This week's book giveaway is in the Go forum.
We're giving away four copies of Head First Go and have Jay McGavren on-line!
See this thread for details.
Win a copy of Head First Go this week in the Go forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Liutauras Vilda
  • Bear Bibeault
  • Paul Clapham
  • Jeanne Boyarsky
Sheriffs:
  • Devaka Cooray
  • Junilu Lacar
  • Tim Cooke
Saloon Keepers:
  • Tim Moores
  • Ron McLeod
  • Tim Holloway
  • Claude Moore
  • Stephan van Hulst
Bartenders:
  • Winston Gutkowski
  • Carey Brown
  • Frits Walraven

Why @PreAuthorize is not working even prePostEnabled is turned ON?  RSS feed

 
Ranch Hand
Posts: 637
2
Java
  • Likes 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I am securing my REST API using spring security where I am trying to secure a Controller using method level annotations. I am using @PreAuthorize("isAuthenticated()") to make sure that the user is Authenticated to access that particular Controller method.


But this is not working, even I am having prePostEnabled = true configuration. I am getting 200 response status, even though I am not providing the auth details.


Earling I was using URL level authorisation, and everything was working fine.
 
Puspender Tanwar
Ranch Hand
Posts: 637
2
Java
  • Likes 2
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
It was the private access modifier causing the issue.
 
Sheriff
Posts: 21653
101
Chrome Eclipse IDE Java Spring Ubuntu VI Editor Windows
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks for sharing the solution
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!