Package org.springframework.security.config.annotation.method.configuration

Annotation Type EnableMethodSecurity

  • @Retention(RUNTIME)
@Target(TYPE)
@Documented
@Import(org.springframework.security.config.annotation.method.configuration.MethodSecuritySelector.class)
@Configuration
public @interface EnableMethodSecurity
    Enables Spring Security Method Security.
    Since:
    5.6

    • Optional Element Summary

      Optional Elements 
      Modifier and Type Optional Element Description
      boolean jsr250Enabled
      Determines if JSR-250 annotations should be enabled.
      org.springframework.context.annotation.AdviceMode mode
      Indicate how security advice should be applied.
      boolean prePostEnabled
      Determines if Spring Security's PreAuthorize, PostAuthorize, PreFilter, and PostFilter annotations should be enabled.
      boolean proxyTargetClass
      Indicate whether subclass-based (CGLIB) proxies are to be created as opposed to standard Java interface-based proxies.
      boolean securedEnabled
      Determines if Spring Security's Secured annotation should be enabled.

    • Element Detail

      • prePostEnabled

        boolean prePostEnabled
        Determines if Spring Security's PreAuthorize, PostAuthorize, PreFilter, and PostFilter annotations should be enabled. Default is true.
        Returns:
        true if pre/post annotations should be enabled false otherwise
        Default:
        true

      • securedEnabled

        boolean securedEnabled
        Determines if Spring Security's Secured annotation should be enabled. Default is false.
        Returns:
        true if Secured annotation should be enabled false otherwise
        Default:
        false

      • jsr250Enabled

        boolean jsr250Enabled
        Determines if JSR-250 annotations should be enabled. Default is false.
        Returns:
        true if JSR-250 should be enabled false otherwise
        Default:
        false

      • proxyTargetClass

        boolean proxyTargetClass
        Indicate whether subclass-based (CGLIB) proxies are to be created as opposed to standard Java interface-based proxies. The default is false. Applicable only if mode() is set to AdviceMode.PROXY.

        Note that setting this attribute to true will affect all Spring-managed beans requiring proxying, not just those marked with @Cacheable. For example, other beans marked with Spring's @Transactional annotation will be upgraded to subclass proxying at the same time. This approach has no negative impact in practice unless one is explicitly expecting one type of proxy vs another, e.g. in tests.

        Returns:
        true if subclass-based (CGLIB) proxies are to be created
        Default:
        false

      • mode

        org.springframework.context.annotation.AdviceMode mode
        Indicate how security advice should be applied. The default is AdviceMode.PROXY.
        Returns:
        the AdviceMode to use
        See Also:
        AdviceMode
        Default:
        org.springframework.context.annotation.AdviceMode.PROXY