setObjectDefinitionSource(FilterInvocationSecurityMetadataSource)
          use setSecurityMetadataSource instead 
org.springframework.security.web.context.HttpSessionSecurityContextRepository.setSecurityContextClass(Class)
           
org.springframework.security.cas.authentication.CasAuthenticationProvider.setUserDetailsService(UserDetailsService)
           
 

Deprecated Constructors
org.springframework.security.authentication.AccountStatusException(String, Object)
           
org.springframework.security.authentication.AnonymousAuthenticationToken(String, Object, GrantedAuthority[])
          use the second constructor 
org.springframework.security.core.AuthenticationException(String, Object)
          Use the exception message or use a custom exception if you really need additional information. 
org.springframework.security.authentication.BadCredentialsException(String, Object)
           
org.springframework.security.core.userdetails.User(String, String, boolean, boolean, boolean, boolean, GrantedAuthority[])
            
org.springframework.security.core.userdetails.UsernameNotFoundException(String, Object)
           
org.springframework.security.authentication.UsernamePasswordAuthenticationToken(Object, Object, GrantedAuthority[])
          use the list of authorities version