Results 1 to 2 of 2

Thread: @Secured supports exact/wild card/OR / multiple roles match ?

  1. May 4th, 2008, 11:14 AM #1
    stewchicken
    stewchicken is offline Junior Member
    Join Date
    Aug 2005
    Posts
    14

    Default @Secured supports exact/wild card/OR / multiple roles match ?

    It seems @Secured only support exact multiple role matches

    login user has manager and administrator two roles, but he is denied to invoke method.

    @Secured({"manager","administrator","productdepart ment_poweruser","productdepartment_normaluser"})
    public Collection<? extends Article> getArticlesbyArticleFilter(
    ArticleFilter aFilter) throws ServiceException;

    if i change to @Secured({"manager","administrator"}) which exactly matchs
    with user's roles
    then he could invoke the method.

    My question is

    how does @Secured supports OR relations for multiple roles

    Rgds
  2. May 4th, 2008, 12:20 PM #2
    stewchicken
    stewchicken is offline Junior Member
    Join Date
    Aug 2005
    Posts
    14

    Default

    I know what is the reason now.
    please dont reply this post

    reason is accessdecisionmanager
    i should use
    <bean id="accessDecisionManager"
    class="org.acegisecurity.vote.AffirmativeBased">
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules