Home Explore Help
Register Sign In
github
/
spring-security
mirror of https://github.com/spring-projects/spring-security
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

SEC-1836: use GET as the default method with authorize tag.

Luke Taylor 14 years ago
parent
2f67bb3032
commit
fc399af136
2 changed files with 4 additions and 3 deletions
Split View Show Diff Stats
  1. 1 1
      taglibs/src/main/java/org/springframework/security/taglibs/authz/AbstractAuthorizeTag.java
  2. 3 2
      taglibs/src/main/resources/META-INF/security.tld

+ 1 - 1
taglibs/src/main/java/org/springframework/security/taglibs/authz/AbstractAuthorizeTag.java
View File 

@@ -61,7 +61,7 @@ import org.springframework.web.context.support.WebApplicationContextUtils;
 
 public abstract class AbstractAuthorizeTag {
 
     private String access;
 
     private String url;
 
-    private String method;
 
+    private String method = "GET";
 
     private String ifAllGranted;
 
     private String ifAnyGranted;
 
     private String ifNotGranted;

+ 3 - 2
taglibs/src/main/resources/META-INF/security.tld
View File 

@@ -42,8 +42,9 @@
 
 
         <attribute>
 
             <description>
 
-                Can optionally be used to narrow down the HTTP method (typically GET or POST) to which the URL
 
-                applies to. Only has any meaning when used in combination with the "url" attribute.
 
+                Can be used to narrow down the HTTP method (typically GET or POST) to which the URL
 
+                applies. Only has any meaning when used in combination with the "url" attribute. This method will
 
+                be used when looking up the security metadata for the URL. Defaults to GET.
 
             </description>
 
             <name>method</name>
 
             <required>false</required>