SEC-1494: Support disabling of UI security #1734
Labels
in: taglibs
An issue in spring-security-taglibs
in: web
An issue in web modules (web, webmvc)
type: enhancement
A general enhancement
type: jira
An issue that was migrated from JIRA
Milestone
Comments
|
Luke Taylor said: It is now possible to force the parts of the UI to be shown which would normally be hidden by the authorize tag. If the system property spring.security.disableUISecurity is set to "true", the contents will still be rendered, but decorated with a surrounding tag to allow the "hidden" areas to be differentiated using CSS. |
spring-projects-issues
added
in: taglibs
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Mike Wiesner (Migrated from SEC-1494) said:
The ability to prevent hiding of UI elements (for example, those which have been omitted by the tag library) will be very useful for testing whether the URLs are actually secured at the back end.
The text was updated successfully, but these errors were encountered: