spring-projects
diff --git a/‎config/src/main/java/org/springframework/security/config/annotation/authentication/configurers/userdetails/AbstractDaoAuthenticationConfigurer.java
-1 b/‎config/src/main/java/org/springframework/security/config/annotation/authentication/configurers/userdetails/AbstractDaoAuthenticationConfigurer.java
-1
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/AuthenticationManagerBuilderTests.groovy
+3-2 b/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/AuthenticationManagerBuilderTests.groovy
+3-2
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/NamespaceAuthenticationManagerTests.groovy
+6-5 b/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/NamespaceAuthenticationManagerTests.groovy
+6-5
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/NamespaceJdbcUserServiceTests.groovy
+3-3 b/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/NamespaceJdbcUserServiceTests.groovy
+3-3
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/configuration/AuthenticationConfigurationTests.groovy
+10-9 b/‎config/src/test/groovy/org/springframework/security/config/annotation/authentication/configuration/AuthenticationConfigurationTests.groovy
+10-9
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/web/SampleWebSecurityConfigurerAdapterTests.groovy
+7-5 b/‎config/src/test/groovy/org/springframework/security/config/annotation/web/SampleWebSecurityConfigurerAdapterTests.groovy
+7-5
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/web/WebSecurityConfigurerAdapterTests.groovy
+7-5 b/‎config/src/test/groovy/org/springframework/security/config/annotation/web/WebSecurityConfigurerAdapterTests.groovy
+7-5
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/web/configuration/BaseWebConfig.groovy
+4-3 b/‎config/src/test/groovy/org/springframework/security/config/annotation/web/configuration/BaseWebConfig.groovy
+4-3
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/web/configuration/EnableWebSecurityTests.groovy
+2-1 b/‎config/src/test/groovy/org/springframework/security/config/annotation/web/configuration/EnableWebSecurityTests.groovy
+2-1
diff --git a/‎config/src/test/groovy/org/springframework/security/config/annotation/web/configurers/CsrfConfigurerTests.groovy
+10-8 b/‎config/src/test/groovy/org/springframework/security/config/annotation/web/configurers/CsrfConfigurerTests.groovy
+10-8
@@ -18,7 +18,6 @@
 import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
 import org.springframework.security.config.annotation.ObjectPostProcessor;
 import org.springframework.security.config.annotation.SecurityBuilder;
-import org.springframework.security.config.annotation.SecurityConfigurer;
 import org.springframework.security.config.annotation.authentication.ProviderManagerBuilder;
 import org.springframework.security.core.userdetails.UserDetailsService;
 import org.springframework.security.crypto.password.PasswordEncoder;
 
@@ -35,6 +35,7 @@ import org.springframework.security.config.annotation.configuration.ObjectPostPr
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
 import org.springframework.security.core.Authentication
+import org.springframework.security.core.userdetails.PasswordEncodedUser
 import org.springframework.security.core.userdetails.UserDetailsService
 import org.springframework.security.provisioning.InMemoryUserDetailsManager;
 
@@ -90,10 +91,10 @@ class AuthenticationManagerBuilderTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER").and()
+					.withUser(PasswordEncodedUser.user())
 					.and()
 				.inMemoryAuthentication()
-					.withUser("admin").password("password").roles("USER","ADMIN")
+					.withUser(PasswordEncodedUser.admin())
 		}
 	}
 
 
@@ -25,6 +25,7 @@ import org.springframework.security.config.annotation.authentication.builders.Au
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
 import org.springframework.security.core.Authentication
+import org.springframework.security.core.userdetails.PasswordEncodedUser
 
 /**
  *
@@ -50,7 +51,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 
 		// Only necessary to have access to verify the AuthenticationManager
@@ -68,7 +69,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {
 			Authentication auth = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken("user","password"))
 		then:
 			auth.credentials == "password"
-			auth.principal.password == "password"
+			auth.principal.password
 	}
 
 	@EnableWebSecurity
@@ -77,7 +78,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {
 			auth
 				.eraseCredentials(false)
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 
 		// Only necessary to have access to verify the AuthenticationManager
@@ -95,7 +96,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {
 			Authentication auth = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken("user","password"))
 		then:
 			auth.credentials == "password"
-			auth.principal.password == "password"
+			auth.principal.password
 	}
 
 	@EnableWebSecurity
@@ -105,7 +106,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {
 			auth
 				.eraseCredentials(false)
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 	}
 }
@@ -15,6 +15,8 @@
  */
 package org.springframework.security.config.annotation.authentication
 
+import org.springframework.security.core.userdetails.PasswordEncodedUser
+
 import javax.sql.DataSource
 
 import org.springframework.beans.factory.annotation.Autowired
@@ -89,9 +91,7 @@ class NamespaceJdbcUserServiceTests extends BaseSpringSpec {
 					// imports the default schema (will fail if already exists)
 					.withDefaultSchema()
 					// adds this user automatically (will fail if already exists)
-					.withUser("user")
-						.password("password")
-						.roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 
 		// Only necessary to have access to verify the AuthenticationManager
 
@@ -39,6 +39,7 @@ import org.springframework.security.config.annotation.web.configuration.WebSecur
 import org.springframework.security.core.AuthenticationException
 import org.springframework.security.core.authority.AuthorityUtils
 import org.springframework.security.core.context.SecurityContextHolder
+import org.springframework.security.core.userdetails.PasswordEncodedUser
 import org.springframework.security.core.userdetails.User
 import org.springframework.security.core.userdetails.UserDetailsService
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder
@@ -64,7 +65,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 	static class GlobalMethodSecurityAutowiredConfig {
 		@Autowired
 		public void configureGlobal(AuthenticationManagerBuilder auth) {
-			auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")
+			auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())
 		}
 	}
 
@@ -88,7 +89,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 	static class WebSecurityConfig extends WebSecurityConfigurerAdapter {
 		@Autowired
 		public void configureGlobal(AuthenticationManagerBuilder auth) {
-			auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")
+			auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())
 		}
 	}
 
@@ -111,7 +112,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 	static class WebMvcSecurityConfig extends WebSecurityConfigurerAdapter {
 		@Autowired
 		public void configureGlobal(AuthenticationManagerBuilder auth) {
-			auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")
+			auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())
 		}
 	}
 
@@ -148,7 +149,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 	@Configuration
 	static class GlobalAuthenticationConfiguererAdapterImpl extends GlobalAuthenticationConfigurerAdapter {
 		public void init(AuthenticationManagerBuilder auth) throws Exception {
-			auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")
+			auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())
 		}
 	}
 
@@ -264,7 +265,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 		public void init(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 	}
 
@@ -282,7 +283,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 				return;
 			}
 
-			User user = new User("boot","password", AuthorityUtils.createAuthorityList("ROLE_USER"))
+			User user = User.withUserDetails(PasswordEncodedUser.user()).username("boot").build()
 
 			List<User> users = Arrays.asList(user);
 			InMemoryUserDetailsManager inMemory = new InMemoryUserDetailsManager(users);
@@ -373,11 +374,11 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 		when:
 		am.authenticate(new UsernamePasswordAuthenticationToken("user", "password"))
 		then:
-		1 * uds.loadUserByUsername("user") >> new User("user","password",AuthorityUtils.createAuthorityList("ROLE_USER"))
+		1 * uds.loadUserByUsername("user") >> PasswordEncodedUser.user()
 		when:
 		am.authenticate(new UsernamePasswordAuthenticationToken("user", "invalid"))
 		then:
-		1 * uds.loadUserByUsername("user") >> new User("user","password",AuthorityUtils.createAuthorityList("ROLE_USER"))
+		1 * uds.loadUserByUsername("user") >>  PasswordEncodedUser.user()
 		thrown(AuthenticationException.class)
 	}
 
@@ -514,4 +515,4 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {
 		@Autowired
 		Service service
 	}
-}
+}
@@ -15,6 +15,8 @@
  */
 package org.springframework.security.config.annotation.web
 
+import org.springframework.security.core.userdetails.PasswordEncodedUser
+
 import javax.servlet.http.HttpServletResponse
 
 import org.springframework.beans.factory.annotation.Autowired
@@ -93,7 +95,7 @@ public class SampleWebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER");
+					.withUser(PasswordEncodedUser.user());
 		}
 	}
 
@@ -180,8 +182,8 @@ public class SampleWebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER").and()
-					.withUser("admin").password("password").roles("USER", "ADMIN");
+					.withUser(PasswordEncodedUser.user())
+					.withUser(PasswordEncodedUser.admin());
 		}
 	}
 
@@ -276,8 +278,8 @@ public class SampleWebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER").and()
-					.withUser("admin").password("password").roles("USER", "ADMIN");
+				.withUser(PasswordEncodedUser.user())
+				.withUser(PasswordEncodedUser.admin());
 		}
 
 		@Configuration
 
@@ -13,7 +13,9 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-package org.springframework.security.config.annotation.web;
+package org.springframework.security.config.annotation.web
+
+import org.springframework.security.core.userdetails.PasswordEncodedUser;
 
 import static org.junit.Assert.*
 import static org.springframework.security.config.annotation.web.WebSecurityConfigurerAdapterTestsConfigs.*
@@ -94,7 +96,7 @@ class WebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 
 		@Override
@@ -117,7 +119,7 @@ class WebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 
 		@Override
@@ -153,7 +155,7 @@ class WebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser("user").password("{noop}password").roles("USER")
 		}
 
 		@Override
@@ -234,7 +236,7 @@ class WebSecurityConfigurerAdapterTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+					.withUser(PasswordEncodedUser.user())
 		}
 	}
 
 
@@ -17,6 +17,7 @@ package org.springframework.security.config.annotation.web.configuration;
 
 import org.springframework.context.annotation.Configuration
 import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
+import org.springframework.security.core.userdetails.PasswordEncodedUser
 
 /**
  *
@@ -34,7 +35,7 @@ public abstract class BaseWebConfig extends WebSecurityConfigurerAdapter {
 	protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 		auth
 			.inMemoryAuthentication()
-				.withUser("user").password("password").roles("USER").and()
-				.withUser("admin").password("password").roles("USER", "ADMIN");
+				.withUser(PasswordEncodedUser.user())
+				.withUser(PasswordEncodedUser.admin());
 	}
-}
+}
@@ -20,6 +20,7 @@ import org.springframework.security.authentication.TestingAuthenticationToken
 import org.springframework.security.core.annotation.AuthenticationPrincipal
 import org.springframework.security.core.context.SecurityContext
 import org.springframework.security.core.context.SecurityContextImpl
+import org.springframework.security.core.userdetails.PasswordEncodedUser
 import org.springframework.security.core.userdetails.User
 import org.springframework.security.web.context.HttpSessionSecurityContextRepository
 import org.springframework.test.context.web.WebAppConfiguration
@@ -65,7 +66,7 @@ class EnableWebSecurityTests extends BaseSpringSpec {
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
 				.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER");
+					.withUser(PasswordEncodedUser.user());
 		}
 
 		@Bean
 
@@ -15,6 +15,8 @@
  */
 package org.springframework.security.config.annotation.web.configurers
 
+import org.springframework.security.core.userdetails.PasswordEncodedUser
+
 import javax.servlet.http.HttpServletResponse
 
 import spock.lang.Unroll
@@ -135,8 +137,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {
 		@Override
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
-					.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+				.inMemoryAuthentication()
+					.withUser(PasswordEncodedUser.user());
 		}
 	}
 
@@ -257,8 +259,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {
 		@Override
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
-					.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+				.inMemoryAuthentication()
+					.withUser(PasswordEncodedUser.user());
 		}
 	}
 
@@ -447,8 +449,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {
 		@Override
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
-					.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+				.inMemoryAuthentication()
+					.withUser(PasswordEncodedUser.user());
 		}
 	}
 
@@ -487,8 +489,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {
 		@Override
 		protected void configure(AuthenticationManagerBuilder auth) throws Exception {
 			auth
-					.inMemoryAuthentication()
-					.withUser("user").password("password").roles("USER")
+				.inMemoryAuthentication()
+					.withUser(PasswordEncodedUser.user());
 		}
 	}
Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,7 @@ import org.springframework.security.config.annotation.authentication.builders.Au`
`25`	`25`	`import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;`
`26`	`26`	`import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;`
`27`	`27`	`import org.springframework.security.core.Authentication`
	`28`	`+import org.springframework.security.core.userdetails.PasswordEncodedUser`
`28`	`29`
`29`	`30`	`/**`
`30`	`31`	`*`
`@@ -50,7 +51,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {`
`50`	`51`	`protected void configure(AuthenticationManagerBuilder auth) throws Exception {`
`51`	`52`	`auth`
`52`	`53`	`.inMemoryAuthentication()`
`53`		`- .withUser("user").password("password").roles("USER")`
	`54`	`+ .withUser(PasswordEncodedUser.user())`
`54`	`55`	`}`
`55`	`56`
`56`	`57`	`// Only necessary to have access to verify the AuthenticationManager`
`@@ -68,7 +69,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {`
`68`	`69`	`Authentication auth = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken("user","password"))`
`69`	`70`	`then:`
`70`	`71`	`auth.credentials == "password"`
`71`		`- auth.principal.password == "password"`
	`72`	`+ auth.principal.password`
`72`	`73`	`}`
`73`	`74`
`74`	`75`	`@EnableWebSecurity`
`@@ -77,7 +78,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {`
`77`	`78`	`auth`
`78`	`79`	`.eraseCredentials(false)`
`79`	`80`	`.inMemoryAuthentication()`
`80`		`- .withUser("user").password("password").roles("USER")`
	`81`	`+ .withUser(PasswordEncodedUser.user())`
`81`	`82`	`}`
`82`	`83`
`83`	`84`	`// Only necessary to have access to verify the AuthenticationManager`
`@@ -95,7 +96,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {`
`95`	`96`	`Authentication auth = authenticationManager.authenticate(new UsernamePasswordAuthenticationToken("user","password"))`
`96`	`97`	`then:`
`97`	`98`	`auth.credentials == "password"`
`98`		`- auth.principal.password == "password"`
	`99`	`+ auth.principal.password`
`99`	`100`	`}`
`100`	`101`
`101`	`102`	`@EnableWebSecurity`
`@@ -105,7 +106,7 @@ class NamespaceAuthenticationManagerTests extends BaseSpringSpec {`
`105`	`106`	`auth`
`106`	`107`	`.eraseCredentials(false)`
`107`	`108`	`.inMemoryAuthentication()`
`108`		`- .withUser("user").password("password").roles("USER")`
	`109`	`+ .withUser(PasswordEncodedUser.user())`
`109`	`110`	`}`
`110`	`111`	`}`
`111`	`112`	`}`
Original file line number	Diff line number	Diff line change
`@@ -39,6 +39,7 @@ import org.springframework.security.config.annotation.web.configuration.WebSecur`
`39`	`39`	`import org.springframework.security.core.AuthenticationException`
`40`	`40`	`import org.springframework.security.core.authority.AuthorityUtils`
`41`	`41`	`import org.springframework.security.core.context.SecurityContextHolder`
	`42`	`+import org.springframework.security.core.userdetails.PasswordEncodedUser`
`42`	`43`	`import org.springframework.security.core.userdetails.User`
`43`	`44`	`import org.springframework.security.core.userdetails.UserDetailsService`
`44`	`45`	`import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder`
`@@ -64,7 +65,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`64`	`65`	`static class GlobalMethodSecurityAutowiredConfig {`
`65`	`66`	`@Autowired`
`66`	`67`	`public void configureGlobal(AuthenticationManagerBuilder auth) {`
`67`		`- auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")`
	`68`	`+ auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())`
`68`	`69`	`}`
`69`	`70`	`}`
`70`	`71`
`@@ -88,7 +89,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`88`	`89`	`static class WebSecurityConfig extends WebSecurityConfigurerAdapter {`
`89`	`90`	`@Autowired`
`90`	`91`	`public void configureGlobal(AuthenticationManagerBuilder auth) {`
`91`		`- auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")`
	`92`	`+ auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())`
`92`	`93`	`}`
`93`	`94`	`}`
`94`	`95`
`@@ -111,7 +112,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`111`	`112`	`static class WebMvcSecurityConfig extends WebSecurityConfigurerAdapter {`
`112`	`113`	`@Autowired`
`113`	`114`	`public void configureGlobal(AuthenticationManagerBuilder auth) {`
`114`		`- auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")`
	`115`	`+ auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())`
`115`	`116`	`}`
`116`	`117`	`}`
`117`	`118`
`@@ -148,7 +149,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`148`	`149`	`@Configuration`
`149`	`150`	`static class GlobalAuthenticationConfiguererAdapterImpl extends GlobalAuthenticationConfigurerAdapter {`
`150`	`151`	`public void init(AuthenticationManagerBuilder auth) throws Exception {`
`151`		`- auth.inMemoryAuthentication().withUser("user").password("password").roles("USER")`
	`152`	`+ auth.inMemoryAuthentication().withUser(PasswordEncodedUser.user())`
`152`	`153`	`}`
`153`	`154`	`}`
`154`	`155`
`@@ -264,7 +265,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`264`	`265`	`public void init(AuthenticationManagerBuilder auth) throws Exception {`
`265`	`266`	`auth`
`266`	`267`	`.inMemoryAuthentication()`
`267`		`- .withUser("user").password("password").roles("USER")`
	`268`	`+ .withUser(PasswordEncodedUser.user())`
`268`	`269`	`}`
`269`	`270`	`}`
`270`	`271`
`@@ -282,7 +283,7 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`282`	`283`	`return;`
`283`	`284`	`}`
`284`	`285`
`285`		`- User user = new User("boot","password", AuthorityUtils.createAuthorityList("ROLE_USER"))`
	`286`	`+ User user = User.withUserDetails(PasswordEncodedUser.user()).username("boot").build()`
`286`	`287`
`287`	`288`	`List<User> users = Arrays.asList(user);`
`288`	`289`	`InMemoryUserDetailsManager inMemory = new InMemoryUserDetailsManager(users);`
`@@ -373,11 +374,11 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`373`	`374`	`when:`
`374`	`375`	`am.authenticate(new UsernamePasswordAuthenticationToken("user", "password"))`
`375`	`376`	`then:`
`376`		`- 1 * uds.loadUserByUsername("user") >> new User("user","password",AuthorityUtils.createAuthorityList("ROLE_USER"))`
	`377`	`+ 1 * uds.loadUserByUsername("user") >> PasswordEncodedUser.user()`
`377`	`378`	`when:`
`378`	`379`	`am.authenticate(new UsernamePasswordAuthenticationToken("user", "invalid"))`
`379`	`380`	`then:`
`380`		`- 1 * uds.loadUserByUsername("user") >> new User("user","password",AuthorityUtils.createAuthorityList("ROLE_USER"))`
	`381`	`+ 1 * uds.loadUserByUsername("user") >> PasswordEncodedUser.user()`
`381`	`382`	`thrown(AuthenticationException.class)`
`382`	`383`	`}`
`383`	`384`
`@@ -514,4 +515,4 @@ class AuthenticationConfigurationTests extends BaseSpringSpec {`
`514`	`515`	`@Autowired`
`515`	`516`	`Service service`
`516`	`517`	`}`
`517`		`-}`
	`518`	`+}`
Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,8 @@`
`15`	`15`	`*/`
`16`	`16`	`package org.springframework.security.config.annotation.web.configurers`
`17`	`17`
	`18`	`+import org.springframework.security.core.userdetails.PasswordEncodedUser`
	`19`	`+`
`18`	`20`	`import javax.servlet.http.HttpServletResponse`
`19`	`21`
`20`	`22`	`import spock.lang.Unroll`
`@@ -135,8 +137,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {`
`135`	`137`	`@Override`
`136`	`138`	`protected void configure(AuthenticationManagerBuilder auth) throws Exception {`
`137`	`139`	`auth`
`138`		`- .inMemoryAuthentication()`
`139`		`- .withUser("user").password("password").roles("USER")`
	`140`	`+ .inMemoryAuthentication()`
	`141`	`+ .withUser(PasswordEncodedUser.user());`
`140`	`142`	`}`
`141`	`143`	`}`
`142`	`144`
`@@ -257,8 +259,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {`
`257`	`259`	`@Override`
`258`	`260`	`protected void configure(AuthenticationManagerBuilder auth) throws Exception {`
`259`	`261`	`auth`
`260`		`- .inMemoryAuthentication()`
`261`		`- .withUser("user").password("password").roles("USER")`
	`262`	`+ .inMemoryAuthentication()`
	`263`	`+ .withUser(PasswordEncodedUser.user());`
`262`	`264`	`}`
`263`	`265`	`}`
`264`	`266`
`@@ -447,8 +449,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {`
`447`	`449`	`@Override`
`448`	`450`	`protected void configure(AuthenticationManagerBuilder auth) throws Exception {`
`449`	`451`	`auth`
`450`		`- .inMemoryAuthentication()`
`451`		`- .withUser("user").password("password").roles("USER")`
	`452`	`+ .inMemoryAuthentication()`
	`453`	`+ .withUser(PasswordEncodedUser.user());`
`452`	`454`	`}`
`453`	`455`	`}`
`454`	`456`
`@@ -487,8 +489,8 @@ class CsrfConfigurerTests extends BaseSpringSpec {`
`487`	`489`	`@Override`
`488`	`490`	`protected void configure(AuthenticationManagerBuilder auth) throws Exception {`
`489`	`491`	`auth`
`490`		`- .inMemoryAuthentication()`
`491`		`- .withUser("user").password("password").roles("USER")`
	`492`	`+ .inMemoryAuthentication()`
	`493`	`+ .withUser(PasswordEncodedUser.user());`
`492`	`494`	`}`
`493`	`495`	`}`
`494`	`496`