Dan Diephouse (Migrated from SEC-1204) said:
For two examples out there in the community:
This is a regression from Acegi.
Luke Taylor said:
Have you tried it with class-proxying disabled? It should work with either the interface or the class name.
For example, with the following configuration
Then calling both the makeLower and makeUpper methods on the "target" object (with no security context) results in an AuthenticationException, indicating that the interceptor is applied.
Any further input? If not I will close the issue.
No feedback in over a month, so closing the issue. The general statement that interface proxying isn't supported by MethodSecurityInterceptor is clearly inaccurate since we have tests in place which do just this. If more specific issues can be isolated then please raise them individually.