[SHIRO-607] AuthorizationAttributeSourceAdvisor ignores type-annotations - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.3.2, 1.4.0-RC2
Fix Version/s: 1.4.0
Component/s: Integration: Spring
Labels:
- easyfix
- newbie

Flags:

Patch

Description

The spring integration only checks the method annotations. When the security annotations are on the type, no authentication will be required.

@RequiresAuthentication //ignored
interface Business {
  //not secured
  void criticalSomething();
}

Links

Related mailing list thread: mail archive
github pull request
a possible workaround

Attachments

Activity

People

Assignee:: Les Hazlewood

Reporter:: Laszlo Hornyak

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 03/Jan/17 19:06

Updated:: 05/Jun/17 21:42

Resolved:: 05/Jun/17 21:42