Fix anchors & remaining nesting problems

Author: jdaugherty

docs/src/docs/index.adoc

@@ -47,59 +47,59 @@ include::upgrading.adoc[]
 
 == Core Plugin
 
-include::{core-docs-dir}/introduction.adoc[leveloffset=+2]
+include::{core-docs-dir}/introduction.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/whatsNew.adoc[leveloffset=+2]
+include::{core-docs-dir}/whatsNew.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/domainClasses.adoc[leveloffset=+2]
+include::{core-docs-dir}/domainClasses.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/requestMappings.adoc[leveloffset=+2]
+include::{core-docs-dir}/requestMappings.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/helperClasses.adoc[leveloffset=+2]
+include::{core-docs-dir}/helperClasses.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/events.adoc[leveloffset=+2]
+include::{core-docs-dir}/events.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/domainClassProperties.adoc[leveloffset=+2]
+include::{core-docs-dir}/domainClassProperties.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/authentication.adoc[leveloffset=+2]
+include::{core-docs-dir}/authentication.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/authenticationProviders.adoc[leveloffset=+2]
+include::{core-docs-dir}/authenticationProviders.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/userDetailsService.adoc[leveloffset=+2]
+include::{core-docs-dir}/userDetailsService.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/passwords.adoc[leveloffset=+2]
+include::{core-docs-dir}/passwords.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/urlProperties.adoc[leveloffset=+2]
+include::{core-docs-dir}/urlProperties.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/hierarchicalRoles.adoc[leveloffset=+2]
+include::{core-docs-dir}/hierarchicalRoles.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/switchUser.adoc[leveloffset=+2]
+include::{core-docs-dir}/switchUser.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/filters.adoc[leveloffset=+2]
+include::{core-docs-dir}/filters.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/channelSecurity.adoc[leveloffset=+2]
+include::{core-docs-dir}/channelSecurity.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/ip.adoc[leveloffset=+2]
+include::{core-docs-dir}/ip.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/sessionFixation.adoc[leveloffset=+2]
+include::{core-docs-dir}/sessionFixation.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/logoutHandlers.adoc[leveloffset=+2]
+include::{core-docs-dir}/logoutHandlers.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/voters.adoc[leveloffset=+2]
+include::{core-docs-dir}/voters.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/miscProperties.adoc[leveloffset=+2]
+include::{core-docs-dir}/miscProperties.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/tutorials.adoc[leveloffset=+2]
+include::{core-docs-dir}/tutorials.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/examples.adoc[leveloffset=+2]
+include::{core-docs-dir}/examples.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/controllerMethods.adoc[leveloffset=+2]
+include::{core-docs-dir}/controllerMethods.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/i18n.adoc[leveloffset=+2]
+include::{core-docs-dir}/i18n.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/scripts.adoc[leveloffset=+2]
+include::{core-docs-dir}/scripts.adoc[leveloffset=+1]
 
-include::{core-docs-dir}/debugging.adoc[leveloffset=+2]
+include::{core-docs-dir}/debugging.adoc[leveloffset=+1]
 
 === API Reference
 
@@ -111,23 +111,23 @@ The Core plugin Groovydoc API documentation is available at https://apache.githu
 
 == ACL Plugin
 
-include::{acl-docs-dir}/introduction.adoc[leveloffset=+2]
+include::{acl-docs-dir}/introduction.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/installing.adoc[leveloffset=+2]
+include::{acl-docs-dir}/installing.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/usage.adoc[leveloffset=+2]
+include::{acl-docs-dir}/usage.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/tutorial.adoc[leveloffset=+2]
+include::{acl-docs-dir}/tutorial.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/sampleApp.adoc[leveloffset=+2]
+include::{acl-docs-dir}/sampleApp.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/AclUtilService.adoc[leveloffset=+2]
+include::{acl-docs-dir}/AclUtilService.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/Scripts.adoc[leveloffset=+2]
+include::{acl-docs-dir}/Scripts.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/TagLibraries.adoc[leveloffset=+2]
+include::{acl-docs-dir}/TagLibraries.adoc[leveloffset=+1]
 
-include::{acl-docs-dir}/history.adoc[leveloffset=+2]
+include::{acl-docs-dir}/history.adoc[leveloffset=+1]
 
 === API Reference
 
@@ -139,13 +139,13 @@ The ACL plugin Groovydoc API documentation is available at https://apache.github
 
 == CAS Plugin
 
-include::{cas-docs-dir}/introduction.adoc[leveloffset=+2]
+include::{cas-docs-dir}/introduction.adoc[leveloffset=+1]
 
-include::{cas-docs-dir}/usage.adoc[leveloffset=+2]
+include::{cas-docs-dir}/usage.adoc[leveloffset=+1]
 
-include::{cas-docs-dir}/configuration.adoc[leveloffset=+2]
+include::{cas-docs-dir}/configuration.adoc[leveloffset=+1]
 
-include::{cas-docs-dir}/history.adoc[leveloffset=+2]
+include::{cas-docs-dir}/history.adoc[leveloffset=+1]
 
 === API Reference
 
@@ -157,11 +157,11 @@ The CAS plugin Groovydoc API documentation is available at https://apache.github
 
 == LDAP Plugin
 
-include::{ldap-docs-dir}/introduction.adoc[leveloffset=+2]
+include::{ldap-docs-dir}/introduction.adoc[leveloffset=+1]
 
-include::{ldap-docs-dir}/usage.adoc[leveloffset=+2]
+include::{ldap-docs-dir}/usage.adoc[leveloffset=+1]
 
-include::{ldap-docs-dir}/configuration.adoc[leveloffset=+2]
+include::{ldap-docs-dir}/configuration.adoc[leveloffset=+1]
 
 === API Reference
 
@@ -173,13 +173,13 @@ The LDAP plugin Groovydoc API documentation is available at https://apache.githu
 
 == OAuth2 Plugin
 
-include::{oauth2-docs-dir}/introduction.adoc[leveloffset=+2]
+include::{oauth2-docs-dir}/introduction.adoc[leveloffset=+1]
 
-include::{oauth2-docs-dir}/installation.adoc[leveloffset=+2]
+include::{oauth2-docs-dir}/installation.adoc[leveloffset=+1]
 
-include::{oauth2-docs-dir}/configuration.adoc[leveloffset=+2]
+include::{oauth2-docs-dir}/configuration.adoc[leveloffset=+1]
 
-include::{oauth2-docs-dir}/extensions.adoc[leveloffset=+2]
+include::{oauth2-docs-dir}/extensions.adoc[leveloffset=+1]
 
 === API Reference
 
@@ -191,39 +191,39 @@ The OAuth2 plugin Groovydoc API documentation is available at https://apache.git
 
 == REST Plugin
 
-include::{rest-docs-dir}/introduction.adoc[leveloffset=+2]
+include::{rest-docs-dir}/introduction.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/whatsNew60.adoc[leveloffset=+2]
+include::{rest-docs-dir}/whatsNew60.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/whatsNew50.adoc[leveloffset=+2]
+include::{rest-docs-dir}/whatsNew50.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/whatsNew20.adoc[leveloffset=+2]
+include::{rest-docs-dir}/whatsNew20.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/whatsNew15.adoc[leveloffset=+2]
+include::{rest-docs-dir}/whatsNew15.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/whatsNew14.adoc[leveloffset=+2]
+include::{rest-docs-dir}/whatsNew14.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/configuration.adoc[leveloffset=+2]
+include::{rest-docs-dir}/configuration.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/events.adoc[leveloffset=+2]
+include::{rest-docs-dir}/events.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/authentication.adoc[leveloffset=+2]
+include::{rest-docs-dir}/authentication.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/tokenGeneration.adoc[leveloffset=+2]
+include::{rest-docs-dir}/tokenGeneration.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/tokenStorage.adoc[leveloffset=+2]
+include::{rest-docs-dir}/tokenStorage.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/tokenRendering.adoc[leveloffset=+2]
+include::{rest-docs-dir}/tokenRendering.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/tokenValidation.adoc[leveloffset=+2]
+include::{rest-docs-dir}/tokenValidation.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/cors.adoc[leveloffset=+2]
+include::{rest-docs-dir}/cors.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/oauth.adoc[leveloffset=+2]
+include::{rest-docs-dir}/oauth.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/debugging.adoc[leveloffset=+2]
+include::{rest-docs-dir}/debugging.adoc[leveloffset=+1]
 
-include::{rest-docs-dir}/faq.adoc[leveloffset=+2]
+include::{rest-docs-dir}/faq.adoc[leveloffset=+1]
 
 === API Reference
 
@@ -235,27 +235,27 @@ The REST plugin Groovydoc API documentation is available at https://apache.githu
 
 == UI Plugin
 
-include::{ui-docs-dir}/introduction.adoc[leveloffset=+2]
+include::{ui-docs-dir}/introduction.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/user.adoc[leveloffset=+2]
+include::{ui-docs-dir}/user.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/role.adoc[leveloffset=+2]
+include::{ui-docs-dir}/role.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/requestmap.adoc[leveloffset=+2]
+include::{ui-docs-dir}/requestmap.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/userRegistration.adoc[leveloffset=+2]
+include::{ui-docs-dir}/userRegistration.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/forgotPassword.adoc[leveloffset=+2]
+include::{ui-docs-dir}/forgotPassword.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/acls.adoc[leveloffset=+2]
+include::{ui-docs-dir}/acls.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/persistentCookie.adoc[leveloffset=+2]
+include::{ui-docs-dir}/persistentCookie.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/configUI.adoc[leveloffset=+2]
+include::{ui-docs-dir}/configUI.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/customization.adoc[leveloffset=+2]
+include::{ui-docs-dir}/customization.adoc[leveloffset=+1]
 
-include::{ui-docs-dir}/scripts.adoc[leveloffset=+2]
+include::{ui-docs-dir}/scripts.adoc[leveloffset=+1]
 
 === API Reference
 

docs/src/docs/introduction.adoc

@@ -65,4 +65,4 @@ Once you have the core plugin working, you can add any combination of extension
 | 5.x
 |===
 
-For information on upgrading from previous versions, see the <<upgrading,Upgrading>> section.
+For information on upgrading from previous versions, see the <<upgrading-from-previous-versions,Upgrading>> section.

docs/src/docs/upgrading/upgrading7x.adoc

@@ -17,18 +17,18 @@ specific language governing permissions and limitations
 under the License.
 ////
 
-=== Upgrading to 7.x (from Grails 6 / Spring Security 5.x)
+== Upgrading to 7.x (from Grails 6 / Spring Security 5.x)
 
 This guide covers upgrading the Grails Spring Security plugins from the Grails 6.x era (plugin versions 5.x/6.x, Spring Security 5.8.x) to the Grails 7.x era (plugin version 7.x, Spring Security 6.x).
 
 For the full Grails framework upgrade guide (Java 17 baseline, Groovy 4, coordinate changes, Gradle updates, etc.), see the https://docs.grails.org/7.0.x/guide/upgrading.html[Grails 7 Upgrade Guide].
 
-==== Repository Consolidation
+=== Repository Consolidation
 
 The previously separate Spring Security plugin repositories have been consolidated into a single mono-repository: https://github.com/apache/grails-spring-security[apache/grails-spring-security].
 This repository now contains the core plugin and all extension plugins (ACL, CAS, LDAP, OAuth2, REST, and UI).
 
-==== Dependency Changes
+=== Dependency Changes
 
 All artifacts have moved to the `org.apache.grails` group.
 The most notable change is that `spring-security-core` has been renamed to `grails-spring-security` (dropping the `-core` suffix).
@@ -73,7 +73,7 @@ Update your `build.gradle` dependencies as follows:
 | `org.apache.grails:grails-spring-security-ui`
 |===
 
-===== Example
+==== Example
 
 A typical Spring Security Core dependency change:
 
@@ -90,7 +90,7 @@ implementation 'org.apache.grails:grails-spring-security'
 NOTE: With the unified Grails BOM, versions are managed automatically when using a Grails Gradle plugin.
 You no longer need to specify the version explicitly.
 
-==== REST Plugin Token Storage Submodules
+=== REST Plugin Token Storage Submodules
 
 If you use the Spring Security REST plugin with a specific token storage backend, note the following renames:
 
@@ -99,7 +99,7 @@ If you use the Spring Security REST plugin with a specific token storage backend
 * `spring-security-rest-memcached` is now `grails-spring-security-rest-memcached`
 * `spring-security-rest-redis` is now `grails-spring-security-rest-redis`
 
-==== Spring Security 6.x Changes
+=== Spring Security 6.x Changes
 
 The underlying Spring Security framework has been upgraded from 5.8.x to 6.x.
 Key changes that may affect your application:
@@ -108,7 +108,7 @@ Key changes that may affect your application:
 * **Security filter chain configuration**: The `WebSecurityConfigurerAdapter` has been removed in Spring Security 6. If you have custom security configurations extending this class, you will need to migrate to the component-based approach. The Grails Spring Security plugin handles the core filter chain configuration internally, but any custom Spring Security beans may need updating.
 * **Default security behaviors**: Some default behaviors have changed in Spring Security 6 (e.g., CSRF protection, session management). Review the https://docs.spring.io/spring-security/reference/migration-7/index.html[Spring Security reference documentation] for the complete list of changes.
 
-==== Automated Migration
+=== Automated Migration
 
 The coordinate rename script from the Grails core repository also handles Spring Security artifacts.
 Running it will update your Gradle files automatically:
@@ -120,7 +120,7 @@ Running it will update your Gradle files automatically:
 
 The script is located in the `etc/bin` directory of the https://github.com/apache/grails-core/tree/7.0.x/etc/bin[grails-core] repository.
 
-==== Configuration Compatibility
+=== Configuration Compatibility
 
 The `grails.plugin.springsecurity.*` configuration namespace remains unchanged.
 Your existing `application.groovy` or `application.yml` security configuration should work without modification after updating the dependencies.

docs/src/docs/whatsNew.adoc

@@ -28,7 +28,7 @@ This means all plugins share the same version number and are guaranteed to be co
 
 The plugins have transitioned to the Apache Software Foundation.
 The group ID has changed from `org.grails.plugins` to `org.apache.grails`, and artifact names have been updated.
-See the <<upgrading,Upgrading>> section for a full mapping of old to new coordinates.
+See the <<upgrading-from-previous-versions,Upgrading>> section for a full mapping of old to new coordinates.
 
 === Unified Versioning
 

plugin-acl/docs/src/docs/introduction.adoc

@@ -24,6 +24,6 @@ The ACL plugin adds Domain Object Security support to a Grails application that
 
 The core plugin and other extension plugins support restricting access to URLs via rules that include checking a user's authentication status, roles, etc. and the ACL plugin extends this by adding support for restricting access to individual domain class instances. The access can be very fine-grained and can define which actions can be taken on an object - these typically include Read, Create, Write, Delete, and Administer but you're free to define whatever actions you like.
 
-To learn about using ACLs in Grails, you can follow the <<tutorial>> and in addition you can download and run a complete Grails application that uses the plugin. Installing and running the application are described in <<sampleApp>>.
+To learn about using ACLs in Grails, you can follow the <<acl-tutorial>> and in addition you can download and run a complete Grails application that uses the plugin. Installing and running the application are described in <<acl-sampleApp>>.
 
 In addition to this document, you should read the https://docs.spring.io/spring-security/reference/servlet/authorization/acls.html[Spring Security documentation].

plugin-acl/docs/src/docs/tutorial.adoc

@@ -51,7 +51,7 @@ This will transitively install the https://github.com/apache/grails-spring-secur
 $ grails s2-quickstart com.testacl User Role
 ....
 
-The ACL support uses domain classes and includes them in the JAR file, but to allow customizing them (e.g. to enable Hibernate 2^nd^-level caching) there's a script that copies the domain classes into your application, <<s2-create-acl-domains>>. There's no need to run this script if the default configuration is sufficient.
+The ACL support uses domain classes and includes them in the JAR file, but to allow customizing them (e.g. to enable Hibernate 2^nd^-level caching) there's a script that copies the domain classes into your application, <<acl-s2-create-acl-domains>>. There's no need to run this script if the default configuration is sufficient.
 
 Note that you cannot change the domain class names or packages since the plugin references them by name. Grails allows you to override plugin artifacts by creating (or copying and modifying existing) classes with the same name and package in your application.
 

plugin-acl/docs/src/docs/usage/domainClasses.adoc

@@ -22,7 +22,7 @@ under the License.
 
 The plugin uses domain classes to manage database state. Ordinarily the database structure isn't all that important, but to be compatible with the traditional JDBC-based Spring Security code, the domain classes are configured to generate the table and column names that are used there.
 
-The plugin classes related to persistence use these classes, so they're included in the plugin but can be overridden by running the <<s2-create-acl-domains>> script.
+The plugin classes related to persistence use these classes, so they're included in the plugin but can be overridden by running the <<acl-s2-create-acl-domains>> script.
 
 As you can see, the database structure is highly normalized.
 

plugin-core/docs/src/docs/authentication/rememberMeCookie.adoc

@@ -92,4 +92,4 @@ The remember-me cookie is very secure, but for an even stronger solution you can
 
 Persistent login is also useful for authentication schemes like Facebook, where you do not manage passwords in your database, but most of the other user information is stored locally. Without a password you cannot use the standard cookie format, so persistent logins enable remember-me cookies in these scenarios.
 
-To use this feature, run the <<s2-create-persistent-token>> script. This will create the domain class, and register its name in `grails-app/conf/application.groovy`. It will also enable persistent logins by setting `rememberMe.persistent` to `true`.
+To use this feature, run the <<core-s2-create-persistent-token>> script. This will create the domain class, and register its name in `grails-app/conf/application.groovy`. It will also enable persistent logins by setting `rememberMe.persistent` to `true`.