SEC-3004: Allow access to WebInvocationPrivilegeEvaluator when using multiple <http> #3142
Labels
in: web
An issue in web modules (web, webmvc)
status: duplicate
A duplicate of another issue
type: bug
A general bug
type: jira
An issue that was migrated from JIRA
Mattias Jiderhamn (Migrated from SEC-3004) said:
When using a Spring Security configuration with a single
<http>
entry, you can easily get hold of the theWebInvocationPrivilegeEvaluator
by auto wiring.However that is not so easy when using multiple
<http>
, because it is neither possible to supply aWebInvocationPrivilegeEvaluator
nor to provide a name for the autowiring capableDefaultWebInvocationPrivilegeEvaluator
s being created by HttpConfigurationBuilder.createFilterSecurityInterceptor(), leading to the infamousexpected single matching bean but found N
.The text was updated successfully, but these errors were encountered: