Correct deprecated description in docs

Remove deprecated SecurityContextPersistenceFilter from docs. Closes gh-12690
spring-projects · Feb 28, 2023 · 8b2ce79 · 8b2ce79
1 parent 1eff924
commit 8b2ce79
Showing 1 changed file with 3 additions and 2 deletions.
diff --git a/docs/modules/ROOT/pages/servlet/authentication/architecture.adoc b/docs/modules/ROOT/pages/servlet/authentication/architecture.adoc
@@ -248,8 +248,9 @@ image:{icondir}/number_4.png[] If authentication is successful, then __Success__
 * `SessionAuthenticationStrategy` is notified of a new login.
 See the {security-api-url}org/springframework/security/web/authentication/session/SessionAuthenticationStrategy.html[`SessionAuthenticationStrategy`] interface.
 * The <<servlet-authentication-authentication>> is set on the <<servlet-authentication-securitycontextholder>>.
-Later, the `SecurityContextPersistenceFilter` saves the `SecurityContext` to the `HttpSession`.
-See the {security-api-url}org/springframework/security/web/context/SecurityContextPersistenceFilter.html[`SecurityContextPersistenceFilter`] class.
+Later, if you need to save the `SecurityContext` so that it can be automatically set on future requests, `SecurityContextRepository#saveContext` must be explicitly invoked.
+See the {security-api-url}org/springframework/security/web/context/SecurityContextHolderFilter.html[`SecurityContextHolderFilter`] class.
+
 * `RememberMeServices.loginSuccess` is invoked.
 If remember me is not configured, this is a no-op.
 See the {security-api-url}org/springframework/security/web/authentication/rememberme/package-frame.html[`rememberme`] package.