Posted on 16 Aug 2022, this text provides information on Syllabus Queries related to Course Queries. Please note that while accuracy is prioritized, the data presented might not be entirely correct or up-to-date. This information is offered for general knowledge and informational purposes only, and should not be considered as a substitute for professional advice.

Take Quiz To Earn Credits!

Turn Your Knowledge into Earnings.

Answers (2)

Post Answer

manpreet Best Answer 2 years ago

I'm trying to use preAuthorize to protect url. Only people registered in the course can access the course. Here is my code:

Controller:

@Controller
@RequestMapping(value = "/course/{courseId}")
@PreAuthorize("@userService.isCurrentUserinCourse(authentication, courseId)")
public class SyllabusController {
    @RequestMapping(value = { "/syllabus" }, method = RequestMethod.GET)
    public ModelAndView syllabusPage(@PathVariable("courseId") int courseId) {
    ...}

UserServiceImpl:

@Service("userService")
public class UserServiceImpl implements UserService {
    @Autowired
    private UserDAO userDAO;
    @Override
    public boolean isUserinCourse(int userId, int courseId) {
        return userDAO.isUserinCourse(userId, courseId);
    }

    @Override
    public boolean isCurrentUserinCourse(Authentication authentication, int courseId) {
    if (!(authentication instanceof AnonymousAuthenticationToken)) {
            return isUserinCourse(((UserModel) authentication.getPrincipal()).getId(), courseId);
    }
    return false;
}

spring-security.xml:

<beans:beans xmlns="http://www.springframework.org/schema/security"
xmlns:beans="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans-3.0.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security-3.2.xsd">
<global-method-security pre-post-annotations="enabled" />

<http auto-config="true" use-expressions="true">

and we I go to /course/{id}/syllabus without out login, it shows the page where it should not. And debug is not go into isCurrentUserinCourse(Authentication authentication, int courseId) method in UserServiceImpl. where

0 views

0 shares

manpreet 2 years ago

@PreAuthorize("@userService.isCurrentUserinCourse(authentication, courseId)")

You can get the authentication by following static method

SecurityContextHolder.getContext().getAuthentication()

and the courseId you need to change to #coureseId, and you need move this to the method, not class,so you can change to

    @PreAuthorize("@userService.isCurrentUserinCourse(#courseId)")
    @RequestMapping(value = { "/syllabus" }, method = RequestMethod.GET)
    public ModelAndView syllabusPage(@PathVariable("courseId") int courseId) {
    ...}

0 views 0 shares

No matter what stage you're at in your education or career, TuteeHub will help you reach the next level that you're aiming for. Simply,Choose a subject/topic and get started in self-paced practice sessions to improve your knowledge and scores.

Explore Other Libraries

Blogs Tutorials Question Bank Feeds Careernews

Popular Categories

@PreAuthorize not working on controller using

Take Quiz To Earn Credits!

Answers (2)

manpreet Best Answer 2 years ago

manpreet 2 years ago

when will be released admit card of IBPS Clerk Prelims 2018?

What is good preparation material for the IBPS Bank PO Exam?

Sir, When the admit card will be released for the post of Junior Executive (IT/CS)?

UPPRPB Recruitment – 3638 Jail Warder Vacancy – Last Date 28 December 2018

Indian Navy recruitment notification for 275 posts of Trade Apprentice.

What is the full form of NABARD ?

How to refresh app upon shaking the device?

What are the govt exams after BCA?

TYPO3 v8. Override function in Core class

Why do people in India give so much importance to Government jobs?

<div>zkskKsk</div>

<span style="font-size: 1em;">Qwerty 4</span>

<div>What are the key differences between AMOLED and LCD displays in smartphones?</div>

<div>What are the key challenges in Mobile App Development for Cross-Platform Solutions?</div>

who is the smallest man in the world

Explore Other Libraries

Tags

Important Course Queries Links

Join Our Community Today