How to configure Spring Security to allow GET method for everyone and restrict other methods to specific roles without much boilerplate?
what I want to do is, to permit all user to make GET requests to /product, but for any of the other methods like POST, DELETE and so on, I want them to have admin or user role.