Spring security @PreAuthorize hasRole() properties injection

by

Try to remove '' signs:

@PreAuthorize("hasRole(${role.rolename})")
public void method() {}

EDIT. I am sure that there is a better way, but as a workaround you can call some method on some bean:

@Component("appVariablesHolder")
public class AppVariablesHolder {

    @Value("${role.rolename}") 
    private String someRole;

    public String getSomeRole() {
        return this.someRole;
    }
}

@PreAuthorize("hasRole(@appVariablesHolder.getSomeRole())")
public void method() {}

More Related Contents:

  1. Spring Security : Multiple HTTP Config not working
  2. How to fix role in Spring Security?
  3. Spring Security Configuration – HttpSecurity vs WebSecurity
  4. Configuring Spring Security 3.x to have multiple entry points
  5. Spring Boot 2.0.x disable security for certain profile
  6. How to manage exceptions thrown in filters in Spring?
  7. Disable Spring Security for OPTIONS Http Method
  8. Logging user activity in web app
  9. Multiple WebSecurityConfigurerAdapters: JWT authentication and form login in spring security
  10. HttpSecurity, WebSecurity and AuthenticationManagerBuilder
  11. How to check “hasRole” in Java Code with Spring Security?
  12. Logout/Session timeout catching with spring security
  13. Spring security does not allow CSS or JS resources to be loaded
  14. how to display custom error message in jsp for spring security auth exception
  15. Spring Security 5 : There is no PasswordEncoder mapped for the id “null”
  16. Securing Spring Boot API with API key and secret
  17. Spring Security multiple url ruleset not working together
  18. JAAS for human beings
  19. Spring Security HTTP Basic for RESTFul and FormLogin (Cookies) for web – Annotations
  20. Spring security added prefix “ROLE_” to all roles name?
  21. Why this Spring application with java-based configuration don’t work properly
  22. How to test spring-security-oauth2 resource server security?
  23. How do I add method based security to a Spring Boot project?
  24. Spring REST security – Secure different URLs differently
  25. What does Cookie CsrfTokenRepository.withHttpOnlyFalse () do and when to use it?
  26. Disable HTTP OPTIONS method in spring boot application
  27. Spring Security HTTP Basic Authentication
  28. disabling spring security in spring boot app [duplicate]
  29. Spring Boot Microservices – Spring Security – ServiceTest and ControllerTest for JUnit throwing java.lang.StackOverflowError
  30. Custom Authentication Manager with Spring Security and Java Configuration

Leave a Comment