Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SEC-2150: Annotating at class level does not protected Spring Data Repositories methods that are not overriden #2339

Closed
spring-issuemaster opened this issue Mar 15, 2013 · 2 comments

Comments

@spring-issuemaster
Copy link

@spring-issuemaster spring-issuemaster commented Mar 15, 2013

Rob Winch (Migrated from SEC-2150) said:

When annotating an interface at the class level (rather than the method level), only the methods defined on the interface are protected. This makes sense, but is inconvenient when working with Something like Spring Data. It would be nice if one could apply the annotation to super interfaces (or a subset of interfaces)

@spring-issuemaster

This comment has been minimized.

Copy link
Author

@spring-issuemaster spring-issuemaster commented Sep 26, 2014

Rob Winch said:

Both the PreAuthorize & Secured annotations should now work. The JSR annotations will not work since JSR-256 states that the annotations have no impact on interfaces.

@spring-issuemaster

This comment has been minimized.

Copy link
Author

@spring-issuemaster spring-issuemaster commented Mar 25, 2015

Eric Sirianni said:

This JIRA seems to imply that method-level security annotations on Spring Data Repositories should work. However, I'm getting errors when trying apply them -- please see DATAJPA-694. Rob - do you have any thoughts?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
2 participants
You can’t perform that action at this time.