Recently , Lane spring_security3 for rights management, but a problem with the database URL fuzzy matching

Recently , Lane spring_security3 for rights management, but the database URL fuzzy matching somewhat problematic. I do not know why
For example, my url is this http://localhost:8080/TEST/BlackAdmin/newsSectionAction_newsBrowseClumns.action

stored inside the database I / BlackAdmin / newsSectionAction_newsBrowseClumns.action This can be intercepted to
But if I deposit / BlackAdmin / ** or / BlackAdmin / *? Or / BlackAdmin / * $ which are not used

heroes seek help answer !
------ Solution ---------------------------------------- ----


You certainly can not be stored in the database with wildcard URL friends. Not that they can not , the landlord reversed think to know.
------ Solution ---------------------------------------- ----


This default is ignored , but the landlord can customize match rules to accomplish this function.
However, this feature does not seem to have much practical use.
www.baidu.com so you can access the www.baidu.com?baidu. Users can manually modify the URL.
------ For reference only -------------------------------------- -
my HTTP configuration

  	<http auto-config="true" access-denied-page="/error/accessDenied.jsp" >
  	
  		<!-- 不要过滤图片等静态资源 -->
  		<intercept-url pattern="/**/*.jpg" filters="none" />
  		<intercept-url pattern="/**/*.png" filters="none" />
  		<intercept-url pattern="/**/*.gif" filters="none" />
  		<intercept-url pattern="/**/*.css" filters="none" />
  		<intercept-url pattern="/**/*.js" filters="none" />
  		
  		<!-- 登录页面和忘记密码页面不过滤-->
  		<intercept-url pattern="/login.jsp" filters="none" />
  		<intercept-url pattern="/jsp/forgotpassword.jsp"  
  			filters="none" />
  			
  		<!--登录页面错误-->
  		<form-login login-page="/login.jsp"
  			authentication-failure-url="/login.jsp?error=true"
  			default-target-url="/index.jsp" />
  			
  		  <logout invalidate-session="true"  
        		logout-success-url="/"  
        		logout-url="/j_spring_security_logout"/>  
  
  		<!-- 检测失效的sessionId,超时时定位到另外一个URL-->
  		<session-management invalid-session-url="/error/sessionTimeout.jsp" /> 
  
  		<!--增加一个自定义的filter，放在FILTER_SECURITY_INTERCEPTOR之前， 实现用户、角色、权限、资源的数据库管理。-->
  		<custom-filter ref="onionPortalSecurityFilter" before="FILTER_SECURITY_INTERCEPTOR" />
  
  	</http>
  

------ For reference only ----------------------------------- ----
in line to see this path-type = "regex" in the HTTP configuration coupled with this can be achieved are then matched
But I only added to the hard-coded in the can
written to the database is still not match
------ For reference only -------------------------- -------------
it is uncertain if the item with the parameters it ? like ? id = 1
or someone else in the back can not add a parameter to intercept the
------ For reference only ----------------------- ----------------
so this argument can not match ah ! And if I want to match a folder behind all that how to do ah
------ For reference only ---------------------- -----------------
brothers fix the problem I have encountered the issue of consent
talk about solutions