Could you also post your autowired beans setSecuredDecisionManager & setSecurityMetadataSource?
Also since I just have plain GWT app (no JSP) can I assume that I don't need the handleRequest() method? I assume the security work is done in onAfterRequestDeserialized()? Thanks, -Dave On Jun 15, 1:18 pm, "Jordi P.S." <[email protected]> wrote: > I have a login JSP that uses the remember me feature.so I have my login > under Spring Security. > > I have method security enabled in the RPC layer. All my RPCs extend a base > class and then I used annotations on the methods to check for the > permissions. > > Here the RPC Base Servlet class: http://pastebin.com/Z6mj4pZi > > > > > > > > On Wednesday, June 13, 2012 2:47:47 AM UTC+2, dhoffer wrote: > > > I'd like to get feedback on the best way to secure GWT apps with > > Spring Security. I read several existing blogs about this online but > > they are all (that I have found) quite old at this point. > > Specifically what's the best way with GWT 2.4 and Spring Security > > 3.1? Or is there a better way other than Spring Security? -- You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-web-toolkit?hl=en.
