Migrate to SubjectX500PrincipalExtractor in SslContextPreAuthenticationExtractor

therepanic · onobc · commit ead6016a362b · 2025-12-02T13:23:50.000-06:00
Switch to SubjectX500PrincipalExtractor to avoid usage of deprecated API
and string-based DN parsing.

Signed-off-by: Andrey Litvitski &lt;andrey1010102008@gmail.com&gt;
diff --git a/spring-grpc-core/src/main/java/org/springframework/grpc/server/security/SslContextPreAuthenticationExtractor.java b/spring-grpc-core/src/main/java/org/springframework/grpc/server/security/SslContextPreAuthenticationExtractor.java
@@ -30,7 +30,7 @@
 
 import org.springframework.security.core.Authentication;
 import org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken;
-import org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor;
+import org.springframework.security.web.authentication.preauth.x509.SubjectX500PrincipalExtractor;
 import org.springframework.security.web.authentication.preauth.x509.X509PrincipalExtractor;
 import org.springframework.util.Assert;
 
@@ -46,7 +46,7 @@ public class SslContextPreAuthenticationExtractor implements GrpcAuthenticationE
 	private X509PrincipalExtractor principalExtractor;
 
 	public SslContextPreAuthenticationExtractor() {
-		this(new SubjectDnX509PrincipalExtractor());
+		this(new SubjectX500PrincipalExtractor());
 	}
 
 	public SslContextPreAuthenticationExtractor(X509PrincipalExtractor principalExtractor) {
