Search:

You can set an action as defaulTargetURL too.

as far as i know using struts 2 with spring together autowiring will be enabled by default.

Exactly what i needed, it's working now thank you.

Hi,

i'm using Spring Security and the /spring_security_login Form.
My Question is if i send a request to a specific URL for instance:
http://localhost:8080/Testapp1.0/doit.action and im not...

i'm having a user who can add new user and give them new roles too. this all is no problem if the user who gets a new role isn't logged in. so when he loges in he has the new roles.

But when he...

Is there a way to set alwaysReauthenticate true from the FilterSecurityInterceptor with using the auto-config ?

You are right thank you Luke. i changed the namespace of the requested source and forgot to edit the namespace into the <intercept-url>. That was causing the message.

i've read something which may can help you. i think a way is to make an global/parent application context where you put in the "things" your applications share.

the article...

when i'm running spring security with auto-config is there any cache for authentication registered? somehow when i activate once-per-request="true"
it does not authenticate every request.

The...

is it possible to change a diffrent securitycontext then the own ?
if User A changes settings on User B, User A has to somehow update User B's SecurityContext i did not found any
solution how to...

thx for your reply i still have questions though,

how do i activiated this feature ?
like this?


<property name="allowSessionCreation" value="false"/>


and what will happen if i actually...

Hi,

Let's say 2 users A and B are logged in, in an application which is Secured by Spring Security. One of this users (A) has the autority to set the other users(B) enabled value to false. Is it...

Hello,

thanks for your help Fiouz it works now.

greetz kukudas

Hi,

again thx for your reply.
i have added this in my spring configuration:



<security:concurrent-session-control session-registry-alias="session" max-sessions="1"...

Hi,

thanks for your reply.
if i try this:


....
....
private Authentication auth = ctx.getAuthentication();
private SessionRegistry session = new SessionRegistryImpl();

Hi,

i solved it like this:

i did before i remove check within the action if the user i am deleting is
the user which is atm logged in and if it is true i did make this:
...

Hi,

when i for example delete the current user which is logged in i'm still able to
do everything until i logout and retry to login. How can i update the context
after i deleted the user or...

thanks for your reply today i cant try it i think cause im sick :(.
yes the class is in my spring configuration, but i have the scope=prototype because struts 2 actions are instantiated every...

yes thats what i meant thanks.

Hi,

i'm using @Secured and i delted jsr250-annotations="true".
now i can startup without any error and when i enter a secured area
i don't get this error with the proxy but it seams it still...

if i add this:

<security:global-method-security secured-annotations="enabled" jsr250-annotations="enabled"/>

i get this exception:


org.springframework.beans.factory.BeanCreationException:...

still same problem after migrating it has something to do with the proxy.

Hello everybody,

i used Acegi Security 1.0.5 and now i'm playing arround with Spring Security 2.0.2. I have one question. When i used Acegi i had a custom jdbc modell to fetch the user data. It...

yes i probably will migrate, i think the problem is that the struts 2 action are instantiated before the DefaultAdvisorAutoProxyCreator is.

i'm using acegi 1.0.5 and it worked with securing an methods of an interface. but when it is not an interface i get an exception.