We've created a extension to platformwebservices and a few webservices. The webservices are working just fine, except that the security rules that only allows webservicegroup to access all of native webservices isn't working for our custom webservices, meaning that they're open to everyone.
In our custom werbservice "***-web-spring.xml" we've added a import line for "classpath:platformwebservices-web-spring.xml" and also crated a bean for our webservice class resource that parent "abstractBaseResource". In our Resource JAVA class we've extended AbstractResource.
Since we're extending sucessfully the platformwebservices, why the security isn't working? And how do I implement it to my custom extended webservices?