Remove RelyingPartyRegistration deprecations

Signed-off-by: Tran Ngoc Nhan <[email protected]>

Author: ngocnhan-tran1996

config/src/test/java/org/springframework/security/config/annotation/web/configurers/saml2/Saml2LoginConfigurerTests.java

@@ -1,5 +1,5 @@
 /*
- * Copyright 2002-2022 the original author or authors.
+ * Copyright 2002-2025 the original author or authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -134,7 +134,7 @@ public class Saml2LoginConfigurerTests {
 
 	private static final RelyingPartyRegistration registration = TestRelyingPartyRegistrations.noCredentials()
 		.signingX509Credentials((c) -> c.add(TestSaml2X509Credentials.assertingPartySigningCredential()))
-		.assertingPartyDetails((party) -> party
+		.assertingPartyMetadata((party) -> party
 			.verificationX509Credentials((c) -> c.add(TestSaml2X509Credentials.relyingPartyVerifyingCredential())))
 		.build();
 
@@ -170,7 +170,7 @@ public class Saml2LoginConfigurerTests {
 	@BeforeAll
 	static void createResponse() throws Exception {
 		String destination = registration.getAssertionConsumerServiceLocation();
-		String assertingPartyEntityId = registration.getAssertingPartyDetails().getEntityId();
+		String assertingPartyEntityId = registration.getAssertingPartyMetadata().getEntityId();
 		String relyingPartyEntityId = registration.getEntityId();
 		Response response = TestOpenSamlObjects.response(destination, assertingPartyEntityId);
 		Assertion assertion = TestOpenSamlObjects.assertion("[email protected]", assertingPartyEntityId,
@@ -365,7 +365,7 @@ public void authenticationRequestWhenCustomAuthenticationRequestPathRepositoryTh
 		request.queryParam("entityId", registration.getRegistrationId());
 		MvcResult result = this.mvc.perform(request).andExpect(status().isFound()).andReturn();
 		String redirectedUrl = result.getResponse().getRedirectedUrl();
-		assertThat(redirectedUrl).startsWith(registration.getAssertingPartyDetails().getSingleSignOnServiceLocation());
+		assertThat(redirectedUrl).startsWith(registration.getAssertingPartyMetadata().getSingleSignOnServiceLocation());
 	}
 
 	@Test

config/src/test/java/org/springframework/security/config/annotation/web/configurers/saml2/Saml2LogoutConfigurerTests.java

@@ -731,14 +731,14 @@ RelyingPartyRegistrationRepository relyingPartyRegistrationRepository() {
 			Saml2X509Credential verification = TestSaml2X509Credentials.relyingPartyVerifyingCredential();
 			RelyingPartyRegistration.Builder withCreds = TestRelyingPartyRegistrations.noCredentials()
 				.signingX509Credentials(credential(signing))
-				.assertingPartyDetails((party) -> party.verificationX509Credentials(credential(verification)));
+				.assertingPartyMetadata((party) -> party.verificationX509Credentials(credential(verification)));
 			RelyingPartyRegistration post = withCreds.build();
 			RelyingPartyRegistration get = withCreds.registrationId("get")
 				.singleLogoutServiceBinding(Saml2MessageBinding.REDIRECT)
 				.build();
 			RelyingPartyRegistration ap = withCreds.registrationId("ap")
 				.entityId("ap-entity-id")
-				.assertingPartyDetails(
+				.assertingPartyMetadata(
 						(party) -> party.singleLogoutServiceLocation("https://rp.example.org/logout/saml2/request")
 							.singleLogoutServiceResponseLocation("https://rp.example.org/logout/saml2/response"))
 				.build();

config/src/test/java/org/springframework/security/config/http/Saml2LoginBeanDefinitionParserTests.java

@@ -1,5 +1,5 @@
 /*
- * Copyright 2002-2022 the original author or authors.
+ * Copyright 2002-2025 the original author or authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -98,7 +98,7 @@ public class Saml2LoginBeanDefinitionParserTests {
 
 	private static final RelyingPartyRegistration registration = TestRelyingPartyRegistrations.noCredentials()
 		.signingX509Credentials((c) -> c.add(TestSaml2X509Credentials.assertingPartySigningCredential()))
-		.assertingPartyDetails((party) -> party
+		.assertingPartyMetadata((party) -> party
 			.verificationX509Credentials((c) -> c.add(TestSaml2X509Credentials.relyingPartyVerifyingCredential())))
 		.build();
 
@@ -141,7 +141,7 @@ public class Saml2LoginBeanDefinitionParserTests {
 	@BeforeAll
 	static void createResponse() throws Exception {
 		String destination = registration.getAssertionConsumerServiceLocation();
-		String assertingPartyEntityId = registration.getAssertingPartyDetails().getEntityId();
+		String assertingPartyEntityId = registration.getAssertingPartyMetadata().getEntityId();
 		String relyingPartyEntityId = registration.getEntityId();
 		Response response = TestOpenSamlObjects.response(destination, assertingPartyEntityId);
 		Assertion assertion = TestOpenSamlObjects.assertion("[email protected]", assertingPartyEntityId,

config/src/test/java/org/springframework/security/config/saml2/RelyingPartyRegistrationsBeanDefinitionParserTests.java

@@ -1,5 +1,5 @@
 /*
- * Copyright 2002-2023 the original author or authors.
+ * Copyright 2002-2025 the original author or authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -31,6 +31,7 @@
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.security.config.test.SpringTestContext;
 import org.springframework.security.config.test.SpringTestContextExtension;
+import org.springframework.security.saml2.provider.service.registration.AssertingPartyMetadata;
 import org.springframework.security.saml2.provider.service.registration.InMemoryRelyingPartyRegistrationRepository;
 import org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistration;
 import org.springframework.security.saml2.provider.service.registration.RelyingPartyRegistrationRepository;
@@ -151,24 +152,23 @@ public void parseWhenMetadataLocationConfiguredThenRequestMetadataFromLocation()
 			.isInstanceOf(InMemoryRelyingPartyRegistrationRepository.class);
 		RelyingPartyRegistration relyingPartyRegistration = this.relyingPartyRegistrationRepository
 			.findByRegistrationId("one");
-		RelyingPartyRegistration.AssertingPartyDetails assertingPartyDetails = relyingPartyRegistration
-			.getAssertingPartyDetails();
+		AssertingPartyMetadata assertingPartyMetadata = relyingPartyRegistration.getAssertingPartyMetadata();
 		assertThat(relyingPartyRegistration).isNotNull();
 		assertThat(relyingPartyRegistration.getRegistrationId()).isEqualTo("one");
 		assertThat(relyingPartyRegistration.getEntityId())
 			.isEqualTo("{baseUrl}/saml2/service-provider-metadata/{registrationId}");
 		assertThat(relyingPartyRegistration.getAssertionConsumerServiceLocation())
 			.isEqualTo("{baseUrl}/login/saml2/sso/{registrationId}");
 		assertThat(relyingPartyRegistration.getAssertionConsumerServiceBinding()).isEqualTo(Saml2MessageBinding.POST);
-		assertThat(assertingPartyDetails.getEntityId())
+		assertThat(assertingPartyMetadata.getEntityId())
 			.isEqualTo("https://simplesaml-for-spring-saml.apps.pcfone.io/saml2/idp/metadata.php");
-		assertThat(assertingPartyDetails.getWantAuthnRequestsSigned()).isFalse();
-		assertThat(assertingPartyDetails.getVerificationX509Credentials()).hasSize(1);
-		assertThat(assertingPartyDetails.getEncryptionX509Credentials()).hasSize(1);
-		assertThat(assertingPartyDetails.getSingleSignOnServiceLocation())
+		assertThat(assertingPartyMetadata.getWantAuthnRequestsSigned()).isFalse();
+		assertThat(assertingPartyMetadata.getVerificationX509Credentials()).hasSize(1);
+		assertThat(assertingPartyMetadata.getEncryptionX509Credentials()).hasSize(1);
+		assertThat(assertingPartyMetadata.getSingleSignOnServiceLocation())
 			.isEqualTo("https://simplesaml-for-spring-saml.apps.pcfone.io/saml2/idp/SSOService.php");
-		assertThat(assertingPartyDetails.getSingleSignOnServiceBinding()).isEqualTo(Saml2MessageBinding.REDIRECT);
-		assertThat(assertingPartyDetails.getSigningAlgorithms())
+		assertThat(assertingPartyMetadata.getSingleSignOnServiceBinding()).isEqualTo(Saml2MessageBinding.REDIRECT);
+		assertThat(assertingPartyMetadata.getSigningAlgorithms())
 			.containsExactly("http://www.w3.org/2001/04/xmldsig-more#rsa-sha256");
 	}
 
@@ -186,24 +186,23 @@ public void parseWhenMetadataLocationConfiguredAndRegistrationHasPropertiesThenD
 			.isInstanceOf(InMemoryRelyingPartyRegistrationRepository.class);
 		RelyingPartyRegistration relyingPartyRegistration = this.relyingPartyRegistrationRepository
 			.findByRegistrationId("one");
-		RelyingPartyRegistration.AssertingPartyDetails assertingPartyDetails = relyingPartyRegistration
-			.getAssertingPartyDetails();
+		AssertingPartyMetadata assertingPartyMetadata = relyingPartyRegistration.getAssertingPartyMetadata();
 		assertThat(relyingPartyRegistration).isNotNull();
 		assertThat(relyingPartyRegistration.getRegistrationId()).isEqualTo("one");
 		assertThat(relyingPartyRegistration.getEntityId()).isEqualTo("https://rp.example.org");
 		assertThat(relyingPartyRegistration.getAssertionConsumerServiceLocation())
 			.isEqualTo("https://rp.example.org/location");
 		assertThat(relyingPartyRegistration.getAssertionConsumerServiceBinding())
 			.isEqualTo(Saml2MessageBinding.REDIRECT);
-		assertThat(assertingPartyDetails.getEntityId())
+		assertThat(assertingPartyMetadata.getEntityId())
 			.isEqualTo("https://simplesaml-for-spring-saml.apps.pcfone.io/saml2/idp/metadata.php");
-		assertThat(assertingPartyDetails.getWantAuthnRequestsSigned()).isFalse();
-		assertThat(assertingPartyDetails.getVerificationX509Credentials()).hasSize(1);
-		assertThat(assertingPartyDetails.getEncryptionX509Credentials()).hasSize(1);
-		assertThat(assertingPartyDetails.getSingleSignOnServiceLocation())
+		assertThat(assertingPartyMetadata.getWantAuthnRequestsSigned()).isFalse();
+		assertThat(assertingPartyMetadata.getVerificationX509Credentials()).hasSize(1);
+		assertThat(assertingPartyMetadata.getEncryptionX509Credentials()).hasSize(1);
+		assertThat(assertingPartyMetadata.getSingleSignOnServiceLocation())
 			.isEqualTo("https://simplesaml-for-spring-saml.apps.pcfone.io/saml2/idp/SSOService.php");
-		assertThat(assertingPartyDetails.getSingleSignOnServiceBinding()).isEqualTo(Saml2MessageBinding.REDIRECT);
-		assertThat(assertingPartyDetails.getSigningAlgorithms())
+		assertThat(assertingPartyMetadata.getSingleSignOnServiceBinding()).isEqualTo(Saml2MessageBinding.REDIRECT);
+		assertThat(assertingPartyMetadata.getSigningAlgorithms())
 			.containsExactly("http://www.w3.org/2001/04/xmldsig-more#rsa-sha256");
 	}
 
@@ -214,8 +213,7 @@ public void parseWhenSingleRelyingPartyRegistrationThenAvailableInRepository() {
 			.isInstanceOf(InMemoryRelyingPartyRegistrationRepository.class);
 		RelyingPartyRegistration relyingPartyRegistration = this.relyingPartyRegistrationRepository
 			.findByRegistrationId("one");
-		RelyingPartyRegistration.AssertingPartyDetails assertingPartyDetails = relyingPartyRegistration
-			.getAssertingPartyDetails();
+		AssertingPartyMetadata assertingPartyMetadata = relyingPartyRegistration.getAssertingPartyMetadata();
 		assertThat(relyingPartyRegistration).isNotNull();
 		assertThat(relyingPartyRegistration.getRegistrationId()).isEqualTo("one");
 		assertThat(relyingPartyRegistration.getEntityId())
@@ -224,14 +222,14 @@ public void parseWhenSingleRelyingPartyRegistrationThenAvailableInRepository() {
 			.isEqualTo("{baseUrl}/login/saml2/sso/{registrationId}");
 		assertThat(relyingPartyRegistration.getAssertionConsumerServiceBinding())
 			.isEqualTo(Saml2MessageBinding.REDIRECT);
-		assertThat(assertingPartyDetails.getEntityId()).isEqualTo("https://accounts.google.com/o/saml2/idp/entity-id");
-		assertThat(assertingPartyDetails.getWantAuthnRequestsSigned()).isTrue();
-		assertThat(assertingPartyDetails.getSingleSignOnServiceLocation())
+		assertThat(assertingPartyMetadata.getEntityId()).isEqualTo("https://accounts.google.com/o/saml2/idp/entity-id");
+		assertThat(assertingPartyMetadata.getWantAuthnRequestsSigned()).isTrue();
+		assertThat(assertingPartyMetadata.getSingleSignOnServiceLocation())
 			.isEqualTo("https://accounts.google.com/o/saml2/idp/sso-url");
-		assertThat(assertingPartyDetails.getSingleSignOnServiceBinding()).isEqualTo(Saml2MessageBinding.POST);
-		assertThat(assertingPartyDetails.getVerificationX509Credentials()).hasSize(1);
-		assertThat(assertingPartyDetails.getEncryptionX509Credentials()).hasSize(1);
-		assertThat(assertingPartyDetails.getSigningAlgorithms())
+		assertThat(assertingPartyMetadata.getSingleSignOnServiceBinding()).isEqualTo(Saml2MessageBinding.POST);
+		assertThat(assertingPartyMetadata.getVerificationX509Credentials()).hasSize(1);
+		assertThat(assertingPartyMetadata.getEncryptionX509Credentials()).hasSize(1);
+		assertThat(assertingPartyMetadata.getSigningAlgorithms())
 			.containsExactly("http://www.w3.org/2001/04/xmldsig-more#rsa-sha256");
 	}
 
@@ -241,9 +239,9 @@ public void parseWhenMultiRelyingPartyRegistrationThenAvailableInRepository() {
 		assertThat(this.relyingPartyRegistrationRepository)
 			.isInstanceOf(InMemoryRelyingPartyRegistrationRepository.class);
 		RelyingPartyRegistration one = this.relyingPartyRegistrationRepository.findByRegistrationId("one");
-		RelyingPartyRegistration.AssertingPartyDetails google = one.getAssertingPartyDetails();
+		AssertingPartyMetadata google = one.getAssertingPartyMetadata();
 		RelyingPartyRegistration two = this.relyingPartyRegistrationRepository.findByRegistrationId("two");
-		RelyingPartyRegistration.AssertingPartyDetails simpleSaml = two.getAssertingPartyDetails();
+		AssertingPartyMetadata simpleSaml = two.getAssertingPartyMetadata();
 		assertThat(one).isNotNull();
 		assertThat(one.getRegistrationId()).isEqualTo("one");
 		assertThat(one.getEntityId()).isEqualTo("{baseUrl}/saml2/service-provider-metadata/{registrationId}");

config/src/test/kotlin/org/springframework/security/config/annotation/web/Saml2DslTests.kt

@@ -106,13 +106,13 @@ class Saml2DslTests {
                             InMemoryRelyingPartyRegistrationRepository(
                                     RelyingPartyRegistration.withRegistrationId("samlId")
                                             .assertionConsumerServiceLocation("{baseUrl}" + Saml2WebSsoAuthenticationFilter.DEFAULT_FILTER_PROCESSES_URI)
-                                            .assertingPartyDetails { a -> a
+                                            .assertingPartyMetadata { a -> a
                                                 .verificationX509Credentials { c -> c
                                                     .add(Saml2X509Credential(loadCert("rod.cer"), Saml2X509Credential.Saml2X509CredentialType.VERIFICATION))
                                                 }
                                             }
-                                            .assertingPartyDetails { c -> c.singleSignOnServiceLocation("ssoUrl") }
-                                            .assertingPartyDetails { c -> c.entityId("entityId") }
+                                            .assertingPartyMetadata { c -> c.singleSignOnServiceLocation("ssoUrl") }
+                                            .assertingPartyMetadata { c -> c.entityId("entityId") }
                                             .build()
                             )
                 }
@@ -152,7 +152,7 @@ class Saml2DslTests {
             this.mockMvc.perform(request).andExpect(MockMvcResultMatchers.status().isFound()).andReturn()
         val redirectedUrl = result.response.redirectedUrl
         Assertions.assertThat(redirectedUrl)
-            .startsWith(registration.assertingPartyDetails.singleSignOnServiceLocation)
+            .startsWith(registration.assertingPartyMetadata.singleSignOnServiceLocation)
     }
 
     @Configuration

saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/registration/OpenSamlRelyingPartyRegistration.java

@@ -1,5 +1,5 @@
 /*
- * Copyright 2002-2022 the original author or authors.
+ * Copyright 2002-2025 the original author or authors.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -48,7 +48,8 @@ public final class OpenSamlRelyingPartyRegistration extends RelyingPartyRegistra
 		super(registration.getRegistrationId(), registration.getEntityId(),
 				registration.getAssertionConsumerServiceLocation(), registration.getAssertionConsumerServiceBinding(),
 				registration.getSingleLogoutServiceLocation(), registration.getSingleLogoutServiceResponseLocation(),
-				registration.getSingleLogoutServiceBindings(), registration.getAssertingPartyDetails(),
+				registration.getSingleLogoutServiceBindings(),
+				(OpenSamlAssertingPartyDetails) registration.getAssertingPartyMetadata(),
 				registration.getNameIdFormat(), registration.isAuthnRequestsSigned(),
 				registration.getDecryptionX509Credentials(), registration.getSigningX509Credentials());
 	}
@@ -58,7 +59,7 @@ public final class OpenSamlRelyingPartyRegistration extends RelyingPartyRegistra
 	 */
 	@Override
 	public OpenSamlRelyingPartyRegistration.Builder mutate() {
-		OpenSamlAssertingPartyDetails party = getAssertingPartyDetails();
+		OpenSamlAssertingPartyDetails party = (OpenSamlAssertingPartyDetails) getAssertingPartyMetadata();
 		return new Builder(party).registrationId(getRegistrationId())
 			.entityId(getEntityId())
 			.signingX509Credentials((c) -> c.addAll(getSigningX509Credentials()))
@@ -72,14 +73,6 @@ public OpenSamlRelyingPartyRegistration.Builder mutate() {
 			.authnRequestsSigned(isAuthnRequestsSigned());
 	}
 
-	/**
-	 * {@inheritDoc}
-	 */
-	@Override
-	public OpenSamlAssertingPartyDetails getAssertingPartyDetails() {
-		return (OpenSamlAssertingPartyDetails) super.getAssertingPartyDetails();
-	}
-
 	/**
 	 * Create a {@link Builder} from an entity descriptor
 	 * @param entityDescriptor the asserting party's {@link EntityDescriptor}
@@ -165,11 +158,6 @@ public Builder authnRequestsSigned(Boolean authnRequestsSigned) {
 			return (Builder) super.authnRequestsSigned(authnRequestsSigned);
 		}
 
-		@Override
-		public Builder assertingPartyDetails(Consumer<AssertingPartyDetails.Builder> assertingPartyDetails) {
-			return (Builder) super.assertingPartyDetails(assertingPartyDetails);
-		}
-
 		@Override
 		public Builder assertingPartyMetadata(Consumer<AssertingPartyMetadata.Builder<?>> assertingPartyMetadata) {
 			return (Builder) super.assertingPartyMetadata(assertingPartyMetadata);