@Retention(value=RUNTIME) @Target(value=TYPE) @Documented @Import(value=org.springframework.security.config.annotation.method.configuration.GlobalMethodSecuritySelector.class) @EnableGlobalAuthentication @Configuration public @interface EnableGlobalMethodSecurity
Enables Spring Security global method security similar to the <global-method-security> xml support.
More advanced configurations may wish to extend
GlobalMethodSecurityConfiguration
and override the protected methods to provide
custom implementations. Note that EnableGlobalMethodSecurity
still must be
included on the class extending GlobalMethodSecurityConfiguration
to determine
the settings.
Modifier and Type | Optional Element and Description |
---|---|
boolean |
jsr250Enabled
Determines if JSR-250 annotations should be enabled.
|
org.springframework.context.annotation.AdviceMode |
mode
Indicate how security advice should be applied.
|
int |
order
Indicate the ordering of the execution of the security advisor when multiple
advices are applied at a specific joinpoint.
|
boolean |
prePostEnabled
Determines if Spring Security's pre post annotations should be enabled.
|
boolean |
proxyTargetClass
Indicate whether subclass-based (CGLIB) proxies are to be created (
true ) as
opposed to standard Java interface-based proxies (false ). |
boolean |
securedEnabled
Determines if Spring Security's
Secured annotations should be enabled. |
public abstract boolean prePostEnabled
public abstract boolean jsr250Enabled
public abstract boolean proxyTargetClass
true
) as
opposed to standard Java interface-based proxies (false
). The default is
false
. Applicable only if mode()
is set to
AdviceMode.PROXY
.
Note that setting this attribute to true
will affect all
Spring-managed beans requiring proxying, not just those marked with the Security
annotations. For example, other beans marked with Spring's @Transactional
annotation will be upgraded to subclass proxying at the same time. This approach
has no negative impact in practice unless one is explicitly expecting one type of
proxy vs another, e.g. in tests.