Multiple roles using @PreAuthorize

Question

To check multiple roles has the method level access

I have used @PreAuthorize annotation to check the role

@PreAuthorize(\"hasRole(\\\"\" + AuthoritiesCons

Answer 1

Simply combine roles by using && or || in SpEL expressions

@PreAuthorize("hasRole('" + AuthoritiesConstants.USER + "')" +
              " && hasRole('" + AuthoritiesConstants.ADMIN + "')" )