how to use params in spring security antmatchers

The name of the picture


how to use params in spring security antmatchers



How should I use parameters like this in antmatchers in spring ?
I have many URLs that start with /sUrl and have different params.
This Code doesn't work!


.antMatchers("/sUrl?params={url:"reports/Manager",subSystem:"ABS"}/**").access("hasRole('ROLE_ABS')")





Sorry...I am using spring security 4
– faraa
6 hours ago





No, I think it can't help.I want a guide to how to use parameters in matching... like this part:?params={url...
– faraa
5 hours ago





I belive you can use regular expressions. You may try to write your params section as a regular expression pattern. It's probably the way it is supposed to be
– avi.elkharrat
5 hours ago





Possible duplicate of Spring-security cannot match "?parameter" format?
– dur
5 hours ago





@dur, Granted, but the versions have changed so much since that an update is most welcome!
– avi.elkharrat
5 hours ago




1 Answer
1



You can probably solve your problem using regExMatcher


regExMatcher



See HttpSecurity regExMatcher method for more details.






By clicking "Post Your Answer", you acknowledge that you have read our updated terms of service, privacy policy and cookie policy, and that your continued use of the website is subject to these policies.
-

Popular posts from this blog

Stripe::AuthenticationError No API key provided. Set your API key using “Stripe.api_key = ”

Image
Clash Royale CLAN TAG#URR8PPP Stripe::AuthenticationError No API key provided. Set your API key using “Stripe.api_key = <API-KEY>” UPDATE: I set the publishable key directly inline like so: Stripe.setPublishableKey("pk_live_*****"); and it works!! The problem is it is not properly configuring with ENV['stripe_publishable_key'] . Stripe.setPublishableKey("pk_live_*****"); ENV['stripe_publishable_key'] ORIGINAL POST: I am using the koudoku gem for Stripe. Everything works fine locally, but when I push to heroku, I am getting the error: Stripe::AuthenticationError (No API key provided. Set your API key using "Stripe.api_key = <API-KEY>". Stripe::AuthenticationError (No API key provided. Set your API key using "Stripe.api_key = <API-KEY>". Even though it sets the publishable key in development. Also, if I run heroku config, I see the keys there. What is happening here? Why is it not setting the key?? application.yml
Read more

CRM reporting Extension - SSRS instance is blank

Image
Clash Royale CLAN TAG#URR8PPP CRM reporting Extension - SSRS instance is blank Trying to install Reporting Extension for CRM 2016 but SSRS instance is blank. VM containing (SQL & CRM on the same machine ) Can you please help me how to fix the error below (SSRS instance name is empty). Can we install reporting extension on SQL server 2017 (should be OK as I was able to install CRM server)? By clicking "Post Your Answer", you acknowledge that you have read our updated terms of service, privacy policy and cookie policy, and that your continued use of the website is subject to these policies.
Read more

Keycloak server returning user_not_found error when user is already imported with LDAP

Keycloak server returning user_not_found error when user is already imported with LDAP I am currently running a keycloak server as a service in a kubernetes cluster. I can access it perfectly with the initial keycloak admin account and used it to setup a new realm using LDAP for User Federation. The connection and queries seem to work fine as a I can search for Users and they pop up with their correct username, first name, last name and e-mail so all seemed fine. When I then log out and try to log in with a normal user account that exists in the AD and has been imported I just find get the following error: WARN [org.keycloak.events] (default task-8) type=LOGIN_ERROR, realmId=master, clientId=security-admin-console, userId=null, ipAddress=<my ip>, error=user_not_found, auth_method=openid-connect, auth_type=code, redirect_uri=http://myserver.com/auth/admin/master/console/#/realms/MyRealm, code_id=a8ca7f06-dfec-4e6e-8f6b-74eb871f71da, username=myUser So it seems that in some way wh
Read more