The OpenEdge 12.2.15 service pack includes Spring Security Framework 5.8.x, which replaces Spring Security Framework 5.3 shipped with OpenEdge 12.2.

12.2 Spring configuration files

In OpenEdge 12.2, each webapp has local copies of the Spring configuration files.

12.2.15 Spring configuration files

In OpenEdge 12.2.15, $CATALINA_HOME/common/spring centralizes the spring files.

Standard changes

If you have no customizations, configure each webapp to use the files in $CATALINA_HOME/common/spring.

  1. For each webapp created prior to 12.2.15, open $CATALINA_BASE/webapps/webapp/WEB-INF/oeablSecurity.xml.
  2. Locate the resource attribute. 
    <b:import resource="spring/${client.login.model}LoginModel.xml"/>
  3. Update the resource attribute to reference the common Spring files located in ${CATALINA_HOME}/common/. 
    <b:import resource="file:${CATALINA_HOME}/common/spring/${client.login.model}LoginModel.xml"/>
    Note: Using a $CATALINA_HOME as the resource location ensures future Spring updates are automatically applied.
  4. Save the changes.
  5. Restart the instance.

Custom changes

If you have customized files, you must copy the new files locally and apply the customizations to these new files.

  1. Back up existing custom configuration files.
  2. Replace the existing files for each webapp with the updated files from the $CATALINA_HOME/common/spring directory.
  3. Apply customizations to the replacement files.
  4. Save changes.
  5. Restart the instance.
Note: Progress recommends replacing custom XML file with properties to avoid this process for future Spring Security Framework updates. To learn more about available security properties, see the oeablSecurity.properties.README file.

OAuth2 changes

In OpenEdge 12.2.15, the following OAuth2 and shared configuration files have changed.
OAuth2 files Shared files
enableOAuth2ResourceServer.xml

jwtFilters.xml

oauth2AuthenticationManagerResolver.xml*

oauth2Converters.xml*

oauth2Decoders.xml*

oauth2Validators.xml*

 oauth2UserDetails.xml*

sharedAuthFilters.xml
Note: The * indicates a new file.
To update OAuth2 configurations:
  1. Back up existing custom configuration files.
  2. Add new files for each webapp in existing instances.
  3. Replace the existing files for each webapp with the updated files from the $CATALINA_HOME/common/spring directory.
  4. Apply customizations to the replacement files.
  5. Save changes.
  6. Restart the instance.
Note: Progress recommends replacing custom XML file with properties to avoid this process for future Spring Security Framework updates. To learn more about available security properties, see the oeablSecurity.properties.README file.

SAML changes

In OpenEdge 12.2.15, the following SAML and shared configuration files have changed.
SAML files Shared files

enableSamlSecurity.xml

saml2AuthenticationManagerResolver.xml*

saml2RelyingPartyRegistration.xml*

samlLoginModel.xml

samlFilters.xml

oauth2UserDetails.xml*

sharedAuthFilters.xml
Note: The * indicates a new file.
To update SAML configurations:
  1. Copy new files.
  2. Replace the existing files for each webapp in the instance with the updated files from the $CATALINA_HOME/common/spring directory.
  3. Apply any customizations to the replacement files.
  4. Save changes.
  5. Restart the instance.
Note: Progress recommends replacing custom XML file with properties to avoid this process for future Spring Security Framework updates. To learn more about available security properties, see the oeablSecurity.properties.README file.