There are numerous additional customizations that can be made to the security configuration by editing the project-security.xml
file in an editor outside of Studio.
Tip
The tooling of the security configuration panel is not able to maintain all customizations made by manually editing project-security.xml
. If you choose to edit project-security.xml
outside of Studio, subsequent use of the security panel to save changes may overwrite any externally made customizations. It is recommended to keep such customized projects under version control.
In Studio, we use the Setup Services tab to customize access to services. Setup Services works by modifying the objectDefinitionSource
properties of the filterSecurityInterceptor
bean of the project-security.xml
file. By manually editing the same objectDefinitionSource
property, we can restrict access to resources beyond services by role.
The following code gives a full filterSecurityInterceptor
bean definition:
<bean...