Now some of previous oauth2 features become obsolete/deprecated (Like @EnableOauth2Sso etc.).
As I understand it, the PrincipalExtractor class has also become obsolete, because it is no longer used automatically when the server receive user info via oauth2(Checked with debug break points in the method extractPrincipal). So what's the best way to replace the PrincipalExtractor class now?
I am using successHandler with authenticationToken.getPrincipal() to save the user and then use the saved user, but I don't think this is a good way.
question from:
https://stackoverflow.com/questions/65920083/what-we-can-use-now-instead-of-principal-extractor 与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
