Community
CRM and CX Blog Posts by SAP
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

SAP CC JDK 21 Upgrade

neerajkumar02
Advisor
Advisor
2 weeks ago
0 Likes
376

JDK 21 Upgrade Learnings from SAP Commerce Version 2205

We have successfully completed a JDK 21 upgrade from SAP Commerce version 2205 (previously on JDK 17). Sharing our learnings and resolutions encountered during the upgrade which may be helpful for similar implementations.

1. Automation Support Using OpenRewrite

SAP has provided customized OpenRewrite recipes to automate static code migrations. These greatly reduce manual effort.

👉Refer to SAP Note #3618495 (OpenRewrite automation guide) for detailed execution steps.

Outcome: Automates majority of standard class and package-level updates.

2. Manual Fixes Post-OpenRewrite Execution

Some library-level changes require manual fixes such as: - Assertion - Common.lang - RFCConstantsjakarta.jms

Action: Update imports and usage based on the upgraded libraries.

3. Server Startup & Initialization Issues

Several issues were observed during server startup and platform initialization. Details and solutions below.

Issue A — Spring Security Context Initialization Failure

Error:

Context initialization failed - Error creating bean with name 'org.springframework.security.filterChains'
NoSuchBeanDefinitionException: No bean named 'mvcHandlerMappingIntrospector' available.

Root Cause: Spring Security 6.x requires a shared ApplicationContext with Spring MVC when using MvcRequestMatcher.

Resolution: Update web.xml to ensure MVC config loads into the main context instead of DispatcherServlet.

Added MVC configuration into global context

<context-param>
  <param-name>contextConfigLocation</param-name>
  <param-value>
    WEB-INF/config/customextension-web-app-config.xml
    WEB-INF/config/customextension-spring-mvc-config.xml
  </param-value>
</context-param>

Cleared separate servlet context

<param-name>contextConfigLocation</param-name>
<param-value></param-value>

Outcome: Application started successfully.

Issue B — Invalid URL Pattern Mapping in Spring MVC

Error:

PatternParseException: No more pattern data allowed after {*...} or ** pattern element

Root Cause: Legacy wildcards like /**/something, /**, {*path} are not supported under PathPatternParser.

Solution: Switch back to AntPathMatcher in spring-mvc-config.xml.

<bean id="pathMatcher" class="org.springframework.util.AntPathMatcher" />
<mvc:annotation-driven>
  <mvc:path-matching path-matcher="pathMatcher"/>
</mvc:annotation-driven>

Outcome: Legacy mappings restored, storefront initialized.

Issue C — Spring Security 6 Intercept-URL Failure

Error:

IllegalArgumentException: expressionString cannot be empty

Root Cause: Spring Security 6 does not allow intercept-url without an access expression.

Fix: Add default authorization

<security:intercept-url pattern="/**" access="permitAll()" />

Outcome: Security filter chain initialized successfully.

Issue D — AuditReportServices Impex Failure During UpdateSystem

Error: Deprecated password encoder triggered failure.

PBKDF2WithHmacSHA1SaltedPasswordEncoder is deprecated

Fix: Temporarily allow legacy password encoding

legacy.password.encoding.enabled=true

🔄Revert setting post-update if needed for backward compatibility.

Issue E — Ambiguous Mapping for “/” After Upgrade

Error:

IllegalStateException: Ambiguous handler methods mapped for '/'

Root Cause: Two controllers mapped to /.

Solution: Update default controller fallback

@RequestMapping(value = "/**", method = RequestMethod.GET)

Issue F — Spring 6 JSP BindTag Error

Error: Missing command model attribute.

Neither BindingResult nor plain target object for bean name 'command'

Resolution: Add required model attributes

@ModelAttribute("command")
public LoginForm commandLoginForm() { return new LoginForm(); }

Issue G — Security JSP authorize Tag Failure

Error: Missing ExpressionHandler

No visible WebSecurityExpressionHandler instance could be found

Fix:

<bean id="webSecurityExpressionHandler"
 class="org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler"/>

Issue H — No Mapping for GET Warnings

Solution: Add explicit URL mappings where needed.

@RequestMapping("/search/")
@GetMapping("/quote-requests/")

Conclusion

JDK 21 + Spring 6 migration introduces strict compatibility constraints requiring updates in: - Spring MVC URL mapping - Spring Security configuration rules - Application context structure - JSP model binding - Password encoding framework

The above resolutions enabled successful storefront startup and full system initialization.