How do I remove the ROLE_ prefix from Spring Security with JavaConfig?

by

Starting from Spring 4.2, you can define the prefix with a single bean, as described here: https://github.com/spring-projects/spring-security/issues/4134

@Bean
GrantedAuthorityDefaults grantedAuthorityDefaults() {
    return new GrantedAuthorityDefaults(""); // Remove the ROLE_ prefix
}

XML version:

<beans:bean id="grantedAuthorityDefaults" class="org.springframework.security.config.core.GrantedAuthorityDefaults">
    <beans:constructor-arg value="" />
</beans:bean>

More Related Contents:

  1. Custom Authentication provider with Spring Security and Java Config
  2. Spring Boot Security CORS
  3. Handle spring security authentication exceptions with @ExceptionHandler
  4. How Spring Security Filter Chain works
  5. How to use OAuth2RestTemplate?
  6. How to pass an additional parameter with spring security login page
  7. Spring Security redirect to previous page after successful login
  8. How can I have list of all users logged in (via spring security) my web application
  9. JSON Web Token (JWT) with Spring based SockJS / STOMP Web Socket
  10. How can I use Spring Security without sessions?
  11. Spring Security configuration: HTTP 403 error
  12. How to manually log out a user with spring security?
  13. Prevent Spring Boot from registering a servlet filter
  14. How to set up Spring Security SecurityContextHolder strategy?
  15. Spring + Web MVC: dispatcher-servlet.xml vs. applicationContext.xml (plus shared security)
  16. How to get custom user info from OAuth2 authorization server /user endpoint
  17. getting exception: No bean named ‘springSecurityFilterChain’ is defined
  18. antMatchers that matches any beginning of path
  19. Combining basic authentication and form login for the same REST Api
  20. Multiple antMatchers in Spring security
  21. An Authentication object was not found in the SecurityContext – Spring 3.2.2
  22. Spring Boot with embedded Tomcat behind Apache proxy
  23. How to use Spring AbstractRoutingDataSource with dynamic datasources?
  24. Spring Boot: How to specify the PasswordEncoder?
  25. With Spring Security 3.2.0.RELEASE, how can I get the CSRF token in a page that is purely HTML with no tag libs
  26. How to allow a User only access their own data in Spring Boot / Spring Security?
  27. Looking for a Simple Spring security example [closed]
  28. disabling spring security in spring boot app [duplicate]
  29. Is it possible to invalidate a spring security session?
  30. How to apply Spring Data projections in a Spring MVC controllers?

Leave a Comment