Results 1 to 2 of 2

Thread: Can I secure a restful website by url?

  1. Mar 16th, 2013, 10:01 AM #1
    dacedos
    dacedos is offline Junior Member
    Join Date
    Oct 2012
    Posts
    6

    Question Can I secure a restful website by url?

    Hi,

    I want to do a restful service in which URL will be something like:

    myapp/users/{idUser}/subjects/{idSubject}/grades/

    Can Spring security grant access only to the data under the logged user ?? I mean...

    for example. I am the user 00001. I then could access to

    myapp/users/00001/subjects

    but not to

    myapp/users/00002/subjects

    I use Spring Security 3.1.3RELEASE

    Thanks!!
    Reply With Quote Reply With Quote
  2. Mar 19th, 2013, 10:02 AM #2
    Rob Winch
    Rob Winch is offline Senior Member Spring Team
    Join Date
    Jan 2008
    Posts
    1,833

    Default

    This is not supported via the URL, but can be done with method level security. See https://jira.springsource.org/browse/SEC-2059 for the request to support this.
    Rob Winch
    Twitter @rob_winch
    Spring Security Lead
    Spring by Pivotal
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules