java - Spring Security @Secured annotation and User authorities -

-

this spring v.4 (mvc + security). have implemented userdetailsserviceimpl, inside loaduserbyusername method user granted authorities. it's simply:

public userdetails loaduserbyusername(string username) {     ...          collection<grantedauthority> authorities = new arraylist<>();      authorities.add(new simplegrantedauthority("admin"));      return new org.springframework.security.core.userdetails.user(username, password, enabled, true, true, true, authorities);     ... }

and have security controller inside i've annotated method @secured annotation:

@secured("admin") @requestmapping(value = "/users", method = requestmethod.get) public string users(model model ...) { ... }

as can see inside loaduserbyusername explicitly grant admin role user. when i'm trying access /users access denied exception:

2016-04-19 10:25:16,899 debug (http-nio-8080-exec-9) [org.springframework.security.web.access.exceptiontranslationfilter] - access denied (user not anonymous); delegating accessdeniedhandler org.springframework.security.access.accessdeniedexception: access denied @ org.springframework.security.access.vote.abstractaccessdecisionmanager.checkallowifallabstaindecisions(abstractaccessdecisionmanager.java:70) @ org.springframework.security.access.vote.affirmativebased.decide(affirmativebased.java:88) @ org.springframework.security.access.intercept.abstractsecurityinterceptor.beforeinvocation(abstractsecurityinterceptor.java:232) @ org.springframework.security.access.intercept.aopalliance.methodsecurityinterceptor.invoke(methodsecurityinterceptor.java:64) @ org.springframework.aop.framework.reflectivemethodinvocation.proceed(reflectivemethodinvocation.java:179) @ org.springframework.aop.framework.cglibaopproxy$dynamicadvisedinterceptor.intercept(cglibaopproxy.java:655) ...

(without @secured annotation works fine).

so, have missed here?

surprisingly, problem roles names. due defaultroleprefix set role_ (see org.springframework.security.access.vote.rolevoter class) roles should have names starting role_ prefix. in other words, when i've changed

authorities.add(new simplegrantedauthority("admin")); to

authorities.add(new simplegrantedauthority("role_admin"));

and @secured("admin") @secured("role_admin") - became fine.


Comments

Post a Comment

Popular posts from this blog

Ansible - ERROR! the field 'hosts' is required but was not set -

-
i've error when launch playbook don't found why.... error! field 'hosts' required not set there main.yml : --- - hosts: hosts - vars: - elasticsearch_java_home: /usr/lib/jmv/jre-1.7.0 - elasticsearch_http_port: 8443 - tasks: - include: tasks/main.yml - handlers: - include: handlers/main.yml and /etc/ansible/hosts : [hosts] 10.23.108.182 10.23.108.183 10.23.108.184 10.23.108.185 when test ping, : [root@poste08-08-00 elasticsearch]# ansible hosts -m ping 10.23.108.183 | success => { "changed": false, "ping": "pong" } 10.23.108.182 | success => { "changed": false, "ping": "pong" } 10.23.108.185 | success => { "changed": false, "ping": "pong" } 10.23.108.184 | success => { "changed": false, "ping": "pong" } please, me :) regards, you have syntax error in playbook.
Read more

customize file_field button ruby on rails -

-
i'm trying rid of ugly button rails has default file upload. want add glyphicon <%= f.file_field :image_url, class:"glyphicon glyphicon-camera" %> this didn't work , have tried other things in different post saw on page, don't attach file. as suggested here bootstrap filestyle , can use bootstrap's filestyle style file upload buttons. step-1: add layout application.html.erb i have added bootstrap filestyle library cdn. should make sure have both jquery , boostrap loaded. <script type="text/javascript" src="https://cdn.jsdelivr.net/bootstrap.filestyle/1.1.0/js/bootstrap-filestyle.min.js"> </script> step-2: add corresponding js file: $(":file").filestyle({input: false}); step-3: image_url file field follows: <%= f.file_field :image_url,class: "filestyle", "data-input" => false %>
Read more

SoapUI on windows 10 - high DPI/4K scaling issue -

-
Image
soapui doesn't seem dpi-aware , displays small on high dpi screen (tiny text , buttons). other applications running fine (screen resolution 3840 x 2160). version : soapui 5.1.2 os : windows 10 i have tried: configure soapui run "disable display scaling on high dpi settings" - parts of soapui looking bigger , don't display (image) changing resolution changing font size (preferences > editor settings > select font...) therefore assume, soapui pretends dpi-aware, not scale itself. have same issue? this workaround until developers round making version dpi-aware. step 1: add registry key hkey_local_machine\software\microsoft\windows\currentversion\sidebyside\preferexternalmanifest (dword) 1 step 2: add manifest file 'soapui-5.2.1.exe.manifest' in same directory 'soapui-5.2.1.exe' content of manifest file: <?xml version="1.0" encoding="utf-8" standalone="yes"?> <assembly xml
Read more