SEC-1630: Spring Security AccessDeniedHandler #1870

Closed
spring-issuemaster opened this Issue Nov 26, 2010 · 1 comment

1 participant

@spring-issuemaster

pamir sonmez (Migrated from SEC-1630) said:

AccessDeniedHandler exception is thrown but I am still redirected to the page that I do not have the privileges.

I am logging as ROLE_ADMIN and then I am trying to reach a page under /user/* which has to have ROLE_USER privilege.

I am posting the configuration files.

@spring-issuemaster

Luke Taylor said:

If you are reporting a bug, please provide some evidence - there is nothing here to go on. As a minimum you need to provide stacktraces and log output to illustrate the scenario, plus a full description of the steps involved and analysis of the requests and responses exchanged by your browser and the system.

Ideally (and most likely in a scenario as common as this), you'll need to provide a test sample to demonstrate that there really is an issue, and to isolate what is different about your particular case.

Also, 3.0.4 is not the latest version, so you should always check with the latest release before considering posting a bug.

@spring-issuemaster spring-issuemaster added this to the 3.1.0.M2 milestone Feb 5, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment