# Annotations in Java Spring Security

By
Paul Tomoiu
In 
Published 2024-01-14

This tutorial explains some annotations used in Java Spring Security.

Here are some well known annotations used in Java Spring Security:

# @EnableWebSecurity

@EnableWebSecurity - Enables web security

# @EnableGlobalMethodSecurity

@EnableGlobalMethodSecurity - Enables method security (further we can use @PreAuthorize, @PostAuthorize, @PreFilter, @PostFilter annotation).

# @PreAuthorize

@PreAuthorize - Defines access-control expression using SpEL, which is evaluated before invoking a protected method. Defines who can access a method.

# @PostAuthorize

@PostAuthorize - Defines access-control expression using SpEL, which is evaluated after invoking a protected method. Defines who can receive information from a method.

# @PreFilter

@PreFilter - Filter the call parameters (collection or arrays) of the method.

# @PostFilter

@PostFilter - Filter the result of the call (collection or arrays).

# @RolesAllowed

@RolesAllowed - Specifies a list of security roles allowed to invoke protected method

# @Secured

@Secured - Do the same thing as @RolesAllowed, but it is Spring specific.

© Copyright www.free-it-tutorials.com, 2022-2024. All rights reserved. This website does not represent any corporation (Oracle, Microsoft, etc) in any way. This site is not using cookies, but it use some services that might use cookies. All information is supposed to be accurate, but it is not guaranteed to be correct. The usage of the information from this website is strictly at your own risk. If you don't like these policies, you have to stop using the website.