Spring Security - Prevent AccessDeniedException from stopping application normal flow -


i'm using spring secuirty 3 acl module. i'm securing methods @preauthentication annotations using custom permissionevaluator. working fine, every time permissionevaluator returns access_denied accessdeniedexception thrown @ point , stops application execution. desired behaivore when permissionevaluator returns , access_denied, secured method call prevented (skipped) , rest of application keeps running normally. have idea on how achieve this?

if wrap each call want happen in try...catch, can behavior. basically, since it's exception, normal exception handling apply it. if application can handle exception , continue normally, that!

here's example of mean:

// 1st method denied want continue execution after try {     // call method throw exception } catch (/*the exception expect thrown , want continue after*/){}   // 2nd method denied want continue execution after try {     // call method b throw exception } catch (/*the exception expect thrown , want continue after*/){}  etc.

yes, add lot of overhead calling methods, simple way of allowing execution continue after exception raised.

i argue more correct, since calling code does know how deal exceptions. doesn't require additional spring configuration, means code behavior remains closer default , not rely on external configurations determine it's behavior.


Comments

Post a Comment

Popular posts from this blog

apache - Add omitted ? to URLs -

i working on website cms reads page name of query string, e.g. http://exmaple.com/?pagename . trying create rewrite rule rewrite ? . so, user types in /pagename , taken /?pagename try this: rewriteengine on rewritecond %{request_filename} !-d rewritecond %{request_filename} !-f rewriterule ^/?(.*) index.php?$1 [l]
Read more

redirect - bbPress Forum - rewrite to wwww.mysite prohibits login -

i using bbpress installation without wordpress integration. the redirect of rewriteengine @ forum site works: rewriteengine on rewritecond %{http_host} ^forum.mysite.com$ rewriterule (.*)$ http://www.forum.mysite.com/$1 [r=301,l] the problem login pppress. bbpress login not recognize: http://www.forum.mysite/bb-login.php . it redirects to: http://forum.mysite.com/bb-login.php . i tried permalink settings none , name based, same issue. does uses redirect in bbpress or how can eliminate "double" content , redirect permanently www.? i redirected www.forum.mysite.com forum.mysite.com , achieved eliminate "double" content.
Read more

php - How can I stop spam on my custom forum/blog? -

so have custom built forum & blog system of late has been dealing lot of spam. if wordpress use akismet, if different common platform i'm sure i'd find plugin. there kind of static class can download this? using php. i'd still go akismet, if it. uses outside of wordpress, may have pay fee it, depending on use -- check terms , conditions -- it's option , easy implement in php using api. use api key wordpress. com account access. basically, grab whichever php client library takes fancy -- use alex potsides' php5 library -- plug in key, , it's handful of lines of code. here's bare bones of validation straight 1 of live sites: ... if ($akismet) { $akismet->setcommentauthor($name); $akismet->setcommentauthoremail($session->userinfo["email"]); $akismet->setcommentauthorurl(""); $akismet->setcommentcontent($sentence);...
Read more