I need to use spring security only for authorization. I am creating an object of Authentication & setting it to context:
After which - i am able to fetch same to various
jsp pages in the application. Below is my security context file content - which is quite basic:
which gives compile error as:
cvc-complex-type.2.4.a: Invalid content was found starting with element 'global-method-security'. One of '{"http://www.springframework.org/schema/beans":description, "http://www.springframework.org/schema/beans":import, "http://www.springframework.org/schema/beans":alias, "http://www.springframework.org/schema/beans":bean, WC[##other:"http://www.springframework.org/ schema/beans"]}' is expected.
if I use append security tag in above (i.e. <security:global-method-security pre-post-annotations="enabled" /> ) I get runtime error as :
org.xml.sax.SAXParseException: cvc-complex-type.2.4.c: The matching wildcard is strict, but no declaration can be found for element 'security:global-method-security'.
Am stuck here - what I am doing wrong!
I just need to secure methods - something like:
@PreAuthorize("hasRole('ROLE_SPITTER')")
or
@Secured( {"ROLE-ADMIN"} )
Thanks for your help.