yazabara
Reputation: 1353
Grails 2.4.4 spring security role doesn't apply to user
I have controller:
class AdminController {
def springSecurityService
@Secured(['ROLE_ADMIN', 'ROLE_USER'])
def index() {
render "test";
}
And user with role ROLE_ADMIN in the table:
But, when I use: springSecurityService.getPrincipal().getAuthorities() There is only one role: ROLE_NO_ROLES
Why?
def loggedInUser = springSecurityService.currentUser; returns correct user.
Config: ...
grails.plugin.springsecurity.userLookup.userDomainClassName = '...'
grails.plugin.springsecurity.userLookup.authorityJoinClassName = '...'
grails.plugin.springsecurity.authority.className = '...'
grails.plugin.springsecurity.authority.groupAuthorityNameField = 'authorities'
grails.plugin.springsecurity.useRoleGroups = true
grails.plugin.springsecurity.securityConfigType = "Annotation"
Thank you.
Upvotes: 1
Views: 282
Answers (1)
YAT
Reputation: 466
The spring Security has an default UserDetailsService, which assigned the Roles to an User.
You could debug it to see what going wrong.
Or You create your own: https://grails-plugins.github.io/grails-spring-security-core/guide/userDetailsService.html
HTH
Upvotes: 1
Related Questions
- @RolesAllowed doesn't work
- grails spring security role and group
- Grails: @Secured annotation for OR roles
- Spring Security Role Domain class not recognized by Grails
- Grant role to "class" in spring security
- Spring security @secure not working with role hierarchy in Grails
- Grails Security Annotations, @Secured(['ROLE_ADMIN']) not displaying content for role
- Grails + spring-security-core: How to assign a role after user has logged in?
- Spring security - grails restrict with in role
- Grails: SpringSecurity roleHierarchy not working as expected