Use Expression-Based Access Control, see http://static.springsource.org/spring-security/site/docs/3.0.7.RELEASE/reference/el-access.html.
In your case
<security:http use-expressions="true">...
Type: Posts; User: takach; Keyword(s):
Use Expression-Based Access Control, see...
Use Expression-Based Access Control, see http://static.springsource.org/spring-security/site/docs/3.0.7.RELEASE/reference/el-access.html.
In your case
<security:http use-expressions="true">...
If you delete the user User1 in some...
If you delete the user User1 in some administration page in the name of an administrator user User2, then you probably do not want to invalidate the actual session of the administrator user User2....
Why custom filter?
As I know, you need no custom Filter. If you want to parse the submitted username, you can do it in your UserDetailsService and/or AuthenticationProvider. Please, check an example with custom LDAP...
Custom request attributes disapper
I want to setup a request attribute in case of successful login and use it on the login success page.
I implemented a custom AuthenticationDetails and AuthenticationDetailsSource in order to put...
You can use the LdapAuthenticationProvider built...
You can use the LdapAuthenticationProvider built in to Spring Security, or implement custom UserDetailsService and AuthenticationProvider and use own code for communicating with LDAP.
Read first...
I guess it is not too difficult to solve it if...
I guess it is not too difficult to solve it if you have a deep knowledge on the filters of Spring Security. Probably one of them should be subclassed, or a new filter should be inserted.
It is...
Disable Session Creation before Authentication
I was wondering way Spring Security creates a new session during the first request when the user is not yet authenticated, and then after a successful authentication it destroys it and creates a new...
Thank you Marten, I really should use...
Thank you Marten, I really should use ApplicationContext! The working version of my main class is
public static void main(String[] args) {
// DOES NOT WORK!!!
// XmlBeanFactory bf...
Annotation Configuration - Dependencies are not injected
Hi,
I want to setup an example project using annotation configuration, wiring beans by names. I see from a call from getBeanNames() that beans are instantiated but dependencies are not injected.
...
I found the solution: The mesages that
are...
I found the solution: The mesages that
are only some kind of checking, it can be done without generating the database schema. I had to explicity setup schema generation as a part of my datasource...
TestContext mit HSQL: Table not found
Hi all,
I try to setup a TestContext Test for our Spring/Hibernate project:
<bean id="dataSource" class="org.apache.commons.dbcp.BasicDataSource">
<property name="driverClassName"...
Configuration of multimodule project with AnnotationSessionFactoryBean
I have a multimodule Maven project whit Spring and Hibernate, my Hibernate configuration is like:
<bean id="sessionFactory"
...
For MySQL too
I use MySQL database. I got no error messages, but the login was always denied. With 1 instead of 'true' it works fine.
Thank you for the useful advice alltough it was written prior to my problem...