Deprecated API

Contents

• Deprecated Interfaces
• Deprecated Classes
• Deprecated Fields
• Deprecated Methods
• Deprecated Constructors

Deprecated Interfaces

Interface and Description
io.micronaut.security.authentication.providers.AuthoritiesFetcher This class will be removed in a future version
io.micronaut.security.authentication.providers.PasswordEncoder This class will be removed in a future version
io.micronaut.security.handlers.RejectionHandler This class will be removed in a future version and replaced with exception handlers for AuthorizationException. Replace the DefaultAuthorizationExceptionHandler with your own implementation instead of this class.
io.micronaut.security.token.writer.TokenWriter Implement TokenPropagator instead
io.micronaut.security.authentication.providers.UserFetcher This class will be removed in a future version
io.micronaut.security.authentication.providers.UserState This class will be removed in a future version

Deprecated Classes

Class and Description
io.micronaut.security.token.basicauth.BasicAuthTokenReaderConfigurationProperties
io.micronaut.security.token.basicauth.BasicAuthTokenValidator Will be changed to be an authentication fetcher in a future release.
io.micronaut.security.authentication.providers.DelegatingAuthenticationProvider This class will be removed in a future version. Copy the logic into your own class to maintain the same behavior.
io.micronaut.security.token.writer.HttpHeaderTokenWriter Use HttpHeaderTokenPropagator instead
io.micronaut.security.token.writer.HttpHeaderTokenWriterConfigurationProperties Use HttpHeaderTokenPropagatorConfigurationProperties instead
io.micronaut.security.token.jwt.validator.JwtTokenValidatorUtils Use JwtValidator instead
io.micronaut.security.session.SessionSecurityFilterOrderProvider Moved to SessionSecurityFilterOrderProvider
io.micronaut.security.session.SessionSecurityfilterRejectionHandler use RedirectRejectionHandler instead

Deprecated Fields

Field and Description
io.micronaut.security.session.SecuritySessionConfigurationProperties.DEFAULT_LEGACYREJECTIONHANDLER
io.micronaut.security.token.config.TokenConfigurationProperties.DEFAULT_ROLES_NAME Use TokenConfiguration.DEFAULT_ROLES_NAME instead
io.micronaut.security.oauth2.endpoint.endsession.request.AbstractEndSessionRequest.providerMetadata Use AbstractEndSessionRequest.providerMetadataSupplier instead.

Deprecated Methods

Method and Description
io.micronaut.security.authentication.AuthenticationProvider.authenticate(AuthenticationRequest) Use AuthenticationProvider.authenticate(HttpRequest, AuthenticationRequest) instead.
io.micronaut.security.authentication.Authenticator.authenticate(AuthenticationRequest) Use Authenticator.authenticate(HttpRequest, AuthenticationRequest) instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.authenticationIfValidJwtSignatureAndClaims(String, Collection<? extends JwtClaimsValidator>) Use JwtValidator instead.
io.micronaut.security.oauth2.endpoint.authorization.state.StateFactory.buildState(HttpRequest<?>, MutableHttpResponse) use StateFactory.buildState(HttpRequest, MutableHttpResponse, AuthorizationRequest)
io.micronaut.security.filters.SecurityFilter.checkRules(HttpRequest<?>, ServerFilterChain, RouteMatch, Map<String, Object>, boolean) Use SecurityFilter.checkRules(HttpRequest, ServerFilterChain, RouteMatch, Authentication) instead
io.micronaut.security.token.jwt.validator.JwtTokenValidator.getEncryptionConfigurations() Will be removed in a future version
io.micronaut.security.token.jwt.validator.JwtTokenValidator.getGenericJwtClaimsValidators() Will be removed in a future version
io.micronaut.security.token.jwt.validator.JwtTokenValidator.getSignatureConfigurations() Will be removed in a future version
io.micronaut.security.handlers.RedirectRejectionHandler.httpResponseWithUri(String) Use RedirectRejectionHandler.httpResponseWithUri(URI) instead
io.micronaut.security.handlers.LoginHandler.loginFailed(AuthenticationFailed) Use LoginHandler.loginFailed(AuthenticationResponse) instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.parseJwtIfValidSignature(String) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.validate(String) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.validate(String, Collection<? extends JwtClaimsValidator>) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.validateEncryptedJWTSignature(EncryptedJWT, String) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.validateJwtSignatureAndClaims(String) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.validateJwtSignatureAndClaims(String, Collection<? extends JwtClaimsValidator>) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.validatePlainJWTSignature(JWT) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.validateSignedJWTSignature(SignedJWT) Use JwtValidator instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator.verifyClaims(JWTClaimsSet, Collection<? extends JwtClaimsValidator>) No replacement. Implement the logic in your own codebase

Deprecated Constructors

Constructor and Description
io.micronaut.security.oauth2.endpoint.endsession.request.AbstractEndSessionRequest(EndSessionCallbackUrlBuilder, OauthClientConfiguration, OpenIdProviderMetadata) Use AbstractEndSessionRequest.AbstractEndSessionRequest(EndSessionCallbackUrlBuilder, OauthClientConfiguration, Supplier) instead.
io.micronaut.security.oauth2.endpoint.endsession.request.Auth0EndSessionEndpoint(EndSessionCallbackUrlBuilder, OauthClientConfiguration, OpenIdProviderMetadata) use Auth0EndSessionEndpoint.Auth0EndSessionEndpoint(EndSessionCallbackUrlBuilder, OauthClientConfiguration, Supplier) instead.
io.micronaut.security.authentication.AuthenticationUserDetailsAdapter(UserDetails)
io.micronaut.security.authentication.Authenticator(Collection<AuthenticationProvider>)
io.micronaut.security.oauth2.endpoint.endsession.request.AwsCognitoEndSessionEndpoint(EndSessionCallbackUrlBuilder, OauthClientConfiguration, OpenIdProviderMetadata) use AwsCognitoEndSessionEndpoint.AwsCognitoEndSessionEndpoint(EndSessionCallbackUrlBuilder, OauthClientConfiguration, Supplier) instead.
io.micronaut.security.token.basicauth.BasicAuthTokenValidator(Authenticator) Use BasicAuthTokenValidator.BasicAuthTokenValidator(Authenticator, TokenConfiguration)
io.micronaut.security.rules.ConfigurationInterceptUrlMapRule(TokenConfiguration, SecurityConfiguration) use ConfigurationInterceptUrlMapRule.ConfigurationInterceptUrlMapRule(RolesFinder, SecurityConfiguration) instead.
io.micronaut.security.oauth2.client.DefaultOpenIdClient(OauthClientConfiguration, OpenIdProviderMetadata, OpenIdUserDetailsMapper, AuthorizationRedirectHandler, OpenIdAuthorizationResponseHandler, BeanContext, EndSessionEndpoint) use DefaultOpenIdClient.DefaultOpenIdClient(OauthClientConfiguration, Supplier, OpenIdUserDetailsMapper, AuthorizationRedirectHandler, OpenIdAuthorizationResponseHandler, BeanContext, EndSessionEndpoint) instead.
io.micronaut.security.rules.IpPatternsRule(TokenConfiguration, SecurityConfiguration) use IpPatternsRule.IpPatternsRule(RolesFinder, SecurityConfiguration) instead.
io.micronaut.security.token.jwt.validator.JwtTokenValidator(Collection<SignatureConfiguration>, Collection<EncryptionConfiguration>) Use JwtTokenValidator.JwtTokenValidator(Collection, Collection, Collection, JwtAuthenticationFactory) instead.
io.micronaut.security.endpoints.LogoutController(LogoutHandler, ApplicationEventPublisher)
io.micronaut.security.oauth2.endpoint.endsession.request.OktaEndSessionEndpoint(EndSessionCallbackUrlBuilder, OauthClientConfiguration, OpenIdProviderMetadata) use OktaEndSessionEndpoint.OktaEndSessionEndpoint(EndSessionCallbackUrlBuilder, OauthClientConfiguration, Supplier) instead.
io.micronaut.security.rules.SecuredAnnotationRule(TokenConfiguration) use SecuredAnnotationRule.SecuredAnnotationRule(RolesFinder) instead.
io.micronaut.security.filters.SecurityFilter(Collection<SecurityRule>, Collection<AuthenticationFetcher>, RejectionHandler, SecurityFilterOrderProvider) Use SecurityFilter.SecurityFilter(Collection, Collection, SecurityConfiguration, SecurityFilterOrderProvider) instead
io.micronaut.security.session.SessionLoginHandler(SecuritySessionConfiguration, SessionStore<Session>) use SessionLoginHandler.SessionLoginHandler(SecuritySessionConfiguration, SessionStore, TokenConfiguration)
io.micronaut.security.token.TokenAuthenticationFetcher(Collection<TokenValidator>, Collection<TokenReader>, ApplicationEventPublisher) Use TokenAuthenticationFetcher.TokenAuthenticationFetcher(Collection, TokenResolver, ApplicationEventPublisher) instead. A TokenResolver can be created using DefaultTokenResolver.DefaultTokenResolver(Collection).
io.micronaut.security.token.propagation.TokenPropagationHttpClientFilter(TokenWriter, TokenPropagationConfiguration, OutgoingHttpRequestProcessor) Use TokenPropagationHttpClientFilter.TokenPropagationHttpClientFilter(TokenPropagationConfiguration, OutgoingHttpRequestProcessor, TokenPropagator) instead
io.micronaut.security.token.propagation.TokenPropagationHttpClientFilter(TokenWriter, TokenPropagationConfiguration, OutgoingHttpRequestProcessor, TokenPropagator) Use TokenPropagationHttpClientFilter.TokenPropagationHttpClientFilter(TokenPropagationConfiguration, OutgoingHttpRequestProcessor, TokenPropagator) instead