if i set intercept-url with filters=’none’ , everyone can access it but i cannot

Question

0

Asked: May 25, 20262026-05-25T00:24:31+00:00 2026-05-25T00:24:31+00:00

if i set intercept-url with filters=’none’ , everyone can access it but i cannot

0

if i set intercept-url with filters=’none’ , everyone can access it but i cannot get SecurityContextHolder.getContext().getAuthentication().getPrincipal(), even though, user is logined in. (just exactly mentioned in http://static.springsource.org/spring-security/site/faq.html#faq-anon-access-denied )

On the other hand, if i set access=’role_user’, only authenticated user able to access it. I want to allow both “not authenticated” and “authenticated” use to access the url and use
SecurityContextHolder.getContext().getAuthentication() to check user is already authenticated. How should i put as parameter in intercept-url ?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-25T00:24:32+00:00

Editorial Team

2026-05-25T00:24:32+00:00Added an answer on May 25, 2026 at 12:24 am

Use access “permitAll” in the SPRING Security configuration

Spring configuration:

<http auto-config="true" use-expressions="true">
   <intercept-url pattern="/**" access="permitAll" />
</http>

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

if i set intercept-url with filters=’none’ , everyone can access it but i cannot

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply