Correct Servlet Path Kotlin Documentation

jzheaux · jzheaux · commit d569eed49d1c · 2025-01-13T14:20:45.000-07:00
diff --git a/docs/modules/ROOT/pages/servlet/integrations/mvc.adoc b/docs/modules/ROOT/pages/servlet/integrations/mvc.adoc
@@ -199,7 +199,9 @@ We could add additional rules for all the permutations of Spring MVC, but this w
 Fortunately, when using the `requestMatchers` DSL method, Spring Security automatically creates a `PathPatternRequestMatcher` if it detects that Spring MVC is available in the classpath.
 Therefore, it will protect the same URLs that Spring MVC will match on by using Spring MVC to match on the URL.
 
-One common requirement when using Spring MVC is to specify the servlet path property, for that you can use the `PathPatternRequestMatcher.Builder` to create multiple `PathPatternRequestMatcher` instances that share the same servlet path:
+One common requirement when using Spring MVC is to specify the servlet path property.
+
+For Java-based Configuration, you can use the `PathPatternRequestMatcher.Builder` to create multiple `PathPatternRequestMatcher` instances that share the same servlet path:
 
 [tabs]
 ======
@@ -218,38 +220,49 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
 	return http.build();
 }
 ----
+======
+
+[NOTE]
+=====
+For your convenience, you also can use `ServletRequestMatcherBuilders` which exposes an API that more directly reflects the Servlet spec.
+=====
+
+For Kotlin and XML, this happens automatically when you specify the servlet path in the configuration:
 
+[tabs]
+======
 Kotlin::
 +
 [source,kotlin,role="secondary"]
 ----
 @Bean
 open fun filterChain(http: HttpSecurity): SecurityFilterChain {
-    val mvcMatcherBuilder = PathPatternRequestMatcher.Builder().servletPath("/path")
     http {
         authorizeHttpRequests {
-            authorize(mvcMatcherBuilder.pattern("/admin"), hasRole("ADMIN"))
-            authorize(mvcMatcherBuilder.pattern("/user"), hasRole("USER"))
+            authorize("/admin", "/path", hasRole("ADMIN"))
+            authorize("/user", "/path", hasRole("USER"))
         }
     }
+
     return http.build()
 }
 ----
-======
-
-[NOTE]
-=====
-For your convenience, you also can use `ServletRequestMatcherBuilders` which exposes an API that more directly reflects the Servlet spec.
-=====
-
-The following XML has the same effect:
 
-[source,xml]
+Xml::
++
+[source,xml,role="secondary"]
 ----
 <http request-matcher="mvc">
-	<intercept-url pattern="/admin" access="hasRole('ADMIN')"/>
+	<intercept-url pattern="/admin" servlet-path="/path" access="hasRole('ADMIN')"/>
+	<intercept-url pattern="/user" servlet-path="/path" access="hasRole('USER')"/>
 </http>
 ----
+======
+
+
+The following XML has the same effect:
+
+
 
 [[mvc-authentication-principal]]
 == @AuthenticationPrincipal
