Closed mvysny closed 2 years ago
The AccessAnnotationChecker
is not present in Vaadin 14 LTS, therefore this ticket is blocked by #72 .
However, what we can do is to drop the eu.vaadinonkotlin.security.*
annotations in favor of javax.annotation.security.*
annotations. Blocked by #73
Note to also update README.md
and security.md
documentation.
In Vaadin 21+ there's the
AccessAnnotationChecker
class and theViewAccessChecker
class which helps with LoginView and uses a simple role-based security based onjavax.annotation.security.RolesAllowed
annotations.VoK should drop its own annotations and use the abovementioned classes, to reuse a lot of tested code.
Namely:
eu.vaadinonkotlin.security.AllowAll
is replaced by Vaadin 21+'scom.vaadin.flow.server.auth.AnonymousAllowed
.