Spring Security is a powerful and highly customizable authentication and access-control framework. It is the de-facto standard for securing Spring-based applications.
Prior to this change authorities are always mapped using well known claim names (‘scp’ or ‘scope’). To change this default behaviour the converter had to be replaced completely with a custom one. This commit adds an additional setter to configure a custom claim name like for example ‘roles’ to map authorities. Without specifying a custom claim name the default claims to be used still remains to the well known ones (‘scp’ and ‘scope’).
Project link: https://github.com/spring-projects/spring-security/pull/7271
Commit: "cd452ff"
LastMod Date using GitInfo: cd452ff