File tree Expand file tree Collapse file tree 5 files changed +42
-1
lines changed
core/src/main/java/org/springframework/security/access
web/src/main/java/org/springframework/security/web Expand file tree Collapse file tree 5 files changed +42
-1
lines changed Original file line number Diff line number Diff line change 2020
2121import org .springframework .aop .framework .AopInfrastructureBean ;
2222import org .springframework .security .access .intercept .AbstractSecurityInterceptor ;
23+ import org .springframework .security .authorization .AuthorizationManager ;
24+ import org .springframework .security .core .annotation .SecurityAnnotationScanner ;
2325
2426/**
2527 * Implemented by classes that store and can identify the {@link ConfigAttribute}s that
2628 * applies to a given secure object invocation.
2729 *
2830 * @author Ben Alex
31+ * @deprecated In modern Spring Security APIs, each API manages its own configuration
32+ * context. As such there is no direct replacement for this interface. In the case of
33+ * method security, please see {@link SecurityAnnotationScanner} and
34+ * {@link AuthorizationManager}. In the case of channel security, please see
35+ * {@code HttpsRedirectFilter}. In the case of web security, please see
36+ * {@link AuthorizationManager}.
2937 */
38+ @ Deprecated
3039public interface SecurityMetadataSource extends AopInfrastructureBean {
3140
3241 /**
Original file line number Diff line number Diff line change 3131import org .springframework .expression .ParseException ;
3232import org .springframework .security .access .ConfigAttribute ;
3333import org .springframework .security .access .expression .SecurityExpressionHandler ;
34+ import org .springframework .security .authorization .AuthorizationManager ;
35+ import org .springframework .security .core .annotation .SecurityAnnotationScanner ;
3436import org .springframework .security .web .FilterInvocation ;
3537import org .springframework .security .web .access .intercept .DefaultFilterInvocationSecurityMetadataSource ;
3638import org .springframework .security .web .util .matcher .AntPathRequestMatcher ;
4345 * @author Luke Taylor
4446 * @author Eddú Meléndez
4547 * @since 3.0
48+ * @deprecated In modern Spring Security APIs, each API manages its own configuration
49+ * context. As such there is no direct replacement for this interface. In the case of
50+ * method security, please see {@link SecurityAnnotationScanner} and
51+ * {@link AuthorizationManager}. In the case of channel security, please see
52+ * {@code HttpsRedirectFilter}. In the case of web security, please see
53+ * {@link AuthorizationManager}.
4654 */
55+ @ Deprecated
4756public final class ExpressionBasedFilterInvocationSecurityMetadataSource
4857 extends DefaultFilterInvocationSecurityMetadataSource {
4958
Original file line number Diff line number Diff line change 2828
2929import org .springframework .core .log .LogMessage ;
3030import org .springframework .security .access .ConfigAttribute ;
31+ import org .springframework .security .authorization .AuthorizationManager ;
32+ import org .springframework .security .core .annotation .SecurityAnnotationScanner ;
3133import org .springframework .security .web .FilterInvocation ;
3234import org .springframework .security .web .util .matcher .RequestMatcher ;
3335
5052 *
5153 * @author Ben Alex
5254 * @author Luke Taylor
55+ * @deprecated In modern Spring Security APIs, each API manages its own configuration
56+ * context. As such there is no direct replacement for this interface. In the case of
57+ * method security, please see {@link SecurityAnnotationScanner} and
58+ * {@link AuthorizationManager}. In the case of channel security, please see
59+ * {@code HttpsRedirectFilter}. In the case of web security, please see
60+ * {@link AuthorizationManager}.
5361 */
62+ @ Deprecated
5463public class DefaultFilterInvocationSecurityMetadataSource implements FilterInvocationSecurityMetadataSource {
5564
5665 protected final Log logger = LogFactory .getLog (getClass ());
Original file line number Diff line number Diff line change 1717package org .springframework .security .web .access .intercept ;
1818
1919import org .springframework .security .access .SecurityMetadataSource ;
20+ import org .springframework .security .authorization .AuthorizationManager ;
21+ import org .springframework .security .core .annotation .SecurityAnnotationScanner ;
2022import org .springframework .security .web .FilterInvocation ;
2123
2224/**
2325 * Marker interface for <code>SecurityMetadataSource</code> implementations that are
2426 * designed to perform lookups keyed on {@link FilterInvocation}s.
2527 *
2628 * @author Ben Alex
29+ * @deprecated In modern Spring Security APIs, each API manages its own configuration
30+ * context. As such there is no direct replacement for this interface. In the case of
31+ * method security, please see {@link SecurityAnnotationScanner} and
32+ * {@link AuthorizationManager}. In the case of channel security, please see
33+ * {@code HttpsRedirectFilter}. In the case of web security, please see
34+ * {@link AuthorizationManager}.
2735 */
36+ @ Deprecated
2837public interface FilterInvocationSecurityMetadataSource extends SecurityMetadataSource {
2938
3039}
Original file line number Diff line number Diff line change @@ -127,7 +127,12 @@ void setServletPath(RequestMatcher servletPath) {
127127 }
128128
129129 private RequestPath getRequestPath (HttpServletRequest request ) {
130- return ServletRequestPathUtils .getParsedRequestPath (request );
130+ if (ServletRequestPathUtils .hasParsedRequestPath (request )) {
131+ return ServletRequestPathUtils .getParsedRequestPath (request );
132+ }
133+ else {
134+ return ServletRequestPathUtils .parseAndCache (request );
135+ }
131136 }
132137
133138 /**
You can’t perform that action at this time.
0 commit comments