Register / Login
Win a copy of
Programmer's Guide to Java SE 8 Oracle Certified Associate (OCA)
this week in the
@Secured Annotation Not Working
posted 5 years ago
I have a method in a @Controller where I ONLY want that method to execute if the user role="ADMIN".
This method handles the POST from a
as shown below.
@RequestMapping(method = RequestMethod.POST) @Secured("ADMIN")
The problem is that, regardless of the user role, the code in the method executes!
I've tried adding an additional point-cut to the security context file for that @Controller class, but that didn't work either.
Look forward to any suggestions.
Secure Log In Question
Getting defined security-roles programatically
Form based login
he doesn't ask for authenticate
Form Authentication not working