Spring 安全角色问题
[英]Spring Security roles issue
问题描述
I overrode the method in the SpringWebConfig and I want to give all pages of application only for admins.
我覆盖了 SpringWebConfig 中的方法,我只想为管理员提供所有应用程序页面。
@Override
protected void configure(HttpSecurity http) throws Exception {
http.authorizeRequests()
.antMatchers("/*", "/**").hasRole("ADMIN");
}
When I try to open page http://localhost:8080/api/v1/skills/ without any authorization I have a correct result instead of 403. Maybe I'm wrong with my config?当我尝试在没有任何授权的情况下打开页面 http://localhost:8080/api/v1/skills/ 时,我得到了正确的结果而不是 403。也许我的配置有误? Full project https://github.com/Wismut/crud_developers完整项目https://github.com/Wismut/crud_developers
1 个解决方案
解决方案1
1 已采纳 2020-07-14 13:09:14
Add the following class inside config package在配置 package 中添加以下 class
package ua.wismut.config;
import org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer;
public class SecurityWebApplicationInitializer extends AbstractSecurityWebApplicationInitializer {
}
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
弹簧安全 - 动态角色 - spring security - dynamic roles
Spring安全角色和权限 - Spring security roles and permissions
具有角色和权限的 Spring Security - Spring Security with roles and permissions
Spring Security的两个角色实现 - Spring Security two roles implementation
Spring Security 3.1中的默认角色 - Default roles in Spring Security 3.1
Spring 安全与 JWT 角色不工作 - Spring Security with JWT Roles not working
具有多个角色的Spring安全访问 - Spring security access with multiple roles
从Weblogic获得用于Spring Security的安全角色 - Get Security Roles From Weblogic for Spring Security
wicket-auth-roles和spring-security-cas-client之间的身份验证集成问题 - Authentication integration issue between wicket-auth-roles and spring-security-cas-client
如何使用HttpSecurity(Spring Security)应用角色? - How to apply roles using HttpSecurity (Spring Security)?
相关标签