@RequestMapping(value = "do_something", method = GET)
@RequiresAuthentication
@RequiresRoles("DO_SOMETHING")
public List<User> dontHavePermission() {
return userRepo.findAll();
}
@RequestMapping(method = GET)
@RequiresAuthentication
@RequiresRoles("ADMIN")
public List<User> getAll() {
return userRepo.findAll();
}