Spring Boot is the worst for this. It seems like every minor update deprecates some security classes which yields a few hours of effort to implement the same damn thing every week
I’ve worked in both android and spring boot and rewriting your security to use a filter chain is nothing* compared to the shenanigans google likes to pull. Keeping up with the deprecations and imaginary “best practices” is half the job. It’s like someone combined the worst parts of react with the worst Java timeline and forced people to write inscutable spaghetti that’s completely impractical/impossible to test.
*there are valid criticisms of spring security, but I think this particular change improved things, even if it felt pointless
Spring Boot is the worst for this. It seems like every minor update deprecates some security classes which yields a few hours of effort to implement the same damn thing every week
I’ve worked in both android and spring boot and rewriting your security to use a filter chain is nothing* compared to the shenanigans google likes to pull. Keeping up with the deprecations and imaginary “best practices” is half the job. It’s like someone combined the worst parts of react with the worst Java timeline and forced people to write inscutable spaghetti that’s completely impractical/impossible to test.
*there are valid criticisms of spring security, but I think this particular change improved things, even if it felt pointless
Man, early dotnet core was like that, but thankfully it’s been stable since 3 or 5.