'Spring Security "Administrator" Access to all URLs

In Spring Security configuration I have something like following:

http.authorizeRequests()
    .mvcMatchers("/admin").hasRole("ADMIN")
    .mvcMatchers("/student").hasAnyRole("ADMIN", "STUDENT")
    .mvcMatchers("/teacher").hasAnyRole("ADMIN", "TEACHER")
//  ....

Is there anyway to avoid repeating the "ADMIN" each time, i.e. giving someone with the ADMIN role automatic access to all URLs?

A bit like:

http.authorizeRequests()
    .anyRequest().hasRole("ADMIN")
    .or()
    .mvcMatchers("/student").hasRole("STUDENT")
    .mvcMatchers("/teacher").hasRole("TEACHER")
//  ....

But although there is an .and() method, there doesn't seem to be an .or() one.

springspring-security


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Upload data file as byte array with Feign

Apache Camel: Set body from resource

How to configure log4j in a Spring Mvc application configured with Java Annotations and using a log4j.properties file

SonnarQube's issue: change code to not construct the URL from user-controlled data

How do I produce just one message using Spring Cloud Stream w/o deprecated @Output, or turn off polling?

Error creating bean with name 'entityManagerFactory'

Spel not supported on spring annotation @Scheduled.fixedDelayString

How to run gradle based spring boot application in background using command line in ubuntu?

AuthenticationSuccessEvent never fired

Spring @Value annotation always evaluating as null?

Spring MongoDB query sorting

Map JSON default tag to java variable

Spring Hibernate Jackson Hibernate5Module

Spring JUnit: How to Mock autowired component in autowired component

Flyway Found more than one migration with version