Spring Security is a powerful and highly customizable authentication and access-control framework. It is the de-facto standard for securing Spring-based applications.
Prior to this change mapped authorities are always prefixed with default value ‘SCOPE_'. To change this default behaviour the converter had to be replaced completely with a custom one. This commit adds an additional setter to configure a custom authority prefix like e.g. ‘ROLE_'. Without specifying a custom prefix the default prefix still remains ‘SCOPE_'. This way existing authorization checks using the standard ‘ROLE_’ prefix can be reused without lots of effort.
Project link: https://github.com/spring-projects/spring-security/pull/7256
Commit: "cd452ff"
LastMod Date using GitInfo: cd452ff