Skip to content

Method Security SpEL supports throwing AccessDeniedException #14600

New issue
New issue
Closed
#14882
Closed
Method Security SpEL supports throwing AccessDeniedException#14600
#14882
Assignees
jzheaux
Labels
in: coreAn issue in spring-security-coretype: enhancementA general enhancement
@rwinch

Description

@rwinch
rwinch
opened on Feb 13, 2024

It would be nice if we supported throwing AccessDeniedException for Method Security SpEL. This would allow method security to easily convey more information to the framework on why authorization failed (e.g. requires MFA). They can also use AuthorizationManager instances in their SpEL. For example:

@Service
class Authz {
  AuthorizationDecision check(...) {
    throw new AccessDeniedException("Denied");
  }
}
@PreAuthorize("@authz.check(...)")

Metadata

Metadata

Assignees

Labels

in: coreAn issue in spring-security-coretype: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions