Loading src/main/java/es/redmic/api/config/Oauth2SecurityConfiguration.java +8 −0 Original line number Diff line number Diff line Loading @@ -76,6 +76,14 @@ public class Oauth2SecurityConfiguration { "#oauth2.hasScope('read') or #oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR')"); http.authorizeRequests().antMatchers(HttpMethod.POST, "/mediastorage/photobank/users/**").access( "#oauth2.hasScope('read') or #oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR', 'ROLE_USER')"); http.authorizeRequests().antMatchers(HttpMethod.GET, "/mediastorage/photobank/users/**").access( "#oauth2.hasScope('read') or #oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR', 'ROLE_USER')"); http.authorizeRequests().antMatchers(HttpMethod.POST, "/**").access( "#oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR')"); Loading Loading
src/main/java/es/redmic/api/config/Oauth2SecurityConfiguration.java +8 −0 Original line number Diff line number Diff line Loading @@ -76,6 +76,14 @@ public class Oauth2SecurityConfiguration { "#oauth2.hasScope('read') or #oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR')"); http.authorizeRequests().antMatchers(HttpMethod.POST, "/mediastorage/photobank/users/**").access( "#oauth2.hasScope('read') or #oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR', 'ROLE_USER')"); http.authorizeRequests().antMatchers(HttpMethod.GET, "/mediastorage/photobank/users/**").access( "#oauth2.hasScope('read') or #oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR', 'ROLE_USER')"); http.authorizeRequests().antMatchers(HttpMethod.POST, "/**").access( "#oauth2.hasScope('write') and " + "hasAnyRole('ROLE_ADMINISTRATOR', 'ROLE_OAG', 'ROLE_COLLABORATOR')"); Loading
