I am new to spring security framework.I was just compiling the various ways to add security features using spring security annotations or spring security framework.
Found the below so far.
- Full Page Authorization example:
<intercept-url pattern="/user/**" access="hasRole('ROLE_USER')" /> In-Page Authorization
example :
<security:authorize access="hasRole('ROLE_ADMIN')">Method Level Authorization -
@PreAuthorize,@PostAuthorize,@PreFilter,@PostFilter
I am not sure if this is an exhaustive list to secure the application. Need some help for the same. Thanks.
Aucun commentaire:
Enregistrer un commentaire