Current Salespoint (6.0 RC1) doesn't have @EnableGlobalMethodSecurity(prePostEnabled = true) activated (as we just discovered in the lecture today). There's already a ticket for that in Salespoint which will be resolved for the 6.0 GA release. To keep the VideoShop working in the meantime we should temporarily add the annotation to the configuration to make sure the security constraints defined on the controllers are actually evaluated.
Current Salespoint (6.0 RC1) doesn't have
@EnableGlobalMethodSecurity(prePostEnabled = true)
activated (as we just discovered in the lecture today). There's already a ticket for that in Salespoint which will be resolved for the 6.0 GA release. To keep the VideoShop working in the meantime we should temporarily add the annotation to the configuration to make sure the security constraints defined on the controllers are actually evaluated.