My url is //localhost:8080/server/#/view/3 and //localhost:8080/server/#/create. (# is present in the url by default as i am using routing from angularjs)
I want to assign some authority for the below urls, so i used the below URL patterns security:intercept-url pattern="/#/create" access="admin" and security:intercept-url pattern="/#/view/**" access="admin"
when tried accessing the url (//localhost:8080/server/#/create) with role different from admin (Eg. User), I am stil able to access this page whereas any URLs like //localhost:8080/server/abc/create shows as Access Denied when i change the url pattern accordingly.
Is that the # in the URL will be neglected and is there any other way through which i can solve this problem ??????
Thanks !
No comments:
Post a Comment