Oct 4th, 2011, 07:38 AM
Prevent users from accessing url which are not defined in objectDefinitionSource
I am using Spring security 2.0.5.
I use the FilterSecurityInterceptor to protect urls. I have configured an AffirmativeBased AccessDecisionManager with two Voters RoleVoter and AuthenticatedVoter and allowIfAllAbstainDecisions = false.
I want that if the url requested by cleint is not defined in my objectDefinition , it should give access denied but FilterSecurityInterceptor does not deny the access.
Please let me how to achieve that.