This week's book giveaways are in the iOS and Features new in Java 8 forums.
We're giving away four copies each of Barcodes with iOS: Bringing together the digital and physical worlds and Core Java for the Impatient and have the authors on-line!
See this thread and this one for details.
The moose likes Spring and the fly likes @Secured Annotation Not Working Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Barcodes with iOS this week in the iOS forum
or Core Java for the Impatient in the Java 8 forum!

JavaRanch » Java Forums » Frameworks » Spring
Bookmark "@Secured Annotation Not Working" Watch "@Secured Annotation Not Working" New topic

@Secured Annotation Not Working

Mike London
Ranch Hand

Joined: Jul 12, 2002
Posts: 1084
I have a method in a @Controller where I ONLY want that method to execute if the user role="ADMIN".

This method handles the POST from a JSP as shown below.

The problem is that, regardless of the user role, the code in the method executes!

I've tried adding an additional point-cut to the security context file for that @Controller class, but that didn't work either.

Look forward to any suggestions.



I agree. Here's the link:
subject: @Secured Annotation Not Working