Announcement Announcement Module
No announcement yet.
IP-based roles without login screen Page Title Module
Move Remove Collapse
Conversation Detail Module
  • Filter
  • Time
  • Show
Clear All
new posts

  • IP-based roles without login screen

    Update I have solved the problem, the DelegatingFilterProxy was missing in that project Please close

    I am working on a new project where we want to assign Spring security roles according to their IPs and use those roles in the intercept-url 'access' command. That project will not have any interface, it's just a simple m2m machine.

    The problem I have is that my access decision manager is not called (my ipAuthenticationEntryPoint isn't called either). It doesn't matter if I use <intercept-url pattern="/**" access="denyAll" /> or check with hasRole for the role, in both cases I can access any page and the access decision manager is not called...

    Do you have any idea what's wrong or how I could accomplish what I want? It works flawlessly in one of my other projects, but there I have a normal login screen etc.

    Thank you in advance

    PHP Code:
    <?xml version="1.0" encoding="UTF-8"?>

    <beans:beans xmlns=""
        xmlns:beans="" xmlns:xsi=""

        <http auto-config="false" use-expressions="true" entry-point-ref="ipAuthenticationEntryPoint"

            <!-- <intercept-url pattern="/test" access="hasRole('IP_LOCAL')"
                method="POST" /> -->

            <intercept-url pattern="/**" access="denyAll" />


        <beans:bean id="ipAuthenticationEntryPoint"
        <authentication-manager />

        <beans:bean id="accessDecisionManager"
            <beans:property name="decisionVoters">
                    <beans:bean class="" />
                    <beans:bean class="" />
                    <beans:bean class=""/>

    Last edited by Clemensl; Oct 24th, 2012, 09:36 AM. Reason: [solved]