|
Spring Security Framework | |||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.springframework.security.intercept.AbstractSecurityInterceptor org.springframework.security.intercept.web.FilterSecurityInterceptor
public class FilterSecurityInterceptor
Performs security handling of HTTP resources via a filter implementation.
The
ObjectDefinitionSource
required by this security interceptor is of type FilterInvocationDefinitionSource
.
Refer to AbstractSecurityInterceptor
for details on the workflow.
Field Summary |
---|
Fields inherited from class org.springframework.security.intercept.AbstractSecurityInterceptor |
---|
logger, messages |
Fields inherited from interface org.springframework.core.Ordered |
---|
HIGHEST_PRECEDENCE, LOWEST_PRECEDENCE |
Constructor Summary | |
---|---|
FilterSecurityInterceptor()
|
Method Summary | |
---|---|
void |
destroy()
Not used (we rely on IoC container lifecycle services instead) |
void |
doFilter(ServletRequest request,
ServletResponse response,
FilterChain chain)
Method that is actually called by the filter chain. |
FilterInvocationDefinitionSource |
getObjectDefinitionSource()
|
int |
getOrder()
|
Class |
getSecureObjectClass()
Indicates the type of secure objects the subclass will be presenting to the abstract parent for processing. |
void |
init(FilterConfig arg0)
Not used (we rely on IoC container lifecycle services instead) |
void |
invoke(FilterInvocation fi)
|
boolean |
isObserveOncePerRequest()
Indicates whether once-per-request handling will be observed. |
ObjectDefinitionSource |
obtainObjectDefinitionSource()
|
void |
setObjectDefinitionSource(FilterInvocationDefinitionSource newSource)
|
void |
setObserveOncePerRequest(boolean observeOncePerRequest)
|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public FilterSecurityInterceptor()
Method Detail |
---|
public void init(FilterConfig arg0) throws ServletException
init
in interface Filter
arg0
- ignored
ServletException
- never thrownpublic void destroy()
destroy
in interface Filter
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException
invoke(FilterInvocation)
method.
doFilter
in interface Filter
request
- the servlet requestresponse
- the servlet responsechain
- the filter chain
IOException
- if the filter chain fails
ServletException
- if the filter chain failspublic FilterInvocationDefinitionSource getObjectDefinitionSource()
public Class getSecureObjectClass()
AbstractSecurityInterceptor
AbstractSecurityInterceptor
all support the
indicated secure object class.
getSecureObjectClass
in class AbstractSecurityInterceptor
public void invoke(FilterInvocation fi) throws IOException, ServletException
IOException
ServletException
public boolean isObserveOncePerRequest()
true
,
meaning the FilterSecurityInterceptor
will only execute once-per-request. Sometimes users may wish
it to execute more than once per request, such as when JSP forwards are being used and filter security is
desired on each included fragment of the HTTP request.
true
(the default) if once-per-request is honoured, otherwise false
if
FilterSecurityInterceptor
will enforce authorizations for each and every fragment of the
HTTP request.public ObjectDefinitionSource obtainObjectDefinitionSource()
obtainObjectDefinitionSource
in class AbstractSecurityInterceptor
public void setObjectDefinitionSource(FilterInvocationDefinitionSource newSource)
public void setObserveOncePerRequest(boolean observeOncePerRequest)
public int getOrder()
getOrder
in interface Ordered
|
Spring Security Framework | |||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |