From 5bfeb0cc3f8ffa4a30544574d9e56e6691a3a5bd Mon Sep 17 00:00:00 2001 From: Denis Babochenko Date: Mon, 1 Apr 2019 22:07:11 +0300 Subject: [PATCH 1/2] Update filters documentation Fixes: gh-5553 --- .../security/config/spring-security-5.2.rnc | 3 --- .../security/config/spring-security-5.2.xsd | 14 -------------- .../_includes/servlet/appendix/namespace.adoc | 9 --------- 3 files changed, 26 deletions(-) diff --git a/config/src/main/resources/org/springframework/security/config/spring-security-5.2.rnc b/config/src/main/resources/org/springframework/security/config/spring-security-5.2.rnc index dcfc2b1fc97..1e82f6acbd2 100644 --- a/config/src/main/resources/org/springframework/security/config/spring-security-5.2.rnc +++ b/config/src/main/resources/org/springframework/security/config/spring-security-5.2.rnc @@ -364,9 +364,6 @@ intercept-url.attlist &= ## The HTTP Method for which the access configuration attributes should apply. If not specified, the attributes will apply to any method. attribute method {"GET" | "DELETE" | "HEAD" | "OPTIONS" | "POST" | "PUT" | "PATCH" | "TRACE"}? -intercept-url.attlist &= - ## The filter list for the path. Currently can be set to "none" to remove a path from having any filters applied. The full filter stack (consisting of all filters created by the namespace configuration, and any added using 'custom-filter'), will be applied to any other paths. - attribute filters {"none"}? intercept-url.attlist &= ## Used to specify that a URL must be accessed over http or https, or that there is no preference. The value should be "http", "https" or "any", respectively. attribute requires-channel {xsd:token}? diff --git a/config/src/main/resources/org/springframework/security/config/spring-security-5.2.xsd b/config/src/main/resources/org/springframework/security/config/spring-security-5.2.xsd index c54ba624863..410ddc14c61 100644 --- a/config/src/main/resources/org/springframework/security/config/spring-security-5.2.xsd +++ b/config/src/main/resources/org/springframework/security/config/spring-security-5.2.xsd @@ -1284,20 +1284,6 @@ - - - The filter list for the path. Currently can be set to "none" to remove a path from having - any filters applied. The full filter stack (consisting of all filters created by the - namespace configuration, and any added using 'custom-filter'), will be applied to any - other paths. - - - - - - - - Used to specify that a URL must be accessed over http or https, or that there is no diff --git a/docs/manual/src/docs/asciidoc/_includes/servlet/appendix/namespace.adoc b/docs/manual/src/docs/asciidoc/_includes/servlet/appendix/namespace.adoc index 834f3ad59ab..67c96202c52 100644 --- a/docs/manual/src/docs/asciidoc/_includes/servlet/appendix/namespace.adoc +++ b/docs/manual/src/docs/asciidoc/_includes/servlet/appendix/namespace.adoc @@ -950,15 +950,6 @@ Lists the access attributes which will be stored in the `FilterInvocationSecurit This should be a comma-separated list of the security configuration attributes (such as role names). -[[nsa-intercept-url-filters]] -* **filters** -Can only take the value "none". -This will cause any matching request to bypass the Spring Security filter chain entirely. -None of the rest of the `` configuration will have any effect on the request and there will be no security context available for its duration. -Access to secured methods during the request will fail. - -NOTE: This property is invalid for <> - [[nsa-intercept-url-method]] * **method** The HTTP Method which will be used in combination with the pattern and servlet path (optional) to match an incoming request. From 481c41d66830f0a5e55afe40bd9bfccd64d6aa18 Mon Sep 17 00:00:00 2001 From: Denis Babochenko Date: Mon, 1 Apr 2019 22:25:06 +0300 Subject: [PATCH 2/2] Update samples documentation --- .../src/docs/asciidoc/_includes/preface/samples.adoc | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/docs/manual/src/docs/asciidoc/_includes/preface/samples.adoc b/docs/manual/src/docs/asciidoc/_includes/preface/samples.adoc index 323e102a61c..96f540b5d9c 100644 --- a/docs/manual/src/docs/asciidoc/_includes/preface/samples.adoc +++ b/docs/manual/src/docs/asciidoc/_includes/preface/samples.adoc @@ -2,10 +2,9 @@ [[sample-apps]] == Sample Applications -There are several sample web applications that are available with the project. -To avoid an overly large download, only the "tutorial" and "contacts" samples are included in the distribution zip file. -The others can be built directly from the source which you can obtain as described in <>. -It's easy to build the project yourself and there's more information on the project web site at https://spring.io/spring-security/[https://spring.io/spring-security/]. +There are several {gh-samples-url}[sample web applications] that ship with the project's <>. +You can find the ones described below in the ({gh-samples-url}/xml[samples/xml/] subdirectory of the root project) + All paths referred to in this chapter are relative to the project source directory.