Migration guide

2.1 -> 3.0

You can use the pac4j LogoutFilter to handle both local (application) and remote (identity server) logout processes.

2.0 -> 2.1

The CallbackFilter only applies on /callback by default so if you need a different callback endpoint (another value) or to apply it globally (empty value), this needs to be changed with the setSuffix method.

The Pac4jEntryPoint can be defined with the config and clientName parameters to redirect to an identity provider for login.

1.4 - > 2.0

The spring-security-pac4j library has strongly changed in version 2:

• the ClientAuthenticationProvider has been removed as the authentication happens in the SecurityFilter (for direct clients) or in the CallbackFilter (for indirect clients)
• the ClientAuthenticationEntryPoint is replaced by the Pac4jEntryPoint which should never be called
• the ClientAuthenticationToken is replaced by the Pac4jAuthenticationToken and Pac4jRememberMeAuthenticationToken (depending on the use case)
• the security is ensured by the SecurityFilter (as usually in the pac4j world)
• the CallbackFilter finishes the login process for indirect clients (as usually in the pac4j world) and replaces the ClientAuthenticationFilter.