Package | Description |
---|---|
org.springframework.security.access |
Core access-control related code, including security metadata related classes, interception code, access control
annotations, EL support and voter-based implementations of the central
AccessDecisionManager interface. |
org.springframework.security.access.event |
Authorization event and listener classes.
|
org.springframework.security.access.expression.method |
Implementation of expression-based method security.
|
org.springframework.security.access.intercept |
Abstract level security interception classes which are responsible for enforcing the
configured security constraints for a secure object.
|
org.springframework.security.access.prepost |
Contains the infrastructure classes for handling the
@PreAuthorize , @PreFilter , @PostAuthorize
and @PostFilter annotations. |
org.springframework.security.access.vote |
Implements a vote-based approach to authorization decisions.
|
org.springframework.security.acls.afterinvocation |
After-invocation providers for collection and array filtering.
|
org.springframework.security.web.access |
Access-control related classes and packages.
|
org.springframework.security.web.csrf | |
org.springframework.security.web.session |
Session management filters,
HttpSession events and publisher classes. |
Modifier and Type | Class and Description |
---|---|
class |
AuthorizationServiceException
Thrown if an authorization request could not be processed due to a system problem.
|
Modifier and Type | Method and Description |
---|---|
void |
AccessDecisionManager.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> configAttributes)
Resolves an access control decision for the passed parameters.
|
Object |
AfterInvocationProvider.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> attributes,
Object returnedObject) |
Modifier and Type | Method and Description |
---|---|
AccessDeniedException |
AuthorizationFailureEvent.getAccessDeniedException() |
Constructor and Description |
---|
AuthorizationFailureEvent(Object secureObject,
Collection<ConfigAttribute> attributes,
Authentication authentication,
AccessDeniedException accessDeniedException)
Construct the event.
|
Modifier and Type | Method and Description |
---|---|
Object |
ExpressionBasedPostInvocationAdvice.after(Authentication authentication,
org.aopalliance.intercept.MethodInvocation mi,
PostInvocationAttribute postAttr,
Object returnedObject) |
Modifier and Type | Method and Description |
---|---|
Object |
AfterInvocationProviderManager.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> config,
Object returnedObject) |
Object |
AfterInvocationManager.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> attributes,
Object returnedObject)
Given the details of a secure object invocation including its returned
Object , make an
access control decision or optionally modify the returned Object . |
Modifier and Type | Method and Description |
---|---|
Object |
PostInvocationAuthorizationAdvice.after(Authentication authentication,
org.aopalliance.intercept.MethodInvocation mi,
PostInvocationAttribute pia,
Object returnedObject) |
Object |
PostInvocationAdviceProvider.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> config,
Object returnedObject) |
Modifier and Type | Method and Description |
---|---|
void |
ConsensusBased.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> configAttributes)
This concrete implementation simply polls all configured
AccessDecisionVoter s and upon
completion determines the consensus of granted against denied responses. |
void |
UnanimousBased.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> attributes)
This concrete implementation polls all configured
AccessDecisionVoter s for each ConfigAttribute and grants access if only grant (or abstain) votes were received. |
void |
AffirmativeBased.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> configAttributes)
This concrete implementation simply polls all configured
AccessDecisionVoter s and grants access
if any AccessDecisionVoter voted affirmatively. |
Modifier and Type | Method and Description |
---|---|
Object |
AclEntryAfterInvocationCollectionFilteringProvider.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> config,
Object returnedObject) |
Object |
AclEntryAfterInvocationProvider.decide(Authentication authentication,
Object object,
Collection<ConfigAttribute> config,
Object returnedObject) |
Modifier and Type | Method and Description |
---|---|
void |
AccessDeniedHandlerImpl.handle(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
AccessDeniedException accessDeniedException) |
void |
AccessDeniedHandler.handle(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
AccessDeniedException accessDeniedException)
Handles an access denied failure.
|
void |
DelegatingAccessDeniedHandler.handle(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
AccessDeniedException accessDeniedException) |
Constructor and Description |
---|
DelegatingAccessDeniedHandler(LinkedHashMap<Class<? extends AccessDeniedException>,AccessDeniedHandler> handlers,
AccessDeniedHandler defaultHander)
Creates a new instance
|
Modifier and Type | Class and Description |
---|---|
class |
CsrfException
Thrown when an invalid or missing
CsrfToken is found in the HttpServletRequest |
class |
InvalidCsrfTokenException
Thrown when an expected
CsrfToken exists, but it does not match the
value present on the HttpServletRequest |
class |
MissingCsrfTokenException
Thrown when no expected
CsrfToken is found but is required. |
Modifier and Type | Method and Description |
---|---|
void |
InvalidSessionAccessDeniedHandler.handle(javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response,
AccessDeniedException accessDeniedException) |
Copyright © 2019. All rights reserved.