README.md

Exercise 4 - Check and upgrade Java/Spring security libraries

⚠️ This is NOT relevant for applications that make use of Java Web Security provided by SAP Java Buildpack (as described here).

When you are using one of the following client libraries:

Upgrade to the latest version.

💡 Get a list of all available versions on maven central.

💡 Consider release notes.

The table below gives you an overview about the dependencies that must be replaced by the open-source version.

groupId (deprecated)	artifactId (deprecated)	groupId	artifactId
com.sap.xs2.security	api	com.sap.cloud.security.xsuaa	api
com.sap.xs2.security	java-container-security	com.sap.cloud.security	java-security
com.sap.xs2.security	security-commons	./.	./.
com.sap.cloud.security.xssec	api	com.sap.cloud.security.xsuaa	api
com.sap.cloud.security.xssec	security-commons	./.	./.
com.sap.cloud.security.xsuaa	java-container-security-api	com.sap.cloud.security.xsuaa	api
com.sap.cloud.security.xsuaa	java-container-security	com.sap.cloud.security	java-security
com.sap.cloud.security.xsuaa	security-commons	./.	./.
com.sap.security	nw.vsi	./.	./.
com.sap.security.nw.sso.ntamd64.opt	sapjwt.ntamd64	./.	./.
com.sap.security.nw.sso.linuxx86_64.opt	sapjwt.linuxx86_64	./.	./.
com.sap.security.nw.sso.linuxppc64.opt	sapjwt.linuxppc64	./.	./.
com.sap.security.nw.sso.darwinintel64.opt	sapjwt.darwinintel64	./.	./.

You've now upgraded the version.

And, if you've detected a dependency to the SAP internal container-security api for Java, which is deprecated continue with Exercise 4.3 - Migrate java-container-security library.