Details
-
Type:
Bug
-
Status: Resolved
-
Priority:
Minor
-
Resolution: Complete
-
Affects Version/s: 1.2.3.RELEASE, 1.2.4.RELEASE
-
Fix Version/s: 1.2.4.RELEASE
-
Component/s: SECURITY
-
Labels:
-
Environment:Ubuntu 12.04, JDK 6, Maven 3
Description
When security setup command executed applicationContext-security.xml has:
<intercept-url pattern="/**" access="permitAll" />
Instead of configure authenticated access urls:
<intercept-url pattern="/login/**" access="permitAll" />
<intercept-url pattern="/**" access="isAuthenticated()" />
There is an exception, the login will still accesible.