Page « Security « Spring Q&A





1. Spring security - same page to deliver different content based on user role    stackoverflow.com

i tried to search for any previous post related to my issue but couldnt find any. I have a scenario where in page handles 3 different scenarios and one of them ...

2. How to prevent Spring Security 2.5 from overriding the loading of a Welcome Page (index.html)    stackoverflow.com

I have a Spring MVC Web app that I'd like to show a simple Welcome Page (index.html). On that page, I just to have a 2 href links: one to bring ...

3. Spring Security: Allow page views for all Fully Authenticated users, unless they have a specific role    stackoverflow.com

I'm using Spring 3.0.3 with Spring Security. So, I have fairly lenient restrictions on an app I'm making. I only want to make sure that a person can log in and be ...

4. How do I show home page if user has a valid session?    stackoverflow.com

How do I show a show home page if a user requests login page with a valid session using spring security?

5. Spring - allowing a user to view a page as another user    stackoverflow.com

We have a website with 2 user groups: the admin group and the customer group. The groups have different restrictions set up hence the admin group sees one set of products ...

6. Spring Security - How can I specify anonymous role to root page    stackoverflow.com

The default URL for my web app is http://localhost:8080/Icd/ I want to display my custom login page which is /index.jsp. However , when I configure the spring security to do so ...

7. Browser is remembering page content, and not checking out the html file through spring security    stackoverflow.com

I have a webapp that has a start page that can redirect to two other pages. The start page has no security, one page is for user level access, and ...

8. Where are the pictures of my JSF page?    stackoverflow.com

I have a navigation-rule like this in my JSF 2 application:

<navigation-rule>
    <from-view-id>*</from-view-id>
    <navigation-case>
        <from-action>#{myBean.goToMyHome1}</from-action>
     ...

9. Spring Security: allow user only to access their own administration page    stackoverflow.com

In my web app users are able to change their user details. The URL for this page is:

springproject/usermanagement/edituserinfo/4
where "4" is the user id. My security-context looks like:
<security:http auto-config="true" use-expressions="true">
   ...





10. Spring MVC: How to deny access to any page that doesn't explicitly have a role assigned    stackoverflow.com

I want to ensure all resources have security permissions set, even if that's declaring the resource public (ROLE_ANONYMOUS). How can I configure Spring MVC to deny any page that has no ...

11. access-denied-page can not work    forum.springsource.org

Dec 21st, 2010, 05:18 AM #1 chengshwu View Profile View Forum Posts Private Message Junior Member Join Date Dec 2006 Posts 5 access-denied-page can not work Hi : there is a ...

12. Custom access denied page breaks security restrictions!    forum.springsource.org

Jan 14th, 2011, 10:56 PM #1 stuart_wildcat View Profile View Forum Posts Private Message Junior Member Join Date Jan 2011 Posts 5 Custom access denied page breaks security restrictions! I have ...

13. How do I show home page if user has a valid session?    forum.springsource.org

Just use remember me functionality for auto loggining with a valid session parameters. if you try to redirect user from loggin page, when he is already authenticated, then you can use ...

14. Security Warning for Pet Clinic /vet Page    forum.springsource.org

Security Warning for Pet Clinic /vet Page I downloaded the latest 64-bit JDK and STS, and installed them on my Windows 7 box. I added the Subversive extension and pulled the ...

15. access-denied-page is not working    forum.springsource.org

access-denied-page is not working I am new to spring security I am getting HTTP Status 404 - /TestwithMenuItems/accessDenied -------------------------------------------------------------------------------- type Status report message /TestwithMenuItems/accessDenied description The requested resource (/TestwithMenuItems/accessDenied) is not ...

16. access-denied-page not working    forum.springsource.org

access-denied-page not working Hi all, I have a problem with the redirection after checking the access rules..this is my securty conf file: Code: ....

17. Spring Security and JSF navigation to target page when timeout occurs    forum.springsource.org

Spring Security and JSF navigation to target page when timeout occurs Here is the scenario: The session times out and the user clicks on a button that is a JSF h:commandButton ...

18. NoSuchElementException while trying to access any page    forum.springsource.org

NoSuchElementException while trying to access any page Hi, I updated from Spring 3.0.6 to Spring 3.1 RC1 and now cannot access any page. I get the exception below. Nothing has changed ...

19. Test if user has access to a certain page    forum.springsource.org

Test if user has access to a certain page Hi I'm making an application in which, according to some permissions, the user might have, or not, access to certain pages. For ...

20. Authentication passes, but home page is not rendered    forum.springsource.org

Jan 13th, 2007, 01:09 PM #1 hirschs View Profile View Forum Posts Private Message Junior Member Join Date Dec 2006 Location South Africa Posts 20 Authentication passes, but home page is ...

21. different role using different home page    forum.springsource.org

Hi, I want to different role has different homepage. When a user logins successfully, it will use defaultTargetUrl as homepage. ..... homeController ... I will add ...

22. Controlling access to pages    forum.springsource.org

Controlling access to pages My project has all of the JSPs in the WEB-INF/classes directory and an index.jsp file that users will initially go to. index.jsp redirects to another jsp with ...

23. Role based page access    forum.springsource.org

Role based page access I am newbie to spring security and I am not sure if this belongs here but here is my problem I am looking solution for: I want ...

24. Cannot use access-denied-page...    forum.springsource.org

Cannot use access-denied-page... Hi All, I am trying to configure spring security (2.0.3), but I did not manage to get the access-denied-page to work. I am using Facelet & JSF, but ...

25. Mulitple Roles Required for one page    forum.springsource.org

Mulitple Roles Required for one page Hello, I'm attempting to build a tools app that will depend on more than one role type for access. I've read through the reference guide ...

26. Authentication failed pages with user disabled and user/pwd wrong    forum.springsource.org

Authentication failed pages with user disabled and user/pwd wrong Hi all, I'm using acegi for my webapp authentication. Now I have this configuration:

27. Transferring control to the landing page after authentication    forum.springsource.org

Sep 17th, 2008, 12:39 PM #1 va1224 View Profile View Forum Posts Private Message Junior Member Join Date Jul 2008 Posts 15 Transferring control to the landing page after authentication i ...

28. coming back to previous page when user clicks cancel    forum.springsource.org

coming back to previous page when user clicks cancel I'm developing a portal using spring framework. I've a requirement wherein i need to come back to previous page upon clicking Cancel. ...

29. restricting some pages for the remembered user    forum.springsource.org

restricting some pages for the remembered user how can i check if the user is remembered, or has logged in by giving the username and password? i want to restrict some ...

30. multiple page authentication problem    forum.springsource.org

multiple page authentication problem Hi, I have a problem that I hope you can help me with. We have two types of user role (Level_0 and Level_1) in our web application. ...

31. public pages in acegi security    forum.springsource.org

I am implementing CAS with acegi security, i have some public pages which should access without authentication, how do i implement the public pages in CAS with acegi security.

32. access-denied-page in spring security 2.0.4    forum.springsource.org

access-denied-page in spring security 2.0.4 I am using in security configuration xml with Spring Security 2.0.4 in webLogic 10.1. I got 404 error after being denied to access ...

33. Terms of use page after authentication    forum.springsource.org

Terms of use page after authentication I am new to Spring security. I am modifying an existing application which implements Spring security. I need to add a "Terms of use" page. ...

34. Authentication lost after leaving main page    forum.springsource.org

Authentication lost after leaving main page I have web and wap pages and security defined for them. Both work ok when I try them using browser. But the problem is when ...

35. Spring security access-denied-page parameter    forum.springsource.org

36. Excluding single pages from security (or give anonymous access)    forum.springsource.org

Excluding single pages from security (or give anonymous access) Hello. I am trying to configure my application to avoid asking for credentials for certain urls, since they are considered "public". Initially ...

37. Always access denied on xhtml pages    forum.springsource.org

Hi, I have a webapp using JSF and RichFaces. All my JSF pages have the .xhtml extension. Problem is that I always get a "access denied" when addressing such a page. ...

38. problem with using access-denied-page    forum.springsource.org

problem with using access-denied-page Hi , i am using spring security for my application. i am using delegatingfilterproxy and along with that have written a custom dao for getting users and ...

39. edit user details page    forum.springsource.org

edit user details page Hi all, I'm trying to design a page where the user can edit there details. But I've hit a validation problem. I'm using a single UserValidator for ...

40. Access is denied 403 how to show custom page    forum.springsource.org

Access is denied 403 how to show custom page Iam getting following error when people dont have access. I would like show custom erro page instead 403. Thanks in advance HTTP ...

41. Always deny access to a page    forum.springsource.org

Always deny access to a page Hello, When using the element, how do I specify that access should always be denied to a particular page? At the moment I have ...

42. Making a user to pass through an entry point page    forum.springsource.org

hi i need a way to make user to pass through a page mandatory, if has visited this page he can navigate the pages beyond this any number of times until ...

43. Same page to allow anonymous & authenticated user    forum.springsource.org

Same page to allow anonymous & authenticated user Hello, I am having some trouble in implementing a custom logic where a page url need to allow anonymous access depending on the ...

44. Different access-denied-pages    forum.springsource.org

I am using global-method-security and using secured annotations (spring security 2.0.4) Code: When ever principal having insufficient privilages AccessDeniedException is thrown by spring security. I need to ...

45. Multi Stage Authentication with Two Form Separate Pages    forum.springsource.org

Multi Stage Authentication with Two Form Separate Pages A client wants to authenticate using two separate form pages. The first for the username and password, the second with questions. Can anyone ...

46. Problems setting access page based on role    forum.springsource.org

Problems setting access page based on role I'm trying to set a start page based on which role the user has. I know there are sites describing this problem, and I ...

47. Problem with access denied page    forum.springsource.org

Nov 5th, 2010, 12:40 PM #1 Emmanuel B View Profile View Forum Posts Private Message Junior Member Join Date Feb 2009 Location Toronto, ON Posts 6 Problem with access denied page ...

48. How to authenticate user from registration page    forum.springsource.org

I need to create a Register user page. From that page the user has to be logged in automatically. How can I do that without sending the user through the login ...