A B C D E F G H I J K L M N O P Q R S T U V W X 

A

abort() - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
Abort the authentication process by forgetting the Spring Security Authentication.
AbstractAccessDecisionManager - Class in org.springframework.security.access.vote
Abstract implementation of AccessDecisionManager.
AbstractAccessDecisionManager() - Constructor for class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
AbstractAccessDecisionManager(List<AccessDecisionVoter>) - Constructor for class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
AbstractAclProvider - Class in org.springframework.security.acls.afterinvocation
Abstract AfterInvocationProvider which provides commonly-used ACL-related services.
AbstractAclProvider(AclService, String, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
AbstractAclVoter - Class in org.springframework.security.access.vote
Provides helper methods for writing domain object ACL voters.
AbstractAclVoter() - Constructor for class org.springframework.security.access.vote.AbstractAclVoter
 
AbstractAuthenticationEvent - Class in org.springframework.security.authentication.event
Represents an application authentication event.
AbstractAuthenticationEvent(Authentication) - Constructor for class org.springframework.security.authentication.event.AbstractAuthenticationEvent
 
AbstractAuthenticationFailureEvent - Class in org.springframework.security.authentication.event
Abstract application event which indicates authentication failure for some reason.
AbstractAuthenticationFailureEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AbstractAuthenticationFailureEvent
 
AbstractAuthenticationProcessingFilter - Class in org.springframework.security.web.authentication
Abstract processor of browser-based HTTP-based authentication requests.
AbstractAuthenticationProcessingFilter(String) - Constructor for class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
AbstractAuthenticationTargetUrlRequestHandler - Class in org.springframework.security.web.authentication
Base class containing the logic used by strategies which handle redirection to a URL and are passed an Authentication object as part of the contract.
AbstractAuthenticationTargetUrlRequestHandler() - Constructor for class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
 
AbstractAuthenticationToken - Class in org.springframework.security.authentication
Base class for Authentication objects.
AbstractAuthenticationToken(Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.authentication.AbstractAuthenticationToken
Creates a token with the supplied array of authorities.
AbstractAuthorizationEvent - Class in org.springframework.security.access.event
Abstract superclass for all security interception related events.
AbstractAuthorizationEvent(Object) - Constructor for class org.springframework.security.access.event.AbstractAuthorizationEvent
Construct the event, passing in the secure object being intercepted.
AbstractAuthorizeTag - Class in org.springframework.security.taglibs.authz
A base class for an <authorize> tag that is independent of the tag rendering technology (JSP, Facelets).
AbstractAuthorizeTag() - Constructor for class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
AbstractCasAssertionUserDetailsService - Class in org.springframework.security.cas.userdetails
Abstract class for using the provided CAS assertion to construct a new User object.
AbstractCasAssertionUserDetailsService() - Constructor for class org.springframework.security.cas.userdetails.AbstractCasAssertionUserDetailsService
 
AbstractFallbackMethodSecurityMetadataSource - Class in org.springframework.security.access.method
Abstract implementation of MethodSecurityMetadataSource that supports both Spring AOP and AspectJ and performs attribute resolution from: 1.
AbstractFallbackMethodSecurityMetadataSource() - Constructor for class org.springframework.security.access.method.AbstractFallbackMethodSecurityMetadataSource
 
AbstractJaasAuthenticationProvider - Class in org.springframework.security.authentication.jaas
An AuthenticationProvider implementation that retrieves user details from a JAAS login configuration.
AbstractJaasAuthenticationProvider() - Constructor for class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
 
AbstractLdapAuthenticationProvider - Class in org.springframework.security.ldap.authentication
Base class for the standard LdapAuthenticationProvider and the ActiveDirectoryLdapAuthenticationProvider.
AbstractLdapAuthenticationProvider() - Constructor for class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
AbstractLdapAuthenticator - Class in org.springframework.security.ldap.authentication
Base class for the authenticator implementations.
AbstractLdapAuthenticator(ContextSource) - Constructor for class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
Create an initialized instance with the ContextSource provided.
AbstractMethodSecurityMetadataSource - Class in org.springframework.security.access.method
Abstract implementation of MethodSecurityMetadataSource which resolves the secured object type to a MethodInvocation.
AbstractMethodSecurityMetadataSource() - Constructor for class org.springframework.security.access.method.AbstractMethodSecurityMetadataSource
 
AbstractPermission - Class in org.springframework.security.acls.domain
Provides an abstract superclass for Permission implementations.
AbstractPermission(int) - Constructor for class org.springframework.security.acls.domain.AbstractPermission
Sets the permission mask and uses the '*' character to represent active bits when represented as a bit pattern string.
AbstractPermission(int, char) - Constructor for class org.springframework.security.acls.domain.AbstractPermission
Sets the permission mask and uses the specified character for active bits.
AbstractPreAuthenticatedProcessingFilter - Class in org.springframework.security.web.authentication.preauth
Base class for processing filters that handle pre-authenticated authentication requests, where it is assumed that the principal has already been authenticated by an external system.
AbstractPreAuthenticatedProcessingFilter() - Constructor for class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
 
AbstractRememberMeServices - Class in org.springframework.security.web.authentication.rememberme
Base class for RememberMeServices implementations.
AbstractRememberMeServices() - Constructor for class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Deprecated.
Use constructor injection
AbstractRememberMeServices(String, UserDetailsService) - Constructor for class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
AbstractRetryEntryPoint - Class in org.springframework.security.web.access.channel
 
AbstractRetryEntryPoint(String, int) - Constructor for class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
AbstractSecurityExpressionHandler<T> - Class in org.springframework.security.access.expression
Base implementation of the facade which isolates Spring Security's requirements for evaluating security expressions from the implementation of the underlying expression objects.
AbstractSecurityExpressionHandler() - Constructor for class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
AbstractSecurityInterceptor - Class in org.springframework.security.access.intercept
Abstract class that implements security interception for secure objects.
AbstractSecurityInterceptor() - Constructor for class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
AbstractUserDetailsAuthenticationProvider - Class in org.springframework.security.authentication.dao
A base AuthenticationProvider that allows subclasses to override and work with UserDetails objects.
AbstractUserDetailsAuthenticationProvider() - Constructor for class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
AbstractUserDetailsServiceBeanDefinitionParser - Class in org.springframework.security.config.authentication
 
AbstractUserDetailsServiceBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
 
ACCESS_ABSTAIN - Static variable in interface org.springframework.security.access.AccessDecisionVoter
 
ACCESS_DENIED - Static variable in interface org.springframework.security.access.AccessDecisionVoter
 
ACCESS_DENIED_403 - Static variable in class org.springframework.security.web.WebAttributes
Used to cache an AccessDeniedException in the request for rendering.
ACCESS_DENIED_HANDLER - Static variable in class org.springframework.security.config.Elements
 
ACCESS_GRANTED - Static variable in interface org.springframework.security.access.AccessDecisionVoter
 
AccessControlEntry - Interface in org.springframework.security.acls.model
Represents an individual permission assignment within an Acl.
AccessControlEntryImpl - Class in org.springframework.security.acls.domain
An immutable default implementation of AccessControlEntry.
AccessControlEntryImpl(Serializable, Acl, Sid, Permission, boolean, boolean, boolean) - Constructor for class org.springframework.security.acls.domain.AccessControlEntryImpl
 
AccessControlListTag - Class in org.springframework.security.taglibs.authz
An implementation of Tag that allows its body through if some authorizations are granted to the request's principal.
AccessControlListTag() - Constructor for class org.springframework.security.taglibs.authz.AccessControlListTag
 
AccessDecisionManager - Interface in org.springframework.security.access
Makes a final access control (authorization) decision.
AccessDecisionVoter<S> - Interface in org.springframework.security.access
Indicates a class is responsible for voting on authorization decisions.
AccessDeniedException - Exception in org.springframework.security.access
Thrown if an Authentication object does not hold a required authority.
AccessDeniedException(String) - Constructor for exception org.springframework.security.access.AccessDeniedException
Constructs an AccessDeniedException with the specified message.
AccessDeniedException(String, Throwable) - Constructor for exception org.springframework.security.access.AccessDeniedException
Constructs an AccessDeniedException with the specified message and root cause.
AccessDeniedHandler - Interface in org.springframework.security.web.access
Used by ExceptionTranslationFilter to handle an AccessDeniedException.
AccessDeniedHandlerImpl - Class in org.springframework.security.web.access
Base implementation of AccessDeniedHandler.
AccessDeniedHandlerImpl() - Constructor for class org.springframework.security.web.access.AccessDeniedHandlerImpl
 
AccountExpiredException - Exception in org.springframework.security.authentication
Thrown if an authentication request is rejected because the account has expired.
AccountExpiredException(String) - Constructor for exception org.springframework.security.authentication.AccountExpiredException
Constructs a AccountExpiredException with the specified message.
AccountExpiredException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AccountExpiredException
Constructs a AccountExpiredException with the specified message and root cause.
AccountExpiredException(String, Object) - Constructor for exception org.springframework.security.authentication.AccountExpiredException
Deprecated.
AccountStatusException - Exception in org.springframework.security.authentication
Base class for authentication exceptions which are caused by a particular user account status (locked, disabled etc).
AccountStatusException(String) - Constructor for exception org.springframework.security.authentication.AccountStatusException
 
AccountStatusException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AccountStatusException
 
AccountStatusException(String, Object) - Constructor for exception org.springframework.security.authentication.AccountStatusException
Deprecated.
AccountStatusUserDetailsChecker - Class in org.springframework.security.authentication
 
AccountStatusUserDetailsChecker() - Constructor for class org.springframework.security.authentication.AccountStatusUserDetailsChecker
 
Acl - Interface in org.springframework.security.acls.model
Represents an access control list (ACL) for a domain object.
AclAuthorizationStrategy - Interface in org.springframework.security.acls.domain
Strategy used by AclImpl to determine whether a principal is permitted to call adminstrative methods on the AclImpl.
AclAuthorizationStrategyImpl - Class in org.springframework.security.acls.domain
Default implementation of AclAuthorizationStrategy.
AclAuthorizationStrategyImpl(GrantedAuthority...) - Constructor for class org.springframework.security.acls.domain.AclAuthorizationStrategyImpl
Constructor.
AclCache - Interface in org.springframework.security.acls.model
A caching layer for JdbcAclService.
AclDataAccessException - Exception in org.springframework.security.acls.model
Abstract base class for Acl data operations.
AclDataAccessException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.AclDataAccessException
Constructs an AclDataAccessException with the specified message and root cause.
AclDataAccessException(String) - Constructor for exception org.springframework.security.acls.model.AclDataAccessException
Constructs an AclDataAccessException with the specified message and no root cause.
AclEntryAfterInvocationCollectionFilteringProvider - Class in org.springframework.security.acls.afterinvocation
Given a Collection of domain object instances returned from a secure object invocation, remove any Collection elements the principal does not have appropriate permission to access as defined by the AclService.
AclEntryAfterInvocationCollectionFilteringProvider(AclService, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationCollectionFilteringProvider
 
AclEntryAfterInvocationProvider - Class in org.springframework.security.acls.afterinvocation
Given a domain object instance returned from a secure object invocation, ensures the principal has appropriate permission as defined by the AclService.
AclEntryAfterInvocationProvider(AclService, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
 
AclEntryAfterInvocationProvider(AclService, String, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
 
AclEntryVoter - Class in org.springframework.security.acls
Given a domain object instance passed as a method argument, ensures the principal has appropriate permission as indicated by the AclService.
AclEntryVoter(AclService, String, Permission[]) - Constructor for class org.springframework.security.acls.AclEntryVoter
 
AclFormattingUtils - Class in org.springframework.security.acls.domain
Utility methods for displaying ACL information.
AclFormattingUtils() - Constructor for class org.springframework.security.acls.domain.AclFormattingUtils
 
AclImpl - Class in org.springframework.security.acls.domain
Base implementation of Acl.
AclImpl(ObjectIdentity, Serializable, AclAuthorizationStrategy, AuditLogger) - Constructor for class org.springframework.security.acls.domain.AclImpl
Minimal constructor, which should be used MutableAclService.createAcl(ObjectIdentity).
AclImpl(ObjectIdentity, Serializable, AclAuthorizationStrategy, AuditLogger, Acl, List<Sid>, boolean, Sid) - Constructor for class org.springframework.security.acls.domain.AclImpl
Deprecated.
Use the version which takes a PermissionGrantingStrategy argument instead.
AclImpl(ObjectIdentity, Serializable, AclAuthorizationStrategy, PermissionGrantingStrategy, Acl, List<Sid>, boolean, Sid) - Constructor for class org.springframework.security.acls.domain.AclImpl
Full constructor, which should be used by persistence tools that do not provide field-level access features.
AclPermissionCacheOptimizer - Class in org.springframework.security.acls
Batch loads ACLs for collections of objects to allow optimised filtering.
AclPermissionCacheOptimizer(AclService) - Constructor for class org.springframework.security.acls.AclPermissionCacheOptimizer
 
AclPermissionEvaluator - Class in org.springframework.security.acls
Used by Spring Security's expression-based access control implementation to evaluate permissions for a particular object using the ACL module.
AclPermissionEvaluator(AclService) - Constructor for class org.springframework.security.acls.AclPermissionEvaluator
 
aclService - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
AclService - Interface in org.springframework.security.acls.model
Provides retrieval of Acl instances.
ActiveDirectoryAuthenticationException - Exception in org.springframework.security.ldap.authentication.ad
Thrown as a translation of an AuthenticationException when attempting to authenticate against Active Directory using ActiveDirectoryLdapAuthenticationProvider.
ActiveDirectoryLdapAuthenticationProvider - Class in org.springframework.security.ldap.authentication.ad
Specialized LDAP authentication provider which uses Active Directory configuration conventions.
ActiveDirectoryLdapAuthenticationProvider(String, String) - Constructor for class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
 
addAuthorities(DistinguishedName, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
addAuthority(GrantedAuthority) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
 
addAuthority(GrantedAuthority) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
Adds the authority to the list, unless it is already there, in which case it is ignored
addCn(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
 
addCustomAuthorities(String, List<GrantedAuthority>) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Allows subclasses to add their own granted authorities to the list to be returned in the UserDetails.
addGroupAuthority(String, GrantedAuthority) - Method in interface org.springframework.security.provisioning.GroupManager
Assigns a new authority to a group.
addGroupAuthority(String, GrantedAuthority) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
additionalAuthenticationChecks(UserDetails, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
Allows subclasses to perform any additional checks of a returned (or cached) UserDetails for a given authentication request.
additionalAuthenticationChecks(UserDetails, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
addSecureMethod(Class<?>, String, List<ConfigAttribute>) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
Add configuration attributes for a secure method.
addSecureMethod(Class<?>, Method, List<ConfigAttribute>) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
Adds configuration attributes for a specific method, for example where the method has been matched using a pointcut expression.
addUser(UserDetails) - Method in class org.springframework.security.core.userdetails.memory.UserMap
Deprecated.
Adds a user to the in-memory map.
addUsersFromProperties(UserMap, Properties) - Static method in class org.springframework.security.core.userdetails.memory.UserMapEditor
Deprecated.
 
addUserToGroup(String, String) - Method in interface org.springframework.security.provisioning.GroupManager
Makes a user a member of a particular group.
addUserToGroup(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
admin - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
 
ADMINISTRATION - Static variable in class org.springframework.security.acls.domain.BasePermission
 
AffirmativeBased - Class in org.springframework.security.access.vote
Simple concrete implementation of AccessDecisionManager that grants access if any AccessDecisionVoter returns an affirmative response.
AffirmativeBased() - Constructor for class org.springframework.security.access.vote.AffirmativeBased
Deprecated.
Use constructor which takes voter list
AffirmativeBased(List<AccessDecisionVoter>) - Constructor for class org.springframework.security.access.vote.AffirmativeBased
 
after(Authentication, MethodInvocation, PostInvocationAttribute, Object) - Method in class org.springframework.security.access.expression.method.ExpressionBasedPostInvocationAdvice
 
after(Authentication, MethodInvocation, PostInvocationAttribute, Object) - Method in interface org.springframework.security.access.prepost.PostInvocationAuthorizationAdvice
 
AFTER_INVOCATION_PROVIDER - Static variable in class org.springframework.security.config.Elements
 
afterInvocation(InterceptorStatusToken, Object) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
Completes the work of the AbstractSecurityInterceptor after the secure object invocation has been completed.
AfterInvocationManager - Interface in org.springframework.security.access.intercept
Reviews the Object returned from a secure object invocation, being able to modify the Object or throw an AccessDeniedException.
AfterInvocationProvider - Interface in org.springframework.security.access
Indicates a class is responsible for participating in an AfterInvocationProviderManager decision.
AfterInvocationProviderManager - Class in org.springframework.security.access.intercept
Provider-based implementation of AfterInvocationManager.
AfterInvocationProviderManager() - Constructor for class org.springframework.security.access.intercept.AfterInvocationProviderManager
 
afterPropertiesSet() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
afterPropertiesSet() - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
 
afterPropertiesSet() - Method in class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
 
afterPropertiesSet() - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
 
afterPropertiesSet() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
Validates the required properties are set.
afterPropertiesSet() - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.ProviderManager
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
afterPropertiesSet() - Method in class org.springframework.security.cas.ServiceProperties
 
afterPropertiesSet() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
 
afterPropertiesSet() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
 
afterPropertiesSet() - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
Check whether all properties have been set to correct values.
afterPropertiesSet() - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
 
afterPropertiesSet() - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
afterPropertiesSet() - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
afterPropertiesSet() - Method in class org.springframework.security.core.userdetails.memory.InMemoryDaoImpl
Deprecated.
 
afterPropertiesSet() - Method in class org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper
Check whether all required properties have been set.
afterPropertiesSet() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
 
afterPropertiesSet() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
afterPropertiesSet() - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
 
afterPropertiesSet() - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
 
afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
 
afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
 
afterPropertiesSet() - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
Check whether all required properties have been set.
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
Check that all required properties have been set.
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
Loads the web.xml file using the configured ResourceLoader and parses the role-name elements from it, using these as the set of mappableAttributes.
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
Check whether all required properties have been set.
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedAuthenticationDetailsSource
Deprecated.
Check that all required properties have been set.
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
afterPropertiesSet() - Method in class org.springframework.security.web.FilterChainProxy
 
afterPropertiesSet() - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
 
allGranted(String) - Method in interface org.springframework.security.taglibs.velocity.Authz
all the listed roles must be granted to return true, otherwise false;
allGranted(String) - Method in class org.springframework.security.taglibs.velocity.AuthzImpl
 
allocateToken(String) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
allocateToken(String) - Method in interface org.springframework.security.core.token.TokenService
Forces the allocation of a new Token.
allowableSessionsExceeded(List<SessionInformation>, int, SessionRegistry) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
Allows subclasses to customise behaviour when too many sessions are detected.
AlreadyExistsException - Exception in org.springframework.security.acls.model
Thrown if an Acl entry already exists for the object.
AlreadyExistsException(String) - Constructor for exception org.springframework.security.acls.model.AlreadyExistsException
Constructs an AlreadyExistsException with the specified message.
AlreadyExistsException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.AlreadyExistsException
Constructs an AlreadyExistsException with the specified message and root cause.
AnnotationMetadataExtractor<A extends Annotation> - Interface in org.springframework.security.access.annotation
Strategy to process a custom security annotation to extract the relevant ConfigAttributes for securing a method.
ANONYMOUS - Static variable in class org.springframework.security.config.Elements
 
AnonymousAuthenticationFilter - Class in org.springframework.security.web.authentication
Detects if there is no Authentication object in the SecurityContextHolder, and populates it with one if needed.
AnonymousAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
Deprecated.
Use constructor injection version
AnonymousAuthenticationFilter(String) - Constructor for class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
Creates a filter with a principal named "anonymousUser" and the single authority "ROLE_ANONYMOUS".
AnonymousAuthenticationFilter(String, Object, List<GrantedAuthority>) - Constructor for class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
 
AnonymousAuthenticationProvider - Class in org.springframework.security.authentication
An AuthenticationProvider implementation that validates AnonymousAuthenticationTokens.
AnonymousAuthenticationProvider() - Constructor for class org.springframework.security.authentication.AnonymousAuthenticationProvider
Deprecated.
Use constructor injection
AnonymousAuthenticationProvider(String) - Constructor for class org.springframework.security.authentication.AnonymousAuthenticationProvider
 
AnonymousAuthenticationToken - Class in org.springframework.security.authentication
Represents an anonymous Authentication.
AnonymousAuthenticationToken(String, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.authentication.AnonymousAuthenticationToken
Constructor.
AntPathRequestMatcher - Class in org.springframework.security.web.util
Matcher which compares a pre-defined ant-style pattern against the URL (servletPath + pathInfo) of an HttpServletRequest.
AntPathRequestMatcher(String) - Constructor for class org.springframework.security.web.util.AntPathRequestMatcher
Creates a matcher with the specific pattern which will match all HTTP methods.
AntPathRequestMatcher(String, String) - Constructor for class org.springframework.security.web.util.AntPathRequestMatcher
Creates a matcher with the supplied pattern which will match all HTTP methods.
ANY_CHANNEL - Static variable in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
 
anyGranted(String) - Method in interface org.springframework.security.taglibs.velocity.Authz
any the listed roles must be granted to return true, otherwise false;
anyGranted(String) - Method in class org.springframework.security.taglibs.velocity.AuthzImpl
 
AnyRequestMatcher - Class in org.springframework.security.web.util
Matches any supplied request.
AnyRequestMatcher() - Constructor for class org.springframework.security.web.util.AnyRequestMatcher
 
ApacheDSContainer - Class in org.springframework.security.ldap.server
Provides lifecycle services for the embedded apacheDS server defined by the supplied configuration.
ApacheDSContainer(String, String) - Constructor for class org.springframework.security.ldap.server.ApacheDSContainer
 
applyAnonymousForThisRequest(HttpServletRequest) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
Deprecated.
no obvious use case and can easily be achieved by other means
AspectJCallback - Interface in org.springframework.security.access.intercept.aspectj
Called by the AspectJMethodSecurityInterceptor when it wishes for the AspectJ processing to continue.
AspectJMethodSecurityInterceptor - Class in org.springframework.security.access.intercept.aspectj
AspectJ JoinPoint security interceptor which wraps the JoinPoint in a MethodInvocation adapter to make it compatible with security infrastructure classes which only support MethodInvocations.
AspectJMethodSecurityInterceptor() - Constructor for class org.springframework.security.access.intercept.aspectj.AspectJMethodSecurityInterceptor
 
ATT_GROUP_ROLE_ATTRIBUTE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
ATT_GROUP_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
ATT_GROUP_SEARCH_FILTER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
ATT_HASH - Static variable in class org.springframework.security.config.authentication.PasswordEncoderParser
 
ATT_LDIF_FILE - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
Optionally defines an ldif resource to be loaded.
ATT_PORT - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
Defines the port the LDAP_PROVIDER server should run on
ATT_ROOT_SUFFIX - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
sets the configuration suffix (default is "dc=springframework,dc=org").
ATT_SERVER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
ATT_USER_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
ATT_USER_SEARCH_FILTER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
attemptAuthentication(String, String) - Method in interface org.springframework.security.authentication.rcp.RemoteAuthenticationManager
Attempts to authenticate the remote client using the presented username and password.
attemptAuthentication(String, String) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
 
attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
 
attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
Authentication has two phases.
attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Performs actual authentication.
attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
 
attemptExitUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Attempt to exit from an already switched user.
attemptSwitchUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Attempt to switch to another user.
Attributes2GrantedAuthoritiesMapper - Interface in org.springframework.security.core.authority.mapping
Interface to be implemented by classes that can map a list of security attributes (such as roles or group names) to a collection of Spring Security GrantedAuthoritys.
AuditableAccessControlEntry - Interface in org.springframework.security.acls.model
Represents an ACE that provides auditing information.
AuditableAcl - Interface in org.springframework.security.acls.model
A mutable ACL that provides audit capabilities.
AuditLogger - Interface in org.springframework.security.acls.domain
Used by AclImpl to log audit events.
authenticate(Authentication) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
 
authenticate(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationManager
Attempts to authenticate the passed Authentication object, returning a fully populated Authentication object (including granted authorities) if successful.
authenticate(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationProvider
Performs authentication with the same contract as AuthenticationManager.authenticate(Authentication).
authenticate(Authentication) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
Attempts to login the user given the Authentication objects principal and credential
authenticate(Authentication) - Method in class org.springframework.security.authentication.ProviderManager
Attempts to authenticate the passed Authentication object.
authenticate(Authentication) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.authentication.TestingAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.ldap.authentication.BindAuthenticator
 
authenticate(Authentication) - Method in interface org.springframework.security.ldap.authentication.LdapAuthenticator
Authenticates as a user and obtains additional user information from the directory.
authenticate(Authentication) - Method in class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
 
authenticate(Authentication) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
 
authenticate(Authentication) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
Authenticate the given PreAuthenticatedAuthenticationToken.
AuthenticatedVoter - Class in org.springframework.security.access.vote
Votes if a ConfigAttribute.getAttribute() of IS_AUTHENTICATED_FULLY or IS_AUTHENTICATED_REMEMBERED or IS_AUTHENTICATED_ANONYMOUSLY is present.
AuthenticatedVoter() - Constructor for class org.springframework.security.access.vote.AuthenticatedVoter
 
authentication - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
 
Authentication - Interface in org.springframework.security.core
Represents the token for an authentication request or for an authenticated principal once the request has been processed by the AuthenticationManager.authenticate(Authentication) method.
AUTHENTICATION_EXCEPTION - Static variable in class org.springframework.security.web.WebAttributes
Used to cache an authentication-failure exception in the session.
AUTHENTICATION_MANAGER - Static variable in class org.springframework.security.config.BeanIds
The "global" AuthenticationManager instance, registered by the <authentication-manager> element
AUTHENTICATION_MANAGER - Static variable in class org.springframework.security.config.Elements
 
AUTHENTICATION_PROVIDER - Static variable in class org.springframework.security.config.Elements
 
AuthenticationCancelledException - Exception in org.springframework.security.openid
Indicates that OpenID authentication was cancelled
AuthenticationCancelledException(String) - Constructor for exception org.springframework.security.openid.AuthenticationCancelledException
 
AuthenticationCancelledException(String, Throwable) - Constructor for exception org.springframework.security.openid.AuthenticationCancelledException
 
AuthenticationCredentialsNotFoundEvent - Class in org.springframework.security.access.event
Indicates a secure object invocation failed because the Authentication could not be obtained from the SecurityContextHolder.
AuthenticationCredentialsNotFoundEvent(Object, Collection<ConfigAttribute>, AuthenticationCredentialsNotFoundException) - Constructor for class org.springframework.security.access.event.AuthenticationCredentialsNotFoundEvent
Construct the event.
AuthenticationCredentialsNotFoundException - Exception in org.springframework.security.authentication
Thrown if an authentication request is rejected because there is no Authentication object in the SecurityContext.
AuthenticationCredentialsNotFoundException(String) - Constructor for exception org.springframework.security.authentication.AuthenticationCredentialsNotFoundException
Constructs an AuthenticationCredentialsNotFoundException with the specified message.
AuthenticationCredentialsNotFoundException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AuthenticationCredentialsNotFoundException
Constructs an AuthenticationCredentialsNotFoundException with the specified message and root cause.
AuthenticationDetails - Class in org.springframework.security.authentication
Deprecated.
AuthenticationDetails(Object) - Constructor for class org.springframework.security.authentication.AuthenticationDetails
Deprecated.
Constructor.
AuthenticationDetailsSource<C,T> - Interface in org.springframework.security.authentication
Provides a Authentication.getDetails() object for a given web request.
authenticationDetailsSource - Variable in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
AuthenticationDetailsSourceImpl - Class in org.springframework.security.authentication
Deprecated.
Write an implementation of AuthenticationDetailsSource which returns the desired type directly.
AuthenticationDetailsSourceImpl() - Constructor for class org.springframework.security.authentication.AuthenticationDetailsSourceImpl
Deprecated.
 
AuthenticationEntryPoint - Interface in org.springframework.security.web
Used by ExceptionTranslationFilter to commence an authentication scheme.
AuthenticationEventPublisher - Interface in org.springframework.security.authentication
 
AuthenticationException - Exception in org.springframework.security.core
Abstract superclass for all exceptions related to an Authentication object being invalid for whatever reason.
AuthenticationException(String, Throwable) - Constructor for exception org.springframework.security.core.AuthenticationException
Constructs an AuthenticationException with the specified message and root cause.
AuthenticationException(String) - Constructor for exception org.springframework.security.core.AuthenticationException
Constructs an AuthenticationException with the specified message and no root cause.
AuthenticationException(String, Object) - Constructor for exception org.springframework.security.core.AuthenticationException
Deprecated.
Use the exception message or use a custom exception if you really need additional information.
AuthenticationFailureBadCredentialsEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to invalid credentials being presented.
AuthenticationFailureBadCredentialsEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureBadCredentialsEvent
 
AuthenticationFailureCredentialsExpiredEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to the user's credentials having expired.
AuthenticationFailureCredentialsExpiredEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureCredentialsExpiredEvent
 
AuthenticationFailureDisabledEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to the user's account being disabled.
AuthenticationFailureDisabledEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureDisabledEvent
 
AuthenticationFailureExpiredEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to the user's account having expired.
AuthenticationFailureExpiredEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureExpiredEvent
 
AuthenticationFailureHandler - Interface in org.springframework.security.web.authentication
Strategy used to handle a failed authentication attempt.
AuthenticationFailureLockedEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to the user's account having been locked.
AuthenticationFailureLockedEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureLockedEvent
 
AuthenticationFailureProviderNotFoundEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to there being no registered AuthenticationProvider that can process the request.
AuthenticationFailureProviderNotFoundEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureProviderNotFoundEvent
 
AuthenticationFailureProxyUntrustedEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to the CAS user's ticket being generated by an untrusted proxy.
AuthenticationFailureProxyUntrustedEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureProxyUntrustedEvent
 
AuthenticationFailureServiceExceptionEvent - Class in org.springframework.security.authentication.event
Application event which indicates authentication failure due to there being a problem internal to the AuthenticationManager.
AuthenticationFailureServiceExceptionEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureServiceExceptionEvent
 
AuthenticationManager - Interface in org.springframework.security.authentication
Processes an Authentication request.
AuthenticationManagerBeanDefinitionParser - Class in org.springframework.security.config.authentication
Registers the central ProviderManager used by the namespace configuration, and allows the configuration of an alias, allowing users to reference it in their beans and clearly see where the name is coming from.
AuthenticationManagerBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser
 
AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider - Class in org.springframework.security.config.authentication
Provider which doesn't provide any service.
AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider() - Constructor for class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider
 
AuthenticationManagerFactoryBean - Class in org.springframework.security.config.authentication
Factory bean for the namespace AuthenticationManager, which allows a more meaningful error message to be reported in the NoSuchBeanDefinitionException, if the user has forgotten to declare the <authentication-manager> element.
AuthenticationManagerFactoryBean() - Constructor for class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
 
AuthenticationProvider - Interface in org.springframework.security.authentication
Indicates a class can process a specific Authentication implementation.
AuthenticationProviderBeanDefinitionParser - Class in org.springframework.security.config.authentication
Wraps a UserDetailsService bean with a DaoAuthenticationProvider and registers the latter with the ProviderManager.
AuthenticationProviderBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.AuthenticationProviderBeanDefinitionParser
 
AuthenticationServiceException - Exception in org.springframework.security.authentication
Thrown if an authentication request could not be processed due to a system problem.
AuthenticationServiceException(String) - Constructor for exception org.springframework.security.authentication.AuthenticationServiceException
Constructs an AuthenticationServiceException with the specified message.
AuthenticationServiceException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AuthenticationServiceException
Constructs an AuthenticationServiceException with the specified message and root cause.
AuthenticationSimpleHttpInvokerRequestExecutor - Class in org.springframework.security.remoting.httpinvoker
Adds BASIC authentication support to SimpleHttpInvokerRequestExecutor.
AuthenticationSimpleHttpInvokerRequestExecutor() - Constructor for class org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor
 
AuthenticationSuccessEvent - Class in org.springframework.security.authentication.event
Application event which indicates successful authentication.
AuthenticationSuccessEvent(Authentication) - Constructor for class org.springframework.security.authentication.event.AuthenticationSuccessEvent
 
AuthenticationSuccessHandler - Interface in org.springframework.security.web.authentication
Strategy used to handle a successful user authentication.
AuthenticationSwitchUserEvent - Class in org.springframework.security.web.authentication.switchuser
Application event which indicates that a user context switch.
AuthenticationSwitchUserEvent(Authentication, UserDetails) - Constructor for class org.springframework.security.web.authentication.switchuser.AuthenticationSwitchUserEvent
Switch user context event constructor
AuthenticationTag - Class in org.springframework.security.taglibs.authz
An Tag implementation that allows convenient access to the current Authentication object.
AuthenticationTag() - Constructor for class org.springframework.security.taglibs.authz.AuthenticationTag
 
AuthenticationTrustResolver - Interface in org.springframework.security.authentication
Evaluates Authentication tokens
AuthenticationTrustResolverImpl - Class in org.springframework.security.authentication
Basic implementation of AuthenticationTrustResolver.
AuthenticationTrustResolverImpl() - Constructor for class org.springframework.security.authentication.AuthenticationTrustResolverImpl
 
AuthenticationUserDetailsService<T extends Authentication> - Interface in org.springframework.security.core.userdetails
Interface that allows for retrieving a UserDetails object based on an Authentication object.
AuthorityGranter - Interface in org.springframework.security.authentication.jaas
The AuthorityGranter interface is used to map a given principal to role names.
authorityListToSet(Collection<? extends GrantedAuthority>) - Static method in class org.springframework.security.core.authority.AuthorityUtils
Converts an array of GrantedAuthority objects to a Set.
AuthorityUtils - Class in org.springframework.security.core.authority
Utility method for manipulating GrantedAuthority collections etc.
AuthorityUtils() - Constructor for class org.springframework.security.core.authority.AuthorityUtils
 
AuthorizationFailureEvent - Class in org.springframework.security.access.event
Indicates a secure object invocation failed because the principal could not be authorized for the request.
AuthorizationFailureEvent(Object, Collection<ConfigAttribute>, Authentication, AccessDeniedException) - Constructor for class org.springframework.security.access.event.AuthorizationFailureEvent
Construct the event.
AuthorizationServiceException - Exception in org.springframework.security.access
Thrown if an authorization request could not be processed due to a system problem.
AuthorizationServiceException(String) - Constructor for exception org.springframework.security.access.AuthorizationServiceException
Constructs an AuthorizationServiceException with the specified message.
AuthorizationServiceException(String, Throwable) - Constructor for exception org.springframework.security.access.AuthorizationServiceException
Constructs an AuthorizationServiceException with the specified message and root cause.
authorize() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
Make an authorization decision by considering all <authorize> tag attributes.
AuthorizedEvent - Class in org.springframework.security.access.event
Event indicating a secure object was invoked successfully.
AuthorizedEvent(Object, Collection<ConfigAttribute>, Authentication) - Constructor for class org.springframework.security.access.event.AuthorizedEvent
Construct the event.
authorizeUsingAccessExpression() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
Make an authorization decision based on a Spring EL expression.
authorizeUsingGrantedAuthorities() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
Make an authorization decision by considering ifAllGranted, ifAnyGranted, and ifNotGranted.
authorizeUsingUrlCheck() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
Make an authorization decision based on the URL and HTTP method attributes.
Authz - Interface in org.springframework.security.taglibs.velocity
 
AuthzImpl - Class in org.springframework.security.taglibs.velocity
I decided to wrap several JSP tag in one class, so I have to using inner class to wrap these JSP tag.
AuthzImpl() - Constructor for class org.springframework.security.taglibs.velocity.AuthzImpl
 
autoLogin(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.NullRememberMeServices
 
autoLogin(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Template implementation which locates the Spring Security cookie, decodes it into a delimited array of tokens and submits it to subclasses for processing via the processAutoLoginCookie method.
autoLogin(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.authentication.RememberMeServices
This method will be called whenever the SecurityContextHolder does not contain an Authentication object and Spring Security wishes to provide an implementation with an opportunity to authenticate the request using remember-me capabilities.
AxFetchListFactory - Interface in org.springframework.security.openid
A strategy which can be used by an OpenID consumer implementation, to dynamically determine the attribute exchange information based on the OpenID identifier.

B

BadCredentialsException - Exception in org.springframework.security.authentication
Thrown if an authentication request is rejected because the credentials are invalid.
BadCredentialsException(String) - Constructor for exception org.springframework.security.authentication.BadCredentialsException
Constructs a BadCredentialsException with the specified message.
BadCredentialsException(String, Object) - Constructor for exception org.springframework.security.authentication.BadCredentialsException
Deprecated.
BadCredentialsException(String, Throwable) - Constructor for exception org.springframework.security.authentication.BadCredentialsException
Constructs a BadCredentialsException with the specified message and root cause.
Base64 - Class in org.springframework.security.crypto.codec
Base64 encoder which is a reduced version of Robert Harder's public domain implementation (version 2.3.7).
Base64() - Constructor for class org.springframework.security.crypto.codec.Base64
 
BaseDigestPasswordEncoder - Class in org.springframework.security.authentication.encoding
Convenience base for digest password encoders.
BaseDigestPasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.BaseDigestPasswordEncoder
 
BasePasswordEncoder - Class in org.springframework.security.authentication.encoding
Convenience base for all password encoders.
BasePasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.BasePasswordEncoder
 
BasePermission - Class in org.springframework.security.acls.domain
A set of standard permissions.
BasePermission(int) - Constructor for class org.springframework.security.acls.domain.BasePermission
 
BasePermission(int, char) - Constructor for class org.springframework.security.acls.domain.BasePermission
 
BASIC_AUTH - Static variable in class org.springframework.security.config.Elements
 
BasicAuthenticationEntryPoint - Class in org.springframework.security.web.authentication.www
Used by the ExceptionTraslationFilter to commence authentication via the BasicAuthenticationFilter.
BasicAuthenticationEntryPoint() - Constructor for class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
 
BasicAuthenticationFilter - Class in org.springframework.security.web.authentication.www
Processes a HTTP request's BASIC authorization headers, putting the result into the SecurityContextHolder.
BasicAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
Deprecated.
Use constructor injection
BasicAuthenticationFilter(AuthenticationManager) - Constructor for class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
Creates an instance which will authenticate against the supplied AuthenticationManager and which will ignore failed authentication attempts, allowing the request to proceed down the filter chain.
BasicAuthenticationFilter(AuthenticationManager, AuthenticationEntryPoint) - Constructor for class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
Creates an instance which will authenticate against the supplied AuthenticationManager and use the supplied AuthenticationEntryPoint to handle authentication failures.
BasicLookupStrategy - Class in org.springframework.security.acls.jdbc
Performs lookups in a manner that is compatible with ANSI SQL.
BasicLookupStrategy(DataSource, AclCache, AclAuthorizationStrategy, AuditLogger) - Constructor for class org.springframework.security.acls.jdbc.BasicLookupStrategy
Deprecated.
Use the version which takes a PermissionGrantingStrategy argument instead.
BasicLookupStrategy(DataSource, AclCache, AclAuthorizationStrategy, PermissionGrantingStrategy) - Constructor for class org.springframework.security.acls.jdbc.BasicLookupStrategy
 
BCrypt - Class in org.springframework.security.crypto.bcrypt
BCrypt implements OpenBSD-style Blowfish password hashing using the scheme described in "A Future-Adaptable Password Scheme" by Niels Provos and David Mazieres.
BCrypt() - Constructor for class org.springframework.security.crypto.bcrypt.BCrypt
 
BCryptPasswordEncoder - Class in org.springframework.security.crypto.bcrypt
Implementation of PasswordEncoder that uses the BCrypt strong hashing function.
BCryptPasswordEncoder() - Constructor for class org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder
 
BCryptPasswordEncoder(int) - Constructor for class org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder
 
BCryptPasswordEncoder(int, SecureRandom) - Constructor for class org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder
 
BeanIds - Class in org.springframework.security.config
Contains globally used default Bean IDs for beans created by the namespace support in Spring Security 2.
BeanIds() - Constructor for class org.springframework.security.config.BeanIds
 
before(Authentication, MethodInvocation, PreInvocationAttribute) - Method in class org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice
 
before(Authentication, MethodInvocation, PreInvocationAttribute) - Method in interface org.springframework.security.access.prepost.PreInvocationAuthorizationAdvice
The "before" advice which should be executed to perform any filtering necessary and to decide whether the method call is authorised.
beforeInvocation(Object) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
beginConsumption(HttpServletRequest, String, String, String) - Method in class org.springframework.security.openid.OpenID4JavaConsumer
 
beginConsumption(HttpServletRequest, String, String, String) - Method in interface org.springframework.security.openid.OpenIDConsumer
Given the request, the claimedIdentity, the return to url, and a realm, lookup the openId authentication page the user should be redirected to.
BindAuthenticator - Class in org.springframework.security.ldap.authentication
An authenticator which binds as a user.
BindAuthenticator(BaseLdapPathContextSource) - Constructor for class org.springframework.security.ldap.authentication.BindAuthenticator
Create an initialized instance using the BaseLdapPathContextSource provided.
buildDetails(C) - Method in interface org.springframework.security.authentication.AuthenticationDetailsSource
Called by a class when it wishes a new authentication details instance to be created.
buildDetails(Object) - Method in class org.springframework.security.authentication.AuthenticationDetailsSourceImpl
Deprecated.
 
buildDetails(HttpServletRequest) - Method in class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
 
buildDetails(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
Builds the authentication details object.
buildDetails(Object) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedAuthenticationDetailsSource
Deprecated.
Build the authentication details object.
buildDetails(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedWebAuthenticationDetailsSource
 
buildDetails(HttpServletRequest) - Method in class org.springframework.security.web.authentication.WebAuthenticationDetailsSource
 
buildDn(String) - Method in class org.springframework.security.ldap.DefaultLdapUsernameToDnMapper
Assembles the Distinguished Name that should be used the given username.
buildDn(String) - Method in interface org.springframework.security.ldap.LdapUsernameToDnMapper
 
buildFromMask(int) - Method in class org.springframework.security.acls.domain.DefaultPermissionFactory
 
buildFromMask(int) - Method in interface org.springframework.security.acls.domain.PermissionFactory
Dynamically creates a CumulativePermission or BasePermission representing the active bits in the passed mask.
buildFromName(String) - Method in class org.springframework.security.acls.domain.DefaultPermissionFactory
 
buildFromName(String) - Method in interface org.springframework.security.acls.domain.PermissionFactory
 
buildFromNames(List<String>) - Method in class org.springframework.security.acls.domain.DefaultPermissionFactory
 
buildFromNames(List<String>) - Method in interface org.springframework.security.acls.domain.PermissionFactory
 
buildFullRequestUrl(HttpServletRequest) - Static method in class org.springframework.security.web.util.UrlUtils
 
buildFullRequestUrl(String, String, int, String, String) - Static method in class org.springframework.security.web.util.UrlUtils
Obtains the full URL the client used to make the request.
buildGroupDn(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
Creates a DN from a group name.
buildHttpsRedirectUrlForRequest(HttpServletRequest) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
Builds a URL to redirect the supplied request to HTTPS.
buildRedirectUrlToLoginPage(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
buildRequestUrl(HttpServletRequest) - Static method in class org.springframework.security.web.util.UrlUtils
Obtains the web application-specific fragment of the request URL.
buildReturnToUrl(HttpServletRequest) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
Builds the return_to URL that will be sent to the OpenID service provider.
buildRunAs(Authentication, Object, Collection<ConfigAttribute>) - Method in interface org.springframework.security.access.intercept.RunAsManager
Returns a replacement Authentication object for the current secure object invocation, or null if replacement not required.
buildRunAs(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
 
BytesEncryptor - Interface in org.springframework.security.crypto.encrypt
Service interface for symmetric data encryption.
BytesKeyGenerator - Interface in org.springframework.security.crypto.keygen
A generator for unique byte array-based keys.

C

cachePermissionsFor(Authentication, Collection<?>) - Method in interface org.springframework.security.access.PermissionCacheOptimizer
Optimises the permission cache for anticipated operation on the supplied collection of objects.
cachePermissionsFor(Authentication, Collection<?>) - Method in class org.springframework.security.acls.AclPermissionCacheOptimizer
 
CACHING_SUFFIX - Static variable in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
 
CachingUserDetailsService - Class in org.springframework.security.config.authentication
 
calculateLoginLifetime(HttpServletRequest, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
Calculates the validity period in seconds for a newly generated remember-me login.
cancelCookie(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Sets a "cancel cookie" (with maxAge = 0) on the response to disable persistent logins.
CAS_STATEFUL_IDENTIFIER - Static variable in class org.springframework.security.cas.web.CasAuthenticationFilter
Used to identify a CAS request for a stateful user agent, such as a web browser.
CAS_STATELESS_IDENTIFIER - Static variable in class org.springframework.security.cas.web.CasAuthenticationFilter
Used to identify a CAS request for a stateless user agent, such as a remoting protocol client (e.g.
CasAssertionAuthenticationToken - Class in org.springframework.security.cas.authentication
Temporary authentication object needed to load the user details service.
CasAssertionAuthenticationToken(Assertion, String) - Constructor for class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
 
CasAuthenticationEntryPoint - Class in org.springframework.security.cas.web
Used by the ExceptionTranslationFilter to commence authentication via the JA-SIG Central Authentication Service (CAS).
CasAuthenticationEntryPoint() - Constructor for class org.springframework.security.cas.web.CasAuthenticationEntryPoint
 
CasAuthenticationFilter - Class in org.springframework.security.cas.web
Processes a CAS service ticket, obtains proxy granting tickets, and processes proxy tickets.
CasAuthenticationFilter() - Constructor for class org.springframework.security.cas.web.CasAuthenticationFilter
 
CasAuthenticationProvider - Class in org.springframework.security.cas.authentication
An AuthenticationProvider implementation that integrates with JA-SIG Central Authentication Service (CAS).
CasAuthenticationProvider() - Constructor for class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
CasAuthenticationToken - Class in org.springframework.security.cas.authentication
Represents a successful CAS Authentication.
CasAuthenticationToken(String, Object, Object, Collection<? extends GrantedAuthority>, UserDetails, Assertion) - Constructor for class org.springframework.security.cas.authentication.CasAuthenticationToken
Constructor.
CHANGE_AUDITING - Static variable in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
 
CHANGE_GENERAL - Static variable in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
 
CHANGE_OWNERSHIP - Static variable in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
 
changePassword(String, String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
Changes the password for the current user.
changePassword(String, String) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
changePassword(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
changePassword(String, String) - Method in interface org.springframework.security.provisioning.UserDetailsManager
Modify the current user's password.
ChannelAttributeFactory - Class in org.springframework.security.config.http
Used as a factory bean to create config attribute values for the requires-channel attribute.
ChannelAttributeFactory() - Constructor for class org.springframework.security.config.http.ChannelAttributeFactory
 
ChannelDecisionManager - Interface in org.springframework.security.web.access.channel
Decides whether a web channel provides sufficient security.
ChannelDecisionManagerImpl - Class in org.springframework.security.web.access.channel
Implementation of ChannelDecisionManager.
ChannelDecisionManagerImpl() - Constructor for class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
 
ChannelEntryPoint - Interface in org.springframework.security.web.access.channel
May be used by a ChannelProcessor to launch a web channel.
ChannelProcessingFilter - Class in org.springframework.security.web.access.channel
Ensures a web request is delivered over the required channel.
ChannelProcessingFilter() - Constructor for class org.springframework.security.web.access.channel.ChannelProcessingFilter
 
ChannelProcessor - Interface in org.springframework.security.web.access.channel
Decides whether a web channel meets a specific security condition.
check(UserDetails) - Method in class org.springframework.security.authentication.AccountStatusUserDetailsChecker
 
check(UserDetails) - Method in interface org.springframework.security.core.userdetails.UserDetailsChecker
Examines the User
checkAllowIfAllAbstainDecisions() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
checkpw(String, String) - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
Check that a plaintext password matches a previously hashed one
ChildrenExistException - Exception in org.springframework.security.acls.model
Thrown if an Acl cannot be deleted because children Acls exist.
ChildrenExistException(String) - Constructor for exception org.springframework.security.acls.model.ChildrenExistException
Constructs an ChildrenExistException with the specified message.
ChildrenExistException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.ChildrenExistException
Constructs an ChildrenExistException with the specified message and root cause.
clear(Permission) - Method in class org.springframework.security.acls.domain.CumulativePermission
 
clear() - Method in class org.springframework.security.acls.domain.CumulativePermission
 
clearAuthenticationAttributes(HttpServletRequest) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
Removes temporary authentication-related data which may have been stored in the session during the authentication process.
clearCache() - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
 
clearCache() - Method in interface org.springframework.security.acls.model.AclCache
 
clearContext() - Static method in class org.springframework.security.core.context.SecurityContextHolder
Explicitly clears the context value from the current thread.
clearContext() - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
Clears the current context.
clearExtraInformation() - Method in exception org.springframework.security.core.AuthenticationException
Deprecated.
closeContext(Context) - Static method in class org.springframework.security.ldap.LdapUtils
 
closeEnumeration(NamingEnumeration) - Static method in class org.springframework.security.ldap.LdapUtils
 
code - Variable in class org.springframework.security.acls.domain.AbstractPermission
 
commaSeparatedStringToAuthorityList(String) - Static method in class org.springframework.security.core.authority.AuthorityUtils
Creates a array of GrantedAuthority objects from a comma-separated string representation (e.g.
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
 
commence(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
commence(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.access.channel.ChannelEntryPoint
Commences a secure channel.
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
 
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.Http403ForbiddenEntryPoint
Always returns a 403 error code to the client.
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
Performs the redirect (or forward) to the login form URL.
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
 
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in interface org.springframework.security.web.AuthenticationEntryPoint
Commences an authentication scheme.
commit() - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
Authenticate the Subject (phase two) by adding the Spring Security Authentication to the Subject's principals.
compare(String, String, Object) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
Performs an LDAP compare operation of the value of an attribute for a particular directory entry.
concatenate(byte[]...) - Static method in class org.springframework.security.crypto.util.EncodingUtils
Combine the individual byte arrays into one array.
CONCURRENT_SESSIONS - Static variable in class org.springframework.security.config.Elements
 
ConcurrentSessionControlStrategy - Class in org.springframework.security.web.authentication.session
Strategy which handles concurrent session-control, in addition to the functionality provided by the base class.
ConcurrentSessionControlStrategy(SessionRegistry) - Constructor for class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
 
ConcurrentSessionFilter - Class in org.springframework.security.web.session
Filter required by concurrent session handling package.
ConcurrentSessionFilter() - Constructor for class org.springframework.security.web.session.ConcurrentSessionFilter
Deprecated.
Use constructor which injects the SessionRegistry.
ConcurrentSessionFilter(SessionRegistry) - Constructor for class org.springframework.security.web.session.ConcurrentSessionFilter
 
ConcurrentSessionFilter(SessionRegistry, String) - Constructor for class org.springframework.security.web.session.ConcurrentSessionFilter
 
ConfigAttribute - Interface in org.springframework.security.access
Stores a security system related configuration attribute.
ConfigAttributeEditor - Class in org.springframework.security.access
Deprecated. 
ConfigAttributeEditor() - Constructor for class org.springframework.security.access.ConfigAttributeEditor
Deprecated.
 
configureJaas(Resource) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
Hook method for configuring Jaas.
ConsensusBased - Class in org.springframework.security.access.vote
Simple concrete implementation of AccessDecisionManager that uses a consensus-based approach.
ConsensusBased() - Constructor for class org.springframework.security.access.vote.ConsensusBased
Deprecated.
Use constructor which takes voter list
ConsensusBased(List<AccessDecisionVoter>) - Constructor for class org.springframework.security.access.vote.ConsensusBased
 
ConsoleAuditLogger - Class in org.springframework.security.acls.domain
A basic implementation of AuditLogger.
ConsoleAuditLogger() - Constructor for class org.springframework.security.acls.domain.ConsoleAuditLogger
 
containsContext(HttpServletRequest) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
 
containsContext(HttpServletRequest) - Method in class org.springframework.security.web.context.NullSecurityContextRepository
 
containsContext(HttpServletRequest) - Method in interface org.springframework.security.web.context.SecurityContextRepository
Allows the repository to be queried as to whether it contains a security context for the current request.
CONTEXT_SOURCE - Static variable in class org.springframework.security.config.BeanIds
 
CONTEXT_SOURCE_SETTING_POST_PROCESSOR - Static variable in class org.springframework.security.config.BeanIds
 
ContextPropagatingRemoteInvocation - Class in org.springframework.security.remoting.rmi
The actual RemoteInvocation that is passed from the client to the server.
ContextPropagatingRemoteInvocation(MethodInvocation) - Constructor for class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation
Constructs the object, storing the principal and credentials extracted from the client-side security context.
ContextPropagatingRemoteInvocationFactory - Class in org.springframework.security.remoting.rmi
Called by a client-side instance of org.springframework.remoting.rmi.RmiProxyFactoryBean when it wishes to create a remote invocation.
ContextPropagatingRemoteInvocationFactory() - Constructor for class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory
 
convertPasswordToString(Object) - Static method in class org.springframework.security.ldap.LdapUtils
 
CookieClearingLogoutHandler - Class in org.springframework.security.web.authentication.logout
A logout handler which clears a defined list of cookies, using the context path as the cookie path.
CookieClearingLogoutHandler(String...) - Constructor for class org.springframework.security.web.authentication.logout.CookieClearingLogoutHandler
 
CookieTheftException - Exception in org.springframework.security.web.authentication.rememberme
 
CookieTheftException(String) - Constructor for exception org.springframework.security.web.authentication.rememberme.CookieTheftException
 
copyToContext(UserDetails, DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
create - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
 
CREATE - Static variable in class org.springframework.security.acls.domain.BasePermission
 
create(Object, String, Object...) - Static method in class org.springframework.security.util.MethodInvocationUtils
Generates a MethodInvocation for specified methodName on the passed object, using the args to locate the method.
CREATE_TABLE_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
Default SQL for creating the database table to store the tokens
createAcl(ObjectIdentity) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
createAcl(ObjectIdentity) - Method in interface org.springframework.security.acls.model.MutableAclService
Creates an empty Acl object in the database.
createAttributeList(String) - Method in interface org.springframework.security.openid.AxFetchListFactory
Builds the list of attributes which should be added to the fetch request for the supplied OpenID identifier.
createAttributeList(String) - Method in class org.springframework.security.openid.NullAxFetchListFactory
 
createAttributeList(String) - Method in class org.springframework.security.openid.RegexBasedAxFetchListFactory
Iterates through the patterns stored in the map and returns the list of attributes defined for the first match.
createAuthentication(HttpServletRequest) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
 
createAuthenticationRequest(String, String) - Method in class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation
Creates the server-side authentication request object.
createAuthority(Object) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
Creates a GrantedAuthority from a role attribute.
createAuthorityList(String...) - Static method in class org.springframework.security.core.authority.AuthorityUtils
 
createChannelAttributes(String) - Static method in class org.springframework.security.config.http.ChannelAttributeFactory
 
createELContext(HttpServletRequest) - Method in class org.springframework.security.web.util.ELRequestMatcher
Subclasses can override this methode if they want to use a different EL root context
createEmptyContext() - Static method in class org.springframework.security.core.context.SecurityContextHolder
Delegates the creation of a new, empty context to the configured strategy.
createEmptyContext() - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
Creates a new, empty context implementation, for use by SecurityContextRepository implementations, when creating a new context for the first time.
createEntries(MutableAcl) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Creates a new row in acl_entry for every ACE defined in the passed MutableAcl object.
createEvaluationContext(Authentication, T) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
Invokes the internal template methods to create StandardEvaluationContext and SecurityExpressionRoot objects.
createEvaluationContext(Authentication, T) - Method in interface org.springframework.security.access.expression.SecurityExpressionHandler
Provides an evaluation context in which to evaluate security expressions for the invocation type.
createEvaluationContext(Authentication, FilterInvocation) - Method in interface org.springframework.security.web.access.expression.WebSecurityExpressionHandler
Deprecated.
 
createEvaluationContextInternal(Authentication, T) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
Override to create a custom instance of StandardEvaluationContext.
createEvaluationContextInternal(Authentication, MethodInvocation) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
Uses a MethodSecurityEvaluationContext as the EvaluationContext implementation.
createExpressionEvaluationContext(SecurityExpressionHandler<FilterInvocation>) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
Allows the EvaluationContext to be customized for variable lookup etc.
createExpressionEvaluationContext(SecurityExpressionHandler<FilterInvocation>) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
createFromClass(Class<?>, String) - Static method in class org.springframework.security.util.MethodInvocationUtils
Generates a MethodInvocation for the specified methodName on the passed class.
createFromClass(Object, Class<?>, String, Class<?>[], Object[]) - Static method in class org.springframework.security.util.MethodInvocationUtils
Generates a MethodInvocation for specified methodName on the passed class, using the args to locate the method.
createGroup(String, List<GrantedAuthority>) - Method in interface org.springframework.security.provisioning.GroupManager
Creates a new group with the specified list of authorities.
createGroup(String, List<GrantedAuthority>) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
createList(String...) - Static method in class org.springframework.security.access.SecurityConfig
 
createListFromCommaDelimitedString(String) - Static method in class org.springframework.security.access.SecurityConfig
 
createLoginContext(CallbackHandler) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
Creates the LoginContext to be used for authentication.
createLoginContext(CallbackHandler) - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
Creates a LoginContext using the Configuration that was specified in DefaultJaasAuthenticationProvider.setConfiguration(Configuration).
createLoginContext(CallbackHandler) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
 
createMatcher(String, String) - Method in enum org.springframework.security.config.http.MatcherType
 
createNewAuthentication(Authentication, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
createNewToken(PersistentRememberMeToken) - Method in class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
 
createNewToken(PersistentRememberMeToken) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
 
createNewToken(PersistentRememberMeToken) - Method in interface org.springframework.security.web.authentication.rememberme.PersistentTokenRepository
 
createObjectIdentity(Serializable, String) - Method in class org.springframework.security.acls.domain.ObjectIdentityRetrievalStrategyImpl
 
createObjectIdentity(ObjectIdentity, Sid) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Creates an entry in the acl_object_identity table for the passed ObjectIdentity.
createObjectIdentity(Serializable, String) - Method in interface org.springframework.security.acls.model.ObjectIdentityGenerator
 
createOrRetrieveClassPrimaryKey(String, boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Retrieves the primary key from acl_class, creating a new row if needed and the allowCreate property is true.
createOrRetrieveSidPrimaryKey(Sid, boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Retrieves the primary key from acl_sid, creating a new row if needed and the allowCreate property is true.
createPasswordEncoderBeanDefinition(String, boolean) - Static method in class org.springframework.security.config.authentication.PasswordEncoderParser
 
createPostInvocationAttribute(String, String) - Method in class org.springframework.security.access.expression.method.ExpressionBasedAnnotationAttributeFactory
 
createPostInvocationAttribute(String, String) - Method in interface org.springframework.security.access.prepost.PrePostInvocationAttributeFactory
 
createPreInvocationAttribute(String, String, String) - Method in class org.springframework.security.access.expression.method.ExpressionBasedAnnotationAttributeFactory
 
createPreInvocationAttribute(String, String, String) - Method in interface org.springframework.security.access.prepost.PrePostInvocationAttributeFactory
 
createRedirectUrl(String) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
Constructs the Url for Redirection to the CAS server.
createRemoteInvocation(MethodInvocation) - Method in class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory
 
createSecurityExpressionRoot(Authentication, T) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
Implement in order to create a root object of the correct type for the supported invocation type.
createSecurityExpressionRoot(Authentication, MethodInvocation) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
Creates the root object for expression evaluation.
createSecurityExpressionRoot(Authentication, FilterInvocation) - Method in class org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler
 
createServiceUrl(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
Constructs a new Service Url.
createSingleAttributeList(String) - Static method in class org.springframework.security.access.SecurityConfig
Deprecated.
Use createList instead
createSuccessAuthentication(Object, Authentication, UserDetails) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
Creates a successful Authentication object.
createSuccessfulAuthentication(UsernamePasswordAuthenticationToken, UserDetails) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
Creates the final Authentication object which will be returned from the authenticate method.
createSuccessfulAuthentication(UserDetails, OpenIDAuthenticationToken) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
Handles the creation of the final Authentication object which will be returned by the provider.
createSuccessfulAuthentication(HttpServletRequest, UserDetails) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Creates the final Authentication object returned from the autoLogin method.
createTarget() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
createTarget() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
createTarget() - Method in class org.springframework.security.ldap.userdetails.Person.Essence
 
createUser(UserDetails) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
createUser(UserDetails) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
createUser(UserDetails) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
createUser(UserDetails) - Method in interface org.springframework.security.provisioning.UserDetailsManager
Create a new user with the supplied details.
createUserDetails(String, UserDetails, List<GrantedAuthority>) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Can be overridden to customize the creation of the final UserDetailsObject which is returned by the loadUserByUsername method.
createUserDetails() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
createUserDetails() - Method in class org.springframework.security.ldap.userdetails.Person.Essence
 
createuserDetails(Authentication, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesUserDetailsService
Creates the final UserDetails object.
CredentialsContainer - Interface in org.springframework.security.core
Indicates that the implementing object contains sensitive data, which can be erased using the eraseCredentials method.
CredentialsExpiredException - Exception in org.springframework.security.authentication
Thrown if an authentication request is rejected because the account's credentials have expired.
CredentialsExpiredException(String) - Constructor for exception org.springframework.security.authentication.CredentialsExpiredException
Constructs a CredentialsExpiredException with the specified message.
CredentialsExpiredException(String, Throwable) - Constructor for exception org.springframework.security.authentication.CredentialsExpiredException
Constructs a CredentialsExpiredException with the specified message and root cause.
CredentialsExpiredException(String, Object) - Constructor for exception org.springframework.security.authentication.CredentialsExpiredException
Deprecated.
CumulativePermission - Class in org.springframework.security.acls.domain
Represents a Permission that is constructed at runtime from other permissions.
CumulativePermission() - Constructor for class org.springframework.security.acls.domain.CumulativePermission
 
currentDate - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
Current formatted date.
currentDateGenerated - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
Instant on which the currentDate object was generated.
CUSTOM_FILTER - Static variable in class org.springframework.security.config.Elements
 
CycleInRoleHierarchyException - Exception in org.springframework.security.access.hierarchicalroles
Exception that is thrown because of a cycle in the role hierarchy definition
CycleInRoleHierarchyException() - Constructor for exception org.springframework.security.access.hierarchicalroles.CycleInRoleHierarchyException
 

D

DaoAuthenticationProvider - Class in org.springframework.security.authentication.dao
An AuthenticationProvider implementation that retrieves user details from a UserDetailsService.
DaoAuthenticationProvider() - Constructor for class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
DEBUG - Static variable in class org.springframework.security.config.Elements
 
DEBUG_FILTER - Static variable in class org.springframework.security.config.BeanIds
 
DebugBeanDefinitionParser - Class in org.springframework.security.config
 
DebugBeanDefinitionParser() - Constructor for class org.springframework.security.config.DebugBeanDefinitionParser
 
decide(Authentication, Object, Collection<ConfigAttribute>) - Method in interface org.springframework.security.access.AccessDecisionManager
Resolves an access control decision for the passed parameters.
decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in interface org.springframework.security.access.AfterInvocationProvider
 
decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in interface org.springframework.security.access.intercept.AfterInvocationManager
Given the details of a secure object invocation including its returned Object, make an access control decision or optionally modify the returned Object.
decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
 
decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.access.prepost.PostInvocationAdviceProvider
 
decide(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.AffirmativeBased
This concrete implementation simply polls all configured AccessDecisionVoters and grants access if any AccessDecisionVoter voted affirmatively.
decide(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.ConsensusBased
This concrete implementation simply polls all configured AccessDecisionVoters and upon completion determines the consensus of granted against denied responses.
decide(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.UnanimousBased
This concrete implementation polls all configured AccessDecisionVoters for each ConfigAttribute and grants access if only grant (or abstain) votes were received.
decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationCollectionFilteringProvider
 
decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
 
decide(FilterInvocation, Collection<ConfigAttribute>) - Method in interface org.springframework.security.web.access.channel.ChannelDecisionManager
Decided whether the presented FilterInvocation provides the appropriate level of channel security based on the requested list of ConfigAttributes.
decide(FilterInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
 
decide(FilterInvocation, Collection<ConfigAttribute>) - Method in interface org.springframework.security.web.access.channel.ChannelProcessor
Decided whether the presented FilterInvocation provides the appropriate level of channel security based on the requested list of ConfigAttributes.
decide(FilterInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
decide(FilterInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
 
DECODE - Static variable in class org.springframework.security.crypto.codec.Base64
Specify decoding in first bit.
decode(byte[]) - Static method in class org.springframework.security.crypto.codec.Base64
 
decode(CharSequence) - Static method in class org.springframework.security.crypto.codec.Hex
 
decode(byte[]) - Static method in class org.springframework.security.crypto.codec.Utf8
Decode the bytes in UTF-8 form into a String.
decodeCookie(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Decodes the cookie and splits it into a set of token strings using the ":" delimiter.
decorate(Node, BeanDefinitionHolder, ParserContext) - Method in class org.springframework.security.config.http.FilterChainMapBeanDefinitionDecorator
 
decorate(Node, BeanDefinitionHolder, ParserContext) - Method in class org.springframework.security.config.method.InterceptMethodsBeanDefinitionDecorator
 
decorate(Node, BeanDefinitionHolder, ParserContext) - Method in class org.springframework.security.config.SecurityNamespaceHandler
 
decrypt(byte[]) - Method in interface org.springframework.security.crypto.encrypt.BytesEncryptor
Decrypt the byte array.
decrypt(String) - Method in interface org.springframework.security.crypto.encrypt.TextEncryptor
Decrypt the encrypted text string.
DEF_AUTHORITIES_BY_USERNAME_QUERY - Static variable in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
DEF_CHANGE_PASSWORD_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_CREATE_USER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_DELETE_GROUP_AUTHORITIES_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_DELETE_GROUP_AUTHORITY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_DELETE_GROUP_MEMBER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_DELETE_GROUP_MEMBERS_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_DELETE_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_DELETE_USER_AUTHORITIES_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_DELETE_USER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_FIND_GROUP_ID_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_FIND_GROUPS_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_FIND_USERS_IN_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_GROUP_AUTHORITIES_BY_USERNAME_QUERY - Static variable in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
DEF_GROUP_AUTHORITIES_QUERY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_GROUP_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
DEF_GROUP_SEARCH_FILTER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
DEF_INSERT_AUTHORITY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_INSERT_GROUP_AUTHORITY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_INSERT_GROUP_MEMBER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_INSERT_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_INSERT_TOKEN_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
The default SQL used by createNewToken
DEF_REMOVE_USER_TOKENS_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
The default SQL used by removeUserTokens
DEF_RENAME_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_TOKEN_BY_SERIES_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
The default SQL used by the getTokenBySeries query
DEF_UPDATE_TOKEN_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
The default SQL used by updateToken
DEF_UPDATE_USER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_USER_EXISTS_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
DEF_USER_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
DEF_USERS_BY_USERNAME_QUERY - Static variable in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
DEFAULT_CAS_ARTIFACT_PARAMETER - Static variable in class org.springframework.security.cas.ServiceProperties
 
DEFAULT_CAS_SERVICE_PARAMETER - Static variable in class org.springframework.security.cas.ServiceProperties
 
DEFAULT_CLAIMED_IDENTITY_FIELD - Static variable in class org.springframework.security.openid.OpenIDAuthenticationFilter
 
DEFAULT_EXTRACTOR - Static variable in class org.springframework.security.web.util.ThrowableAnalyzer
Default extractor for Throwable instances.
DEFAULT_LOGIN_PAGE_URL - Static variable in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
 
DEFAULT_ORDER_BY_CLAUSE - Static variable in class org.springframework.security.acls.jdbc.BasicLookupStrategy
 
DEFAULT_PARAMETER - Static variable in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
DEFAULT_SAML_ARTIFACT_PARAMETER - Static variable in class org.springframework.security.cas.SamlServiceProperties
 
DEFAULT_SAML_SERVICE_PARAMETER - Static variable in class org.springframework.security.cas.SamlServiceProperties
 
DEFAULT_SELECT_CLAUSE - Static variable in class org.springframework.security.acls.jdbc.BasicLookupStrategy
 
DEFAULT_SERIES_LENGTH - Static variable in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
DEFAULT_TOKEN_LENGTH - Static variable in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
DefaultAuthenticationEventPublisher - Class in org.springframework.security.authentication
The default strategy for publishing authentication events.
DefaultAuthenticationEventPublisher() - Constructor for class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
 
DefaultAuthenticationEventPublisher(ApplicationEventPublisher) - Constructor for class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
 
DefaultFilterChainValidator - Class in org.springframework.security.config.http
 
DefaultFilterChainValidator() - Constructor for class org.springframework.security.config.http.DefaultFilterChainValidator
 
DefaultFilterInvocationSecurityMetadataSource - Class in org.springframework.security.web.access.intercept
Default implementation of FilterInvocationDefinitionSource.
DefaultFilterInvocationSecurityMetadataSource(LinkedHashMap<RequestMatcher, Collection<ConfigAttribute>>) - Constructor for class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
Sets the internal request map from the supplied map.
DefaultHttpFirewall - Class in org.springframework.security.web.firewall
Default implementation which wraps requests in order to provide consistent values of the servletPath and pathInfo, which do not contain path parameters (as defined in RFC 2396).
DefaultHttpFirewall() - Constructor for class org.springframework.security.web.firewall.DefaultHttpFirewall
 
DefaultJaasAuthenticationProvider - Class in org.springframework.security.authentication.jaas
Creates a LoginContext using the Configuration provided to it.
DefaultJaasAuthenticationProvider() - Constructor for class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
 
DefaultLdapAuthoritiesPopulator - Class in org.springframework.security.ldap.userdetails
The default strategy for obtaining user role information from the directory.
DefaultLdapAuthoritiesPopulator(ContextSource, String) - Constructor for class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
Constructor for group search scenarios.
DefaultLdapUsernameToDnMapper - Class in org.springframework.security.ldap
This implementation appends a name component to the userDnBase context using the usernameAttributeName property.
DefaultLdapUsernameToDnMapper(String, String) - Constructor for class org.springframework.security.ldap.DefaultLdapUsernameToDnMapper
 
DefaultLoginExceptionResolver - Class in org.springframework.security.authentication.jaas
This LoginExceptionResolver simply wraps the LoginException with an AuthenticationServiceException.
DefaultLoginExceptionResolver() - Constructor for class org.springframework.security.authentication.jaas.DefaultLoginExceptionResolver
 
DefaultLoginPageGeneratingFilter - Class in org.springframework.security.web.authentication.ui
For internal use with namespace configuration in the case where a user doesn't configure a login page.
DefaultLoginPageGeneratingFilter(AbstractAuthenticationProcessingFilter) - Constructor for class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
 
DefaultLoginPageGeneratingFilter(UsernamePasswordAuthenticationFilter, AbstractAuthenticationProcessingFilter) - Constructor for class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
 
DefaultMethodSecurityExpressionHandler - Class in org.springframework.security.access.expression.method
The standard implementation of MethodSecurityExpressionHandler.
DefaultMethodSecurityExpressionHandler() - Constructor for class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
 
DefaultPermissionFactory - Class in org.springframework.security.acls.domain
Default implementation of PermissionFactory.
DefaultPermissionFactory() - Constructor for class org.springframework.security.acls.domain.DefaultPermissionFactory
Registers the Permission fields from the BasePermission class.
DefaultPermissionFactory(Class<? extends Permission>) - Constructor for class org.springframework.security.acls.domain.DefaultPermissionFactory
Registers the Permission fields from the supplied class.
DefaultPermissionFactory(Map<String, ? extends Permission>) - Constructor for class org.springframework.security.acls.domain.DefaultPermissionFactory
Registers a map of named Permission instances.
DefaultPermissionGrantingStrategy - Class in org.springframework.security.acls.domain
 
DefaultPermissionGrantingStrategy(AuditLogger) - Constructor for class org.springframework.security.acls.domain.DefaultPermissionGrantingStrategy
Creates an instance with the logger which will be used to record granting and denial of requested permissions.
DefaultRedirectStrategy - Class in org.springframework.security.web
Simple implementation of RedirectStrategy which is the default used throughout the framework.
DefaultRedirectStrategy() - Constructor for class org.springframework.security.web.DefaultRedirectStrategy
 
DefaultSavedRequest - Class in org.springframework.security.web.savedrequest
Represents central information from a HttpServletRequest.
DefaultSavedRequest(HttpServletRequest, PortResolver) - Constructor for class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
DefaultSecurityFilterChain - Class in org.springframework.security.web
Standard implementation of SecurityFilterChain.
DefaultSecurityFilterChain(RequestMatcher, Filter...) - Constructor for class org.springframework.security.web.DefaultSecurityFilterChain
 
DefaultSecurityFilterChain(RequestMatcher, List<Filter>) - Constructor for class org.springframework.security.web.DefaultSecurityFilterChain
 
DefaultSpringSecurityContextSource - Class in org.springframework.security.ldap
ContextSource implementation which uses Spring LDAP's LdapContextSource as a base class.
DefaultSpringSecurityContextSource(String) - Constructor for class org.springframework.security.ldap.DefaultSpringSecurityContextSource
Create and initialize an instance which will connect to the supplied LDAP URL.
DefaultSpringSecurityContextSource(List<String>, String) - Constructor for class org.springframework.security.ldap.DefaultSpringSecurityContextSource
Create and initialize an instance which will connect of the LDAP Spring Security Context Source.
DefaultToken - Class in org.springframework.security.core.token
The default implementation of Token.
DefaultToken(String, long, String) - Constructor for class org.springframework.security.core.token.DefaultToken
 
DefaultWebInvocationPrivilegeEvaluator - Class in org.springframework.security.web.access
Allows users to determine whether they have privileges for a given web URI.
DefaultWebInvocationPrivilegeEvaluator(AbstractSecurityInterceptor) - Constructor for class org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
 
DefaultWebSecurityExpressionHandler - Class in org.springframework.security.web.access.expression
 
DefaultWebSecurityExpressionHandler() - Constructor for class org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler
 
DelegatingAuthenticationEntryPoint - Class in org.springframework.security.web.authentication
An AuthenticationEntryPoint which selects a concrete AuthenticationEntryPoint based on a RequestMatcher evaluation.
DelegatingAuthenticationEntryPoint(LinkedHashMap<RequestMatcher, AuthenticationEntryPoint>) - Constructor for class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
 
DelegatingMethodSecurityMetadataSource - Class in org.springframework.security.access.method
Automatically tries a series of method definition sources, relying on the first source of metadata that provides a non-null/non-empty response.
DelegatingMethodSecurityMetadataSource(List<MethodSecurityMetadataSource>) - Constructor for class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
 
delete - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
 
DELETE - Static variable in class org.springframework.security.acls.domain.BasePermission
 
deleteAce(int) - Method in class org.springframework.security.acls.domain.AclImpl
 
deleteAce(int) - Method in interface org.springframework.security.acls.model.MutableAcl
 
deleteAcl(ObjectIdentity, boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
deleteAcl(ObjectIdentity, boolean) - Method in interface org.springframework.security.acls.model.MutableAclService
Removes the specified entry from the database.
deleteEntries(Long) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Deletes all ACEs defined in the acl_entry table belonging to the presented ObjectIdentity primary key.
deleteGroup(String) - Method in interface org.springframework.security.provisioning.GroupManager
Removes a group, including all members and authorities.
deleteGroup(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
deleteObjectIdentity(Long) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Deletes a single row from acl_object_identity that is associated with the presented ObjectIdentity primary key.
deleteUser(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
deleteUser(String) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
deleteUser(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
deleteUser(String) - Method in interface org.springframework.security.provisioning.UserDetailsManager
Remove the user with the given login name from the system.
demergePasswordAndSalt(String) - Method in class org.springframework.security.authentication.encoding.BasePasswordEncoder
Used by subclasses to extract the password and salt from a merged String created using BasePasswordEncoder.mergePasswordAndSalt(String,Object,boolean).
demergePatterns(String, String) - Static method in class org.springframework.security.acls.domain.AclFormattingUtils
 
DENY_ALL_ATTRIBUTE - Static variable in class org.springframework.security.access.annotation.Jsr250SecurityConfig
 
denyAll() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
denyAll - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
Allows "denyAll" expression
denyAll() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
DenyAllPermissionEvaluator - Class in org.springframework.security.access.expression
A null PermissionEvaluator which denies all access.
DenyAllPermissionEvaluator() - Constructor for class org.springframework.security.access.expression.DenyAllPermissionEvaluator
 
destroy() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
destroy() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
Not used (we rely on IoC container lifecycle services instead)
determineCauseChain(Throwable) - Method in class org.springframework.security.web.util.ThrowableAnalyzer
Determines the cause chain of the provided Throwable.
determineExpiredUrl(HttpServletRequest, SessionInformation) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
 
determineTargetUrl(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
Builds the target URL according to the logic defined in the main class Javadoc.
determineUrlToUseForThisRequest(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
Allows subclasses to modify the login form URL that should be applicable for a given request.
DigestAuthenticationEntryPoint - Class in org.springframework.security.web.authentication.www
Used by the SecurityEnforcementFilter to commence authentication via the DigestAuthenticationFilter.
DigestAuthenticationEntryPoint() - Constructor for class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
DigestAuthenticationFilter - Class in org.springframework.security.web.authentication.www
Processes a HTTP request's Digest authorization headers, putting the result into the SecurityContextHolder.
DigestAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
DisabledException - Exception in org.springframework.security.authentication
Thrown if an authentication request is rejected because the account is disabled.
DisabledException(String) - Constructor for exception org.springframework.security.authentication.DisabledException
Constructs a DisabledException with the specified message.
DisabledException(String, Throwable) - Constructor for exception org.springframework.security.authentication.DisabledException
Constructs a DisabledException with the specified message and root cause.
DisabledException(String, Object) - Constructor for exception org.springframework.security.authentication.DisabledException
Deprecated.
DnsEntryNotFoundException - Exception in org.springframework.security.remoting.dns
This will be thrown if no entry matches the specified DNS query.
DnsEntryNotFoundException(String) - Constructor for exception org.springframework.security.remoting.dns.DnsEntryNotFoundException
 
DnsEntryNotFoundException(String, Throwable) - Constructor for exception org.springframework.security.remoting.dns.DnsEntryNotFoundException
 
DnsLookupException - Exception in org.springframework.security.remoting.dns
This will be thrown for unknown DNS errors.
DnsLookupException(String, Throwable) - Constructor for exception org.springframework.security.remoting.dns.DnsLookupException
 
DnsLookupException(String) - Constructor for exception org.springframework.security.remoting.dns.DnsLookupException
 
DnsResolver - Interface in org.springframework.security.remoting.dns
Helper class for DNS operations.
DO_BREAK_LINES - Static variable in class org.springframework.security.crypto.codec.Base64
Do break lines when encoding.
doAfterPropertiesSet() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
doAfterPropertiesSet() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
doAuthentication(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
doAuthentication(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
 
doAuthentication(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
 
doEndTag() - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
 
doEndTag() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
Default processing of the end tag returning EVAL_PAGE.
doesRequestMatch(HttpServletRequest, PortResolver) - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
Determines if the current request matches the DefaultSavedRequest.
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
Method that is actually called by the filter chain.
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Invokes the requiresAuthentication method to determine whether the request is for authentication and should be handled by this filter.
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
Try to authenticate a pre-authenticated user with Spring Security if the user has not yet been authenticated.
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.context.SecurityContextPersistenceFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.FilterChainProxy
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.jaasapi.JaasApiIntegrationFilter
Attempts to obtain and run as a JAAS Subject using JaasApiIntegrationFilter.obtainSubject(ServletRequest).
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.savedrequest.RequestCacheAwareFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.session.SessionManagementFilter
 
doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
 
doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.authentication.JdbcUserServiceBeanDefinitionParser
 
doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.authentication.UserServiceBeanDefinitionParser
 
doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
doPopulateAdditionalInformation(Object) - Method in class org.springframework.security.authentication.AuthenticationDetails
Deprecated.
Provided so that subclasses can populate additional information.
doPrepareConnection(HttpURLConnection, int) - Method in class org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor
Provided so subclasses can perform additional configuration if required (eg set additional request headers for non-security related information etc).
doStartTag() - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
 
doStartTag() - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
 
doStartTag() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
Invokes the base class AbstractAuthorizeTag.authorize() method to decide if the body of the tag should be skipped or not.

E

EhCacheBasedAclCache - Class in org.springframework.security.acls.domain
Simple implementation of AclCache that delegates to EH-CACHE.
EhCacheBasedAclCache(Ehcache) - Constructor for class org.springframework.security.acls.domain.EhCacheBasedAclCache
Deprecated.
use the second constructor which injects the strategy objects. See SEC-1498.
EhCacheBasedAclCache(Ehcache, PermissionGrantingStrategy, AclAuthorizationStrategy) - Constructor for class org.springframework.security.acls.domain.EhCacheBasedAclCache
 
EhCacheBasedTicketCache - Class in org.springframework.security.cas.authentication
Caches tickets using a Spring IoC defined EHCACHE.
EhCacheBasedTicketCache() - Constructor for class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
EhCacheBasedUserCache - Class in org.springframework.security.core.userdetails.cache
Caches User objects using a Spring IoC defined EHCACHE.
EhCacheBasedUserCache() - Constructor for class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
Elements - Class in org.springframework.security.config
Contains all the element names used by Spring Security 3 namespace support.
Elements() - Constructor for class org.springframework.security.config.Elements
 
ELRequestMatcher - Class in org.springframework.security.web.util
A RequestMatcher implementation which uses a SpEL expression
ELRequestMatcher(String) - Constructor for class org.springframework.security.web.util.ELRequestMatcher
 
EMBEDDED_APACHE_DS - Static variable in class org.springframework.security.config.BeanIds
 
encode(CharSequence) - Method in class org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder
 
ENCODE - Static variable in class org.springframework.security.crypto.codec.Base64
Specify encoding in first bit.
encode(byte[]) - Static method in class org.springframework.security.crypto.codec.Base64
 
encode(byte[]) - Static method in class org.springframework.security.crypto.codec.Hex
 
encode(CharSequence) - Static method in class org.springframework.security.crypto.codec.Utf8
Get the bytes of the String in UTF-8 encoded form.
encode(CharSequence) - Method in class org.springframework.security.crypto.password.NoOpPasswordEncoder
 
encode(CharSequence) - Method in interface org.springframework.security.crypto.password.PasswordEncoder
Encode the raw password.
encode(CharSequence) - Method in class org.springframework.security.crypto.password.StandardPasswordEncoder
 
encodeCookie(String[]) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Inverse operation of decodeCookie.
encodePassword(String, Object) - Method in class org.springframework.security.authentication.encoding.LdapShaPasswordEncoder
Calculates the hash of password (and salt bytes, if supplied) and returns a base64 encoded concatenation of the hash and salt, prefixed with {SHA} (or {SSHA} if salt was used).
encodePassword(String, Object) - Method in class org.springframework.security.authentication.encoding.Md4PasswordEncoder
Encodes the rawPass using an MD4 message digest.
encodePassword(String, Object) - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
Encodes the rawPass using a MessageDigest.
encodePassword(String, Object) - Method in interface org.springframework.security.authentication.encoding.PasswordEncoder
Deprecated.
Encodes the specified raw password with an implementation specific algorithm.
encodePassword(String, Object) - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
 
encodeRedirectUrl(String) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
 
encodeRedirectURL(String) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
 
encodeUrl(String) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
 
encodeURL(String) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
 
EncodingUtils - Class in org.springframework.security.crypto.util
Static helper for encoding data.
encrypt(byte[]) - Method in interface org.springframework.security.crypto.encrypt.BytesEncryptor
Encrypt the byte array.
encrypt(String) - Method in interface org.springframework.security.crypto.encrypt.TextEncryptor
Encrypt the raw text string.
Encryptors - Class in org.springframework.security.crypto.encrypt
Factory for commonly used encryptors.
endConsumption(HttpServletRequest) - Method in class org.springframework.security.openid.OpenID4JavaConsumer
 
endConsumption(HttpServletRequest) - Method in interface org.springframework.security.openid.OpenIDConsumer
 
Enumerator<T> - Class in org.springframework.security.web.savedrequest
Adapter that wraps an Enumeration around a Java 2 collection Iterator.
Enumerator(Collection<T>) - Constructor for class org.springframework.security.web.savedrequest.Enumerator
Return an Enumeration over the values of the specified Collection.
Enumerator(Collection<T>, boolean) - Constructor for class org.springframework.security.web.savedrequest.Enumerator
Return an Enumeration over the values of the specified Collection.
Enumerator(Iterator<T>) - Constructor for class org.springframework.security.web.savedrequest.Enumerator
Return an Enumeration over the values returned by the specified Iterator.
Enumerator(Iterator<T>, boolean) - Constructor for class org.springframework.security.web.savedrequest.Enumerator
Return an Enumeration over the values returned by the specified Iterator.
Enumerator(Map<?, T>) - Constructor for class org.springframework.security.web.savedrequest.Enumerator
Return an Enumeration over the values of the specified Map.
Enumerator(Map<?, T>, boolean) - Constructor for class org.springframework.security.web.savedrequest.Enumerator
Return an Enumeration over the values of the specified Map.
equals(Object) - Method in class org.springframework.security.access.SecurityConfig
 
equals(Object) - Method in class org.springframework.security.acls.domain.AbstractPermission
 
equals(Object) - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
equals(Object) - Method in class org.springframework.security.acls.domain.AclImpl
 
equals(Object) - Method in class org.springframework.security.acls.domain.GrantedAuthoritySid
 
equals(Object) - Method in class org.springframework.security.acls.domain.ObjectIdentityImpl
Important so caching operates properly.
equals(Object) - Method in class org.springframework.security.acls.domain.PrincipalSid
 
equals(Object) - Method in interface org.springframework.security.acls.model.ObjectIdentity
 
equals(Object) - Method in interface org.springframework.security.acls.model.Sid
Refer to the java.lang.Object documentation for the interface contract.
equals(Object) - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
equals(Object) - Method in class org.springframework.security.authentication.AnonymousAuthenticationToken
 
equals(Object) - Method in class org.springframework.security.authentication.AuthenticationDetails
Deprecated.
 
equals(Object) - Method in class org.springframework.security.authentication.jaas.JaasGrantedAuthority
 
equals(Object) - Method in class org.springframework.security.authentication.RememberMeAuthenticationToken
 
equals(Object) - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
 
equals(Object) - Method in class org.springframework.security.core.authority.GrantedAuthorityImpl
Deprecated.
 
equals(Object) - Method in class org.springframework.security.core.authority.SimpleGrantedAuthority
 
equals(Object) - Method in class org.springframework.security.core.context.SecurityContextImpl
 
equals(Object) - Method in class org.springframework.security.core.token.DefaultToken
 
equals(Object) - Method in class org.springframework.security.core.userdetails.User
Returns true if the supplied object is a User instance with the same username value.
equals(Object) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
equals(Object) - Method in class org.springframework.security.util.InMemoryResource
 
equals(Object) - Method in class org.springframework.security.web.access.intercept.RequestKey
 
equals(Object) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
 
equals(Object) - Method in class org.springframework.security.web.authentication.WebAuthenticationDetails
 
equals(Object) - Method in class org.springframework.security.web.util.AntPathRequestMatcher
 
equals(Object) - Method in class org.springframework.security.web.util.AnyRequestMatcher
 
eraseCredentials() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
Checks the credentials, principal and details objects, invoking the eraseCredentials method on any which implement CredentialsContainer.
eraseCredentials() - Method in class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
 
eraseCredentials() - Method in interface org.springframework.security.core.CredentialsContainer
 
eraseCredentials() - Method in class org.springframework.security.core.userdetails.User
 
ERROR_PARAMETER_NAME - Static variable in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
 
escapeEntities(String) - Static method in class org.springframework.security.web.util.TextEscapeUtils
 
evalOrSkip(boolean) - Static method in class org.springframework.security.taglibs.TagLibConfig
Returns EVAL_BODY_INCLUDE if the authorized flag is true or UI security has been disabled.
evaluateAsBoolean(Expression, EvaluationContext) - Static method in class org.springframework.security.access.expression.ExpressionUtils
 
eventPublisher - Variable in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
evictFromCache(Serializable) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
 
evictFromCache(ObjectIdentity) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
 
evictFromCache(Serializable) - Method in interface org.springframework.security.acls.model.AclCache
 
evictFromCache(ObjectIdentity) - Method in interface org.springframework.security.acls.model.AclCache
 
ExceptionMappingAuthenticationFailureHandler - Class in org.springframework.security.web.authentication
Uses the internal map of exceptions types to URLs to determine the destination on authentication failure.
ExceptionMappingAuthenticationFailureHandler() - Constructor for class org.springframework.security.web.authentication.ExceptionMappingAuthenticationFailureHandler
 
ExceptionTranslationFilter - Class in org.springframework.security.web.access
Handles any AccessDeniedException and AuthenticationException thrown within the filter chain.
ExceptionTranslationFilter() - Constructor for class org.springframework.security.web.access.ExceptionTranslationFilter
Deprecated.
Use constructor injection
ExceptionTranslationFilter(AuthenticationEntryPoint) - Constructor for class org.springframework.security.web.access.ExceptionTranslationFilter
 
ExceptionTranslationFilter(AuthenticationEntryPoint, RequestCache) - Constructor for class org.springframework.security.web.access.ExceptionTranslationFilter
 
expireNow() - Method in class org.springframework.security.core.session.SessionInformation
 
EXPRESSION_HANDLER - Static variable in class org.springframework.security.config.Elements
 
ExpressionBasedAnnotationAttributeFactory - Class in org.springframework.security.access.expression.method
PrePostInvocationAttributeFactory which interprets the annotation value as an expression to be evaluated at runtime.
ExpressionBasedAnnotationAttributeFactory(MethodSecurityExpressionHandler) - Constructor for class org.springframework.security.access.expression.method.ExpressionBasedAnnotationAttributeFactory
 
ExpressionBasedFilterInvocationSecurityMetadataSource - Class in org.springframework.security.web.access.expression
Expression-based FilterInvocationSecurityMetadataSource.
ExpressionBasedFilterInvocationSecurityMetadataSource(LinkedHashMap<RequestMatcher, Collection<ConfigAttribute>>, SecurityExpressionHandler<FilterInvocation>) - Constructor for class org.springframework.security.web.access.expression.ExpressionBasedFilterInvocationSecurityMetadataSource
 
ExpressionBasedPostInvocationAdvice - Class in org.springframework.security.access.expression.method
 
ExpressionBasedPostInvocationAdvice(MethodSecurityExpressionHandler) - Constructor for class org.springframework.security.access.expression.method.ExpressionBasedPostInvocationAdvice
 
ExpressionBasedPreInvocationAdvice - Class in org.springframework.security.access.expression.method
Method pre-invocation handling based on expressions.
ExpressionBasedPreInvocationAdvice() - Constructor for class org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice
 
ExpressionUtils - Class in org.springframework.security.access.expression
 
ExpressionUtils() - Constructor for class org.springframework.security.access.expression.ExpressionUtils
 
extractAttributes(A) - Method in interface org.springframework.security.access.annotation.AnnotationMetadataExtractor
 
extractAttributes(HttpSession) - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
Called to extract the existing attributes from the session, prior to invalidating it.
extractCause(Throwable) - Method in interface org.springframework.security.web.util.ThrowableCauseExtractor
Extracts the cause from the provided Throwable.
extractControl(DirContext) - Static method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControlExtractor
 
extractPrincipal(X509Certificate) - Method in class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
 
extractPrincipal(X509Certificate) - Method in interface org.springframework.security.web.authentication.preauth.x509.X509PrincipalExtractor
Returns the principal (usually a String) for the given certificate.
extractRememberMeCookie(HttpServletRequest) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Locates the Spring Security remember me cookie in the request and returns its value.

F

FastHttpDateFormat - Class in org.springframework.security.web.savedrequest
Utility class to generate HTTP dates.
FastHttpDateFormat() - Constructor for class org.springframework.security.web.savedrequest.FastHttpDateFormat
 
FieldUtils - Class in org.springframework.security.util
Offers static methods for directly manipulating fields.
FieldUtils() - Constructor for class org.springframework.security.util.FieldUtils
 
filter(Object, Expression, EvaluationContext) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
Filters the filterTarget object (which must be either a collection or an array), by evaluating the supplied expression.
filter(Object, Expression, EvaluationContext) - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionHandler
Filters a target collection or array.
FILTER_CHAIN - Static variable in class org.springframework.security.config.Elements
 
FILTER_CHAIN_MAP - Static variable in class org.springframework.security.config.Elements
 
FILTER_CHAIN_PROXY - Static variable in class org.springframework.security.config.BeanIds
 
FILTER_CHAINS - Static variable in class org.springframework.security.config.BeanIds
 
FILTER_INVOCATION_DEFINITION_SOURCE - Static variable in class org.springframework.security.config.Elements
Deprecated.
FILTER_SECURITY_METADATA_SOURCE - Static variable in class org.springframework.security.config.Elements
 
FilterBasedLdapUserSearch - Class in org.springframework.security.ldap.search
LdapUserSearch implementation which uses an Ldap filter to locate the user.
FilterBasedLdapUserSearch(String, String, BaseLdapPathContextSource) - Constructor for class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
 
FilterChainBeanDefinitionParser - Class in org.springframework.security.config.http
 
FilterChainBeanDefinitionParser() - Constructor for class org.springframework.security.config.http.FilterChainBeanDefinitionParser
 
FilterChainMapBeanDefinitionDecorator - Class in org.springframework.security.config.http
Sets the filter chain Map for a FilterChainProxy bean declaration.
FilterChainMapBeanDefinitionDecorator() - Constructor for class org.springframework.security.config.http.FilterChainMapBeanDefinitionDecorator
 
FilterChainProxy - Class in org.springframework.security.web
Delegates Filter requests to a list of Spring-managed filter beans.
FilterChainProxy() - Constructor for class org.springframework.security.web.FilterChainProxy
 
FilterChainProxy(SecurityFilterChain) - Constructor for class org.springframework.security.web.FilterChainProxy
 
FilterChainProxy(List<SecurityFilterChain>) - Constructor for class org.springframework.security.web.FilterChainProxy
 
FilterChainProxy.FilterChainValidator - Interface in org.springframework.security.web
 
FilterInvocation - Class in org.springframework.security.web
Holds objects associated with a HTTP filter.
FilterInvocation(ServletRequest, ServletResponse, FilterChain) - Constructor for class org.springframework.security.web.FilterInvocation
 
FilterInvocation(String, String) - Constructor for class org.springframework.security.web.FilterInvocation
 
FilterInvocation(String, String, String) - Constructor for class org.springframework.security.web.FilterInvocation
 
FilterInvocation(String, String, String, String, String) - Constructor for class org.springframework.security.web.FilterInvocation
 
FilterInvocationSecurityMetadataSource - Interface in org.springframework.security.web.access.intercept
Marker interface for SecurityMetadataSource implementations that are designed to perform lookups keyed on FilterInvocations.
FilterInvocationSecurityMetadataSourceParser - Class in org.springframework.security.config.http
Allows for convenient creation of a FilterInvocationSecurityMetadataSource bean for use with a FilterSecurityInterceptor.
FilterInvocationSecurityMetadataSourceParser() - Constructor for class org.springframework.security.config.http.FilterInvocationSecurityMetadataSourceParser
 
FilterSecurityInterceptor - Class in org.springframework.security.web.access.intercept
Performs security handling of HTTP resources via a filter implementation.
FilterSecurityInterceptor() - Constructor for class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
 
finallyInvocation(InterceptorStatusToken) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
Cleans up the work of the AbstractSecurityInterceptor after the secure object invocation has been completed.
findAllGroups() - Method in interface org.springframework.security.provisioning.GroupManager
Returns the names of all groups that this group manager controls.
findAllGroups() - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
findAttributes(Class<?>) - Method in class org.springframework.security.access.annotation.Jsr250MethodSecurityMetadataSource
 
findAttributes(Method, Class<?>) - Method in class org.springframework.security.access.annotation.Jsr250MethodSecurityMetadataSource
 
findAttributes(Class<?>) - Method in class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
 
findAttributes(Method, Class<?>) - Method in class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
 
findAttributes(Method, Class<?>) - Method in class org.springframework.security.access.method.AbstractFallbackMethodSecurityMetadataSource
Obtains the security metadata applicable to the specified method invocation.
findAttributes(Class<?>) - Method in class org.springframework.security.access.method.AbstractFallbackMethodSecurityMetadataSource
Obtains the security metadata registered against the specified class.
findAttributes(Class<?>) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
Implementation does not support class-level attributes.
findAttributes(Method, Class<?>) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
Will walk the method inheritance tree to find the most specific declaration applicable.
findChildren(ObjectIdentity) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
 
findChildren(ObjectIdentity) - Method in interface org.springframework.security.acls.model.AclService
Locates all object identities that use the specified parent.
findGroupAuthorities(String) - Method in interface org.springframework.security.provisioning.GroupManager
Obtains the list of authorities which are assigned to a group.
findGroupAuthorities(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
findUsersInGroup(String) - Method in interface org.springframework.security.provisioning.GroupManager
Locates the users who are members of a group
findUsersInGroup(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
FirewalledRequest - Class in org.springframework.security.web.firewall
Request wrapper which is returned by the HttpFirewall interface.
FirewalledRequest(HttpServletRequest) - Constructor for class org.springframework.security.web.firewall.FirewalledRequest
Constructs a request object wrapping the given request.
flushBuffer() - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Makes sure the context is stored before calling the superclass flushBuffer()
FORM_LOGIN - Static variable in class org.springframework.security.config.Elements
 
format - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
HTTP date format.
formatCache - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
Formatter cache.
formatDate(long, DateFormat) - Static method in class org.springframework.security.web.savedrequest.FastHttpDateFormat
Formats a specified date to HTTP format.
formats - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
The set of SimpleDateFormat formats to use in getDateHeader().
FormLoginBeanDefinitionParser - Class in org.springframework.security.config.http
 

G

generateKey() - Method in interface org.springframework.security.crypto.keygen.BytesKeyGenerator
Generate a new key.
generateKey() - Method in interface org.springframework.security.crypto.keygen.StringKeyGenerator
 
generateNewContext() - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
By default, calls SecurityContextHolder.createEmptyContext() to obtain a new context (there should be no context present in the holder when this method is called).
generateSeriesData() - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
generateTokenData() - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
gensalt(int, SecureRandom) - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
Generate a salt for use with the BCrypt.hashpw() method
gensalt(int) - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
Generate a salt for use with the BCrypt.hashpw() method
gensalt() - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
Generate a salt for use with the BCrypt.hashpw() method, selecting a reasonable default for the number of hashing rounds to apply
getAccess() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
getAccessDecisionManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
getAccessDeniedException() - Method in class org.springframework.security.access.event.AuthorizationFailureEvent
 
getAccessor() - Static method in class org.springframework.security.core.SpringSecurityMessageSource
 
getAcl() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
getAcl() - Method in interface org.springframework.security.acls.model.AccessControlEntry
 
getAdditionalRoles(DirContextOperations, String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
This method should be overridden if required to obtain any additional roles for the given user (on top of those obtained from the standard search implemented by this class).
getAdvice() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityMetadataSourceAdvisor
 
getAfterInvocationManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
getAlgorithm() - Method in class org.springframework.security.authentication.encoding.Md4PasswordEncoder
 
getAlgorithm() - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
 
getAllConfigAttributes() - Method in class org.springframework.security.access.annotation.Jsr250MethodSecurityMetadataSource
 
getAllConfigAttributes() - Method in class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
 
getAllConfigAttributes() - Method in class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
 
getAllConfigAttributes() - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
Obtains the configuration attributes explicitly defined against this bean.
getAllConfigAttributes() - Method in class org.springframework.security.access.prepost.PrePostAnnotationSecurityMetadataSource
 
getAllConfigAttributes() - Method in interface org.springframework.security.access.SecurityMetadataSource
If available, returns all of the ConfigAttributes defined by the implementing class.
getAllConfigAttributes() - Method in class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
 
getAllowSessionCreation() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
getAllPrincipals() - Method in interface org.springframework.security.core.session.SessionRegistry
Obtains all the known principals in the SessionRegistry.
getAllPrincipals() - Method in class org.springframework.security.core.session.SessionRegistryImpl
 
getAllSessions(Object, boolean) - Method in interface org.springframework.security.core.session.SessionRegistry
Obtains all the known sessions for the specified principal.
getAllSessions(Object, boolean) - Method in class org.springframework.security.core.session.SessionRegistryImpl
 
getAppConfigurationEntry(String) - Method in class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
 
getAppCtx() - Method in interface org.springframework.security.taglibs.velocity.Authz
get Spring application context which contains
getAppCtx() - Method in class org.springframework.security.taglibs.velocity.AuthzImpl
 
getApplicationEventPublisher() - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
 
getArguments() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
 
getArguments() - Method in class org.springframework.security.util.SimpleMethodInvocation
 
getArtifactParameter() - Method in class org.springframework.security.cas.ServiceProperties
 
getAssertion() - Method in class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
 
getAssertion() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
 
getAttribute() - Method in interface org.springframework.security.access.ConfigAttribute
If the ConfigAttribute can be represented as a String and that String is sufficient in precision to be relied upon as a configuration parameter by a RunAsManager, AccessDecisionManager or AccessDecisionManager delegate, this method should return such a String.
getAttribute() - Method in class org.springframework.security.access.SecurityConfig
 
getAttributes() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
 
getAttributes(Method, Class<?>) - Method in class org.springframework.security.access.method.AbstractFallbackMethodSecurityMetadataSource
 
getAttributes(Object) - Method in class org.springframework.security.access.method.AbstractMethodSecurityMetadataSource
 
getAttributes(Method, Class<?>) - Method in class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
 
getAttributes(Method, Class<?>) - Method in interface org.springframework.security.access.method.MethodSecurityMetadataSource
 
getAttributes(Method, Class<?>) - Method in class org.springframework.security.access.prepost.PrePostAnnotationSecurityMetadataSource
 
getAttributes(Object) - Method in interface org.springframework.security.access.SecurityMetadataSource
Accesses the ConfigAttributes that apply to a given secure object.
getAttributes() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
 
getAttributes(Object) - Method in class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
 
getAttributes2grantedAuthoritiesMap() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
 
getAuthenticatedEnv(String, String) - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyAwareContextSource
 
getAuthentication() - Method in class org.springframework.security.access.event.AuthorizationFailureEvent
 
getAuthentication() - Method in class org.springframework.security.access.event.AuthorizedEvent
 
getAuthentication() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
getAuthentication() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
getAuthentication() - Method in class org.springframework.security.authentication.event.AbstractAuthenticationEvent
Getters for the Authentication request that caused the event.
getAuthentication() - Method in class org.springframework.security.authentication.jaas.event.JaasAuthenticationEvent
Pre-casted method that returns the 'source' of the event.
getAuthentication() - Method in exception org.springframework.security.core.AuthenticationException
Deprecated.
to avoid potential leaking of sensitive information (e.g. through serialization/remoting).
getAuthentication() - Method in interface org.springframework.security.core.context.SecurityContext
Obtains the currently authenticated principal, or an authentication request token.
getAuthentication() - Method in class org.springframework.security.core.context.SecurityContextImpl
 
getAuthenticationDetailsSource() - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
 
getAuthenticationDetailsSource() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
getAuthenticationEntryPoint() - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
getAuthenticationEntryPoint() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
getAuthenticationEntryPoint() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
getAuthenticationManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
getAuthenticationManager() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
 
getAuthenticationManager() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
getAuthenticationManager() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
getAuthenticationTrustResolver() - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
getAuthorities() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
getAuthorities() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
getAuthorities() - Method in interface org.springframework.security.core.Authentication
Set by an AuthenticationManager to indicate the authorities that the principal has been granted.
getAuthorities() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
 
getAuthorities() - Method in class org.springframework.security.core.userdetails.User
 
getAuthorities() - Method in interface org.springframework.security.core.userdetails.UserDetails
Returns the authorities granted to the user.
getAuthorities() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
getAuthorities() - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
 
getAuthoritiesByUsernameQuery() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
getAuthoritiesPopulator() - Method in class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
 
getAuthority() - Method in class org.springframework.security.authentication.jaas.JaasGrantedAuthority
 
getAuthority() - Method in class org.springframework.security.core.authority.GrantedAuthorityImpl
Deprecated.
 
getAuthority() - Method in class org.springframework.security.core.authority.SimpleGrantedAuthority
 
getAuthority() - Method in interface org.springframework.security.core.GrantedAuthority
If the GrantedAuthority can be represented as a String and that String is sufficient in precision to be relied upon for an access control decision by an AccessDecisionManager (or delegate), this method should return such a String.
getAuthority() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
 
getBeanClassName(Element) - Method in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
 
getBeanClassName(Element) - Method in class org.springframework.security.config.authentication.JdbcUserServiceBeanDefinitionParser
 
getBeanClassName(Element) - Method in class org.springframework.security.config.authentication.UserServiceBeanDefinitionParser
 
getBeanClassName(Element) - Method in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
getByTicketId(String) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
getByTicketId(String) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
 
getByTicketId(String) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
Retrieves the CasAuthenticationToken associated with the specified ticket.
getCache() - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
getCache() - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
getCarLicense() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getChain() - Method in class org.springframework.security.web.FilterInvocation
 
getChannelDecisionManager() - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
 
getChannelProcessors() - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
 
getCn() - Method in class org.springframework.security.ldap.userdetails.Person
 
getComment() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getConfigAttributes() - Method in class org.springframework.security.access.event.AuthenticationCredentialsNotFoundEvent
 
getConfigAttributes() - Method in class org.springframework.security.access.event.AuthorizationFailureEvent
 
getConfigAttributes() - Method in class org.springframework.security.access.event.AuthorizedEvent
 
getConfiguration() - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
 
getContext() - Method in class org.springframework.security.authentication.AuthenticationDetails
Deprecated.
Indicates the context.
getContext() - Static method in class org.springframework.security.core.context.SecurityContextHolder
Obtain the current SecurityContext.
getContext() - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
Obtains the current context.
getContext(String, String) - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyAwareContextSource
 
getContext(PageContext) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
Allows test cases to override where application context obtained from.
getContextHolderStrategy() - Static method in class org.springframework.security.core.context.SecurityContextHolder
Allows retrieval of the context strategy.
getContextPath() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getContextSource() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
 
getContextSource() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
 
getControlInstance(Control) - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControlFactory
Creates an instance of PasswordPolicyResponseControl if the passed control is a response control of this type.
getCookie() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getCookieName() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
getCookies() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getCookies() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getCount() - Method in class org.springframework.security.openid.OpenIDAttribute
The requested count for the attribute when it is used as part of an authentication request.
getCredentials() - Method in class org.springframework.security.access.intercept.RunAsUserToken
 
getCredentials() - Method in class org.springframework.security.authentication.AnonymousAuthenticationToken
Always returns an empty String
getCredentials() - Method in class org.springframework.security.authentication.RememberMeAuthenticationToken
Always returns an empty String
getCredentials() - Method in class org.springframework.security.authentication.TestingAuthenticationToken
 
getCredentials() - Method in class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
 
getCredentials() - Method in class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
 
getCredentials() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
 
getCredentials() - Method in interface org.springframework.security.core.Authentication
The credentials that prove the principal is correct.
getCredentials() - Method in class org.springframework.security.ldap.authentication.SpringSecurityAuthenticationSource
 
getCredentials() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
Returns 'null' always, as no credentials are processed by the OpenID provider.
getCredentials() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
Get the credentials
getCredentialsCharset(HttpServletRequest) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
getCredentialsNotFoundException() - Method in class org.springframework.security.access.event.AuthenticationCredentialsNotFoundEvent
 
getCtx() - Method in interface org.springframework.security.remoting.dns.InitialContextFactory
Must return a DirContext which can be used for DNS queries
getCurrentDate() - Static method in class org.springframework.security.web.savedrequest.FastHttpDateFormat
Gets the current date in HTTP format.
getDataCode() - Method in exception org.springframework.security.ldap.authentication.ad.ActiveDirectoryAuthenticationException
 
getDate() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
 
getDecisionVoters() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
getDefaultMessage() - Method in enum org.springframework.security.ldap.ppolicy.PasswordPolicyErrorStatus
 
getDefaultTargetUrl() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
Supplies the default target Url that will be used if no saved request is found or the alwaysUseDefaultTargetUrl property is set to true.
getDepartmentNumber() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getDescription() - Method in class org.springframework.security.ldap.userdetails.Person
 
getDescription() - Method in class org.springframework.security.util.InMemoryResource
 
getDestinationIndicator() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getDetails() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
getDetails() - Method in interface org.springframework.security.core.Authentication
Stores additional details about the authentication request.
getDisplayName() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getDn() - Method in interface org.springframework.security.ldap.userdetails.LdapUserDetails
The DN of the entry for this user's account.
getDn() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
getDomain() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getDomainObject() - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
 
getDomainObjectInstance(MethodInvocation) - Method in class org.springframework.security.access.vote.AbstractAclVoter
 
getEmployeeNumber() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getEnableAuthorities() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
getEnableGroups() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
getEncodedValue() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
Retrieves the ASN.1 BER encoded value of the LDAP control.
getEncodedValue() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Returns the unchanged value of the response control.
getEncodeHashAsBase64() - Method in class org.springframework.security.authentication.encoding.BaseDigestPasswordEncoder
 
getEncodeServiceUrlWithSessionId() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
Deprecated.
since 3.0.0 because CAS is currently on 3.3.5.
getEntries() - Method in class org.springframework.security.acls.domain.AclImpl
 
getEntries() - Method in interface org.springframework.security.acls.model.Acl
Returns all of the entries represented by the present Acl.
getEntryPoint() - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
getEntryPoint() - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
 
getErrorCode() - Method in enum org.springframework.security.ldap.ppolicy.PasswordPolicyErrorStatus
 
getErrorStatus() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
 
getException() - Method in class org.springframework.security.authentication.event.AbstractAuthenticationFailureEvent
 
getException() - Method in class org.springframework.security.authentication.jaas.event.JaasAuthenticationFailedEvent
 
getExpressionParser() - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
getExpressionParser() - Method in interface org.springframework.security.access.expression.SecurityExpressionHandler
 
getExtendedInformation() - Method in class org.springframework.security.core.token.DefaultToken
 
getExtendedInformation() - Method in interface org.springframework.security.core.token.Token
Obtains the extended information associated within the token, which was presented when the token was first created.
getExtraInformation() - Method in exception org.springframework.security.core.AuthenticationException
Deprecated.
Use the exception message or use a custom exception if you really need additional information.
getFailureHandler() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
getField(Class<?>, String) - Static method in class org.springframework.security.util.FieldUtils
Attempts to locate the specified field on the class.
getFieldValue(Object, String) - Static method in class org.springframework.security.util.FieldUtils
Returns the value of a (nested) field on a bean.
getFilterChainMap() - Method in class org.springframework.security.web.FilterChainProxy
Deprecated.
use the list of SecurityFilterChains instead
getFilterChains() - Method in class org.springframework.security.web.FilterChainProxy
 
getFilterObject() - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
 
getFilterProcessesUrl() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
getFilterProcessesUrl() - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
 
getFilters() - Method in class org.springframework.security.web.DefaultSecurityFilterChain
 
getFilters(String) - Method in class org.springframework.security.web.FilterChainProxy
Convenience method, mainly for testing.
getFilters() - Method in interface org.springframework.security.web.SecurityFilterChain
 
getFirewalledRequest(HttpServletRequest) - Method in class org.springframework.security.web.firewall.DefaultHttpFirewall
 
getFirewalledRequest(HttpServletRequest) - Method in interface org.springframework.security.web.firewall.HttpFirewall
Provides the request object which will be passed through the filter chain.
getFirewalledResponse(HttpServletResponse) - Method in class org.springframework.security.web.firewall.DefaultHttpFirewall
 
getFirewalledResponse(HttpServletResponse) - Method in interface org.springframework.security.web.firewall.HttpFirewall
Provides the response which will be passed through the filter chain.
getFirstThrowableOfType(Class<? extends Throwable>, Throwable[]) - Method in class org.springframework.security.web.util.ThrowableAnalyzer
Returns the first throwable from the passed in array that is assignable to the provided type.
getFromCache(ObjectIdentity) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
 
getFromCache(Serializable) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
 
getFromCache(ObjectIdentity) - Method in interface org.springframework.security.acls.model.AclCache
 
getFromCache(Serializable) - Method in interface org.springframework.security.acls.model.AclCache
 
getFullDn(DistinguishedName, Context) - Static method in class org.springframework.security.ldap.LdapUtils
Gets the full dn of a name by prepending the name of the context it is relative to.
getFullRequestUrl() - Method in class org.springframework.security.web.FilterInvocation
Indicates the URL that the user agent used for this request.
getGeneratedBy() - Method in class org.springframework.security.authentication.event.InteractiveAuthenticationSuccessEvent
Getter for the Class that generated this event.
getGraceLoginsRemaining() - Method in interface org.springframework.security.ldap.ppolicy.PasswordPolicyData
 
getGraceLoginsRemaining() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Returns the graceLoginsRemaining.
getGraceLoginsRemaining() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
getGrantedAuthorities() - Method in interface org.springframework.security.core.authority.GrantedAuthoritiesContainer
 
getGrantedAuthorities() - Method in class org.springframework.security.core.authority.GrantedAuthoritiesContainerImpl
Deprecated.
 
getGrantedAuthorities(Collection<String>) - Method in interface org.springframework.security.core.authority.mapping.Attributes2GrantedAuthoritiesMapper
Implementations of this method should map the given collection of attributes to a collection of Spring Security GrantedAuthorities.
getGrantedAuthorities(Collection<String>) - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
Map the given array of attributes to Spring Security GrantedAuthorities.
getGrantedAuthorities(Collection<String>) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
Map the given list of string attributes one-to-one to Spring Security GrantedAuthorities.
getGrantedAuthorities(DirContextOperations, String) - Method in class org.springframework.security.ldap.authentication.NullLdapAuthoritiesPopulator
 
getGrantedAuthorities(DirContextOperations, String) - Method in class org.springframework.security.ldap.authentication.UserDetailsServiceLdapAuthoritiesPopulator
 
getGrantedAuthorities(DirContextOperations, String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
Obtains the authorities for the user who's directory entry is represented by the supplied LdapUserDetails object.
getGrantedAuthorities(DirContextOperations, String) - Method in interface org.springframework.security.ldap.userdetails.LdapAuthoritiesPopulator
Get the list of authorities for the user.
getGrantedAuthorities() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
getGrantedAuthorities() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesAuthenticationDetails
Deprecated.
 
getGrantedAuthorities() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails
 
getGrantedAuthority() - Method in class org.springframework.security.acls.domain.GrantedAuthoritySid
 
getGroupMembershipRoles(String, String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
 
getGroupSearchBase() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
 
getHasPermission() - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
 
getHeaderNames() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getHeaderNames() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getHeaderValues(String) - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getHeaderValues(String) - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getHomePhone() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getHomePostalAddress() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getHttpRequest() - Method in class org.springframework.security.web.FilterInvocation
 
getHttpResponse() - Method in class org.springframework.security.web.FilterInvocation
 
getId() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
getId() - Method in class org.springframework.security.acls.domain.AclImpl
 
getId() - Method in interface org.springframework.security.acls.model.AccessControlEntry
Obtains an identifier that represents this ACE.
getId() - Method in interface org.springframework.security.acls.model.MutableAcl
Obtains an identifier that represents this MutableAcl.
getId() - Method in class org.springframework.security.core.session.SessionDestroyedEvent
 
getID() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
Returns the OID of the Password Policy Control ("1.3.6.1.4.1.42.2.27.8.5.1").
getId() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
getId() - Method in class org.springframework.security.web.session.HttpSessionDestroyedEvent
 
getIdentifier() - Method in class org.springframework.security.acls.domain.ObjectIdentityImpl
 
getIdentifier() - Method in interface org.springframework.security.acls.model.ObjectIdentity
Obtains the actual identifier.
getIdentityUrl() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
 
getIfAllGranted() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
getIfAnyGranted() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
getIfNotGranted() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
getInitializeCount() - Static method in class org.springframework.security.core.context.SecurityContextHolder
Primarily for troubleshooting purposes, this method shows how many times the class has re-initialized its SecurityContextHolderStrategy.
getInitials() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getInputStream() - Method in class org.springframework.security.util.InMemoryResource
 
getInsecureKeyword() - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
getInstance() - Static method in class org.springframework.security.crypto.password.NoOpPasswordEncoder
Get the singleton NoOpPasswordEncoder.
getInternalMethod() - Method in class org.springframework.security.acls.AclEntryVoter
Optionally specifies a method of the domain object that will be used to obtain a contained domain object.
getKey() - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
getKey() - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
 
getKey() - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
 
getKey() - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
 
getKey() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
getKey() - Method in class org.springframework.security.core.token.DefaultToken
 
getKey() - Method in interface org.springframework.security.core.token.Token
Obtains the randomised, secure key assigned to this token.
getKey() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
getKey() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
getKeyCreationTime() - Method in class org.springframework.security.core.token.DefaultToken
 
getKeyCreationTime() - Method in interface org.springframework.security.core.token.Token
The time the token key was initially created is available from this method.
getKeyHash() - Method in class org.springframework.security.access.intercept.RunAsUserToken
 
getKeyHash() - Method in class org.springframework.security.authentication.AnonymousAuthenticationToken
 
getKeyHash() - Method in class org.springframework.security.authentication.RememberMeAuthenticationToken
 
getKeyHash() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
 
getKeyLength() - Method in interface org.springframework.security.crypto.keygen.BytesKeyGenerator
Get the length, in bytes, of keys created by this generator.
getLastRequest() - Method in class org.springframework.security.core.session.SessionInformation
 
getLocales() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getLocales() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getLoginConfig() - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
 
getLoginContext() - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationToken
 
getLoginFormUrl() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
getLoginUrl() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
The enterprise-wide CAS login URL.
getMail() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getMappableAttributes() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
 
getMappableAttributes() - Method in interface org.springframework.security.core.authority.mapping.MappableAttributesRetriever
Implementations of this method should return a set of all string attributes which can be mapped to GrantedAuthoritys.
getMappableAttributes() - Method in class org.springframework.security.core.authority.mapping.SimpleMappableAttributesRetriever
 
getMappableAttributes() - Method in class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
 
getMappedPort(Integer) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
getMappedPort(Integer) - Method in class org.springframework.security.web.access.channel.RetryWithHttpEntryPoint
 
getMappedPort(Integer) - Method in class org.springframework.security.web.access.channel.RetryWithHttpsEntryPoint
 
getMask() - Method in class org.springframework.security.acls.domain.AbstractPermission
 
getMask() - Method in interface org.springframework.security.acls.model.Permission
Returns the bits that represents the permission.
getMatchingRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
 
getMatchingRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
 
getMatchingRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
Returns a wrapper around the saved request, if it matches the current request.
getMaxAge() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getMaximumSessionsForThisUser(Authentication) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
Method intended for use by subclasses to override the maximum number of sessions that are permitted for a particular authentication.
getMessage() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
 
getMessageDigest() - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
Get a MessageDigest instance for the given algorithm.
getMethod() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
 
getMethod() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
getMethod() - Method in class org.springframework.security.util.SimpleMethodInvocation
 
getMethod() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getMethod() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getMethodMapSize() - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
 
getMethodSecurityMetadataSources() - Method in class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
 
getMobile() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getName() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
getName() - Method in class org.springframework.security.openid.OpenIDAttribute
The attribute name
getName() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getNonceValiditySeconds() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
getO() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getObject() - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
 
getObject() - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
 
getObjectIdentity() - Method in class org.springframework.security.acls.domain.AclImpl
 
getObjectIdentity(Object) - Method in class org.springframework.security.acls.domain.ObjectIdentityRetrievalStrategyImpl
 
getObjectIdentity() - Method in interface org.springframework.security.acls.model.Acl
Obtains the domain object this Acl provides entries for.
getObjectIdentity(Object) - Method in interface org.springframework.security.acls.model.ObjectIdentityRetrievalStrategy
 
getObjectType() - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
 
getObjectType() - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
 
getOrder() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
 
getOrder() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
getOriginalAuthentication() - Method in class org.springframework.security.access.intercept.RunAsUserToken
 
getOu() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getOutputStream() - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Makes sure the context is stored before calling getOutputStream().close() or getOutputStream().flush()
getOwner() - Method in class org.springframework.security.acls.domain.AclImpl
 
getOwner() - Method in interface org.springframework.security.acls.model.Acl
Determines the owner of the Acl.
getParameter() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
getParameterMap() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getParameterMap() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getParameterNames() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getParameterValues(String) - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getParameterValues(String) - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getParent() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
getParentAcl() - Method in class org.springframework.security.acls.domain.AclImpl
 
getParentAcl() - Method in interface org.springframework.security.acls.model.Acl
A domain object may have a parent for the purpose of ACL inheritance.
getPassword() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
getPassword() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
 
getPassword() - Method in class org.springframework.security.core.userdetails.User
 
getPassword() - Method in interface org.springframework.security.core.userdetails.UserDetails
Returns the password used to authenticate the user.
getPassword() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
getPasswordEncoder() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
getPasswordEncoder() - Method in class org.springframework.security.config.authentication.PasswordEncoderParser
 
getPasswordParameter() - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
 
getPath() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getPathInfo() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getPattern() - Method in class org.springframework.security.acls.domain.AbstractPermission
 
getPattern() - Method in class org.springframework.security.acls.domain.CumulativePermission
 
getPattern() - Method in interface org.springframework.security.acls.model.Permission
Returns a 32-character long bit pattern String representing this permission.
getPattern() - Method in class org.springframework.security.web.util.AntPathRequestMatcher
 
getPermission() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
getPermission() - Method in interface org.springframework.security.acls.model.AccessControlEntry
 
getPermissionEvaluator() - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
getPointcut() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityMetadataSourceAdvisor
 
getPortMapper() - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
getPortMapper() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
getPortMapper() - Method in class org.springframework.security.web.PortResolverImpl
 
getPortResolver() - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
getPortResolver() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
getPostalAddress() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getPostalCode() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getPostAuthenticationChecks() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
Override to extract the credentials (if applicable) from the current request.
getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eePreAuthenticatedProcessingFilter
For J2EE container-based authentication there is no generic way to retrieve the credentials, as such this method returns a fixed dummy value.
getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
Credentials aren't usually applicable, but if a credentialsRequestHeader is set, this will be read and used as the credentials value.
getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedProcessingFilter
For J2EE container-based authentication there is no generic way to retrieve the credentials, as such this method returns a fixed dummy value.
getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.x509.X509AuthenticationFilter
 
getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
Override to extract the principal information from the current request
getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eePreAuthenticatedProcessingFilter
Return the J2EE user name.
getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
Read and returns the header named by principalRequestHeader from the request.
getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedProcessingFilter
Return the WebSphere user name.
getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.x509.X509AuthenticationFilter
 
getPreAuthenticationChecks() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
getPrincipal() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
getPrincipal() - Method in class org.springframework.security.access.intercept.RunAsUserToken
 
getPrincipal() - Method in class org.springframework.security.acls.domain.PrincipalSid
 
getPrincipal() - Method in class org.springframework.security.authentication.AnonymousAuthenticationToken
 
getPrincipal() - Method in class org.springframework.security.authentication.jaas.JaasGrantedAuthority
 
getPrincipal() - Method in class org.springframework.security.authentication.RememberMeAuthenticationToken
 
getPrincipal() - Method in class org.springframework.security.authentication.TestingAuthenticationToken
 
getPrincipal() - Method in class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
 
getPrincipal() - Method in class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
 
getPrincipal() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
 
getPrincipal() - Method in interface org.springframework.security.core.Authentication
The identity of the principal being authenticated.
getPrincipal() - Method in class org.springframework.security.core.session.SessionInformation
 
getPrincipal() - Method in class org.springframework.security.ldap.authentication.SpringSecurityAuthenticationSource
Get the principals of the logged in user, in this case the distinguished name.
getPrincipal() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
Returns the principal value.
getPrincipal() - Method in interface org.springframework.security.taglibs.velocity.Authz
return the principal's name, supports the various type of principals that can exist in the Authentication object, such as a String or UserDetails instance
getPrincipal() - Method in class org.springframework.security.taglibs.velocity.AuthzImpl
implementation of AuthenticationTag
getPrincipal() - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
 
getPrincipal() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
Get the principal
getProcessConfigAttribute() - Method in class org.springframework.security.acls.AclEntryVoter
 
getProcessDomainObjectClass() - Method in class org.springframework.security.access.vote.AbstractAclVoter
 
getProcessDomainObjectClass() - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
getProtectedFieldValue(String, Object) - Static method in class org.springframework.security.util.FieldUtils
 
getProviders() - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
 
getProviders() - Method in class org.springframework.security.authentication.ProviderManager
 
getQueryString() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getReachableGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.access.hierarchicalroles.NullRoleHierarchy
 
getReachableGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in interface org.springframework.security.access.hierarchicalroles.RoleHierarchy
Returns an array of all reachable authorities.
getReachableGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl
 
getRealmName() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
 
getRealmName() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
getRedirectStrategy() - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
getRedirectStrategy() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
 
getRedirectStrategy() - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
 
getRedirectUrl() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
Indicates the URL that the user agent used for this request.
getRedirectUrl() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
 
getRelativeName(String, Context) - Static method in class org.springframework.security.ldap.LdapUtils
Obtains the part of a DN relative to a supplied base context.
getRememberMeServices() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
getRememberMeServices() - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
 
getRemoteAddress() - Method in class org.springframework.security.web.authentication.WebAuthenticationDetails
Indicates the TCP/IP address the authentication request was received from.
getRemoteAuthenticationManager() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
 
getRemoteUser() - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
Returns the principal's name, as obtained from the SecurityContextHolder.
getRequest() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
This method allows subclasses to provide a way to access the ServletRequest according to the rendering technology.
getRequest() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
getRequest() - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
 
getRequest() - Method in class org.springframework.security.web.FilterInvocation
 
getRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
 
getRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
 
getRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
Returns the saved request, leaving it cached.
getRequestMatcher() - Method in class org.springframework.security.web.DefaultSecurityFilterChain
 
getRequestURI() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getRequestUrl() - Method in class org.springframework.security.web.FilterInvocation
Obtains the web application-specific fragment of the URL.
getRequestURL() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getResponse() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
This method allows subclasses to provide a way to access the ServletResponse according to the rendering technology.
getResponse() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
getResponse() - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
 
getResponse() - Method in class org.springframework.security.web.FilterInvocation
 
getReturnObject() - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
 
getRoleHierarchy() - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
getRolePrefix() - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
 
getRolePrefix() - Method in class org.springframework.security.access.vote.RoleVoter
 
getRolePrefix() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
getRoomNumber() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getRunAsManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
getSalt(UserDetails) - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
Performs reflection on the passed User to obtain the salt.
getSalt(UserDetails) - Method in interface org.springframework.security.authentication.dao.SaltSource
Returns the salt to use for the indicated user.
getSalt(UserDetails) - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
 
getSaltSource() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
getSaltSource() - Method in class org.springframework.security.config.authentication.PasswordEncoderParser
 
getScheme() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getSecuredUiPrefix() - Static method in class org.springframework.security.taglibs.TagLibConfig
 
getSecuredUiSuffix() - Static method in class org.springframework.security.taglibs.TagLibConfig
 
getSecureKeyword() - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
 
getSecureObject() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
 
getSecureObjectClass() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
Indicates the type of secure objects the subclass will be presenting to the abstract parent for processing.
getSecureObjectClass() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
 
getSecureObjectClass() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
 
getSecurityContext() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
 
getSecurityContexts() - Method in class org.springframework.security.core.session.SessionDestroyedEvent
Provides the SecurityContext instances which were associated with the destroyed session.
getSecurityContexts() - Method in class org.springframework.security.web.session.HttpSessionDestroyedEvent
 
getSecurityMetadataSource() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
 
getSecurityMetadataSource() - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
 
getSecurityMetadataSource() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
 
getSeries() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
 
getServerName() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getServerPort(ServletRequest) - Method in interface org.springframework.security.web.PortResolver
Indicates the port the ServletRequest was received on.
getServerPort(ServletRequest) - Method in class org.springframework.security.web.PortResolverImpl
 
getServerPort() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getService() - Method in class org.springframework.security.cas.ServiceProperties
Represents the service the user is authenticating to.
getService() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
getServiceParameter() - Method in class org.springframework.security.cas.ServiceProperties
Configures the Request parameter to look for when attempting to send a request to CAS.
getServiceProperties() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
 
getServiceUrl() - Method in interface org.springframework.security.cas.web.authentication.ServiceAuthenticationDetails
Gets the absolute service url (i.e.
getServletContext() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
This method allows subclasses to provide a way to access the ServletContext according to the rendering technology.
getServletContext() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
getServletPath() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
getSession() - Method in class org.springframework.security.web.session.HttpSessionCreatedEvent
 
getSession() - Method in class org.springframework.security.web.session.HttpSessionDestroyedEvent
 
getSessionId() - Method in interface org.springframework.security.core.session.SessionIdentifierAware
Deprecated.
Obtains the session ID.
getSessionId() - Method in class org.springframework.security.core.session.SessionInformation
 
getSessionId() - Method in class org.springframework.security.web.authentication.WebAuthenticationDetails
Indicates the HttpSession id the authentication request was received from.
getSessionInformation(String) - Method in interface org.springframework.security.core.session.SessionRegistry
Obtains the session information for the specified sessionId.
getSessionInformation(String) - Method in class org.springframework.security.core.session.SessionRegistryImpl
 
getSid() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
getSid() - Method in interface org.springframework.security.acls.model.AccessControlEntry
 
getSids(Authentication) - Method in class org.springframework.security.acls.domain.SidRetrievalStrategyImpl
 
getSids(Authentication) - Method in interface org.springframework.security.acls.model.SidRetrievalStrategy
 
getSn() - Method in class org.springframework.security.ldap.userdetails.Person
 
getSource() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
Returns the original user associated with a successful user switch.
getStatelessTicketCache() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
getStaticPart() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
 
getStaticPart() - Method in class org.springframework.security.util.SimpleMethodInvocation
 
getStatus() - Method in exception org.springframework.security.ldap.ppolicy.PasswordPolicyException
 
getStatus() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
 
getStreet() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getStringSeparator() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
 
getSuccessHandler() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
getSystemWideSalt() - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
 
getTargetUrlParameter() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
 
getTargetUser() - Method in class org.springframework.security.web.authentication.switchuser.AuthenticationSwitchUserEvent
 
getTelephoneNumber() - Method in class org.springframework.security.ldap.userdetails.Person
 
getThis() - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
 
getThis() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
 
getThis() - Method in class org.springframework.security.util.SimpleMethodInvocation
 
getTicketValidator() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
getTimeBeforeExpiration() - Method in interface org.springframework.security.ldap.ppolicy.PasswordPolicyData
 
getTimeBeforeExpiration() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Returns the timeBeforeExpiration.
getTimeBeforeExpiration() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
getTitle() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getTokenForSeries(String) - Method in class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
 
getTokenForSeries(String) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
Loads the token data for the supplied series identifier.
getTokenForSeries(String) - Method in interface org.springframework.security.web.authentication.rememberme.PersistentTokenRepository
 
getTokenValiditySeconds() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
getTokenValue() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
 
getTranslatedPortMappings() - Method in class org.springframework.security.web.PortMapperImpl
Returns the translated (Integer -> Integer) version of the original port mapping specified via setHttpsPortMapping()
getType() - Method in class org.springframework.security.acls.domain.ObjectIdentityImpl
 
getType() - Method in interface org.springframework.security.acls.model.ObjectIdentity
Obtains the "type" metadata for the domain object.
getType() - Method in class org.springframework.security.openid.OpenIDAttribute
The attribute type Identifier (a URI).
getUid() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
getUnwrappedUserDetails() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
getUrl() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
getUrl() - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
getUser(String) - Method in class org.springframework.security.core.userdetails.memory.UserMap
Deprecated.
Locates the specified user by performing a case insensitive search by username.
getUserAttributes() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
 
getUserCache() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
getUserCache() - Method in class org.springframework.security.config.authentication.CachingUserDetailsService
 
getUserCache() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
getUserCount() - Method in class org.springframework.security.core.userdetails.memory.UserMap
Deprecated.
Indicates the size of the user map.
getUserDetails() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
 
getUserDetailsContextMapper() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
Provides access to the injected UserDetailsContextMapper strategy for use by subclasses.
getUserDetailsService() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
getUserDetailsService() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
getUserDetailsService() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
getUserDns(String) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
Builds list of possible DNs for the user, worked out from the userDnPatterns property.
getUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
getUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.NullUserCache
 
getUserFromCache(String) - Method in interface org.springframework.security.core.userdetails.UserCache
Obtains a UserDetails from the cache.
getUserMap() - Method in class org.springframework.security.core.userdetails.memory.InMemoryDaoImpl
Deprecated.
 
getUsername() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
getUsername() - Method in class org.springframework.security.core.userdetails.User
 
getUsername() - Method in interface org.springframework.security.core.userdetails.UserDetails
Returns the username used to authenticate the user.
getUsername() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
getUsername() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
 
getUsernameParameter() - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
 
getUserPrincipal() - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
Returns the Authentication (which is a subclass of Principal), or null if unavailable.
getUserPropertyToUse() - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
 
getUserRoles(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
Obtains the list of user roles based on the current user's JEE roles.
getUsersByUsernameQuery() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
getUserSearch() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
 
getValue() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getValues() - Method in class org.springframework.security.openid.OpenIDAttribute
The values obtained from an attribute exchange.
getVar() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
getVersion() - Static method in class org.springframework.security.core.SpringSecurityCoreVersion
 
getVersion() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
getWrappedUserDetailsService() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsServiceWrapper
Deprecated.
 
getWriter() - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Makes sure the context is stored before calling getWriter().close() or getWriter().flush()
GLOBAL_METHOD_SECURITY - Static variable in class org.springframework.security.config.Elements
 
GlobalMethodSecurityBeanDefinitionParser - Class in org.springframework.security.config.method
Processes the top-level "global-method-security" element.
GlobalMethodSecurityBeanDefinitionParser() - Constructor for class org.springframework.security.config.method.GlobalMethodSecurityBeanDefinitionParser
 
gmtZone - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
GMT time zone - all HTTP dates are on GMT
grant(Principal) - Method in interface org.springframework.security.authentication.jaas.AuthorityGranter
The grant method is called for each principal returned from the LoginContext subject.
GrantedAuthoritiesContainer - Interface in org.springframework.security.core.authority
Indicates that a object stores GrantedAuthority objects.
GrantedAuthoritiesContainerImpl - Class in org.springframework.security.core.authority
Deprecated.
GrantedAuthoritiesContainerImpl() - Constructor for class org.springframework.security.core.authority.GrantedAuthoritiesContainerImpl
Deprecated.
 
GrantedAuthoritiesMapper - Interface in org.springframework.security.core.authority.mapping
Mapping interface which can be injected into the authentication layer to convert the authorities loaded from storage into those which will be used in the Authentication object.
GrantedAuthority - Interface in org.springframework.security.core
Represents an authority granted to an Authentication object.
GrantedAuthorityFromAssertionAttributesUserDetailsService - Class in org.springframework.security.cas.userdetails
Populates the GrantedAuthoritys for a user by reading a list of attributes that were returned as part of the CAS response.
GrantedAuthorityFromAssertionAttributesUserDetailsService(String[]) - Constructor for class org.springframework.security.cas.userdetails.GrantedAuthorityFromAssertionAttributesUserDetailsService
 
GrantedAuthorityImpl - Class in org.springframework.security.core.authority
Deprecated.
Use the final class SimpleGrantedAuthority or implement your own.
GrantedAuthorityImpl(String) - Constructor for class org.springframework.security.core.authority.GrantedAuthorityImpl
Deprecated.
 
GrantedAuthoritySid - Class in org.springframework.security.acls.domain
Represents a GrantedAuthority as a Sid.
GrantedAuthoritySid(String) - Constructor for class org.springframework.security.acls.domain.GrantedAuthoritySid
 
GrantedAuthoritySid(GrantedAuthority) - Constructor for class org.springframework.security.acls.domain.GrantedAuthoritySid
 
GroupManager - Interface in org.springframework.security.provisioning
Allows management of groups of authorities and their members.

H

handle(Callback, Authentication) - Method in interface org.springframework.security.authentication.jaas.JaasAuthenticationCallbackHandler
Handle the Callback.
handle(Callback, Authentication) - Method in class org.springframework.security.authentication.jaas.JaasNameCallbackHandler
If the callback passed to the 'handle' method is an instance of NameCallback, the JaasNameCallbackHandler will call, callback.setName(authentication.getPrincipal().toString()).
handle(Callback, Authentication) - Method in class org.springframework.security.authentication.jaas.JaasPasswordCallbackHandler
If the callback passed to the 'handle' method is an instance of PasswordCallback, the JaasPasswordCallbackHandler will call, callback.setPassword(authentication.getCredentials().toString()).
handle(HttpServletRequest, HttpServletResponse, AccessDeniedException) - Method in interface org.springframework.security.web.access.AccessDeniedHandler
Handles an access denied failure.
handle(HttpServletRequest, HttpServletResponse, AccessDeniedException) - Method in class org.springframework.security.web.access.AccessDeniedHandlerImpl
 
handle(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
Invokes the configured RedirectStrategy with the URL returned by the determineTargetUrl method.
handleBindException(String, String, Throwable) - Method in class org.springframework.security.ldap.authentication.BindAuthenticator
Allows subclasses to inspect the exception thrown by an attempt to bind with a particular DN.
handleLogout(SessionDestroyedEvent) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
Handles the logout by getting the security contexts for the destroyed session and invoking LoginContext.logout() for any which contain a JaasAuthenticationToken.
hasAnyAuthority(String...) - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
hasAnyAuthority(String...) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
hasAnyRole(String...) - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
hasAnyRole(String...) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
hasAuthority(String) - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
hasAuthority(String) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
hasError() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Checks whether an error is present.
hashCode() - Method in class org.springframework.security.access.SecurityConfig
 
hashCode() - Method in class org.springframework.security.acls.domain.AbstractPermission
 
hashCode() - Method in class org.springframework.security.acls.domain.GrantedAuthoritySid
 
hashCode() - Method in class org.springframework.security.acls.domain.ObjectIdentityImpl
Important so caching operates properly.
hashCode() - Method in class org.springframework.security.acls.domain.PrincipalSid
 
hashCode() - Method in interface org.springframework.security.acls.model.ObjectIdentity
 
hashCode() - Method in interface org.springframework.security.acls.model.Sid
Refer to the java.lang.Object documentation for the interface contract.
hashCode() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
hashCode() - Method in class org.springframework.security.authentication.jaas.JaasGrantedAuthority
 
hashCode() - Method in class org.springframework.security.core.authority.GrantedAuthorityImpl
Deprecated.
 
hashCode() - Method in class org.springframework.security.core.authority.SimpleGrantedAuthority
 
hashCode() - Method in class org.springframework.security.core.context.SecurityContextImpl
 
hashCode() - Method in class org.springframework.security.core.token.DefaultToken
 
hashCode() - Method in class org.springframework.security.core.userdetails.User
Returns the hashcode of the username.
hashCode() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
hashCode() - Method in class org.springframework.security.util.InMemoryResource
 
hashCode() - Method in class org.springframework.security.web.access.intercept.RequestKey
 
hashCode() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
 
hashCode() - Method in class org.springframework.security.web.authentication.WebAuthenticationDetails
 
hashCode() - Method in class org.springframework.security.web.util.AntPathRequestMatcher
 
hashCode() - Method in class org.springframework.security.web.util.AnyRequestMatcher
 
hashpw(String, String) - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
Hash a password using the OpenBSD bcrypt scheme
hasIpAddress(String) - Method in class org.springframework.security.web.access.expression.WebSecurityExpressionRoot
Takes a specific IP address or a range using the IP/Netmask (e.g.
hasMoreElements() - Method in class org.springframework.security.web.savedrequest.Enumerator
Tests if this enumeration contains more elements.
hasPermission(Authentication, Object, Object) - Method in class org.springframework.security.access.expression.DenyAllPermissionEvaluator
 
hasPermission(Authentication, Serializable, String, Object) - Method in class org.springframework.security.access.expression.DenyAllPermissionEvaluator
 
hasPermission(Object, Object) - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
hasPermission(Object, String, Object) - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
hasPermission(Object, Object) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
hasPermission(Object, String, Object) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
hasPermission(Authentication, Object, Object) - Method in interface org.springframework.security.access.PermissionEvaluator
 
hasPermission(Authentication, Serializable, String, Object) - Method in interface org.springframework.security.access.PermissionEvaluator
Alternative method for evaluating a permission where only the identifier of the target object is available, rather than the target instance itself.
hasPermission(Authentication, Object, Object) - Method in class org.springframework.security.acls.AclPermissionEvaluator
Determines whether the user has the given permission(s) on the domain object using the ACL configuration.
hasPermission(Authentication, Serializable, String, Object) - Method in class org.springframework.security.acls.AclPermissionEvaluator
 
hasPermission(Authentication, Object) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
hasRole(String) - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
hasRole(String) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
hasWarning() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Checks whether a warning is present.
Hex - Class in org.springframework.security.crypto.codec
Hex data encoder.
Hex() - Constructor for class org.springframework.security.crypto.codec.Hex
 
hideUserNotFoundExceptions - Variable in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
HTTP - Static variable in class org.springframework.security.config.Elements
 
Http403ForbiddenEntryPoint - Class in org.springframework.security.web.authentication
In the pre-authenticated authentication case (unlike CAS, for example) the user will already have been identified through some external mechanism and a secure context established by the time the security-enforcement filter is invoked.
Http403ForbiddenEntryPoint() - Constructor for class org.springframework.security.web.authentication.Http403ForbiddenEntryPoint
 
HTTP_FIREWALL - Static variable in class org.springframework.security.config.Elements
 
HttpFirewall - Interface in org.springframework.security.web.firewall
Interface which can be used to reject potentially dangerous requests and/or wrap them to control their behaviour.
HttpFirewallBeanDefinitionParser - Class in org.springframework.security.config.http
Injects the supplied HttpFirewall bean reference into the FilterChainProxy.
HttpFirewallBeanDefinitionParser() - Constructor for class org.springframework.security.config.http.HttpFirewallBeanDefinitionParser
 
HttpRequestResponseHolder - Class in org.springframework.security.web.context
Used to pass the incoming request to SecurityContextRepository.loadContext(HttpRequestResponseHolder), allowing the method to swap the request for a wrapped version, as well as returning the SecurityContext value.
HttpRequestResponseHolder(HttpServletRequest, HttpServletResponse) - Constructor for class org.springframework.security.web.context.HttpRequestResponseHolder
 
HttpSecurityBeanDefinitionParser - Class in org.springframework.security.config.http
Sets up HTTP security: filter stack and protected URLs.
HttpSecurityBeanDefinitionParser() - Constructor for class org.springframework.security.config.http.HttpSecurityBeanDefinitionParser
 
HttpSessionCreatedEvent - Class in org.springframework.security.web.session
Published by the HttpSessionEventPublisher when an HttpSession is created by the container
HttpSessionCreatedEvent(HttpSession) - Constructor for class org.springframework.security.web.session.HttpSessionCreatedEvent
 
HttpSessionDestroyedEvent - Class in org.springframework.security.web.session
Published by the HttpSessionEventPublisher when a HttpSession is created in the container
HttpSessionDestroyedEvent(HttpSession) - Constructor for class org.springframework.security.web.session.HttpSessionDestroyedEvent
 
HttpSessionEventPublisher - Class in org.springframework.security.web.session
Declared in web.xml as
HttpSessionEventPublisher() - Constructor for class org.springframework.security.web.session.HttpSessionEventPublisher
 
HttpSessionRequestCache - Class in org.springframework.security.web.savedrequest
RequestCache which stores the SavedRequest in the HttpSession.
HttpSessionRequestCache() - Constructor for class org.springframework.security.web.savedrequest.HttpSessionRequestCache
 
HttpSessionSecurityContextRepository - Class in org.springframework.security.web.context
A SecurityContextRepository implementation which stores the security context in the HttpSession between requests.
HttpSessionSecurityContextRepository() - Constructor for class org.springframework.security.web.context.HttpSessionSecurityContextRepository
 

I

id - Variable in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
IdentityUnavailableException - Exception in org.springframework.security.acls.domain
Thrown if an ACL identity could not be extracted from an object.
IdentityUnavailableException(String) - Constructor for exception org.springframework.security.acls.domain.IdentityUnavailableException
Constructs an IdentityUnavailableException with the specified message.
IdentityUnavailableException(String, Throwable) - Constructor for exception org.springframework.security.acls.domain.IdentityUnavailableException
Constructs an IdentityUnavailableException with the specified message and root cause.
INET_ORG_PERSON_MAPPER_CLASS - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
InetOrgPerson - Class in org.springframework.security.ldap.userdetails
UserDetails implementation whose properties are based on a subset of the LDAP schema for inetOrgPerson.
InetOrgPerson() - Constructor for class org.springframework.security.ldap.userdetails.InetOrgPerson
 
InetOrgPerson.Essence - Class in org.springframework.security.ldap.userdetails
 
InetOrgPerson.Essence() - Constructor for class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
InetOrgPerson.Essence(InetOrgPerson) - Constructor for class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
InetOrgPerson.Essence(DirContextOperations) - Constructor for class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
InetOrgPersonContextMapper - Class in org.springframework.security.ldap.userdetails
 
InetOrgPersonContextMapper() - Constructor for class org.springframework.security.ldap.userdetails.InetOrgPersonContextMapper
 
init() - Method in class org.springframework.security.config.SecurityNamespaceHandler
 
init(FilterConfig) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
Not used (we rely on IoC container lifecycle services instead)
initDao() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
initDao() - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
initDao() - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
 
initExtractorMap() - Method in class org.springframework.security.web.util.ThrowableAnalyzer
Initializes associations between Throwables and ThrowableCauseExtractors.
InitialContextFactory - Interface in org.springframework.security.remoting.dns
This is used in JndiDnsResolver to get an InitialDirContext for DNS queries.
initialize(Subject, CallbackHandler, Map, Map) - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
Initialize this LoginModule.
InMemoryConfiguration - Class in org.springframework.security.authentication.jaas.memory
An in memory representation of a JAAS configuration.
InMemoryConfiguration(AppConfigurationEntry[]) - Constructor for class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
Creates a new instance with only a defaultConfiguration.
InMemoryConfiguration(Map<String, AppConfigurationEntry[]>) - Constructor for class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
Creates a new instance with a mapping of login context name to an array of AppConfigurationEntrys.
InMemoryConfiguration(Map<String, AppConfigurationEntry[]>, AppConfigurationEntry[]) - Constructor for class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
Creates a new instance with a mapping of login context name to an array of AppConfigurationEntrys along with a default configuration that will be used if no mapping is found for the given login context name.
InMemoryDaoImpl - Class in org.springframework.security.core.userdetails.memory
Deprecated.
Use InMemoryUserDetailsManager instead (or write your own implementation)
InMemoryDaoImpl() - Constructor for class org.springframework.security.core.userdetails.memory.InMemoryDaoImpl
Deprecated.
 
InMemoryResource - Class in org.springframework.security.util
An in memory implementation of Spring's Resource interface.
InMemoryResource(String) - Constructor for class org.springframework.security.util.InMemoryResource
 
InMemoryResource(byte[]) - Constructor for class org.springframework.security.util.InMemoryResource
 
InMemoryResource(byte[], String) - Constructor for class org.springframework.security.util.InMemoryResource
 
InMemoryTokenRepositoryImpl - Class in org.springframework.security.web.authentication.rememberme
Simple PersistentTokenRepository implementation backed by a Map.
InMemoryTokenRepositoryImpl() - Constructor for class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
 
InMemoryUserDetailsManager - Class in org.springframework.security.provisioning
Non-persistent implementation of UserDetailsManager which is backed by an in-memory map.
InMemoryUserDetailsManager(Collection<UserDetails>) - Constructor for class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
InMemoryUserDetailsManager(Properties) - Constructor for class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
InsecureChannelProcessor - Class in org.springframework.security.web.access.channel
Ensures channel security is inactive by review of HttpServletRequest.isSecure() responses.
InsecureChannelProcessor() - Constructor for class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
insertAce(int, Permission, Sid, boolean) - Method in class org.springframework.security.acls.domain.AclImpl
 
insertAce(int, Permission, Sid, boolean) - Method in interface org.springframework.security.acls.model.MutableAcl
 
instance - Variable in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
InsufficientAuthenticationException - Exception in org.springframework.security.authentication
Thrown if an authentication request is rejected because the credentials are not sufficiently trusted.
InsufficientAuthenticationException(String) - Constructor for exception org.springframework.security.authentication.InsufficientAuthenticationException
Constructs an InsufficientAuthenticationException with the specified message.
InsufficientAuthenticationException(String, Throwable) - Constructor for exception org.springframework.security.authentication.InsufficientAuthenticationException
Constructs an InsufficientAuthenticationException with the specified message and root cause.
InteractiveAuthenticationSuccessEvent - Class in org.springframework.security.authentication.event
Indicates an interactive authentication was successful.
InteractiveAuthenticationSuccessEvent(Authentication, Class<?>) - Constructor for class org.springframework.security.authentication.event.InteractiveAuthenticationSuccessEvent
 
INTERCEPT_METHODS - Static variable in class org.springframework.security.config.Elements
 
INTERCEPT_URL - Static variable in class org.springframework.security.config.Elements
 
InterceptMethodsBeanDefinitionDecorator - Class in org.springframework.security.config.method
 
InterceptMethodsBeanDefinitionDecorator() - Constructor for class org.springframework.security.config.method.InterceptMethodsBeanDefinitionDecorator
 
InterceptorStatusToken - Class in org.springframework.security.access.intercept
A return object received by AbstractSecurityInterceptor subclasses.
InterceptorStatusToken(SecurityContext, boolean, Collection<ConfigAttribute>, Object) - Constructor for class org.springframework.security.access.intercept.InterceptorStatusToken
 
InternalAuthenticationServiceException - Exception in org.springframework.security.authentication
Thrown if an authentication request could not be processed due to a system problem that occurred internally.
InternalAuthenticationServiceException(String, Throwable) - Constructor for exception org.springframework.security.authentication.InternalAuthenticationServiceException
 
InternalAuthenticationServiceException(String) - Constructor for exception org.springframework.security.authentication.InternalAuthenticationServiceException
 
InvalidCookieException - Exception in org.springframework.security.web.authentication.rememberme
Exception thrown by a RememberMeServices implementation to indicate that a submitted cookie is of an invalid format or has expired.
InvalidCookieException(String) - Constructor for exception org.springframework.security.web.authentication.rememberme.InvalidCookieException
 
InvalidSessionStrategy - Interface in org.springframework.security.web.session
Determines the behaviour of the SessionManagementFilter when an invalid session Id is submitted and detected in the SessionManagementFilter.
INVOCATION_ATTRIBUTE_FACTORY - Static variable in class org.springframework.security.config.Elements
 
INVOCATION_HANDLING - Static variable in class org.springframework.security.config.Elements
 
INVOCATIONTARGET_EXTRACTOR - Static variable in class org.springframework.security.web.util.ThrowableAnalyzer
Default extractor for InvocationTargetException instances.
invoke(MethodInvocation) - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
This method should be used to enforce security on a MethodInvocation.
invoke(JoinPoint) - Method in class org.springframework.security.access.intercept.aspectj.AspectJMethodSecurityInterceptor
Method that is suitable for user with @Aspect notation.
invoke(JoinPoint, AspectJCallback) - Method in class org.springframework.security.access.intercept.aspectj.AspectJMethodSecurityInterceptor
Method that is suitable for user with traditional AspectJ-code aspects.
invoke(Object) - Method in class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation
Invoked on the server-side.
invoke(FilterInvocation) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
 
invoke(MethodInvocation) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSphere2SpringSecurityPropagationInterceptor
Deprecated.
Authenticate with Spring Security based on WebSphere credentials before proceeding with method invocation, and clean up the Spring Security Context after method invocation finishes.
IpAddressMatcher - Class in org.springframework.security.web.util
Matches a request based on IP Address or subnet mask matching against the remote address.
IpAddressMatcher(String) - Constructor for class org.springframework.security.web.util.IpAddressMatcher
Takes a specific IP address or a range specified using the IP/Netmask (e.g.
IS_AUTHENTICATED_ANONYMOUSLY - Static variable in class org.springframework.security.access.vote.AuthenticatedVoter
 
IS_AUTHENTICATED_FULLY - Static variable in class org.springframework.security.access.vote.AuthenticatedVoter
 
IS_AUTHENTICATED_REMEMBERED - Static variable in class org.springframework.security.access.vote.AuthenticatedVoter
 
isAbsoluteUrl(String) - Static method in class org.springframework.security.web.util.UrlUtils
Decides if a URL is absolute based on whether it contains a valid scheme name, as defined in RFC 1738.
isAccountNonExpired() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
isAccountNonExpired() - Method in class org.springframework.security.core.userdetails.User
 
isAccountNonExpired() - Method in interface org.springframework.security.core.userdetails.UserDetails
Indicates whether the user's account has expired.
isAccountNonExpired() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
isAccountNonLocked() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
isAccountNonLocked() - Method in class org.springframework.security.core.userdetails.User
 
isAccountNonLocked() - Method in interface org.springframework.security.core.userdetails.UserDetails
Indicates whether the user is locked or unlocked.
isAccountNonLocked() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
isAllowed(MethodInvocation, Authentication) - Method in class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
 
isAllowed(String, Authentication) - Method in class org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
Determines whether the user represented by the supplied Authentication object is allowed to invoke the supplied URI.
isAllowed(String, String, String, Authentication) - Method in class org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
Determines whether the user represented by the supplied Authentication object is allowed to invoke the supplied URI, with the given .
isAllowed(String, Authentication) - Method in interface org.springframework.security.web.access.WebInvocationPrivilegeEvaluator
Determines whether the user represented by the supplied Authentication object is allowed to invoke the supplied URI.
isAllowed(String, String, String, Authentication) - Method in interface org.springframework.security.web.access.WebInvocationPrivilegeEvaluator
Determines whether the user represented by the supplied Authentication object is allowed to invoke the supplied URI, with the given .
isAllowIfAllAbstainDecisions() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
isAllowIfEqualGrantedDeniedDecisions() - Method in class org.springframework.security.access.vote.ConsensusBased
 
isAllowSessionCreation() - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
 
isAlwaysReauthenticate() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
isAlwaysUseDefaultTargetUrl() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
 
isAnonymous() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
isAnonymous() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
isAnonymous(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationTrustResolver
Indicates whether the passed Authentication token represents an anonymous user.
isAnonymous(Authentication) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
 
isAuditFailure() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
isAuditFailure() - Method in interface org.springframework.security.acls.model.AuditableAccessControlEntry
 
isAuditSuccess() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
isAuditSuccess() - Method in interface org.springframework.security.acls.model.AuditableAccessControlEntry
 
isAuthenticateAllArtifacts() - Method in class org.springframework.security.cas.ServiceProperties
 
isAuthenticated() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
isAuthenticated() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
isAuthenticated() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
isAuthenticated() - Method in interface org.springframework.security.core.Authentication
Used to indicate to AbstractSecurityInterceptor whether it should present the authentication token to the AuthenticationManager.
isBase64(byte[]) - Static method in class org.springframework.security.crypto.codec.Base64
 
isChangeAfterReset() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
 
isContextHolderRefreshRequired() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
 
isContextSaved() - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Tells if the response wrapper has called saveContext() because of this wrapper.
isCredentialsNonExpired() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
isCredentialsNonExpired() - Method in class org.springframework.security.core.userdetails.User
 
isCredentialsNonExpired() - Method in interface org.springframework.security.core.userdetails.UserDetails
Indicates whether the user's credentials (password) has expired.
isCredentialsNonExpired() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
isCritical() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
Returns whether the control is critical for the client.
isEnabled() - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
isEnabled() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
 
isEnabled() - Method in class org.springframework.security.core.userdetails.User
 
isEnabled() - Method in interface org.springframework.security.core.userdetails.UserDetails
Indicates whether the user is enabled or disabled.
isEnabled() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
isEntriesInheriting() - Method in class org.springframework.security.acls.domain.AclImpl
 
isEntriesInheriting() - Method in interface org.springframework.security.acls.model.Acl
Indicates whether the ACL entries from the Acl.getParentAcl() should flow down into the current Acl.
isEraseCredentialsAfterAuthentication() - Method in class org.springframework.security.authentication.ProviderManager
 
isExpired() - Method in class org.springframework.security.core.session.SessionInformation
 
isExpired() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
 
isForceHttps() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
isForcePrincipalAsString() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
isFullyAuthenticated() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
isFullyAuthenticated() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
isGranted(List<Permission>, List<Sid>, boolean) - Method in class org.springframework.security.acls.domain.AclImpl
Delegates to the PermissionGrantingStrategy.
isGranted(Acl, List<Permission>, List<Sid>, boolean) - Method in class org.springframework.security.acls.domain.DefaultPermissionGrantingStrategy
Determines authorization.
isGranted(List<Permission>, List<Sid>, boolean) - Method in interface org.springframework.security.acls.model.Acl
This is the actual authorization logic method, and must be used whenever ACL authorization decisions are required.
isGranted(Acl, List<Permission>, List<Sid>, boolean) - Method in interface org.springframework.security.acls.model.PermissionGrantingStrategy
Returns true if the the supplied strategy decides that the supplied Acl grants access based on the supplied list of permissions and sids.
isGranting() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
isGranting() - Method in interface org.springframework.security.acls.model.AccessControlEntry
Indicates the a Permission is being granted to the relevant Sid.
isHideUserNotFoundExceptions() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
isHtmlEscape() - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
Return the HTML escaping setting for this tag, or the default setting if not overridden.
isIgnoreFailure() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
isIgnorePasswordCase() - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
 
isInvalidateHttpSession() - Method in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
 
isLocked() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Determines whether an account locked error has been returned.
isLogInteractiveAuthenticationSuccessEvents() - Method in class org.springframework.security.authentication.event.LoggerListener
 
isObserveOncePerRequest() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
Indicates whether once-per-request handling will be observed.
isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.LdapShaPasswordEncoder
Checks the validity of an unencoded password against an encoded one in the form "{SSHA}sQuQF8vj8Eg2Y1hPdh3bkQhCKQBgjhQI".
isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.Md4PasswordEncoder
Takes a previously encoded password and compares it with a raw password after mixing in the salt and encoding that value.
isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
Takes a previously encoded password and compares it with a rawpassword after mixing in the salt and encoding that value
isPasswordValid(String, String, Object) - Method in interface org.springframework.security.authentication.encoding.PasswordEncoder
Deprecated.
Validates a specified "raw" password against an encoded password.
isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
 
isRejectPublicInvocations() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
isRememberMe() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
isRememberMe() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
isRememberMe(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationTrustResolver
Indicates whether the passed Authentication token represents user that has been remembered (i.e.
isRememberMe(Authentication) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
 
isRequired() - Method in class org.springframework.security.openid.OpenIDAttribute
The "required" flag for the attribute when used with an authentication request.
isRunning() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
isSecure() - Method in class org.springframework.security.web.savedrequest.SavedCookie
 
isSendRenew() - Method in class org.springframework.security.cas.ServiceProperties
Indicates whether the renew parameter should be sent to the CAS login URL and CAS validation URL.
isSidLoaded(List<Sid>) - Method in class org.springframework.security.acls.domain.AclImpl
 
isSidLoaded(List<Sid>) - Method in interface org.springframework.security.acls.model.Acl
For efficiency reasons an Acl may be loaded and not contain entries for every Sid in the system.
isSingleton() - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
 
isSingleton() - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
 
isTokenExpired(long) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
 
isUiSecurityDisabled() - Static method in class org.springframework.security.taglibs.TagLibConfig
 
isUseForward() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
isUseForward() - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
 
isUserInRole(String) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
Simple searches for an exactly matching GrantedAuthority.getAuthority().
isUsernameBasedPrimaryKey() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
isUsingGraceLogins() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
 
isValid() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
 
isValidateConfigAttributes() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
isValidRedirectUrl(String) - Static method in class org.springframework.security.web.util.UrlUtils
Returns true if the supplied URL starts with a "/" or is absolute.

J

J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource - Class in org.springframework.security.web.authentication.preauth.j2ee
Implementation of AuthenticationDetailsSource which converts the user's J2EE roles (as obtained by calling HttpServletRequest.isUserInRole(String)) into GrantedAuthoritys and stores these in the authentication details object.
J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource() - Constructor for class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
 
j2eeMappableRoles - Variable in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
The role attributes returned by the configured MappableAttributesRetriever
J2eePreAuthenticatedProcessingFilter - Class in org.springframework.security.web.authentication.preauth.j2ee
This AbstractPreAuthenticatedProcessingFilter implementation is based on the J2EE container-based authentication mechanism.
J2eePreAuthenticatedProcessingFilter() - Constructor for class org.springframework.security.web.authentication.preauth.j2ee.J2eePreAuthenticatedProcessingFilter
 
j2eeUserRoles2GrantedAuthoritiesMapper - Variable in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
 
JaasApiIntegrationFilter - Class in org.springframework.security.web.jaasapi
A Filter which attempts to obtain a JAAS Subject and continue the FilterChain running as that Subject.
JaasApiIntegrationFilter() - Constructor for class org.springframework.security.web.jaasapi.JaasApiIntegrationFilter
 
JaasAuthenticationCallbackHandler - Interface in org.springframework.security.authentication.jaas
The JaasAuthenticationCallbackHandler is similar to the javax.security.auth.callback.CallbackHandler interface in that it defines a handle method.
JaasAuthenticationEvent - Class in org.springframework.security.authentication.jaas.event
Parent class for events fired by the JaasAuthenticationProvider.
JaasAuthenticationEvent(Authentication) - Constructor for class org.springframework.security.authentication.jaas.event.JaasAuthenticationEvent
The Authentication object is stored as the ApplicationEvent 'source'.
JaasAuthenticationFailedEvent - Class in org.springframework.security.authentication.jaas.event
Fired when LoginContext.login throws a LoginException, or if any other exception is thrown during that time.
JaasAuthenticationFailedEvent(Authentication, Exception) - Constructor for class org.springframework.security.authentication.jaas.event.JaasAuthenticationFailedEvent
 
JaasAuthenticationProvider - Class in org.springframework.security.authentication.jaas
An AuthenticationProvider implementation that retrieves user details from a JAAS login configuration.
JaasAuthenticationProvider() - Constructor for class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
 
JaasAuthenticationSuccessEvent - Class in org.springframework.security.authentication.jaas.event
Fired by the JaasAuthenticationProvider after successfully logging the user into the LoginContext, handling all callbacks, and calling all AuthorityGranters.
JaasAuthenticationSuccessEvent(Authentication) - Constructor for class org.springframework.security.authentication.jaas.event.JaasAuthenticationSuccessEvent
 
JaasAuthenticationToken - Class in org.springframework.security.authentication.jaas
UsernamePasswordAuthenticationToken extension to carry the Jaas LoginContext that the user was logged into
JaasAuthenticationToken(Object, Object, LoginContext) - Constructor for class org.springframework.security.authentication.jaas.JaasAuthenticationToken
 
JaasAuthenticationToken(Object, Object, List<GrantedAuthority>, LoginContext) - Constructor for class org.springframework.security.authentication.jaas.JaasAuthenticationToken
 
JaasGrantedAuthority - Class in org.springframework.security.authentication.jaas
GrantedAuthority which, in addition to the assigned role, holds the principal that an AuthorityGranter used as a reason to grant this authority.
JaasGrantedAuthority(String, Principal) - Constructor for class org.springframework.security.authentication.jaas.JaasGrantedAuthority
 
JaasNameCallbackHandler - Class in org.springframework.security.authentication.jaas
The most basic Callbacks to be handled when using a LoginContext from JAAS, are the NameCallback and PasswordCallback.
JaasNameCallbackHandler() - Constructor for class org.springframework.security.authentication.jaas.JaasNameCallbackHandler
 
JaasPasswordCallbackHandler - Class in org.springframework.security.authentication.jaas
The most basic Callbacks to be handled when using a LoginContext from JAAS, are the NameCallback and PasswordCallback.
JaasPasswordCallbackHandler() - Constructor for class org.springframework.security.authentication.jaas.JaasPasswordCallbackHandler
 
JDBC_USER_SERVICE - Static variable in class org.springframework.security.config.Elements
 
JdbcAclService - Class in org.springframework.security.acls.jdbc
Simple JDBC-based implementation of AclService.
JdbcAclService(DataSource, LookupStrategy) - Constructor for class org.springframework.security.acls.jdbc.JdbcAclService
 
JdbcDaoImpl - Class in org.springframework.security.core.userdetails.jdbc
UserDetailsServiceRetrieves implementation which retrieves the user details (username, password, enabled flag, and authorities) from a database using JDBC queries.
JdbcDaoImpl() - Constructor for class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
JdbcMutableAclService - Class in org.springframework.security.acls.jdbc
Provides a base JDBC implementation of MutableAclService.
JdbcMutableAclService(DataSource, LookupStrategy, AclCache) - Constructor for class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
jdbcTemplate - Variable in class org.springframework.security.acls.jdbc.JdbcAclService
 
JdbcTokenRepositoryImpl - Class in org.springframework.security.web.authentication.rememberme
JDBC based persistent login token repository implementation.
JdbcTokenRepositoryImpl() - Constructor for class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
 
JdbcUserDetailsManager - Class in org.springframework.security.provisioning
Jdbc user management service, based on the same table structure as its parent class, JdbcDaoImpl.
JdbcUserDetailsManager() - Constructor for class org.springframework.security.provisioning.JdbcUserDetailsManager
 
JdbcUserServiceBeanDefinitionParser - Class in org.springframework.security.config.authentication
 
JdbcUserServiceBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.JdbcUserServiceBeanDefinitionParser
 
JEE - Static variable in class org.springframework.security.config.Elements
 
JndiDnsResolver - Class in org.springframework.security.remoting.dns
Implementation of DnsResolver which uses JNDI for the DNS queries.
JndiDnsResolver() - Constructor for class org.springframework.security.remoting.dns.JndiDnsResolver
 
JspAuthorizeTag - Class in org.springframework.security.taglibs.authz
A JSP Tag implementation of AbstractAuthorizeTag.
JspAuthorizeTag() - Constructor for class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
Jsr250MethodSecurityMetadataSource - Class in org.springframework.security.access.annotation
Sources method security metadata from major JSR 250 security annotations.
Jsr250MethodSecurityMetadataSource() - Constructor for class org.springframework.security.access.annotation.Jsr250MethodSecurityMetadataSource
 
Jsr250SecurityConfig - Class in org.springframework.security.access.annotation
Security config applicable as a JSR 250 annotation attribute.
Jsr250SecurityConfig(String) - Constructor for class org.springframework.security.access.annotation.Jsr250SecurityConfig
 
Jsr250Voter - Class in org.springframework.security.access.annotation
Voter on JSR-250 configuration attributes.
Jsr250Voter() - Constructor for class org.springframework.security.access.annotation.Jsr250Voter
 

K

KeyBasedPersistenceTokenService - Class in org.springframework.security.core.token
Basic implementation of TokenService that is compatible with clusters and across machine restarts, without requiring database persistence.
KeyBasedPersistenceTokenService() - Constructor for class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
KeyGenerators - Class in org.springframework.security.crypto.keygen
Factory for commonly used key generators.

L

LDAP_AUTHORITIES_POPULATOR_CLASS - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
LDAP_PASSWORD_COMPARE - Static variable in class org.springframework.security.config.Elements
 
LDAP_PROVIDER - Static variable in class org.springframework.security.config.Elements
 
LDAP_SEARCH_CLASS - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
LDAP_SERVER - Static variable in class org.springframework.security.config.Elements
 
LDAP_USER_MAPPER_CLASS - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
LDAP_USER_SERVICE - Static variable in class org.springframework.security.config.Elements
 
LdapAuthenticationProvider - Class in org.springframework.security.ldap.authentication
An AuthenticationProvider implementation that authenticates against an LDAP server.
LdapAuthenticationProvider(LdapAuthenticator, LdapAuthoritiesPopulator) - Constructor for class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
Create an instance with the supplied authenticator and authorities populator implementations.
LdapAuthenticationProvider(LdapAuthenticator) - Constructor for class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
Creates an instance with the supplied authenticator and a null authorities populator.
LdapAuthenticator - Interface in org.springframework.security.ldap.authentication
The strategy interface for locating and authenticating an Ldap user.
LdapAuthoritiesPopulator - Interface in org.springframework.security.ldap.userdetails
Obtains a list of granted authorities for an Ldap user.
LdapProviderBeanDefinitionParser - Class in org.springframework.security.config.ldap
Ldap authentication provider namespace configuration.
LdapProviderBeanDefinitionParser() - Constructor for class org.springframework.security.config.ldap.LdapProviderBeanDefinitionParser
 
LdapServerBeanDefinitionParser - Class in org.springframework.security.config.ldap
 
LdapServerBeanDefinitionParser() - Constructor for class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
 
LdapShaPasswordEncoder - Class in org.springframework.security.authentication.encoding
A version of ShaPasswordEncoder which supports Ldap SHA and SSHA (salted-SHA) encodings.
LdapShaPasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.LdapShaPasswordEncoder
 
LdapUserDetails - Interface in org.springframework.security.ldap.userdetails
Captures the information for a user's LDAP entry.
LdapUserDetailsImpl - Class in org.springframework.security.ldap.userdetails
A UserDetails implementation which is used internally by the Ldap services.
LdapUserDetailsImpl() - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
LdapUserDetailsImpl.Essence - Class in org.springframework.security.ldap.userdetails
Variation of essence pattern.
LdapUserDetailsImpl.Essence() - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
LdapUserDetailsImpl.Essence(DirContextOperations) - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
LdapUserDetailsImpl.Essence(LdapUserDetails) - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
LdapUserDetailsManager - Class in org.springframework.security.ldap.userdetails
An Ldap implementation of UserDetailsManager.
LdapUserDetailsManager(ContextSource) - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
LdapUserDetailsMapper - Class in org.springframework.security.ldap.userdetails
The context mapper used by the LDAP authentication provider to create an LDAP user object.
LdapUserDetailsMapper() - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
 
LdapUserDetailsService - Class in org.springframework.security.ldap.userdetails
LDAP implementation of UserDetailsService based around an LdapUserSearch and an LdapAuthoritiesPopulator.
LdapUserDetailsService(LdapUserSearch) - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsService
 
LdapUserDetailsService(LdapUserSearch, LdapAuthoritiesPopulator) - Constructor for class org.springframework.security.ldap.userdetails.LdapUserDetailsService
 
LdapUsernameToDnMapper - Interface in org.springframework.security.ldap
Constructs an Ldap Distinguished Name from a username.
LdapUserSearch - Interface in org.springframework.security.ldap.search
Obtains a user's information from the LDAP directory given a login name.
LdapUserServiceBeanDefinitionParser - Class in org.springframework.security.config.ldap
 
LdapUserServiceBeanDefinitionParser() - Constructor for class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
LdapUtils - Class in org.springframework.security.ldap
LDAP Utility methods.
loadContext(HttpRequestResponseHolder) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
Gets the security context for the current request (if available) and returns it.
loadContext(HttpRequestResponseHolder) - Method in class org.springframework.security.web.context.NullSecurityContextRepository
 
loadContext(HttpRequestResponseHolder) - Method in interface org.springframework.security.web.context.SecurityContextRepository
Obtains the security context for the supplied request.
loadGroupAuthorities(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Loads authorities by executing the SQL from groupAuthoritiesByUsernameQuery.
loadUserAuthorities(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Loads authorities by executing the SQL from authoritiesByUsernameQuery.
loadUserAuthorities(DirContextOperations, String, String) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
loadUserAuthorities(DirContextOperations, String, String) - Method in class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
Creates the user authority list from the values of the memberOf attribute obtained from the user's Active Directory entry.
loadUserAuthorities(DirContextOperations, String, String) - Method in class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
 
loadUserByAssertion(Assertion) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
Template method for retrieving the UserDetails based on the assertion.
loadUserByUsername(String) - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsServiceWrapper
Deprecated.
 
loadUserByUsername(String) - Method in class org.springframework.security.config.authentication.CachingUserDetailsService
 
loadUserByUsername(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
loadUserByUsername(String) - Method in class org.springframework.security.core.userdetails.memory.InMemoryDaoImpl
Deprecated.
 
loadUserByUsername(String) - Method in interface org.springframework.security.core.userdetails.UserDetailsService
Locates the user based on the username.
loadUserByUsername(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
loadUserByUsername(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsService
 
loadUserByUsername(String) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
loadUserDetails(CasAssertionAuthenticationToken) - Method in class org.springframework.security.cas.userdetails.AbstractCasAssertionUserDetailsService
 
loadUserDetails(Assertion) - Method in class org.springframework.security.cas.userdetails.AbstractCasAssertionUserDetailsService
Protected template method for construct a UserDetails via the supplied CAS assertion.
loadUserDetails(Assertion) - Method in class org.springframework.security.cas.userdetails.GrantedAuthorityFromAssertionAttributesUserDetailsService
 
loadUserDetails(T) - Method in interface org.springframework.security.core.userdetails.AuthenticationUserDetailsService
 
loadUserDetails(T) - Method in class org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper
Get the UserDetails object from the wrapped UserDetailsService implementation
loadUserDetails(PreAuthenticatedAuthenticationToken) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesUserDetailsService
Get a UserDetails object based on the user name contained in the given token, and the GrantedAuthorities as returned by the GrantedAuthoritiesContainer implementation as returned by the token.getDetails() method.
loadUsersByUsername(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Executes the SQL usersByUsernameQuery and returns a list of UserDetails objects.
LockedException - Exception in org.springframework.security.authentication
Thrown if an authentication request is rejected because the account is locked.
LockedException(String) - Constructor for exception org.springframework.security.authentication.LockedException
Constructs a LockedException with the specified message.
LockedException(String, Throwable) - Constructor for exception org.springframework.security.authentication.LockedException
Constructs a LockedException with the specified message and root cause.
LockedException(String, Object) - Constructor for exception org.springframework.security.authentication.LockedException
Deprecated.
log - Static variable in class org.springframework.security.acls.jdbc.JdbcAclService
 
log - Variable in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
 
log - Static variable in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
 
logger - Variable in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
 
logger - Variable in class org.springframework.security.access.expression.method.ExpressionBasedPostInvocationAdvice
 
logger - Variable in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
logger - Static variable in class org.springframework.security.access.intercept.AfterInvocationProviderManager
 
logger - Static variable in class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
 
logger - Variable in class org.springframework.security.access.method.AbstractMethodSecurityMetadataSource
 
logger - Variable in class org.springframework.security.access.prepost.PostInvocationAdviceProvider
 
logger - Variable in class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
 
logger - Variable in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
logger - Static variable in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationCollectionFilteringProvider
 
logger - Static variable in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
 
logger - Variable in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
logger - Variable in class org.springframework.security.config.http.FormLoginBeanDefinitionParser
 
logger - Variable in class org.springframework.security.core.session.SessionRegistryImpl
 
logger - Variable in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
logger - Variable in class org.springframework.security.ldap.DefaultSpringSecurityContextSource
 
logger - Variable in class org.springframework.security.openid.OpenID4JavaConsumer
 
logger - Variable in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
logger - Variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
logger - Static variable in class org.springframework.security.taglibs.authz.AccessControlListTag
 
logger - Static variable in class org.springframework.security.web.access.AccessDeniedHandlerImpl
 
logger - Variable in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
logger - Static variable in class org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
 
logger - Variable in class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
 
logger - Variable in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
 
logger - Variable in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
 
logger - Variable in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
 
logger - Variable in class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
 
logger - Variable in class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
 
logger - Variable in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
logger - Variable in class org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler
 
logger - Variable in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
 
logger - Variable in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
 
logger - Variable in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
 
logger - Variable in class org.springframework.security.web.DefaultRedirectStrategy
 
logger - Static variable in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
logger - Variable in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
 
LoggerListener - Class in org.springframework.security.access.event
Outputs interceptor-related application events to Commons Logging.
LoggerListener() - Constructor for class org.springframework.security.access.event.LoggerListener
 
LoggerListener - Class in org.springframework.security.authentication.event
Outputs authentication-related application events to Commons Logging.
LoggerListener() - Constructor for class org.springframework.security.authentication.event.LoggerListener
 
logIfNeeded(boolean, AccessControlEntry) - Method in interface org.springframework.security.acls.domain.AuditLogger
 
logIfNeeded(boolean, AccessControlEntry) - Method in class org.springframework.security.acls.domain.ConsoleAuditLogger
 
login() - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
Authenticate the Subject (phase one) by extracting the Spring Security Authentication from the current SecurityContext.
LoginExceptionResolver - Interface in org.springframework.security.authentication.jaas
The JaasAuthenticationProvider takes an instance of LoginExceptionResolver to resolve LoginModule specific exceptions to Spring Security AuthenticationExceptions.
loginFail(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.NullRememberMeServices
 
loginFail(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
loginFail(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.authentication.RememberMeServices
Called whenever an interactive authentication attempt was made, but the credentials supplied by the user were missing or otherwise invalid.
loginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.NullRememberMeServices
 
loginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Examines the incoming request and checks for the presence of the configured "remember me" parameter.
loginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in interface org.springframework.security.web.authentication.RememberMeServices
Called whenever an interactive authentication attempt is successful.
LoginUrlAuthenticationEntryPoint - Class in org.springframework.security.web.authentication
Used by the ExceptionTranslationFilter to commence a form login authentication via the UsernamePasswordAuthenticationFilter.
LoginUrlAuthenticationEntryPoint() - Constructor for class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
Deprecated.
Use constructor injection
LoginUrlAuthenticationEntryPoint(String) - Constructor for class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
logout() - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
Log out the Subject.
LOGOUT - Static variable in class org.springframework.security.config.Elements
 
logout(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.logout.CookieClearingLogoutHandler
 
logout(HttpServletRequest, HttpServletResponse, Authentication) - Method in interface org.springframework.security.web.authentication.logout.LogoutHandler
Causes a logout to be completed.
logout(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
Requires the request to be passed in.
logout(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Implementation of LogoutHandler.
logout(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
LogoutFilter - Class in org.springframework.security.web.authentication.logout
Logs a principal out.
LogoutFilter(LogoutSuccessHandler, LogoutHandler...) - Constructor for class org.springframework.security.web.authentication.logout.LogoutFilter
Constructor which takes a LogoutSuccessHandler instance to determine the target destination after logging out.
LogoutFilter(String, LogoutHandler...) - Constructor for class org.springframework.security.web.authentication.logout.LogoutFilter
 
LogoutHandler - Interface in org.springframework.security.web.authentication.logout
Indicates a class that is able to participate in logout handling.
LogoutSuccessHandler - Interface in org.springframework.security.web.authentication.logout
Strategy that is called after a successful logout by the LogoutFilter, to handle redirection or forwarding to the appropriate destination.
lookupHttpPort(Integer) - Method in interface org.springframework.security.web.PortMapper
Locates the HTTP port associated with the specified HTTPS port.
lookupHttpPort(Integer) - Method in class org.springframework.security.web.PortMapperImpl
 
lookupHttpsPort(Integer) - Method in interface org.springframework.security.web.PortMapper
Locates the HTTPS port associated with the specified HTTP port.
lookupHttpsPort(Integer) - Method in class org.springframework.security.web.PortMapperImpl
 
lookupRealm(String) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
 
LookupStrategy - Interface in org.springframework.security.acls.jdbc
Performs lookups for AclService.

M

makeTokenSignature(long, String, String) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
Calculates the digital signature to be put in the cookie.
mapAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.access.hierarchicalroles.RoleHierarchyAuthoritiesMapper
 
mapAuthorities(Collection<? extends GrantedAuthority>) - Method in interface org.springframework.security.core.authority.mapping.GrantedAuthoritiesMapper
 
mapAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.core.authority.mapping.NullAuthoritiesMapper
 
mapAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
Creates a mapping of the supplied authorities based on the case-conversion and prefix settings.
MapBasedAttributes2GrantedAuthoritiesMapper - Class in org.springframework.security.core.authority.mapping
This class implements the Attributes2GrantedAuthoritiesMapper and MappableAttributesRetriever interfaces based on the supplied Map.
MapBasedAttributes2GrantedAuthoritiesMapper() - Constructor for class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
 
MapBasedMethodSecurityMetadataSource - Class in org.springframework.security.access.method
Stores a list of ConfigAttributes for a method or class signature.
MapBasedMethodSecurityMetadataSource() - Constructor for class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
 
MapBasedMethodSecurityMetadataSource(Map<String, List<ConfigAttribute>>) - Constructor for class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
Creates the MapBasedMethodSecurityMetadataSource from a
MappableAttributesRetriever - Interface in org.springframework.security.core.authority.mapping
Interface to be implemented by classes that can retrieve a list of mappable security attribute strings (for example the list of all available J2EE roles in a web or EJB application).
mapPassword(Object) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
Extension point to allow customized creation of the user's password from the attribute stored in the directory.
mapUserFromContext(DirContextOperations, String, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.InetOrgPersonContextMapper
 
mapUserFromContext(DirContextOperations, String, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
 
mapUserFromContext(DirContextOperations, String, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.PersonContextMapper
 
mapUserFromContext(DirContextOperations, String, Collection<? extends GrantedAuthority>) - Method in interface org.springframework.security.ldap.userdetails.UserDetailsContextMapper
Creates a fully populated UserDetails object for use by the security framework.
mapUserToContext(UserDetails, DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.InetOrgPersonContextMapper
 
mapUserToContext(UserDetails, DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
 
mapUserToContext(UserDetails, DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.PersonContextMapper
 
mapUserToContext(UserDetails, DirContextAdapter) - Method in interface org.springframework.security.ldap.userdetails.UserDetailsContextMapper
Reverse of the above operation.
mask - Variable in class org.springframework.security.acls.domain.AbstractPermission
 
MatcherType - Enum in org.springframework.security.config.http
Defines the RequestMatcher types supported by the namespace.
matches(CharSequence, String) - Method in class org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder
 
matches(CharSequence, String) - Method in class org.springframework.security.crypto.password.NoOpPasswordEncoder
 
matches(CharSequence, String) - Method in interface org.springframework.security.crypto.password.PasswordEncoder
Verify the encoded password obtained from storage matches the submitted raw password after it too is encoded.
matches(CharSequence, String) - Method in class org.springframework.security.crypto.password.StandardPasswordEncoder
 
matches(HttpServletRequest) - Method in class org.springframework.security.web.DefaultSecurityFilterChain
 
matches(HttpServletRequest) - Method in interface org.springframework.security.web.SecurityFilterChain
 
matches(HttpServletRequest) - Method in class org.springframework.security.web.util.AntPathRequestMatcher
Returns true if the configured pattern (and HTTP-Method) match those of the supplied request.
matches(HttpServletRequest) - Method in class org.springframework.security.web.util.AnyRequestMatcher
 
matches(HttpServletRequest) - Method in class org.springframework.security.web.util.ELRequestMatcher
 
matches(HttpServletRequest) - Method in class org.springframework.security.web.util.IpAddressMatcher
 
matches(String) - Method in class org.springframework.security.web.util.IpAddressMatcher
 
matches(HttpServletRequest) - Method in class org.springframework.security.web.util.RegexRequestMatcher
Performs the match of the request URL (servletPath + pathInfo + queryString) against the compiled pattern.
matches(HttpServletRequest) - Method in interface org.springframework.security.web.util.RequestMatcher
Decides whether the rule implemented by the strategy matches the supplied request.
Md4PasswordEncoder - Class in org.springframework.security.authentication.encoding
MD4 implementation of PasswordEncoder.
Md4PasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.Md4PasswordEncoder
 
Md5PasswordEncoder - Class in org.springframework.security.authentication.encoding
MD5 implementation of PasswordEncoder.
Md5PasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.Md5PasswordEncoder
 
mergePasswordAndSalt(String, Object, boolean) - Method in class org.springframework.security.authentication.encoding.BasePasswordEncoder
Used by subclasses to generate a merged password and salt String.
mergePatterns(String, String) - Static method in class org.springframework.security.acls.domain.AclFormattingUtils
 
MessageDigestPasswordEncoder - Class in org.springframework.security.authentication.encoding
Base for digest password encoders.
MessageDigestPasswordEncoder(String) - Constructor for class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
The digest algorithm to use Supports the named Message Digest Algorithms in the Java environment.
MessageDigestPasswordEncoder(String, boolean) - Constructor for class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
Convenience constructor for specifying the algorithm and whether or not to enable base64 encoding
messages - Variable in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
messages - Variable in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
messages - Variable in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
messages - Variable in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
 
messages - Variable in class org.springframework.security.authentication.AccountStatusUserDetailsChecker
 
messages - Variable in class org.springframework.security.authentication.AnonymousAuthenticationProvider
 
messages - Variable in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
messages - Variable in class org.springframework.security.authentication.ProviderManager
 
messages - Variable in class org.springframework.security.authentication.RememberMeAuthenticationProvider
 
messages - Variable in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
messages - Variable in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
 
messages - Variable in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
messages - Variable in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
 
messages - Variable in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
messages - Variable in class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
 
messages - Variable in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
messages - Variable in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
 
messages - Variable in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
messages - Variable in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
METHOD_ACCESS_MANAGER - Static variable in class org.springframework.security.config.BeanIds
 
METHOD_SECURITY_METADATA_SOURCE - Static variable in class org.springframework.security.config.Elements
 
METHOD_SECURITY_METADATA_SOURCE_ADVISOR - Static variable in class org.springframework.security.config.BeanIds
 
MethodInvocationAdapter - Class in org.springframework.security.access.intercept.aspectj
Decorates a JoinPoint to allow it to be used with method-security infrastructure classes which support MethodInvocation instances.
MethodInvocationPrivilegeEvaluator - Class in org.springframework.security.access.intercept
Allows users to determine whether they have "before invocation" privileges for a given method invocation.
MethodInvocationPrivilegeEvaluator() - Constructor for class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
 
MethodInvocationUtils - Class in org.springframework.security.util
Static utility methods for creating MethodInvocations usable within Spring Security.
MethodInvocationUtils() - Constructor for class org.springframework.security.util.MethodInvocationUtils
 
methodMap - Variable in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
Map from RegisteredMethod to ConfigAttribute list
MethodSecurityExpressionHandler - Interface in org.springframework.security.access.expression.method
Extended expression-handler facade which adds methods which are specific to securing method invocations.
MethodSecurityExpressionOperations - Interface in org.springframework.security.access.expression.method
Interface which must be implemented if you want to use filtering in method security expressions.
MethodSecurityInterceptor - Class in org.springframework.security.access.intercept.aopalliance
Provides security interception of AOP Alliance based method invocations.
MethodSecurityInterceptor() - Constructor for class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
 
MethodSecurityMetadataSource - Interface in org.springframework.security.access.method
Interface for SecurityMetadataSource implementations that are designed to perform lookups keyed on Methods.
MethodSecurityMetadataSourceAdvisor - Class in org.springframework.security.access.intercept.aopalliance
Advisor driven by a MethodSecurityMetadataSource, used to exclude a MethodSecurityInterceptor from public (non-secure) methods.
MethodSecurityMetadataSourceAdvisor(String, MethodSecurityMetadataSource, String) - Constructor for class org.springframework.security.access.intercept.aopalliance.MethodSecurityMetadataSourceAdvisor
Alternative constructor for situations where we want the advisor decoupled from the advice.
MethodSecurityMetadataSourceBeanDefinitionParser - Class in org.springframework.security.config.method
 
MethodSecurityMetadataSourceBeanDefinitionParser() - Constructor for class org.springframework.security.config.method.MethodSecurityMetadataSourceBeanDefinitionParser
 
MISSING_BEAN_ERROR_MESSAGE - Static variable in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
 
MODE_GLOBAL - Static variable in class org.springframework.security.core.context.SecurityContextHolder
 
MODE_INHERITABLETHREADLOCAL - Static variable in class org.springframework.security.core.context.SecurityContextHolder
 
MODE_THREADLOCAL - Static variable in class org.springframework.security.core.context.SecurityContextHolder
 
modifyGrantedAuthorities(UserDetails, Authentication, Collection<? extends GrantedAuthority>) - Method in interface org.springframework.security.web.authentication.switchuser.SwitchUserAuthorityChanger
Allow subclasses to add or remove authorities that will be granted when in switch user mode.
MutableAcl - Interface in org.springframework.security.acls.model
A mutable Acl.
MutableAclService - Interface in org.springframework.security.acls.model
Provides support for creating and storing Acl instances.
MutableGrantedAuthoritiesContainer - Interface in org.springframework.security.core.authority
Deprecated.

N

nextElement() - Method in class org.springframework.security.web.savedrequest.Enumerator
Returns the next element of this enumeration if this enumeration has at least one more element to provide.
NO_ATTRS - Static variable in class org.springframework.security.ldap.SpringSecurityLdapTemplate
 
NO_AUTHORITIES - Static variable in class org.springframework.security.core.authority.AuthorityUtils
 
NO_OPTIONS - Static variable in class org.springframework.security.crypto.codec.Base64
No options specified.
NonceExpiredException - Exception in org.springframework.security.web.authentication.www
Thrown if an authentication request is rejected because the digest nonce has expired.
NonceExpiredException(String) - Constructor for exception org.springframework.security.web.authentication.www.NonceExpiredException
Constructs a NonceExpiredException with the specified message.
NonceExpiredException(String, Throwable) - Constructor for exception org.springframework.security.web.authentication.www.NonceExpiredException
Constructs a NonceExpiredException with the specified message and root cause.
noneGranted(String) - Method in interface org.springframework.security.taglibs.velocity.Authz
none the listed roles must be granted to return true, otherwise false;
noneGranted(String) - Method in class org.springframework.security.taglibs.velocity.AuthzImpl
 
NoOpPasswordEncoder - Class in org.springframework.security.crypto.password
A password encoder that does nothing.
noOpText() - Static method in class org.springframework.security.crypto.encrypt.Encryptors
Creates a text encryptor that performs no encryption.
NotFoundException - Exception in org.springframework.security.acls.model
Thrown if an ACL-related object cannot be found.
NotFoundException(String) - Constructor for exception org.springframework.security.acls.model.NotFoundException
Constructs an NotFoundException with the specified message.
NotFoundException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.NotFoundException
Constructs an NotFoundException with the specified message and root cause.
NullAuthenticatedSessionStrategy - Class in org.springframework.security.web.authentication.session
 
NullAuthenticatedSessionStrategy() - Constructor for class org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy
 
NullAuthoritiesMapper - Class in org.springframework.security.core.authority.mapping
 
NullAuthoritiesMapper() - Constructor for class org.springframework.security.core.authority.mapping.NullAuthoritiesMapper
 
NullAxFetchListFactory - Class in org.springframework.security.openid
 
NullAxFetchListFactory() - Constructor for class org.springframework.security.openid.NullAxFetchListFactory
 
NullLdapAuthoritiesPopulator - Class in org.springframework.security.ldap.authentication
 
NullLdapAuthoritiesPopulator() - Constructor for class org.springframework.security.ldap.authentication.NullLdapAuthoritiesPopulator
 
NullRememberMeServices - Class in org.springframework.security.web.authentication
Implementation of NullRememberMeServices that does nothing.
NullRememberMeServices() - Constructor for class org.springframework.security.web.authentication.NullRememberMeServices
 
NullRequestCache - Class in org.springframework.security.web.savedrequest
Null implementation of RequestCache.
NullRequestCache() - Constructor for class org.springframework.security.web.savedrequest.NullRequestCache
 
NullRoleHierarchy - Class in org.springframework.security.access.hierarchicalroles
 
NullRoleHierarchy() - Constructor for class org.springframework.security.access.hierarchicalroles.NullRoleHierarchy
 
NullSecurityContextRepository - Class in org.springframework.security.web.context
 
NullSecurityContextRepository() - Constructor for class org.springframework.security.web.context.NullSecurityContextRepository
 
NullStatelessTicketCache - Class in org.springframework.security.cas.authentication
Implementation of @link StatelessTicketCache that has no backing cache.
NullStatelessTicketCache() - Constructor for class org.springframework.security.cas.authentication.NullStatelessTicketCache
 
NullUserCache - Class in org.springframework.security.core.userdetails.cache
Does not perform any caching.
NullUserCache() - Constructor for class org.springframework.security.core.userdetails.cache.NullUserCache
 

O

ObjectIdentity - Interface in org.springframework.security.acls.model
Represents the identity of an individual domain object instance.
ObjectIdentityGenerator - Interface in org.springframework.security.acls.model
Strategy which creates an ObjectIdentity from an object identifier (such as a primary key) and type information.
ObjectIdentityImpl - Class in org.springframework.security.acls.domain
Simple implementation of ObjectIdentity.
ObjectIdentityImpl(String, Serializable) - Constructor for class org.springframework.security.acls.domain.ObjectIdentityImpl
 
ObjectIdentityImpl(Class<?>, Serializable) - Constructor for class org.springframework.security.acls.domain.ObjectIdentityImpl
Constructor which uses the name of the supplied class as the type property.
ObjectIdentityImpl(Object) - Constructor for class org.springframework.security.acls.domain.ObjectIdentityImpl
Creates the ObjectIdentityImpl based on the passed object instance.
objectIdentityRetrievalStrategy - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
ObjectIdentityRetrievalStrategy - Interface in org.springframework.security.acls.model
Strategy interface that provides the ability to determine which ObjectIdentity will be returned for a particular domain object
ObjectIdentityRetrievalStrategyImpl - Class in org.springframework.security.acls.domain
Basic implementation of ObjectIdentityRetrievalStrategy and ObjectIdentityGenerator that uses the constructors of ObjectIdentityImpl to create the ObjectIdentity.
ObjectIdentityRetrievalStrategyImpl() - Constructor for class org.springframework.security.acls.domain.ObjectIdentityRetrievalStrategyImpl
 
obtainArtifact(HttpServletRequest) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
If present, gets the artifact (CAS ticket) from the HttpServletRequest.
obtainPassword(HttpServletRequest) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
Enables subclasses to override the composition of the password, such as by including additional values and a separator.
obtainPasswordAndSalt(String) - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
obtainSecurityMetadataSource() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
obtainSecurityMetadataSource() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
 
obtainSecurityMetadataSource() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
 
obtainSubject(ServletRequest) - Method in class org.springframework.security.web.jaasapi.JaasApiIntegrationFilter
Obtains the Subject to run as or null if no Subject is available.
obtainUsername(HttpServletRequest) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
Reads the claimedIdentityFieldName from the submitted request.
obtainUsername(HttpServletRequest) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
Enables subclasses to override the composition of the username, such as by including additional values and a separator.
OID - Static variable in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
OID of the Password Policy Control
onApplicationEvent(AbstractAuthorizationEvent) - Method in class org.springframework.security.access.event.LoggerListener
 
onApplicationEvent(AbstractAuthenticationEvent) - Method in class org.springframework.security.authentication.event.LoggerListener
 
onApplicationEvent(SessionDestroyedEvent) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
 
onApplicationEvent(SessionDestroyedEvent) - Method in class org.springframework.security.core.session.SessionRegistryImpl
 
onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
In addition to the steps from the superclass, the sessionRegistry will be updated with the new session information.
onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy
 
onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.authentication.session.SessionAuthenticationStrategy
Performs Http session-related functionality when a new authentication occurs.
onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
Called when a user is newly authenticated.
onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in interface org.springframework.security.web.authentication.AuthenticationFailureHandler
Called when an authentication attempt fails.
onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.ExceptionMappingAuthenticationFailureHandler
 
onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
Performs the redirect or forward to the defaultFailureUrl if set, otherwise returns a 401 error code.
onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in interface org.springframework.security.web.authentication.AuthenticationSuccessHandler
Called when a user has been successfully authenticated.
onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler
 
onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
Calls the parent class handle() method to forward or redirect to the target URL, and then calls clearAuthenticationAttributes() to remove any leftover session data.
onInvalidSessionDetected(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.session.InvalidSessionStrategy
 
onInvalidSessionDetected(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.session.SimpleRedirectInvalidSessionStrategy
 
onLoginFail(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
onLoginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Called from loginSuccess when a remember-me login has been requested.
onLoginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
Creates a new persistent login token with a new series number, stores the data in the persistent token repository and adds the corresponding cookie to the response.
onLoginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
 
onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in interface org.springframework.security.web.authentication.logout.LogoutSuccessHandler
 
onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.logout.SimpleUrlLogoutSuccessHandler
 
onSessionChange(String, HttpSession, Authentication) - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
Called when the session has been changed and the old attributes have been migrated to the new session.
onSuccessfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
Called if a remember-me token is presented and successfully authenticated by the RememberMeServices autoLogin method and the AuthenticationManager.
onSuccessfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
onUnsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
Called if the AuthenticationManager rejects the authentication object returned from the RememberMeServices autoLogin method.
onUnsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
OpenID4JavaConsumer - Class in org.springframework.security.openid
 
OpenID4JavaConsumer() - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
 
OpenID4JavaConsumer(List<OpenIDAttribute>) - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
Deprecated.
use the AxFetchListFactory version instead.
OpenID4JavaConsumer(ConsumerManager, List<OpenIDAttribute>) - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
Deprecated.
OpenID4JavaConsumer(AxFetchListFactory) - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
 
OpenID4JavaConsumer(ConsumerManager, AxFetchListFactory) - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
 
OPENID_ATTRIBUTE - Static variable in class org.springframework.security.config.Elements
 
OPENID_ATTRIBUTE_EXCHANGE - Static variable in class org.springframework.security.config.Elements
 
OPENID_LOGIN - Static variable in class org.springframework.security.config.Elements
 
OpenIDAttribute - Class in org.springframework.security.openid
Represents an OpenID subject identity attribute.
OpenIDAttribute(String, String) - Constructor for class org.springframework.security.openid.OpenIDAttribute
 
OpenIDAttribute(String, String, List<String>) - Constructor for class org.springframework.security.openid.OpenIDAttribute
 
OpenIDAuthenticationFilter - Class in org.springframework.security.openid
Filter which processes OpenID authentication requests.
OpenIDAuthenticationFilter() - Constructor for class org.springframework.security.openid.OpenIDAuthenticationFilter
 
OpenIDAuthenticationProvider - Class in org.springframework.security.openid
Finalises the OpenID authentication by obtaining local authorities for the authenticated user.
OpenIDAuthenticationProvider() - Constructor for class org.springframework.security.openid.OpenIDAuthenticationProvider
 
OpenIDAuthenticationStatus - Enum in org.springframework.security.openid
Authentication status codes, based on JanRain status codes
OpenIDAuthenticationToken - Class in org.springframework.security.openid
OpenID Authentication Token
OpenIDAuthenticationToken(OpenIDAuthenticationStatus, String, String, List<OpenIDAttribute>) - Constructor for class org.springframework.security.openid.OpenIDAuthenticationToken
 
OpenIDAuthenticationToken(Object, Collection<? extends GrantedAuthority>, String, List<OpenIDAttribute>) - Constructor for class org.springframework.security.openid.OpenIDAuthenticationToken
Created by the OpenIDAuthenticationProvider on successful authentication.
OpenIDConsumer - Interface in org.springframework.security.openid
An interface for OpenID library implementations
OpenIDConsumerException - Exception in org.springframework.security.openid
Thrown by an OpenIDConsumer if it cannot process a request
OpenIDConsumerException(String) - Constructor for exception org.springframework.security.openid.OpenIDConsumerException
 
OpenIDConsumerException(String, Throwable) - Constructor for exception org.springframework.security.openid.OpenIDConsumerException
 
OPT_DEFAULT_PORT - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
 
ORDERED - Static variable in class org.springframework.security.crypto.codec.Base64
Encode using the special "ordered" dialect of Base64 described here: http://www.faqs.org/qa/rfcc-1940.html.
org.springframework.security.access - package org.springframework.security.access
Core access-control related code, including security metadata related classes, interception code, access control annotations, EL support and voter-based implementations of the central AccessDecisionManager interface.
org.springframework.security.access.annotation - package org.springframework.security.access.annotation
Support for JSR-250 and Spring Security @Secured annotations.
org.springframework.security.access.event - package org.springframework.security.access.event
Authorization event and listener classes.
org.springframework.security.access.expression - package org.springframework.security.access.expression
Expression handling code to support the use of Spring-EL based expressions in @PreAuthorize, @PreFilter, @PostAuthorize and @PostFilter annotations.
org.springframework.security.access.expression.method - package org.springframework.security.access.expression.method
Implementation of expression-based method security.
org.springframework.security.access.hierarchicalroles - package org.springframework.security.access.hierarchicalroles
Role hierarchy implementation.
org.springframework.security.access.intercept - package org.springframework.security.access.intercept
Abstract level security interception classes which are responsible for enforcing the configured security constraints for a secure object.
org.springframework.security.access.intercept.aopalliance - package org.springframework.security.access.intercept.aopalliance
Enforces security for AOP Alliance MethodInvocations, such as via Spring AOP.
org.springframework.security.access.intercept.aspectj - package org.springframework.security.access.intercept.aspectj
Enforces security for AspectJ JointPoints, delegating secure object callbacks to the calling aspect.
org.springframework.security.access.method - package org.springframework.security.access.method
Provides SecurityMetadataSource implementations for securing Java method invocations via different AOP libraries.
org.springframework.security.access.prepost - package org.springframework.security.access.prepost
Contains the infrastructure classes for handling the @PreAuthorize, @PreFilter, @PostAuthorize and @PostFilter annotations.
org.springframework.security.access.vote - package org.springframework.security.access.vote
Implements a vote-based approach to authorization decisions.
org.springframework.security.acls - package org.springframework.security.acls
The Spring Security ACL package which implements instance-based security for domain objects.
org.springframework.security.acls.afterinvocation - package org.springframework.security.acls.afterinvocation
After-invocation providers for collection and array filtering.
org.springframework.security.acls.domain - package org.springframework.security.acls.domain
Basic implementation of access control lists (ACLs) interfaces.
org.springframework.security.acls.jdbc - package org.springframework.security.acls.jdbc
JDBC-based persistence of ACL information
org.springframework.security.acls.model - package org.springframework.security.acls.model
Interfaces and shared classes to manage access control lists (ACLs) for domain object instances.
org.springframework.security.authentication - package org.springframework.security.authentication
Core classes and interfaces related to user authentication, which are used throughout Spring Security.
org.springframework.security.authentication.dao - package org.springframework.security.authentication.dao
An AuthenticationProvider which relies upon a data access object.
org.springframework.security.authentication.encoding - package org.springframework.security.authentication.encoding
Password encoding implementations.
org.springframework.security.authentication.event - package org.springframework.security.authentication.event
Authentication success and failure events which can be published to the Spring application context.
org.springframework.security.authentication.jaas - package org.springframework.security.authentication.jaas
An authentication provider for JAAS.
org.springframework.security.authentication.jaas.event - package org.springframework.security.authentication.jaas.event
JAAS authentication events which can be published to the Spring application context by the JAAS authentication provider.
org.springframework.security.authentication.jaas.memory - package org.springframework.security.authentication.jaas.memory
An in memory JAAS implementation.
org.springframework.security.authentication.rcp - package org.springframework.security.authentication.rcp
Allows remote clients to authenticate and obtain a populated Authentication object.
org.springframework.security.cas - package org.springframework.security.cas
Spring Security support for Jasig's Central Authentication Service (CAS).
org.springframework.security.cas.authentication - package org.springframework.security.cas.authentication
An AuthenticationProvider that can process CAS service tickets and proxy tickets.
org.springframework.security.cas.userdetails - package org.springframework.security.cas.userdetails
 
org.springframework.security.cas.web - package org.springframework.security.cas.web
Authenticates standard web browser users via CAS.
org.springframework.security.cas.web.authentication - package org.springframework.security.cas.web.authentication
Authentication processing mechanisms which respond to the submission of authentication credentials using CAS.
org.springframework.security.config - package org.springframework.security.config
Support classes for the Spring Security namespace.
org.springframework.security.config.authentication - package org.springframework.security.config.authentication
Parsing of <authentication-manager> and related elements.
org.springframework.security.config.debug - package org.springframework.security.config.debug
 
org.springframework.security.config.http - package org.springframework.security.config.http
Parsing of the <http> namespace element.
org.springframework.security.config.ldap - package org.springframework.security.config.ldap
Security namespace support for LDAP authentication.
org.springframework.security.config.method - package org.springframework.security.config.method
Support for parsing of the <global-method-security> and <intercept-methods> elements.
org.springframework.security.core - package org.springframework.security.core
Core classes and interfaces related to user authentication and authorization, as well as the maintenance of a security context.
org.springframework.security.core.authority - package org.springframework.security.core.authority
The default implementation of the GrantedAuthority interface.
org.springframework.security.core.authority.mapping - package org.springframework.security.core.authority.mapping
Strategies for mapping a list of attributes (such as roles or LDAP groups) to a list of GrantedAuthoritys.
org.springframework.security.core.context - package org.springframework.security.core.context
Classes related to the establishment of a security context for the duration of a request (such as an HTTP or RMI invocation).
org.springframework.security.core.session - package org.springframework.security.core.session
Session abstraction which is provided by the org.springframework.security.core.session.SessionInformation SessionInformation class.
org.springframework.security.core.token - package org.springframework.security.core.token
A service for building secure random tokens.
org.springframework.security.core.userdetails - package org.springframework.security.core.userdetails
The standard interfaces for implementing user data DAOs.
org.springframework.security.core.userdetails.cache - package org.springframework.security.core.userdetails.cache
Implementations of UserCache.
org.springframework.security.core.userdetails.jdbc - package org.springframework.security.core.userdetails.jdbc
Exposes a JDBC-based authentication repository, implementing org.springframework.security.core.userdetails.UserDetailsService UserDetailsService.
org.springframework.security.core.userdetails.memory - package org.springframework.security.core.userdetails.memory
Exposes an in-memory authentication repository.
org.springframework.security.crypto.bcrypt - package org.springframework.security.crypto.bcrypt
 
org.springframework.security.crypto.codec - package org.springframework.security.crypto.codec
Internal codec classes.
org.springframework.security.crypto.encrypt - package org.springframework.security.crypto.encrypt
 
org.springframework.security.crypto.keygen - package org.springframework.security.crypto.keygen
 
org.springframework.security.crypto.password - package org.springframework.security.crypto.password
 
org.springframework.security.crypto.util - package org.springframework.security.crypto.util
 
org.springframework.security.ldap - package org.springframework.security.ldap
Spring Security's LDAP module.
org.springframework.security.ldap.authentication - package org.springframework.security.ldap.authentication
The LDAP authentication provider package.
org.springframework.security.ldap.authentication.ad - package org.springframework.security.ldap.authentication.ad
 
org.springframework.security.ldap.ppolicy - package org.springframework.security.ldap.ppolicy
Implementation of password policy functionality based on the Password Policy for LDAP Directories.
org.springframework.security.ldap.search - package org.springframework.security.ldap.search
LdapUserSearch implementations.
org.springframework.security.ldap.server - package org.springframework.security.ldap.server
Embedded Apache Directory Server implementation, as used by the configuration namespace.
org.springframework.security.ldap.userdetails - package org.springframework.security.ldap.userdetails
LDAP-focused UserDetails implementations which map from a ubset of the data contained in some of the standard LDAP types (such as InetOrgPerson).
org.springframework.security.openid - package org.springframework.security.openid
Authenticates standard web browser users via OpenID.
org.springframework.security.provisioning - package org.springframework.security.provisioning
Contains simple user and authority group account provisioning interfaces together with a a JDBC-based implementation.
org.springframework.security.remoting.dns - package org.springframework.security.remoting.dns
DNS resolution.
org.springframework.security.remoting.httpinvoker - package org.springframework.security.remoting.httpinvoker
Enables use of Spring's HttpInvoker extension points to present the principal and credentials located in the ContextHolder via BASIC authentication.
org.springframework.security.remoting.rmi - package org.springframework.security.remoting.rmi
Enables use of Spring's RMI remoting extension points to propagate the SecurityContextHolder (which should contain an Authentication request token) from one JVM to the remote JVM.
org.springframework.security.taglibs - package org.springframework.security.taglibs
Security related tag libraries that can be used in JSPs and templates.
org.springframework.security.taglibs.authz - package org.springframework.security.taglibs.authz
JSP Security tag library implementation.
org.springframework.security.taglibs.velocity - package org.springframework.security.taglibs.velocity
 
org.springframework.security.util - package org.springframework.security.util
General utility classes used throughout the Spring Security framework.
org.springframework.security.web - package org.springframework.security.web
Spring Security's web security module.
org.springframework.security.web.access - package org.springframework.security.web.access
Access-control related classes and packages.
org.springframework.security.web.access.channel - package org.springframework.security.web.access.channel
Classes that ensure web requests are received over required transport channels.
org.springframework.security.web.access.expression - package org.springframework.security.web.access.expression
Implementation of web security expressions.
org.springframework.security.web.access.intercept - package org.springframework.security.web.access.intercept
Enforcement of security for HTTP requests, typically by the URL requested.
org.springframework.security.web.authentication - package org.springframework.security.web.authentication
Authentication processing mechanisms, which respond to the submission of authentication credentials using various protocols (eg BASIC, CAS, form login etc).
org.springframework.security.web.authentication.logout - package org.springframework.security.web.authentication.logout
Logout functionality based around a filter which handles a specific logout URL.
org.springframework.security.web.authentication.preauth - package org.springframework.security.web.authentication.preauth
Support for "pre-authenticated" scenarios, where Spring Security assumes the incoming request has already been authenticated by some externally configured system.
org.springframework.security.web.authentication.preauth.j2ee - package org.springframework.security.web.authentication.preauth.j2ee
Pre-authentication support for container-authenticated requests.
org.springframework.security.web.authentication.preauth.websphere - package org.springframework.security.web.authentication.preauth.websphere
Websphere-specific pre-authentication classes.
org.springframework.security.web.authentication.preauth.x509 - package org.springframework.security.web.authentication.preauth.x509
X.509 client certificate authentication support.
org.springframework.security.web.authentication.rememberme - package org.springframework.security.web.authentication.rememberme
Support for remembering a user between different web sessions.
org.springframework.security.web.authentication.session - package org.springframework.security.web.authentication.session
Strategy interface and implementations for handling session-related behaviour for a newly authenticated user.
org.springframework.security.web.authentication.switchuser - package org.springframework.security.web.authentication.switchuser
Provides HTTP-based "switch user" (su) capabilities.
org.springframework.security.web.authentication.ui - package org.springframework.security.web.authentication.ui
Authentication user-interface rendering code.
org.springframework.security.web.authentication.www - package org.springframework.security.web.authentication.www
WWW-Authenticate based authentication mechanism implementations: Basic and Digest authentication.
org.springframework.security.web.context - package org.springframework.security.web.context
Classes which are responsible for maintaining the security context between HTTP requests.
org.springframework.security.web.firewall - package org.springframework.security.web.firewall
 
org.springframework.security.web.jaasapi - package org.springframework.security.web.jaasapi
Makes a JAAS Subject available as the current Subject.
org.springframework.security.web.savedrequest - package org.springframework.security.web.savedrequest
Classes related to the caching of an HttpServletRequest which requires authentication.
org.springframework.security.web.servletapi - package org.springframework.security.web.servletapi
Populates a Servlet request with a new Spring Security compliant HttpServletRequestWrapper.
org.springframework.security.web.session - package org.springframework.security.web.session
Session management filters, HttpSession events and publisher classes.
org.springframework.security.web.util - package org.springframework.security.web.util
Web utility classes.
OwnershipAcl - Interface in org.springframework.security.acls.model
A mutable ACL that provides ownership capabilities.

P

pageContext - Variable in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.authentication.AuthenticationProviderBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.DebugBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.http.FilterChainBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.http.FilterInvocationSecurityMetadataSourceParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.http.FormLoginBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.http.HttpFirewallBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.http.HttpSecurityBeanDefinitionParser
The aim of this method is to build the list of filters which have been defined by the namespace elements and attributes within the <http> configuration, along with any custom-filter's linked to user-defined filter beans.
parse(Element, ParserContext) - Method in class org.springframework.security.config.ldap.LdapProviderBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.method.GlobalMethodSecurityBeanDefinitionParser
 
parse(Element, ParserContext) - Method in class org.springframework.security.config.SecurityNamespaceHandler
 
parseCache - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
Parser cache.
parseDate(String, DateFormat[]) - Static method in class org.springframework.security.web.savedrequest.FastHttpDateFormat
Tries to parse the given date as an HTTP date.
parseInternal(Element, ParserContext) - Method in class org.springframework.security.config.method.MethodSecurityMetadataSourceBeanDefinitionParser
 
parseRootDnFromUrl(String) - Static method in class org.springframework.security.ldap.LdapUtils
Works out the root DN for an LDAP URL.
PASSWORD_ENCODER - Static variable in class org.springframework.security.config.Elements
 
PasswordComparisonAuthenticator - Class in org.springframework.security.ldap.authentication
An LdapAuthenticator which compares the login password with the value stored in the directory using a remote LDAP "compare" operation.
PasswordComparisonAuthenticator(BaseLdapPathContextSource) - Constructor for class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
 
PasswordEncoder - Interface in org.springframework.security.authentication.encoding
Deprecated.
It is recommended to use PasswordEncoder instead which better accommodates best practice of randomly generated salt that is included with the password.
PasswordEncoder - Interface in org.springframework.security.crypto.password
Service interface for encoding passwords.
PasswordEncoderParser - Class in org.springframework.security.config.authentication
Stateful parser for the element.
PasswordEncoderParser(Element, ParserContext) - Constructor for class org.springframework.security.config.authentication.PasswordEncoderParser
 
PasswordPolicyAwareContextSource - Class in org.springframework.security.ldap.ppolicy
Extended version of the DefaultSpringSecurityContextSource which adds support for the use of PasswordPolicyControl to make use of user account data stored in the directory.
PasswordPolicyAwareContextSource(String) - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyAwareContextSource
 
PasswordPolicyControl - Class in org.springframework.security.ldap.ppolicy
A Password Policy request control.
PasswordPolicyControl() - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
Creates a non-critical (request) control.
PasswordPolicyControl(boolean) - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
Creates a (request) control.
PasswordPolicyControlExtractor - Class in org.springframework.security.ldap.ppolicy
Obtains the PasswordPolicyControl from a context for use by other classes.
PasswordPolicyControlExtractor() - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControlExtractor
 
PasswordPolicyControlFactory - Class in org.springframework.security.ldap.ppolicy
Transforms a control object to a PasswordPolicyResponseControl object, if appropriate.
PasswordPolicyControlFactory() - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControlFactory
 
PasswordPolicyData - Interface in org.springframework.security.ldap.ppolicy
 
PasswordPolicyErrorStatus - Enum in org.springframework.security.ldap.ppolicy
Defines status codes for use with PasswordPolicyException, with error codes (for message source lookup) and default messages.
PasswordPolicyException - Exception in org.springframework.security.ldap.ppolicy
Generic exception raised by the ppolicy package.
PasswordPolicyException(PasswordPolicyErrorStatus) - Constructor for exception org.springframework.security.ldap.ppolicy.PasswordPolicyException
 
PasswordPolicyResponseControl - Class in org.springframework.security.ldap.ppolicy
Represents the response control received when a PasswordPolicyControl is used when binding to a directory.
PasswordPolicyResponseControl(byte[]) - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Decodes the Ber encoded control data.
Permission - Interface in org.springframework.security.acls.model
Represents a permission granted to a Sid for a given domain object.
PermissionCacheOptimizer - Interface in org.springframework.security.access
Allows permissions to be pre-cached when using pre or post filtering with expressions
PermissionEvaluator - Interface in org.springframework.security.access
Strategy used in expression evaluation to determine whether a user has a permission or permissions for a given domain object.
PermissionFactory - Interface in org.springframework.security.acls.domain
Provides a simple mechanism to retrieve Permission instances from integer masks.
PermissionGrantingStrategy - Interface in org.springframework.security.acls.model
Allow customization of the logic for determining whether a permission or permissions are granted to a particular sid or sids by an Acl.
PERMIT_ALL_ATTRIBUTE - Static variable in class org.springframework.security.access.annotation.Jsr250SecurityConfig
 
permitAll() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
 
permitAll - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
Allows "permitAll" expression
permitAll() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
PersistentRememberMeToken - Class in org.springframework.security.web.authentication.rememberme
 
PersistentRememberMeToken(String, String, String, Date) - Constructor for class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
 
PersistentTokenBasedRememberMeServices - Class in org.springframework.security.web.authentication.rememberme
PersistentTokenBasedRememberMeServices() - Constructor for class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
Deprecated.
Use constructor injection
PersistentTokenBasedRememberMeServices(String, UserDetailsService, PersistentTokenRepository) - Constructor for class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
PersistentTokenRepository - Interface in org.springframework.security.web.authentication.rememberme
The abstraction used by PersistentTokenBasedRememberMeServices to store the persistent login tokens for a user.
Person - Class in org.springframework.security.ldap.userdetails
UserDetails implementation whose properties are based on the LDAP schema for Person.
Person() - Constructor for class org.springframework.security.ldap.userdetails.Person
 
Person.Essence - Class in org.springframework.security.ldap.userdetails
 
Person.Essence() - Constructor for class org.springframework.security.ldap.userdetails.Person.Essence
 
Person.Essence(DirContextOperations) - Constructor for class org.springframework.security.ldap.userdetails.Person.Essence
 
Person.Essence(Person) - Constructor for class org.springframework.security.ldap.userdetails.Person.Essence
 
PERSON_MAPPER_CLASS - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
 
PersonContextMapper - Class in org.springframework.security.ldap.userdetails
 
PersonContextMapper() - Constructor for class org.springframework.security.ldap.userdetails.PersonContextMapper
 
PlaintextPasswordEncoder - Class in org.springframework.security.authentication.encoding
Plaintext implementation of PasswordEncoder.
PlaintextPasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
 
populateContext(DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
 
populateContext(DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.Person
 
PORT_MAPPING - Static variable in class org.springframework.security.config.Elements
 
PORT_MAPPINGS - Static variable in class org.springframework.security.config.Elements
 
PortMapper - Interface in org.springframework.security.web
PortMapper implementations provide callers with information about which HTTP ports are associated with which HTTPS ports on the system, and vice versa.
PortMapperImpl - Class in org.springframework.security.web
Concrete implementation of PortMapper that obtains HTTP:HTTPS pairs from the application context.
PortMapperImpl() - Constructor for class org.springframework.security.web.PortMapperImpl
 
PortResolver - Interface in org.springframework.security.web
A PortResolver determines the port a web request was received on.
PortResolverImpl - Class in org.springframework.security.web
Concrete implementation of PortResolver that obtains the port from ServletRequest.getServerPort().
PortResolverImpl() - Constructor for class org.springframework.security.web.PortResolverImpl
 
POST_INVOCATION_ADVICE - Static variable in class org.springframework.security.config.Elements
 
PostAuthorize - Annotation Type in org.springframework.security.access.prepost
Annotation for specifying a method access-control expression which will be evaluated after a method has been invoked.
PostFilter - Annotation Type in org.springframework.security.access.prepost
Annotation for specifying a method filtering expression which will be evaluated after a method has been invoked.
PostInvocationAdviceProvider - Class in org.springframework.security.access.prepost
AfterInvocationProvider which delegates to a PostInvocationAuthorizationAdvice instance passing it the PostInvocationAttribute created from @PostAuthorize and @PostFilter annotations.
PostInvocationAdviceProvider(PostInvocationAuthorizationAdvice) - Constructor for class org.springframework.security.access.prepost.PostInvocationAdviceProvider
 
PostInvocationAttribute - Interface in org.springframework.security.access.prepost
Marker interface for attributes which are created from combined @PostFilter and @PostAuthorize annotations.
PostInvocationAuthorizationAdvice - Interface in org.springframework.security.access.prepost
Performs filtering and authorization logic after a method is invoked.
postProcessBeanDefinitionRegistry(BeanDefinitionRegistry) - Method in class org.springframework.security.config.debug.SecurityDebugBeanFactoryPostProcessor
 
postProcessBeanFactory(ConfigurableListableBeanFactory) - Method in class org.springframework.security.config.debug.SecurityDebugBeanFactoryPostProcessor
 
PRE_INVOCATION_ADVICE - Static variable in class org.springframework.security.config.Elements
 
PreAuthenticatedAuthenticationProvider - Class in org.springframework.security.web.authentication.preauth
Processes a pre-authenticated authentication request.
PreAuthenticatedAuthenticationProvider() - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
 
PreAuthenticatedAuthenticationToken - Class in org.springframework.security.web.authentication.preauth
Authentication implementation for pre-authenticated authentication.
PreAuthenticatedAuthenticationToken(Object, Object) - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
Constructor used for an authentication request.
PreAuthenticatedAuthenticationToken(Object, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
Constructor used for an authentication response.
PreAuthenticatedCredentialsNotFoundException - Exception in org.springframework.security.web.authentication.preauth
 
PreAuthenticatedCredentialsNotFoundException(String) - Constructor for exception org.springframework.security.web.authentication.preauth.PreAuthenticatedCredentialsNotFoundException
 
PreAuthenticatedCredentialsNotFoundException(String, Throwable) - Constructor for exception org.springframework.security.web.authentication.preauth.PreAuthenticatedCredentialsNotFoundException
 
PreAuthenticatedGrantedAuthoritiesAuthenticationDetails - Class in org.springframework.security.web.authentication.preauth
Deprecated.
PreAuthenticatedGrantedAuthoritiesAuthenticationDetails(Object) - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesAuthenticationDetails
Deprecated.
 
PreAuthenticatedGrantedAuthoritiesUserDetailsService - Class in org.springframework.security.web.authentication.preauth
This AuthenticationUserDetailsService implementation creates a UserDetails object based solely on the information contained in the given PreAuthenticatedAuthenticationToken.
PreAuthenticatedGrantedAuthoritiesUserDetailsService() - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesUserDetailsService
 
PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails - Class in org.springframework.security.web.authentication.preauth
This WebAuthenticationDetails implementation allows for storing a list of pre-authenticated Granted Authorities.
PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails(HttpServletRequest, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails
 
PreAuthorize - Annotation Type in org.springframework.security.access.prepost
Annotation for specifying a method access-control expression which will be evaluated to decide whether a method invocation is allowed or not.
preCommence(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
Template method for you to do your own pre-processing before the redirect occurs.
PreFilter - Annotation Type in org.springframework.security.access.prepost
Annotation for specifying a method filtering expression which will be evaluated before a method has been invoked.
PreInvocationAttribute - Interface in org.springframework.security.access.prepost
Marker interface for attributes which are created from combined @PreFilter and @PreAuthorize annotations.
PreInvocationAuthorizationAdvice - Interface in org.springframework.security.access.prepost
Performs argument filtering and authorization logic before a method is invoked.
PreInvocationAuthorizationAdviceVoter - Class in org.springframework.security.access.prepost
Voter which performs the actions using a PreInvocationAuthorizationAdvice implementation generated from @PreFilter and @PreAuthorize annotations.
PreInvocationAuthorizationAdviceVoter(PreInvocationAuthorizationAdvice) - Constructor for class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
 
prepareConnection(HttpURLConnection, int) - Method in class org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor
Called every time a HTTP invocation is made.
PrePostAnnotationSecurityMetadataSource - Class in org.springframework.security.access.prepost
MethodSecurityMetadataSource which extracts metadata from the @PreFilter and @PreAuthorize annotations placed on a method.
PrePostAnnotationSecurityMetadataSource(PrePostInvocationAttributeFactory) - Constructor for class org.springframework.security.access.prepost.PrePostAnnotationSecurityMetadataSource
 
PrePostInvocationAttributeFactory - Interface in org.springframework.security.access.prepost
 
PrincipalSid - Class in org.springframework.security.acls.domain
Represents an Authentication.getPrincipal() as a Sid.
PrincipalSid(String) - Constructor for class org.springframework.security.acls.domain.PrincipalSid
 
PrincipalSid(Authentication) - Constructor for class org.springframework.security.acls.domain.PrincipalSid
 
printBinary(int) - Static method in class org.springframework.security.acls.domain.AclFormattingUtils
Returns a representation of the active bits in the presented mask, with each active bit being denoted by character '*'.
printBinary(int, char) - Static method in class org.springframework.security.acls.domain.AclFormattingUtils
Returns a representation of the active bits in the presented mask, with each active bit being denoted by the passed character.
proceed() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
 
proceed() - Method in class org.springframework.security.util.SimpleMethodInvocation
 
proceedWithObject() - Method in interface org.springframework.security.access.intercept.aspectj.AspectJCallback
 
processAutoLoginCookie(String[], HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Called from autoLogin to process the submitted persistent login cookie.
processAutoLoginCookie(String[], HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
Locates the presented cookie data in the token repository, using the series id.
processAutoLoginCookie(String[], HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
 
processConfigAttribute - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
processDomainObjectClass - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
PROTECT - Static variable in class org.springframework.security.config.Elements
 
PROTECT_POINTCUT - Static variable in class org.springframework.security.config.Elements
 
ProviderManager - Class in org.springframework.security.authentication
Iterates an Authentication request through a list of AuthenticationProviders.
ProviderManager() - Constructor for class org.springframework.security.authentication.ProviderManager
Deprecated.
Use constructor which takes provider list
ProviderManager(List<AuthenticationProvider>) - Constructor for class org.springframework.security.authentication.ProviderManager
 
ProviderManager(List<AuthenticationProvider>, AuthenticationManager) - Constructor for class org.springframework.security.authentication.ProviderManager
 
ProviderNotFoundException - Exception in org.springframework.security.authentication
Thrown by ProviderManager if no AuthenticationProvider could be found that supports the presented Authentication object.
ProviderNotFoundException(String) - Constructor for exception org.springframework.security.authentication.ProviderNotFoundException
Constructs a ProviderNotFoundException with the specified message.
PublicInvocationEvent - Class in org.springframework.security.access.event
Event that is generated whenever a public secure object is invoked.
PublicInvocationEvent(Object) - Constructor for class org.springframework.security.access.event.PublicInvocationEvent
Construct the event, passing in the public secure object.
publishAuthenticationFailure(AuthenticationException, Authentication) - Method in interface org.springframework.security.authentication.AuthenticationEventPublisher
 
publishAuthenticationFailure(AuthenticationException, Authentication) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
 
publishAuthenticationSuccess(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationEventPublisher
 
publishAuthenticationSuccess(Authentication) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
 
publishFailureEvent(UsernamePasswordAuthenticationToken, AuthenticationException) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
publishFailureEvent(UsernamePasswordAuthenticationToken, AuthenticationException) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
publishSuccessEvent(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
putInCache(MutableAcl) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
 
putInCache(MutableAcl) - Method in interface org.springframework.security.acls.model.AclCache
 
putTicketInCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
putTicketInCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
This is a no-op since we are not storing tickets.
putTicketInCache(CasAuthenticationToken) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
Adds the specified CasAuthenticationToken to the cache.
putUserInCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
putUserInCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.NullUserCache
 
putUserInCache(UserDetails) - Method in interface org.springframework.security.core.userdetails.UserCache
Places a UserDetails in the cache.

Q

queryableText(CharSequence, CharSequence) - Static method in class org.springframework.security.crypto.encrypt.Encryptors
Creates an encryptor for queryable text strings that uses standard password-based encryption.

R

read - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
 
READ - Static variable in class org.springframework.security.acls.domain.BasePermission
 
readAclById(ObjectIdentity, List<Sid>) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
 
readAclById(ObjectIdentity) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
 
readAclById(ObjectIdentity) - Method in interface org.springframework.security.acls.model.AclService
Same as AclService.readAclsById(List) except it returns only a single Acl.
readAclById(ObjectIdentity, List<Sid>) - Method in interface org.springframework.security.acls.model.AclService
Same as AclService.readAclsById(List, List) except it returns only a single Acl.
readAclsById(List<ObjectIdentity>, List<Sid>) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
The main method.
readAclsById(List<ObjectIdentity>) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
 
readAclsById(List<ObjectIdentity>, List<Sid>) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
 
readAclsById(List<ObjectIdentity>, List<Sid>) - Method in interface org.springframework.security.acls.jdbc.LookupStrategy
Perform database-specific optimized lookup.
readAclsById(List<ObjectIdentity>) - Method in interface org.springframework.security.acls.model.AclService
Obtains all the Acls that apply for the passed Objects.
readAclsById(List<ObjectIdentity>, List<Sid>) - Method in interface org.springframework.security.acls.model.AclService
Obtains all the Acls that apply for the passed Objects, but only for the security identifies passed.
RedirectStrategy - Interface in org.springframework.security.web
Encapsulates the redirection logic for all classes in the framework which perform redirects.
RedirectUrlBuilder - Class in org.springframework.security.web.util
Internal class for building redirect URLs.
RedirectUrlBuilder() - Constructor for class org.springframework.security.web.util.RedirectUrlBuilder
 
ReflectionSaltSource - Class in org.springframework.security.authentication.dao
Obtains a salt from a specified property of the User object.
ReflectionSaltSource() - Constructor for class org.springframework.security.authentication.dao.ReflectionSaltSource
 
refresh() - Method in class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
Does nothing, but required for JDK5
refreshLastRequest() - Method in class org.springframework.security.core.session.SessionInformation
Refreshes the internal lastRequest to the current date and time.
refreshLastRequest(String) - Method in interface org.springframework.security.core.session.SessionRegistry
Updates the given sessionId so its last request time is equal to the present date and time.
refreshLastRequest(String) - Method in class org.springframework.security.core.session.SessionRegistryImpl
 
RegexBasedAxFetchListFactory - Class in org.springframework.security.openid
 
RegexBasedAxFetchListFactory(Map<String, List<OpenIDAttribute>>) - Constructor for class org.springframework.security.openid.RegexBasedAxFetchListFactory
 
RegexRequestMatcher - Class in org.springframework.security.web.util
Uses a regular expression to decide whether a supplied the URL of a supplied HttpServletRequest.
RegexRequestMatcher(String, String) - Constructor for class org.springframework.security.web.util.RegexRequestMatcher
Creates a case-sensitive Pattern instance to match against the request.
RegexRequestMatcher(String, String, boolean) - Constructor for class org.springframework.security.web.util.RegexRequestMatcher
As above, but allows setting of whether case-insensitive matching should be used.
registerExtractor(Class<? extends Throwable>, ThrowableCauseExtractor) - Method in class org.springframework.security.web.util.ThrowableAnalyzer
Registers a ThrowableCauseExtractor for the specified type.
registerNewSession(String, Object) - Method in interface org.springframework.security.core.session.SessionRegistry
Registers a new session for the specified principal.
registerNewSession(String, Object) - Method in class org.springframework.security.core.session.SessionRegistryImpl
 
registerPermission(Permission, String) - Method in class org.springframework.security.acls.domain.DefaultPermissionFactory
 
registerPublicPermissions(Class<? extends Permission>) - Method in class org.springframework.security.acls.domain.DefaultPermissionFactory
Registers the public static fields of type Permission for a give class.
release() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
REMEMBER_ME - Static variable in class org.springframework.security.config.Elements
 
RememberMeAuthenticationException - Exception in org.springframework.security.web.authentication.rememberme
 
RememberMeAuthenticationException(String) - Constructor for exception org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationException
 
RememberMeAuthenticationFilter - Class in org.springframework.security.web.authentication.rememberme
Detects if there is no Authentication object in the SecurityContext, and populates the context with a remember-me authentication token if a RememberMeServices implementation so requests.
RememberMeAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
Deprecated.
Use constructor injection
RememberMeAuthenticationFilter(AuthenticationManager, RememberMeServices) - Constructor for class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
 
RememberMeAuthenticationProvider - Class in org.springframework.security.authentication
An AuthenticationProvider implementation that validates RememberMeAuthenticationTokens.
RememberMeAuthenticationProvider() - Constructor for class org.springframework.security.authentication.RememberMeAuthenticationProvider
Deprecated.
Use constructor injection
RememberMeAuthenticationProvider(String) - Constructor for class org.springframework.security.authentication.RememberMeAuthenticationProvider
 
RememberMeAuthenticationToken - Class in org.springframework.security.authentication
Represents a remembered Authentication.
RememberMeAuthenticationToken(String, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.authentication.RememberMeAuthenticationToken
Constructor.
rememberMeRequested(HttpServletRequest, String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Allows customization of whether a remember-me login has been requested.
RememberMeServices - Interface in org.springframework.security.web.authentication
Implement by a class that is capable of providing a remember-me service.
RemoteAuthenticationException - Exception in org.springframework.security.authentication.rcp
Thrown if a RemoteAuthenticationManager cannot validate the presented authentication request.
RemoteAuthenticationException(String) - Constructor for exception org.springframework.security.authentication.rcp.RemoteAuthenticationException
Constructs a RemoteAuthenticationException with the specified message and no root cause.
RemoteAuthenticationManager - Interface in org.springframework.security.authentication.rcp
Allows remote clients to attempt authentication.
RemoteAuthenticationManagerImpl - Class in org.springframework.security.authentication.rcp
Server-side processor of a remote authentication request.
RemoteAuthenticationManagerImpl() - Constructor for class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
 
RemoteAuthenticationProvider - Class in org.springframework.security.authentication.rcp
Client-side object which queries a RemoteAuthenticationManager to validate an authentication request.
RemoteAuthenticationProvider() - Constructor for class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
 
removeAuthorities(DistinguishedName, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
removeGroupAuthority(String, GrantedAuthority) - Method in interface org.springframework.security.provisioning.GroupManager
Deletes an authority from those assigned to a group
removeGroupAuthority(String, GrantedAuthority) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
removeRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
 
removeRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
 
removeRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
Removes the cached request.
removeSessionInformation(String) - Method in interface org.springframework.security.core.session.SessionRegistry
Deletes all the session information being maintained for the specified sessionId.
removeSessionInformation(String) - Method in class org.springframework.security.core.session.SessionRegistryImpl
 
removeTicketFromCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
removeTicketFromCache(String) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
removeTicketFromCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
This is a no-op since we are not storing tickets.
removeTicketFromCache(String) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
This is a no-op since we are not storing tickets.
removeTicketFromCache(CasAuthenticationToken) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
Removes the specified ticket from the cache, as per StatelessTicketCache.removeTicketFromCache(String).
removeTicketFromCache(String) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
Removes the specified ticket from the cache, meaning that future calls will require a new service ticket.
removeUserFromCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
removeUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
removeUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.NullUserCache
 
removeUserFromCache(String) - Method in interface org.springframework.security.core.userdetails.UserCache
Removes the specified user from the cache.
removeUserFromGroup(String, String) - Method in interface org.springframework.security.provisioning.GroupManager
Deletes a user's membership of a group.
removeUserFromGroup(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
removeUserTokens(String) - Method in class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
 
removeUserTokens(String) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
 
removeUserTokens(String) - Method in interface org.springframework.security.web.authentication.rememberme.PersistentTokenRepository
 
renameGroup(String, String) - Method in interface org.springframework.security.provisioning.GroupManager
Changes the name of a group without altering the assigned authorities or members.
renameGroup(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
request - Variable in class org.springframework.security.web.access.expression.WebSecurityExpressionRoot
Allows direct access to the request object
REQUEST_CACHE - Static variable in class org.springframework.security.config.Elements
 
RequestCache - Interface in org.springframework.security.web.savedrequest
Implements "saved request" logic, allowing a single request to be retrieved and restarted after redirecting to an authentication mechanism.
RequestCacheAwareFilter - Class in org.springframework.security.web.savedrequest
Responsible for reconstituting the saved request if one is cached and it matches the current request.
RequestCacheAwareFilter() - Constructor for class org.springframework.security.web.savedrequest.RequestCacheAwareFilter
 
RequestCacheAwareFilter(RequestCache) - Constructor for class org.springframework.security.web.savedrequest.RequestCacheAwareFilter
 
RequestHeaderAuthenticationFilter - Class in org.springframework.security.web.authentication.preauth
A simple pre-authenticated filter which obtains the username from a request header, for use with systems such as CA Siteminder.
RequestHeaderAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
 
RequestKey - Class in org.springframework.security.web.access.intercept
 
RequestKey(String) - Constructor for class org.springframework.security.web.access.intercept.RequestKey
 
RequestKey(String, String) - Constructor for class org.springframework.security.web.access.intercept.RequestKey
 
RequestMatcher - Interface in org.springframework.security.web.util
Simple strategy to match an HttpServletRequest.
RequestMatcherEditor - Class in org.springframework.security.web.util
PropertyEditor which creates ELRequestMatcher instances from Strings This allows to use a String in a BeanDefinition instead of an (inner) bean if a RequestMatcher is required, e.g.
RequestMatcherEditor() - Constructor for class org.springframework.security.web.util.RequestMatcherEditor
 
RequestRejectedException - Exception in org.springframework.security.web.firewall
 
RequestRejectedException(String) - Constructor for exception org.springframework.security.web.firewall.RequestRejectedException
 
requirePermission - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
requiresAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
Overridden to provide proxying capabilities.
requiresAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Indicates whether this filter should attempt to process a login request for the current invocation.
requiresExitUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Checks the request URI for the presence of exitUserUrl.
requiresLogout(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
Allow subclasses to modify when a logout should take place.
requiresSwitchUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Checks the request URI for the presence of switchUserUrl.
RESERVED_OFF - Static variable in interface org.springframework.security.acls.model.Permission
 
RESERVED_ON - Static variable in interface org.springframework.security.acls.model.Permission
 
reset() - Method in class org.springframework.security.web.firewall.FirewalledRequest
This method will be called once the request has passed through the security filter chain, when it is about to proceed to the application proper.
resolveException(LoginException) - Method in class org.springframework.security.authentication.jaas.DefaultLoginExceptionResolver
 
resolveException(LoginException) - Method in interface org.springframework.security.authentication.jaas.LoginExceptionResolver
Translates a Jaas LoginException to an SpringSecurityException.
resolveIpAddress(String) - Method in interface org.springframework.security.remoting.dns.DnsResolver
Resolves the IP Address (A record) to the specified host name.
resolveIpAddress(String) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
 
resolveServiceEntry(String, String) - Method in interface org.springframework.security.remoting.dns.DnsResolver
Resolves the host name for the specified service in the specified domain
resolveServiceEntry(String, String) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
 
resolveServiceIpAddress(String, String) - Method in interface org.springframework.security.remoting.dns.DnsResolver
Resolves the host name for the specified service and then the IP Address for this host in one call.
resolveServiceIpAddress(String, String) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
 
retrieveEntry(String, String[]) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
Composes an object from the attributes of the given DN.
retrieveObjectIdentityPrimaryKey(ObjectIdentity) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Retrieves the primary key from the acl_object_identity table for the passed ObjectIdentity.
retrievePassword(Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
 
retrieveUser(String, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
Allows subclasses to actually retrieve the UserDetails from an implementation-specific location, with the option of throwing an AuthenticationException immediately if the presented credentials are incorrect (this is especially useful if it is necessary to bind to a resource as the user in order to obtain or generate a UserDetails).
retrieveUser(String, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
retrieveUserName(Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
 
RetryWithHttpEntryPoint - Class in org.springframework.security.web.access.channel
Commences an insecure channel by retrying the original request using HTTP.
RetryWithHttpEntryPoint() - Constructor for class org.springframework.security.web.access.channel.RetryWithHttpEntryPoint
 
RetryWithHttpsEntryPoint - Class in org.springframework.security.web.access.channel
Commences a secure channel by retrying the original request using HTTPS.
RetryWithHttpsEntryPoint() - Constructor for class org.springframework.security.web.access.channel.RetryWithHttpsEntryPoint
 
ROLE_PREVIOUS_ADMINISTRATOR - Static variable in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
RoleHierarchy - Interface in org.springframework.security.access.hierarchicalroles
The simple interface of a role hierarchy.
RoleHierarchyAuthoritiesMapper - Class in org.springframework.security.access.hierarchicalroles
 
RoleHierarchyAuthoritiesMapper(RoleHierarchy) - Constructor for class org.springframework.security.access.hierarchicalroles.RoleHierarchyAuthoritiesMapper
 
RoleHierarchyImpl - Class in org.springframework.security.access.hierarchicalroles
This class defines a role hierarchy for use with the UserDetailsServiceWrapper.
RoleHierarchyImpl() - Constructor for class org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl
 
RoleHierarchyVoter - Class in org.springframework.security.access.vote
Extended RoleVoter which uses a RoleHierarchy definition to determine the roles allocated to the current user before voting.
RoleHierarchyVoter(RoleHierarchy) - Constructor for class org.springframework.security.access.vote.RoleHierarchyVoter
 
RoleVoter - Class in org.springframework.security.access.vote
Votes if any ConfigAttribute.getAttribute() starts with a prefix indicating that it is a role.
RoleVoter() - Constructor for class org.springframework.security.access.vote.RoleVoter
 
RunAsImplAuthenticationProvider - Class in org.springframework.security.access.intercept
An AuthenticationProvider implementation that can authenticate a RunAsUserToken.
RunAsImplAuthenticationProvider() - Constructor for class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
RunAsManager - Interface in org.springframework.security.access.intercept
Creates a new temporary Authentication object for the current secure object invocation only.
RunAsManagerImpl - Class in org.springframework.security.access.intercept
Basic concrete implementation of a RunAsManager.
RunAsManagerImpl() - Constructor for class org.springframework.security.access.intercept.RunAsManagerImpl
 
RunAsUserToken - Class in org.springframework.security.access.intercept
An immutable Authentication implementation that supports RunAsManagerImpl.
RunAsUserToken(String, Object, Object, Collection<? extends GrantedAuthority>, Class<? extends Authentication>) - Constructor for class org.springframework.security.access.intercept.RunAsUserToken
 

S

SALT_SOURCE - Static variable in class org.springframework.security.config.Elements
 
SaltSource - Interface in org.springframework.security.authentication.dao
Provides alternative sources of the salt to use for encoding passwords.
SamlServiceProperties - Class in org.springframework.security.cas
Sets the appropriate parameters for CAS's implementation of SAML (which is not guaranteed to be actually SAML compliant).
SamlServiceProperties() - Constructor for class org.springframework.security.cas.SamlServiceProperties
 
saveContext(SecurityContext, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
 
saveContext(SecurityContext, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.context.NullSecurityContextRepository
 
saveContext(SecurityContext) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Implements the logic for storing the security context.
saveContext(SecurityContext, HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.context.SecurityContextRepository
Stores the security context on completion of a request.
SaveContextOnUpdateOrErrorResponseWrapper - Class in org.springframework.security.web.context
Base class for response wrappers which encapsulate the logic for storing a security context and which store the SecurityContext when a sendError(), sendRedirect, getOutputStream().close(), getOutputStream().flush(), getWriter().close(), or getWriter().flush() happens.
SaveContextOnUpdateOrErrorResponseWrapper(HttpServletResponse, boolean) - Constructor for class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
 
SavedCookie - Class in org.springframework.security.web.savedrequest
Stores off the values of a cookie in a serializable holder
SavedCookie(String, String, String, String, int, String, boolean, int) - Constructor for class org.springframework.security.web.savedrequest.SavedCookie
 
SavedCookie(Cookie) - Constructor for class org.springframework.security.web.savedrequest.SavedCookie
 
SavedRequest - Interface in org.springframework.security.web.savedrequest
Encapsulates the functionality required of a cached request for both an authentication mechanism (typically form-based login) to redirect to the original URL and for a RequestCache to build a wrapped request, reproducing the original request data.
SavedRequestAwareAuthenticationSuccessHandler - Class in org.springframework.security.web.authentication
An authentication success strategy which can make use of the DefaultSavedRequest which may have been stored in the session by the ExceptionTranslationFilter.
SavedRequestAwareAuthenticationSuccessHandler() - Constructor for class org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler
 
saveException(HttpServletRequest, AuthenticationException) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
Caches the AuthenticationException for use in view rendering.
saveRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
Stores the current request, provided the configuration properties allow it.
saveRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
 
saveRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
Caches the current request for later retrieval, once authentication has taken place.
searchForSingleAttributeValues(String, String, Object[], String) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
Performs a search using the supplied filter and returns the union of the values of the named attribute found in all entries matched by the search.
searchForSingleEntry(String, String, Object[]) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
Performs a search, with the requirement that the search shall return a single directory entry, and uses the supplied mapper to create the object from that entry.
searchForSingleEntryInternal(DirContext, SearchControls, String, String, Object[]) - Static method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
Internal method extracted to avoid code duplication in AD search.
searchForUser(String) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
Return the LdapUserDetails containing the user's information
searchForUser(String) - Method in interface org.springframework.security.ldap.search.LdapUserSearch
Locates a single user in the directory and returns the LDAP information for that user.
SecureChannelProcessor - Class in org.springframework.security.web.access.channel
Ensures channel security is active by review of HttpServletRequest.isSecure() responses.
SecureChannelProcessor() - Constructor for class org.springframework.security.web.access.channel.SecureChannelProcessor
 
Secured - Annotation Type in org.springframework.security.access.annotation
Java 5 annotation for describing service layer security attributes.
SecuredAnnotationSecurityMetadataSource - Class in org.springframework.security.access.annotation
Sources method security metadata from Spring Security's Secured annotation.
SecuredAnnotationSecurityMetadataSource() - Constructor for class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
 
SecuredAnnotationSecurityMetadataSource(AnnotationMetadataExtractor) - Constructor for class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
 
secureRandom() - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
Create a BytesKeyGenerator that uses a SecureRandom to generate keys of 8 bytes in length.
secureRandom(int) - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
Create a BytesKeyGenerator that uses a SecureRandom to generate keys of a custom length.
SecureRandomFactoryBean - Class in org.springframework.security.core.token
Creates a SecureRandom instance.
SecureRandomFactoryBean() - Constructor for class org.springframework.security.core.token.SecureRandomFactoryBean
 
securityCheck(Acl, int) - Method in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
 
securityCheck(Acl, int) - Method in class org.springframework.security.acls.domain.AclAuthorizationStrategyImpl
 
SecurityConfig - Class in org.springframework.security.access
Stores a ConfigAttribute as a String.
SecurityConfig(String) - Constructor for class org.springframework.security.access.SecurityConfig
 
SecurityContext - Interface in org.springframework.security.core.context
Interface defining the minimum security information associated with the current thread of execution.
SecurityContextHolder - Class in org.springframework.security.core.context
Associates a given SecurityContext with the current execution thread.
SecurityContextHolder() - Constructor for class org.springframework.security.core.context.SecurityContextHolder
 
SecurityContextHolderAwareRequestFilter - Class in org.springframework.security.web.servletapi
A Filter which populates the ServletRequest with a request wrapper which implements the servlet API security methods.
SecurityContextHolderAwareRequestFilter() - Constructor for class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
 
SecurityContextHolderAwareRequestWrapper - Class in org.springframework.security.web.servletapi
A Spring Security-aware HttpServletRequestWrapper, which uses the SecurityContext-defined Authentication object to implement the servlet API security methods SecurityContextHolderAwareRequestWrapper.isUserInRole(String) and HttpServletRequestWrapper.getRemoteUser().
SecurityContextHolderAwareRequestWrapper(HttpServletRequest, String) - Constructor for class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
 
SecurityContextHolderStrategy - Interface in org.springframework.security.core.context
A strategy for storing security context information against a thread.
SecurityContextImpl - Class in org.springframework.security.core.context
Base implementation of SecurityContext.
SecurityContextImpl() - Constructor for class org.springframework.security.core.context.SecurityContextImpl
 
SecurityContextLoginModule - Class in org.springframework.security.authentication.jaas
An implementation of LoginModule that uses a Spring Security SecurityContext to provide authentication.
SecurityContextLoginModule() - Constructor for class org.springframework.security.authentication.jaas.SecurityContextLoginModule
 
SecurityContextLogoutHandler - Class in org.springframework.security.web.authentication.logout
Performs a logout by modifying the SecurityContextHolder.
SecurityContextLogoutHandler() - Constructor for class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
 
SecurityContextPersistenceFilter - Class in org.springframework.security.web.context
Populates the SecurityContextHolder with information obtained from the configured SecurityContextRepository prior to the request and stores it back in the repository once the request has completed and clearing the context holder.
SecurityContextPersistenceFilter() - Constructor for class org.springframework.security.web.context.SecurityContextPersistenceFilter
 
SecurityContextPersistenceFilter(SecurityContextRepository) - Constructor for class org.springframework.security.web.context.SecurityContextPersistenceFilter
 
SecurityContextRepository - Interface in org.springframework.security.web.context
Strategy used for persisting a SecurityContext between requests.
SecurityDebugBeanFactoryPostProcessor - Class in org.springframework.security.config.debug
 
SecurityDebugBeanFactoryPostProcessor() - Constructor for class org.springframework.security.config.debug.SecurityDebugBeanFactoryPostProcessor
 
SecurityExpressionHandler<T> - Interface in org.springframework.security.access.expression
Facade which isolates Spring Security's requirements for evaluating security expressions from the implementation of the underlying expression objects
SecurityExpressionOperations - Interface in org.springframework.security.access.expression
Standard interface for expression root objects used with expression-based security.
SecurityExpressionRoot - Class in org.springframework.security.access.expression
Base root object for use in Spring Security expression evaluations.
SecurityExpressionRoot(Authentication) - Constructor for class org.springframework.security.access.expression.SecurityExpressionRoot
 
SecurityFilterChain - Interface in org.springframework.security.web
Defines a filter chain which is capable of being matched against an HttpServletRequest.
SecurityMetadataSource - Interface in org.springframework.security.access
Implemented by classes that store and can identify the ConfigAttributes that applies to a given secure object invocation.
SecurityNamespaceHandler - Class in org.springframework.security.config
Parses elements from the "security" namespace (http://www.springframework.org/schema/security).
SecurityNamespaceHandler() - Constructor for class org.springframework.security.config.SecurityNamespaceHandler
 
sendError(int) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Makes sure the session is updated before calling the superclass sendError()
sendError(int, String) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Makes sure the session is updated before calling the superclass sendError()
sendRedirect(String) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
Makes sure the context is stored before calling the superclass sendRedirect()
sendRedirect(HttpServletRequest, HttpServletResponse, String) - Method in class org.springframework.security.web.DefaultRedirectStrategy
Redirects the response to the supplied URL.
sendRedirect(HttpServletRequest, HttpServletResponse, String) - Method in interface org.springframework.security.web.RedirectStrategy
Performs a redirect to the supplied URL
sendStartAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, AuthenticationException) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
SERIAL_VERSION_UID - Static variable in class org.springframework.security.core.SpringSecurityCoreVersion
Global Serialization value for Spring Security classes.
serialVersionUID - Static variable in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesAuthenticationDetails
Deprecated.
 
ServiceAuthenticationDetails - Interface in org.springframework.security.cas.web.authentication
In order for the CasAuthenticationProvider to provide the correct service url to authenticate the ticket, the returned value of Authentication.getDetails() should implement this interface when tickets can be sent to any URL rather than only ServiceProperties.getService().
ServiceAuthenticationDetailsSource - Class in org.springframework.security.cas.web.authentication
The AuthenticationDetailsSource that is set on the CasAuthenticationFilter should return a value that implements ServiceAuthenticationDetails if the application needs to authenticate dynamic service urls.
ServiceAuthenticationDetailsSource() - Constructor for class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
Deprecated.
Use ServiceAuthenticationDetailsSource(ServiceProperties)
ServiceAuthenticationDetailsSource(ServiceProperties) - Constructor for class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
Creates an implementation that uses the specified ServiceProperites and the default CAS artifactParameterName.
ServiceAuthenticationDetailsSource(String) - Constructor for class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
Deprecated.
Use ServiceAuthenticationDetailsSource(ServiceProperties,String)
ServiceAuthenticationDetailsSource(ServiceProperties, String) - Constructor for class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
Creates an implementation that uses the specified artifactParameterName
ServiceProperties - Class in org.springframework.security.cas
Stores properties related to this CAS service.
ServiceProperties() - Constructor for class org.springframework.security.cas.ServiceProperties
 
SESSION_MANAGEMENT - Static variable in class org.springframework.security.config.Elements
 
SessionAuthenticationException - Exception in org.springframework.security.web.authentication.session
Thrown by an SessionAuthenticationStrategy to indicate that an authentication object is not valid for the current session, typically because the same user has exceeded the number of sessions they are allowed to have concurrently.
SessionAuthenticationException(String) - Constructor for exception org.springframework.security.web.authentication.session.SessionAuthenticationException
 
SessionAuthenticationStrategy - Interface in org.springframework.security.web.authentication.session
Allows pluggable support for HttpSession-related behaviour when an authentication occurs.
sessionCreated(HttpSessionEvent) - Method in class org.springframework.security.web.session.HttpSessionEventPublisher
Handles the HttpSessionEvent by publishing a HttpSessionCreatedEvent to the application appContext.
SessionCreationEvent - Class in org.springframework.security.core.session
Generic session creation event which indicates that a session (potentially represented by a security context) has begun.
SessionCreationEvent(Object) - Constructor for class org.springframework.security.core.session.SessionCreationEvent
 
sessionDestroyed(HttpSessionEvent) - Method in class org.springframework.security.web.session.HttpSessionEventPublisher
Handles the HttpSessionEvent by publishing a HttpSessionDestroyedEvent to the application appContext.
SessionDestroyedEvent - Class in org.springframework.security.core.session
Generic "session termination" event which indicates that a session (potentially represented by a security context) has ended.
SessionDestroyedEvent(Object) - Constructor for class org.springframework.security.core.session.SessionDestroyedEvent
 
SessionFixationProtectionStrategy - Class in org.springframework.security.web.authentication.session
The default implementation of SessionAuthenticationStrategy.
SessionFixationProtectionStrategy() - Constructor for class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
 
SessionIdentifierAware - Interface in org.springframework.security.core.session
Deprecated.
Legacy of former concurrency control implementation. Will be removed in a future version.
SessionInformation - Class in org.springframework.security.core.session
Represents a record of a session within the Spring Security framework.
SessionInformation(Object, String, Date) - Constructor for class org.springframework.security.core.session.SessionInformation
 
SessionManagementFilter - Class in org.springframework.security.web.session
Detects that a user has been authenticated since the start of the request and, if they have, calls the configured SessionAuthenticationStrategy to perform any session-related activity such as activating session-fixation protection mechanisms or checking for multiple concurrent logins.
SessionManagementFilter(SecurityContextRepository) - Constructor for class org.springframework.security.web.session.SessionManagementFilter
 
SessionManagementFilter(SecurityContextRepository, SessionAuthenticationStrategy) - Constructor for class org.springframework.security.web.session.SessionManagementFilter
 
SessionRegistry - Interface in org.springframework.security.core.session
Maintains a registry of SessionInformation instances.
SessionRegistryImpl - Class in org.springframework.security.core.session
Default implementation of SessionRegistry which listens for SessionDestroyedEvents published in the Spring application context.
SessionRegistryImpl() - Constructor for class org.springframework.security.core.session.SessionRegistryImpl
 
set(Permission) - Method in class org.springframework.security.acls.domain.CumulativePermission
 
setAccess(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
setAccessDecisionManager(AccessDecisionManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
setAccessDeniedHandler(AccessDeniedHandler) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
setAccountNonExpired(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setAccountNonLocked(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setAdditionalExceptionMappings(Properties) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
Sets additional exception to event mappings.
setAddPrefixIfAlreadyExisting(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
 
setAfterInvocationManager(AfterInvocationManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
setAlgorithm(String) - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
Allows the Pseudo Random Number Generator (PRNG) algorithm to be nominated.
setAllowIfAllAbstainDecisions(boolean) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
setAllowIfEqualGrantedDeniedDecisions(boolean) - Method in class org.springframework.security.access.vote.ConsensusBased
 
setAllowSessionCreation(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setAllowSessionCreation(boolean) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
 
setAllowSessionCreation(boolean) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
If set to true (the default), a session will be created (if required) to store the security context if it is determined that its contents are different from the default empty context value.
setAlwaysCreateSession(boolean) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
 
setAlwaysCreateSession(boolean) - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
 
setAlwaysReauthenticate(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
Indicates whether the AbstractSecurityInterceptor should ignore the Authentication.isAuthenticated() property.
setAlwaysRemember(boolean) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
setAlwaysUseDefaultTargetUrl(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
If true, will always redirect to the value of defaultTargetUrl (defaults to false).
setAnonymousClass(Class<? extends Authentication>) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
 
setAppCtx(ApplicationContext) - Method in interface org.springframework.security.taglibs.velocity.Authz
set Spring application context which contains Acegi related bean
setAppCtx(ApplicationContext) - Method in class org.springframework.security.taglibs.velocity.AuthzImpl
test case can use this class to mock application context with aclManager bean in it.
setApplicationContext(ApplicationContext) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
setApplicationContext(ApplicationContext) - Method in class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
 
setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.http.UserDetailsServiceFactoryBean
 
setApplicationContext(ApplicationContext) - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
 
setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
 
setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
 
setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
 
setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
setArtifactParameter(String) - Method in class org.springframework.security.cas.ServiceProperties
Configures the Request Parameter to look for when attempting to see if a CAS ticket was sent from the server.
setAsText(String) - Method in class org.springframework.security.access.ConfigAttributeEditor
Deprecated.
 
setAsText(String) - Method in class org.springframework.security.core.userdetails.memory.UserAttributeEditor
 
setAsText(String) - Method in class org.springframework.security.core.userdetails.memory.UserMapEditor
Deprecated.
 
setAsText(String) - Method in class org.springframework.security.web.util.RequestMatcherEditor
 
setAttributePrefix(String) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
 
setAttributes2grantedAuthoritiesMap(Map<?, ?>) - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
 
setAttributesToRetrieve(String[]) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
setAuthenticateAllArtifacts(boolean) - Method in class org.springframework.security.cas.ServiceProperties
If true, then any non-null artifact (ticket) should be authenticated.
setAuthenticated(boolean) - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
setAuthenticated(boolean) - Method in class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
 
setAuthenticated(boolean) - Method in interface org.springframework.security.core.Authentication
See Authentication.isAuthenticated() for a full description.
setAuthentication(Authentication) - Method in exception org.springframework.security.core.AuthenticationException
Deprecated.
setAuthentication(Authentication) - Method in interface org.springframework.security.core.context.SecurityContext
Changes the currently authenticated principal, or removes the authentication information.
setAuthentication(Authentication) - Method in class org.springframework.security.core.context.SecurityContextImpl
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<?, ?>) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSphere2SpringSecurityPropagationInterceptor
Deprecated.
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
setAuthenticationEntryPoint(AuthenticationEntryPoint) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
Deprecated.
Use constructor
setAuthenticationEntryPoint(AuthenticationEntryPoint) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
Deprecated.
Use constructor injection
setAuthenticationEntryPoint(DigestAuthenticationEntryPoint) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
setAuthenticationEventPublisher(AuthenticationEventPublisher) - Method in class org.springframework.security.authentication.ProviderManager
 
setAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
Wraps the AuthenticationFailureHandler to distinguish between handling proxy ticket authentication failures and service ticket failures.
setAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.web.session.SessionManagementFilter
The handler which will be invoked if the AuthenticatedSessionStrategy raises a SessionAuthenticationException, indicating that the user is not allowed to be authenticated for this session (typically because they already have too many sessions open).
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
 
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
 
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSphere2SpringSecurityPropagationInterceptor
Deprecated.
 
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
Deprecated.
Use constructor injection
setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
Deprecated.
Use constructor injection
setAuthenticationSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Sets the strategy used to handle a successful authentication.
setAuthenticationSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
Allows control over the destination a remembered user is sent to when they are successfully authenticated.
setAuthenticationTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.access.vote.AuthenticatedVoter
 
setAuthenticationTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
setAuthenticationUserDetailsService(AuthenticationUserDetailsService<CasAssertionAuthenticationToken>) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
setAuthenticationUserDetailsService(AuthenticationUserDetailsService<OpenIDAuthenticationToken>) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
Used to load the UserDetails for the authenticated OpenID user.
setAuthorities(List<GrantedAuthority>) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
Set all authorities for this user.
setAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setAuthoritiesAsString(List<String>) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
Set all authorities for this user from String values.
setAuthoritiesByUsernameQuery(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Allows the default query string used to retrieve authorities based on username to be overridden, if default table or column names need to be changed.
setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
 
setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
setAuthorityGranters(AuthorityGranter[]) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
Set the AuthorityGranters that should be consulted for role names to be granted to the Authentication.
setBatchSize(int) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
 
setBeanClassLoader(ClassLoader) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
 
setBeanFactory(BeanFactory) - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityMetadataSourceAdvisor
 
setBeanFactory(BeanFactory) - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
 
setCache(Ehcache) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
 
setCache(Ehcache) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
 
setCallbackHandlers(JaasAuthenticationCallbackHandler[]) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
Set the JAASAuthentcationCallbackHandler array to handle callback objects generated by the LoginContext.login method.
setCarLicense(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setChangePasswordSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setChannelDecisionManager(ChannelDecisionManager) - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
 
setChannelProcessors(List<?>) - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
 
setCheckForPrincipalChanges(boolean) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
If set, the pre-authenticated principal will be checked on each request and compared against the name of the current Authentication object.
setClaimedIdentityFieldName(String) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
The name of the request parameter containing the OpenID identity, as submitted from the initial login form.
setClassIdentityQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Sets the query that will be used to retrieve the identity of a newly created row in the acl_class table.
setClassPrimaryKeyQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setClazz(Class<?>) - Method in class org.springframework.security.authentication.AuthenticationDetailsSourceImpl
Deprecated.
 
setClearAuthentication(boolean) - Method in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
If true, removes the Authentication from the SecurityContext to prevent issues with concurrent requests.
setClearExtraInformation(boolean) - Method in class org.springframework.security.authentication.ProviderManager
Deprecated.
the extraInformation property is deprecated
setCn(String[]) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
 
setConfiguration(Configuration) - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
Sets the Configuration to use for Authentication.
setConsumer(OpenIDConsumer) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
 
setContext(SecurityContext) - Static method in class org.springframework.security.core.context.SecurityContextHolder
Associates a new SecurityContext with the current thread of execution.
setContext(SecurityContext) - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
Sets the current context.
setContextPath(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
setContextRelative(boolean) - Method in class org.springframework.security.web.DefaultRedirectStrategy
If true, causes any redirection URLs to be calculated minus the protocol and context path (defaults to false).
setContinueChainBeforeSuccessfulAuthentication(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Indicates if the filter chain should be continued prior to delegation to AbstractAuthenticationProcessingFilter.successfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication), which may be useful in certain environment (such as Tapestry applications).
setContinueFilterChainOnUnsuccessfulAuthentication(boolean) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
If set to true, any AuthenticationException raised by the AuthenticationManager will be swallowed, and the request will be allowed to proceed, potentially using alternative authentication mechanisms.
setConvertAttributeToLowerCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
 
setConvertAttributeToUpperCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
 
setConvertSubErrorCodesToExceptions(boolean) - Method in class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
By default, a failed authentication (LDAP error 49) will result in a BadCredentialsException.
setConvertToLowerCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
Whether to convert the authority value to lower case in the mapping.
setConvertToUpperCase(boolean) - Method in class org.springframework.security.cas.userdetails.GrantedAuthorityFromAssertionAttributesUserDetailsService
Converts the returned attribute values to uppercase values.
setConvertToUpperCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
Whether to convert the authority value to upper case in the mapping.
setConvertToUpperCase(boolean) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
Deprecated.
Convert case in the AuthenticationProvider using a GrantedAuthoritiesMapper.
setConvertToUpperCase(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
Determines whether role field values will be converted to upper case when loaded.
setCookie(String[], int, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Sets the cookie on the response.
setCookieName(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
setCount(int) - Method in class org.springframework.security.openid.OpenIDAttribute
 
setCreateAuthenticatedToken(boolean) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
If you set this property, the Authentication object, which is created after the successful digest authentication will be marked as authenticated and filled with the authorities loaded by the UserDetailsService.
setCreateAuthoritySql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setCreateEmptySubject(boolean) - Method in class org.springframework.security.web.jaasapi.JaasApiIntegrationFilter
Sets createEmptySubject.
setCreateNewSession(boolean) - Method in class org.springframework.security.web.session.SimpleRedirectInvalidSessionStrategy
Determines whether a new session should be created before redirecting (to avoid possible looping issues where the same session ID is sent with the redirected request).
setCreateSessionAllowed(boolean) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
If true, indicates that it is permitted to store the target URL and exception information in a new HttpSession (the default).
setCreateTableOnStartup(boolean) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
Intended for convenience in debugging.
setCreateUserSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setCredentialsCharset(String) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
setCredentialsNonExpired(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setCredentialsRequestHeader(String) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
 
setCtxFactory(InitialContextFactory) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
Allows to inject an own JNDI context factory.
setDecisionVoters(List<AccessDecisionVoter>) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
Deprecated.
Use constructor
setDefaultAuthority(String) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
Sets a default authority to be assigned to all users
setDefaultEntryPoint(AuthenticationEntryPoint) - Method in class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
EntryPoint which is used when no RequestMatcher returned true
setDefaultFailureUrl(String) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
The URL which will be used as the failure destination.
setDefaultRole(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
Deprecated.
Assign a default role in the AuthenticationProvider using a GrantedAuthoritiesMapper.
setDefaultTargetUrl(String) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
Supplies the default target Url that will be used if no saved request is found in the session, or the alwaysUseDefaultTargetUrl property is set to true.
setDeleteEntryByObjectIdentityForeignKeySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setDeleteGroupAuthoritiesSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setDeleteGroupAuthoritySql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setDeleteGroupMemberSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setDeleteGroupMembersSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setDeleteGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setDeleteObjectIdentityByPrimaryKeySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setDeleteUserAuthoritiesSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setDeleteUserSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setDepartmentNumber(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setDerefLinkFlag(boolean) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
Sets the corresponding property on the SearchControls instance used in the search.
setDescription(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
 
setDestinationIndicator(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setDetails(Object) - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
setDetails(HttpServletRequest, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
Provided so that subclasses may configure what is put into the authentication request's details property.
setDisableUrlRewriting(boolean) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
Allows the use of session identifiers in URLs to be disabled.
setDisplayName(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setDn(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setDn(Name) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setDomainObject(Object) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
 
setEmployeeNumber(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setEnableAuthorities(boolean) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Enables loading of authorities (roles) from the authorities table.
setEnabled(boolean) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
 
setEnabled(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setEnableGroups(boolean) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Enables support for group authorities.
setEncodeHashAsBase64(boolean) - Method in class org.springframework.security.authentication.encoding.BaseDigestPasswordEncoder
The encoded password is normally returned as Hex (32 char) version of the hash bytes.
setEncodeServiceUrlWithSessionId(boolean) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
Deprecated.
since 3.0.0 because CAS is currently on 3.3.5.
setEntriesInheriting(boolean) - Method in class org.springframework.security.acls.domain.AclImpl
 
setEntriesInheriting(boolean) - Method in interface org.springframework.security.acls.model.MutableAcl
Change the value returned by Acl.isEntriesInheriting().
setEntryPoint(ChannelEntryPoint) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
setEntryPoint(ChannelEntryPoint) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
 
setEraseCredentialsAfterAuthentication(boolean) - Method in class org.springframework.security.authentication.ProviderManager
If set to, a resulting Authentication which implements the CredentialsContainer interface will have its eraseCredentials method called before it is returned from the authenticate() method.
setErrorPage(String) - Method in class org.springframework.security.web.access.AccessDeniedHandlerImpl
The error page to use.
setExceptionIfHeaderMissing(boolean) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
Defines whether an exception should be raised if the principal header is missing.
setExceptionIfMaximumExceeded(boolean) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
Sets the exceptionIfMaximumExceeded property, which determines whether the user should be prevented from opening more sessions than allowed.
setExceptionMappings(Map<?, ?>) - Method in class org.springframework.security.web.authentication.ExceptionMappingAuthenticationFailureHandler
Sets the map of exception types (by name) to URLs.
setExitUserUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Set the URL to respond to exit user processing.
setExpiredUrl(String) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
Deprecated.
use constructor injection instead
setExpressionHandler(MethodSecurityExpressionHandler) - Method in class org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice
 
setExpressionHandler(SecurityExpressionHandler<FilterInvocation>) - Method in class org.springframework.security.web.access.expression.WebExpressionVoter
 
setExpressionParser(ExpressionParser) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
setFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Used to define custom behaviour when a switch fails.
setFilterChainMap(Map<RequestMatcher, List<Filter>>) - Method in class org.springframework.security.web.FilterChainProxy
Deprecated.
Use the constructor which takes a List&lt;SecurityFilterChain&gt; instead.
setFilterChainValidator(FilterChainProxy.FilterChainValidator) - Method in class org.springframework.security.web.FilterChainProxy
Used (internally) to specify a validation strategy for the filters in each configured chain.
setFilterObject(Object) - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
 
setFilterProcessesUrl(String) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setFilterProcessesUrl(String) - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
 
setFindAllGroupsSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setFindChildrenQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
Allows customization of the SQL query used to find child object identities.
setFindGroupIdSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setFindUsersInGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setFirewall(HttpFirewall) - Method in class org.springframework.security.web.FilterChainProxy
Sets the "firewall" implementation which will be used to validate and wrap (or potentially reject) the incoming requests.
setForceEagerSessionCreation(boolean) - Method in class org.springframework.security.web.context.SecurityContextPersistenceFilter
 
setForceHttps(boolean) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
Set to true to force login form access to be via https.
setForceLowerCasePrefix(boolean) - Method in class org.springframework.security.authentication.encoding.LdapShaPasswordEncoder
 
setForcePrincipalAsString(boolean) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
setForeignKeysInDatabase(boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setGraceLoginsRemaining(int) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.core.authority.GrantedAuthoritiesContainerImpl
Deprecated.
 
setGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in interface org.springframework.security.core.authority.MutableGrantedAuthoritiesContainer
Deprecated.
Used to store authorities in the containing object.
setGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesAuthenticationDetails
Deprecated.
 
setGroupAuthoritiesByUsernameQuery(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Allows the default query string used to retrieve group authorities based on username to be overridden, if default table or column names need to be changed.
setGroupAuthoritiesSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setGroupMemberAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
Sets the name of the multi-valued attribute which holds the DNs of users who are members of a group.
setGroupRoleAttribute(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
 
setGroupRoleAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
setGroupSearchBase(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
setGroupSearchFilter(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
 
setHasPermission(String) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
 
setHideUserNotFoundExceptions(boolean) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
By default the AbstractUserDetailsAuthenticationProvider throws a BadCredentialsException if a username is not found or the password is incorrect.
setHideUserNotFoundExceptions(boolean) - Method in class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
 
setHierarchy(String) - Method in class org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl
Set the role hierarchy and pre-calculate for every role the set of all reachable roles, i.e.
setHomePhone(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setHomePostalAddress(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setHtmlEscape(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
Set HTML escaping for this tag, as boolean value.
setId(String) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
setIfAllGranted(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
setIfAnyGranted(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
setIfNotGranted(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
setIgnoreFailure(boolean) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
Deprecated.
Use the constructor which takes a single AuthenticationManager parameter
setIgnorePartialResultException(boolean) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
Sets the corresponding property on the underlying template, avoiding specific issues with Active Directory.
setIgnorePasswordCase(boolean) - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
Indicates whether the password comparison is case sensitive.
setInitials(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setInsecureKeyword(String) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
setInsertClassSql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setInsertEntrySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setInsertGroupAuthoritySql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setInsertGroupMemberSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setInsertGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setInsertObjectIdentitySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setInsertSidSql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setInternalMethod(String) - Method in class org.springframework.security.acls.AclEntryVoter
 
setInvalidateHttpSession(boolean) - Method in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
Causes the HttpSession to be invalidated when this LogoutHandler is invoked.
setInvalidateSessionOnPrincipalChange(boolean) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
If checkForPrincipalChanges is set, and a change of principal is detected, determines whether any existing session should be invalidated before proceeding to authenticate the new principal.
setInvalidSessionStrategy(InvalidSessionStrategy) - Method in class org.springframework.security.web.session.SessionManagementFilter
Sets the strategy which will be invoked instead of allowing the filter chain to prceed, if the user agent requests an invalid session Id.
setIterations(int) - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
Sets the number of iterations for which the calculated hash value should be "stretched".
setKey(String) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
setKey(String) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
 
setKey(String) - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
Deprecated.
Use constructor injection
setKey(String) - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
Deprecated.
Use constructor injection
setKey(String) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
setKey(String) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
Deprecated.
use constructor injection instead
setKey(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Deprecated.
Use constructor injection
setKey(String) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
setLoginConfig(Resource) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
Set the JAAS login configuration file.
setLoginContextName(String) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
Set the loginContextName, this name is used as the index to the configuration specified in the loginConfig property.
setLoginExceptionResolver(LoginExceptionResolver) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
 
setLoginFormUrl(String) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
Deprecated.
use constructor injection
setLogInteractiveAuthenticationSuccessEvents(boolean) - Method in class org.springframework.security.authentication.event.LoggerListener
 
setLoginUrl(String) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
 
setLogoutHandlers(LogoutHandler[]) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
 
setLookupObjectIdentitiesWhereClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
The SQL for the where clause used in the lookupObjectIdentities method.
setLookupPrimaryKeysWhereClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
The SQL for the where clause used in the lookupPrimaryKey method.
setMail(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setMappableAttributes(Set<String>) - Method in class org.springframework.security.core.authority.mapping.SimpleMappableAttributesRetriever
 
setMappableRolesRetriever(MappableAttributesRetriever) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
 
setMaximumSessions(int) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
Sets the maxSessions property.
setMessageSource(MessageSource) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
setMessageSource(MessageSource) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
setMessageSource(MessageSource) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
setMessageSource(MessageSource) - Method in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
 
setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
 
setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.ProviderManager
 
setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
 
setMessageSource(MessageSource) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
setMessageSource(MessageSource) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
setMessageSource(MessageSource) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
 
setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
 
setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlStrategy
 
setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
setMethod(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
setMigrateSessionAttributes(boolean) - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
Defines whether attributes should be migrated to a new session or not.
setMobile(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setNonceValiditySeconds(int) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
setO(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setObjectIdentityGenerator(ObjectIdentityGenerator) - Method in class org.springframework.security.acls.AclPermissionEvaluator
 
setObjectIdentityPrimaryKeyQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.AclEntryVoter
 
setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionCacheOptimizer
 
setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionEvaluator
 
setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
setObserveOncePerRequest(boolean) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
 
setOrder(int) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
 
setOrder(int) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
setOrderByClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
The SQL for the "order by" clause used in both queries.
setOu(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setOwner(Sid) - Method in class org.springframework.security.acls.domain.AclImpl
 
setOwner(Sid) - Method in interface org.springframework.security.acls.model.MutableAcl
Changes the present owner to a different owner.
setOwner(Sid) - Method in interface org.springframework.security.acls.model.OwnershipAcl
 
setPageContext(PageContext) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
setParameter(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Sets the name of the parameter which should be checked for to see if a remember-me has been requested during a login request.
setParameterNameDiscoverer(ParameterNameDiscoverer) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
 
setParent(Acl) - Method in class org.springframework.security.acls.domain.AclImpl
 
setParent(Acl) - Method in interface org.springframework.security.acls.model.MutableAcl
Changes the parent of this ACL.
setParent(AuthenticationManager) - Method in class org.springframework.security.authentication.ProviderManager
Deprecated.
Use constructor injection
setParent(Tag) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
setPassword(String) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
 
setPassword(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setPasswordAlreadyEncoded(boolean) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
setPasswordAttributeName(String) - Method in class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
 
setPasswordAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
setPasswordAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
The name of the attribute which contains the user's password.
setPasswordEncoder(Object) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
Sets the PasswordEncoder instance to be used to encode and validate passwords.
setPasswordEncoder(PasswordEncoder) - Method in class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
 
setPasswordParameter(String) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
Sets the parameter name which will be used to obtain the password from the login request..
setPathInfo(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
setPermissionCacheOptimizer(PermissionCacheOptimizer) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
 
setPermissionEvaluator(PermissionEvaluator) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
setPermissionEvaluator(PermissionEvaluator) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
setPermissionFactory(PermissionFactory) - Method in class org.springframework.security.acls.AclPermissionEvaluator
 
setPermissionFactory(PermissionFactory) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
Sets the PermissionFactory instance which will be used to convert loaded permission data values to Permissions.
setPort(int) - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
setPort(int) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
setPortMapper(PortMapper) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
setPortMapper(PortMapper) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
setPortMapper(PortMapper) - Method in class org.springframework.security.web.PortResolverImpl
 
setPortMappings(Map<String, String>) - Method in class org.springframework.security.web.PortMapperImpl
Set to override the default HTTP port to HTTPS port mappings of 80:443, and 8080:8443.
setPortResolver(PortResolver) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
 
setPortResolver(PortResolver) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
 
setPortResolver(PortResolver) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
 
setPostalAddress(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setPostalCode(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setPostAuthenticationChecks(UserDetailsChecker) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
setPostOnly(boolean) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
Defines whether only HTTP POST requests will be allowed by this filter.
setPreAuthenticatedUserDetailsService(AuthenticationUserDetailsService<PreAuthenticatedAuthenticationToken>) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
Set the AuthenticatedUserDetailsService to be used to load the UserDetails for the authenticated user.
setPreAuthenticationChecks(UserDetailsChecker) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
Sets the policy will be used to verify the status of the loaded UserDetails before validation of the credentials takes place.
setPrefix(String) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
Sets the prefix which should be added to the authority name (if it doesn't already exist)
setPrincipalExtractor(X509PrincipalExtractor) - Method in class org.springframework.security.web.authentication.preauth.x509.X509AuthenticationFilter
 
setPrincipalRequestHeader(String) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
 
setProcessConfigAttribute(String) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
setProcessDomainObjectClass(Class<?>) - Method in class org.springframework.security.access.vote.AbstractAclVoter
 
setProcessDomainObjectClass(Class<?>) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
setProperty(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
 
setProtectedFieldValue(String, Object, Object) - Static method in class org.springframework.security.util.FieldUtils
 
setProviders(List<?>) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
 
setProviders(List) - Method in class org.springframework.security.authentication.ProviderManager
Deprecated.
Use constructor injection
setProxyAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
Sets the AuthenticationFailureHandler for proxy requests.
setProxyGrantingTicketStorage(ProxyGrantingTicketStorage) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
 
setProxyReceptorUrl(String) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
 
setPseudoRandomNumberBits(int) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
setPublishAuthorizationSuccess(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
Only AuthorizationFailureEvent will be published.
setQuery(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
setRealmMapping(Map<String, String>) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
Maps the return_to url to a realm, for example:
setRealmName(String) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
 
setRealmName(String) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
 
setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
Sets the strategy to be used for redirecting to the required channel URL.
setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
Allows overriding of the behaviour when redirecting to a target URL.
setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
Allows overriding of the behaviour when redirecting to a target URL.
setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
 
setRefreshConfigurationOnStartup(boolean) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
If set, a call to Configuration#refresh() will be made by #configureJaas(Resource) method.
setRejectPublicInvocations(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
By rejecting public invocations (and setting this property to true), essentially you are ensuring that every secure object invocation advised by AbstractSecurityInterceptor has a configuration attribute defined.
setRememberMeClass(Class<? extends Authentication>) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
 
setRememberMeServices(RememberMeServices) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
 
setRememberMeServices(RememberMeServices) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
Deprecated.
Use constructor injection
setRememberMeServices(RememberMeServices) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
 
setRemoteAuthenticationManager(RemoteAuthenticationManager) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
 
setRenameGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setRequest(HttpServletRequest) - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
 
setRequestCache(RequestCache) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
Deprecated.
Use constructor
setRequestCache(RequestCache) - Method in class org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler
 
setRequestCache(RequestCache) - Method in class org.springframework.security.web.savedrequest.RequestCacheAwareFilter
Deprecated.
Use constructor injection
setRequestMatcher(RequestMatcher) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
Allows selective use of saved requests for a subset of requests.
setRequired(boolean) - Method in class org.springframework.security.openid.OpenIDAttribute
 
setResourceLoader(ResourceLoader) - Method in class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
 
setResponse(HttpServletResponse) - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
 
setRetainedAttributes(List<String>) - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
Deprecated.
Override the extractAttributes method instead
setReturningAttributes(String[]) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
Specifies the attributes that will be returned as part of the search.
setReturnObject(Object, EvaluationContext) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
 
setReturnObject(Object, EvaluationContext) - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionHandler
Used to inform the expression system of the return object for the given evaluation context.
setReturnObject(Object) - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
 
setReturnToUrlParameters(Set<String>) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
Specifies any extra parameters submitted along with the identity field which should be appended to the return_to URL which is assembled by OpenIDAuthenticationFilter.buildReturnToUrl(javax.servlet.http.HttpServletRequest).
setRoleAttributes(String[]) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
The names of any attributes in the user's entry which represent application roles.
setRoleHierarchy(RoleHierarchy) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
 
setRoleHierarchy(RoleHierarchy) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
setRoleHierarchy(RoleHierarchy) - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsServiceWrapper
Deprecated.
 
setRoleMapper(AttributesMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
setRolePrefix(String) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
Allows the default role prefix of ROLE_ to be overridden.
setRolePrefix(String) - Method in class org.springframework.security.access.vote.RoleVoter
Allows the default role prefix of ROLE_ to be overridden.
setRolePrefix(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Allows a default role prefix to be specified.
setRolePrefix(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
Deprecated.
Map the authorities in the AuthenticationProvider using a GrantedAuthoritiesMapper.
setRolePrefix(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
The prefix that should be applied to the role names
setRolePrefix(String) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
 
setRoomNumber(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setRunAsManager(RunAsManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
setSaltSource(SaltSource) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
The source of salts to use when decoding passwords.
setScheme(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
setScope(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
 
setSearchControls(SearchControls) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
Sets the search controls which will be used for search operations by the template.
setSearchSubtree(boolean) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
If true then searches the entire subtree as identified by context, if false (the default) then only searches the level identified by the context.
setSearchSubtree(boolean) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
If set to true, a subtree scope search will be performed.
setSearchTimeLimit(int) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
The time to wait before the search fails; the default is zero, meaning forever.
setSecureKeyword(String) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
 
setSecureRandom(SecureRandom) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
setSecurityContextRepository(SecurityContextRepository) - Method in class org.springframework.security.web.context.SecurityContextPersistenceFilter
Deprecated.
Use constructor injection
setSecurityInterceptor(AbstractSecurityInterceptor) - Method in class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
 
setSecurityMetadataSource(MethodSecurityMetadataSource) - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
 
setSecurityMetadataSource(FilterInvocationSecurityMetadataSource) - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
 
setSecurityMetadataSource(FilterInvocationSecurityMetadataSource) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
 
setSeed(Resource) - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
Allows the user to specify a resource which will act as a seed for the SecureRandom instance.
setSelectClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
The SQL for the select clause.
setSendRenew(boolean) - Method in class org.springframework.security.cas.ServiceProperties
 
setSeriesLength(int) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
setServerInteger(Integer) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
setServerName(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
setServerSecret(String) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
setService(String) - Method in class org.springframework.security.cas.ServiceProperties
 
setServiceParameter(String) - Method in class org.springframework.security.cas.ServiceProperties
 
setServiceProperties(ServiceProperties) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
setServiceProperties(ServiceProperties) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
 
setServiceProperties(ServiceProperties) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
 
setServletPath(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
 
setSessionAuthenticationStrategy(SessionAuthenticationStrategy) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
The session handling strategy which will be invoked immediately after an authentication request is successfully processed by the AuthenticationManager.
setSessionAuthenticationStrategy(SessionAuthenticationStrategy) - Method in class org.springframework.security.web.session.SessionManagementFilter
Deprecated.
Use constructor injection
setSessionRegistry(SessionRegistry) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
Deprecated.
use constructor injection instead
setSidIdentityQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Sets the query that will be used to retrieve the identity of a newly created row in the acl_sid table.
setSidPrimaryKeyQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.AclEntryVoter
 
setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionCacheOptimizer
 
setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionEvaluator
 
setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.domain.AclAuthorizationStrategyImpl
 
setSn(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
 
setSpringSecurityContextKey(String) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
Allows the session attribute name to be customized for this repository instance.
setStatelessTicketCache(StatelessTicketCache) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
setStrategyName(String) - Static method in class org.springframework.security.core.context.SecurityContextHolder
Changes the preferred strategy.
setStreet(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setStringSeparator(String) - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
 
setSubjectDnRegex(String) - Method in class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
Sets the regular expression which will by used to extract the user name from the certificate's Subject DN.
setSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Used to define custom behaviour on a successful switch or exit user.
setSwitchFailureUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Sets the URL to which a user should be redirected if the switch fails.
setSwitchUserAuthorityChanger(SwitchUserAuthorityChanger) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
setSwitchUserUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Set the URL to respond to switch user processing.
setSystemWideSalt(String) - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
 
setTargetUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Sets the URL to go to after a successful switch / exit user request.
setTargetUrlParameter(String) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
If this property is set, the current request will be checked for this a parameter with this name and the value used as the target URL if present.
setTelephoneNumber(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
 
setThrowableAnalyzer(ThrowableAnalyzer) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
 
setThrowExceptionWhenTokenRejected(boolean) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
If true, causes the provider to throw a BadCredentialsException if the presented authentication request is invalid (contains a null principal or credentials).
setTicketValidator(TicketValidator) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
setTimeBeforeExpiration(int) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setTitle(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setTokenLength(int) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
setTokenRepository(PersistentTokenRepository) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
Deprecated.
Use constructor injection
setTokenValiditySeconds(int) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
setTokenValiditySeconds(int) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
 
setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
 
setUid(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
 
setUpdateObjectIdentity(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
 
setUpdateUserSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setUrl(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
 
setUseAuthenticationRequestCredentials(boolean) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
Determines whether the supplied password will be used as the credentials in the successful authentication token.
setUseForward(boolean) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
Tells if we are to do a forward to the loginFormUrl using the RequestDispatcher, instead of a 302 redirect.
setUseForward(boolean) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
If set to true, performs a forward to the failure destination URL instead of a redirect.
setUserAttribute(UserAttribute) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
Deprecated.
use constructor injection instead
setUserAttributes(String[]) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
Sets the user attributes which will be retrieved from the directory.
setUserCache(UserCache) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
setUserCache(UserCache) - Method in class org.springframework.security.config.authentication.CachingUserDetailsService
 
setUserCache(UserCache) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
Optionally sets the UserCache if one is in use in the application.
setUserCache(UserCache) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
setUserDetailsChecker(UserDetailsChecker) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
Sets the strategy which will be used to validate the loaded UserDetails object for the user.
setUserDetailsChecker(UserDetailsChecker) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Sets the strategy to be used to validate the UserDetails object obtained for the user when processing a remember-me cookie to automatically log in a user.
setUserDetailsChecker(UserDetailsChecker) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
setUserDetailsContextMapper(UserDetailsContextMapper) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
Allows a custom strategy to be used for creating the UserDetails which will be stored as the principal in the Authentication returned by the AbstractLdapAuthenticationProvider.createSuccessfulAuthentication(org.springframework.security.authentication.UsernamePasswordAuthenticationToken, org.springframework.security.core.userdetails.UserDetails) method.
setUserDetailsMapper(UserDetailsContextMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
setUserDetailsMapper(UserDetailsContextMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsService
 
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.access.hierarchicalroles.UserDetailsServiceWrapper
Deprecated.
 
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
 
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
Deprecated.
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper
Set the wrapped UserDetailsService implementation
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
Used to load the UserDetails for the authenticated OpenID user.
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Deprecated.
Use constructor injection
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Sets the authentication data access object.
setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
 
setUserDnPatterns(String[]) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
Sets the pattern which will be used to supply a DN for the user.
setUseReferer(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
If set to true the Referer header will be used (if available).
setUserExistsSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
setUserMap(UserMap) - Method in class org.springframework.security.core.userdetails.memory.InMemoryDaoImpl
Deprecated.
 
setUsername(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
 
setUsernameBasedPrimaryKey(boolean) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
If true (the default), indicates the JdbcDaoImpl.getUsersByUsernameQuery() returns a username in response to a query.
setUsernameMapper(LdapUsernameToDnMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
setUsernameParameter(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
Allows the parameter containing the username to be customized.
setUsernameParameter(String) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
Sets the parameter name which will be used to obtain the username from the login request.
setUserProperties(Properties) - Method in class org.springframework.security.core.userdetails.memory.InMemoryDaoImpl
Deprecated.
Modifies the internal UserMap to reflect the Properties instance passed.
setUserPropertyToUse(String) - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
The method name to call to obtain the salt.
setUserRoles2GrantedAuthoritiesMapper(Attributes2GrantedAuthoritiesMapper) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
 
setUsers(Map<String, UserDetails>) - Method in class org.springframework.security.core.userdetails.memory.UserMap
Deprecated.
Set the users in this UserMap.
setUsersByUsernameQuery(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
Allows the default query string used to retrieve users based on username to be overridden, if default table or column names need to be changed.
setUserSearch(LdapUserSearch) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
 
setUseSecureCookie(boolean) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
Whether the cookie should be flagged as secure or not.
setValidateConfigAttributes(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
 
setVar(String) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
 
setVar(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
 
setVar(String) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
 
setWebSphereGroups2GrantedAuthoritiesMapper(Attributes2GrantedAuthoritiesMapper) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedAuthenticationDetailsSource
Deprecated.
 
setWebSphereGroups2GrantedAuthoritiesMapper(Attributes2GrantedAuthoritiesMapper) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedWebAuthenticationDetailsSource
 
setWorkingDirectory(File) - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
sha(byte[]) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
Calculates the SHA digest and returns the value as a byte[].
sha(String) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
Calculates the SHA digest and returns the value as a byte[].
Sha512DigestUtils - Class in org.springframework.security.core.token
Provides SHA512 digest methods.
Sha512DigestUtils() - Constructor for class org.springframework.security.core.token.Sha512DigestUtils
 
shaHex(byte[]) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
Calculates the SHA digest and returns the value as a hex string.
shaHex(String) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
Calculates the SHA digest and returns the value as a hex string.
ShaPasswordEncoder - Class in org.springframework.security.authentication.encoding
SHA implementation of PasswordEncoder.
ShaPasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.ShaPasswordEncoder
Initializes the ShaPasswordEncoder for SHA-1 strength
ShaPasswordEncoder(int) - Constructor for class org.springframework.security.authentication.encoding.ShaPasswordEncoder
Initialize the ShaPasswordEncoder with a given SHA stength as supported by the JVM EX: ShaPasswordEncoder encoder = new ShaPasswordEncoder(256); initializes with SHA-256
shared(int) - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
Create a BytesKeyGenerator that returns a single, shared SecureRandom key of a custom length.
Sid - Interface in org.springframework.security.acls.model
A security identity recognised by the ACL system.
sidRetrievalStrategy - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
SidRetrievalStrategy - Interface in org.springframework.security.acls.model
Strategy interface that provides an ability to determine the Sid instances applicable for an Authentication.
SidRetrievalStrategyImpl - Class in org.springframework.security.acls.domain
Basic implementation of SidRetrievalStrategy that creates a Sid for the principal, as well as every granted authority the principal holds.
SidRetrievalStrategyImpl() - Constructor for class org.springframework.security.acls.domain.SidRetrievalStrategyImpl
 
SidRetrievalStrategyImpl(RoleHierarchy) - Constructor for class org.springframework.security.acls.domain.SidRetrievalStrategyImpl
 
SimpleAttributes2GrantedAuthoritiesMapper - Class in org.springframework.security.core.authority.mapping
This class implements the Attributes2GrantedAuthoritiesMapper interface by doing a one-to-one mapping from roles to Spring Security GrantedAuthorities.
SimpleAttributes2GrantedAuthoritiesMapper() - Constructor for class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
 
SimpleAuthorityMapper - Class in org.springframework.security.core.authority.mapping
Simple one-to-one GrantedAuthoritiesMapper which allows for case conversion of the authority name and the addition of a string prefix (which defaults to ROLE_).
SimpleAuthorityMapper() - Constructor for class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
 
SimpleGrantedAuthority - Class in org.springframework.security.core.authority
Basic concrete implementation of a GrantedAuthority.
SimpleGrantedAuthority(String) - Constructor for class org.springframework.security.core.authority.SimpleGrantedAuthority
 
SimpleMappableAttributesRetriever - Class in org.springframework.security.core.authority.mapping
This class implements the MappableAttributesRetriever interface by just returning a list of mappable attributes as previously set using the corresponding setter method.
SimpleMappableAttributesRetriever() - Constructor for class org.springframework.security.core.authority.mapping.SimpleMappableAttributesRetriever
 
SimpleMethodInvocation - Class in org.springframework.security.util
Represents the AOP Alliance MethodInvocation.
SimpleMethodInvocation(Object, Method, Object...) - Constructor for class org.springframework.security.util.SimpleMethodInvocation
 
SimpleMethodInvocation() - Constructor for class org.springframework.security.util.SimpleMethodInvocation
 
SimpleRedirectInvalidSessionStrategy - Class in org.springframework.security.web.session
Performs a redirect to a fixed URL when an invalid requested session is detected by the SessionManagementFilter.
SimpleRedirectInvalidSessionStrategy(String) - Constructor for class org.springframework.security.web.session.SimpleRedirectInvalidSessionStrategy
 
SimpleUrlAuthenticationFailureHandler - Class in org.springframework.security.web.authentication
AuthenticationFailureHandler which performs a redirect to the value of the defaultFailureUrl property when the onAuthenticationFailure method is called.
SimpleUrlAuthenticationFailureHandler() - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
 
SimpleUrlAuthenticationFailureHandler(String) - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
 
SimpleUrlAuthenticationSuccessHandler - Class in org.springframework.security.web.authentication
AuthenticationSuccessHandler which can be configured with a default URL which users should be sent to upon successful authentication.
SimpleUrlAuthenticationSuccessHandler() - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
 
SimpleUrlAuthenticationSuccessHandler(String) - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
Constructor which sets the defaultTargetUrl property of the base class.
SimpleUrlLogoutSuccessHandler - Class in org.springframework.security.web.authentication.logout
Handles the navigation on logout by delegating to the AbstractAuthenticationTargetUrlRequestHandler base class logic.
SimpleUrlLogoutSuccessHandler() - Constructor for class org.springframework.security.web.authentication.logout.SimpleUrlLogoutSuccessHandler
 
SPRING_SECURITY_CONTEXT_KEY - Static variable in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
The default key under which the security context will be stored in the session.
SPRING_SECURITY_FILTER_CHAIN - Static variable in class org.springframework.security.config.BeanIds
External alias for FilterChainProxy bean, for use in web.xml files
SPRING_SECURITY_FORM_PASSWORD_KEY - Static variable in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
 
SPRING_SECURITY_FORM_USERNAME_KEY - Static variable in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
 
SPRING_SECURITY_LAST_EXCEPTION_KEY - Static variable in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Deprecated.
Use the value in WebAttributes directly.
SPRING_SECURITY_LAST_USERNAME_KEY - Static variable in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
Deprecated.
If you want to retain the username, cache it in a customized AuthenticationFailureHandler
SPRING_SECURITY_REMEMBER_ME_COOKIE_KEY - Static variable in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 
SPRING_SECURITY_SWITCH_USERNAME_KEY - Static variable in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
SpringSecurityAuthenticationSource - Class in org.springframework.security.ldap.authentication
An AuthenticationSource to retrieve authentication information stored in Spring Security's SecurityContextHolder.
SpringSecurityAuthenticationSource() - Constructor for class org.springframework.security.ldap.authentication.SpringSecurityAuthenticationSource
 
SpringSecurityCoreVersion - Class in org.springframework.security.core
Internal class used for checking version compatibility in a deployed application.
SpringSecurityCoreVersion() - Constructor for class org.springframework.security.core.SpringSecurityCoreVersion
 
SpringSecurityLdapTemplate - Class in org.springframework.security.ldap
Extension of Spring LDAP's LdapTemplate class which adds extra functionality required by Spring Security.
SpringSecurityLdapTemplate(ContextSource) - Constructor for class org.springframework.security.ldap.SpringSecurityLdapTemplate
 
SpringSecurityMessageSource - Class in org.springframework.security.core
The default MessageSource used by Spring Security.
SpringSecurityMessageSource() - Constructor for class org.springframework.security.core.SpringSecurityMessageSource
 
standard(CharSequence, CharSequence) - Static method in class org.springframework.security.crypto.encrypt.Encryptors
Creates a standard password-based bytes encryptor using 256 bit AES encryption.
StandardPasswordEncoder - Class in org.springframework.security.crypto.password
A standard PasswordEncoder implementation that uses SHA-256 hashing with 1024 iterations and a random 8-byte random salt value.
StandardPasswordEncoder() - Constructor for class org.springframework.security.crypto.password.StandardPasswordEncoder
Constructs a standard password encoder with no additional secret value.
StandardPasswordEncoder(CharSequence) - Constructor for class org.springframework.security.crypto.password.StandardPasswordEncoder
Constructs a standard password encoder with a secret value which is also included in the password hash.
start() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
StatelessTicketCache - Interface in org.springframework.security.cas.authentication
Caches CAS service tickets and CAS proxy tickets for stateless connections.
stop() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
 
string() - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
Creates a StringKeyGenerator that hex-encodes SecureRandom keys of 8 bytes in length.
StringKeyGenerator - Interface in org.springframework.security.crypto.keygen
A generator for unique string keys.
subArray(byte[], int, int) - Static method in class org.springframework.security.crypto.util.EncodingUtils
Extract a sub array of bytes out of the byte array.
SubjectDnX509PrincipalExtractor - Class in org.springframework.security.web.authentication.preauth.x509
Obtains the principal from a certificate using a regular expression match against the Subject (as returned by a call to X509Certificate.getSubjectDN()).
SubjectDnX509PrincipalExtractor() - Constructor for class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
 
successfulAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, Authentication) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
 
successfulAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, Authentication) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Default behaviour for successful authentication.
successfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
successfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
Puts the Authentication instance returned by the authentication manager into the secure context.
supports(ConfigAttribute) - Method in interface org.springframework.security.access.AccessDecisionManager
Indicates whether this AccessDecisionManager is able to process authorization requests presented with the passed ConfigAttribute.
supports(Class<?>) - Method in interface org.springframework.security.access.AccessDecisionManager
Indicates whether the AccessDecisionManager implementation is able to provide access control decisions for the indicated secured object type.
supports(ConfigAttribute) - Method in interface org.springframework.security.access.AccessDecisionVoter
Indicates whether this AccessDecisionVoter is able to vote on the passed ConfigAttribute.
supports(Class<?>) - Method in interface org.springframework.security.access.AccessDecisionVoter
Indicates whether the AccessDecisionVoter implementation is able to provide access control votes for the indicated secured object type.
supports(ConfigAttribute) - Method in interface org.springframework.security.access.AfterInvocationProvider
Indicates whether this AfterInvocationProvider is able to participate in a decision involving the passed ConfigAttribute.
supports(Class<?>) - Method in interface org.springframework.security.access.AfterInvocationProvider
Indicates whether the AfterInvocationProvider is able to provide "after invocation" processing for the indicated secured object type.
supports(ConfigAttribute) - Method in class org.springframework.security.access.annotation.Jsr250Voter
The specified config attribute is supported if its an instance of a Jsr250SecurityConfig.
supports(Class<?>) - Method in class org.springframework.security.access.annotation.Jsr250Voter
All classes are supported.
supports(ConfigAttribute) - Method in interface org.springframework.security.access.intercept.AfterInvocationManager
Indicates whether this AfterInvocationManager is able to process "after invocation" requests presented with the passed ConfigAttribute.
supports(Class<?>) - Method in interface org.springframework.security.access.intercept.AfterInvocationManager
Indicates whether the AfterInvocationManager implementation is able to provide access control decisions for the indicated secured object type.
supports(ConfigAttribute) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
 
supports(Class<?>) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
Iterates through all AfterInvocationProviders and ensures each can support the presented class.
supports(Class<?>) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
 
supports(ConfigAttribute) - Method in interface org.springframework.security.access.intercept.RunAsManager
Indicates whether this RunAsManager is able to process the passed ConfigAttribute.
supports(Class<?>) - Method in interface org.springframework.security.access.intercept.RunAsManager
Indicates whether the RunAsManager implementation is able to provide run-as replacement for the indicated secure object type.
supports(ConfigAttribute) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
 
supports(Class<?>) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
This implementation supports any type of class, because it does not query the presented secure object.
supports(Class<?>) - Method in class org.springframework.security.access.method.AbstractMethodSecurityMetadataSource
 
supports(ConfigAttribute) - Method in class org.springframework.security.access.prepost.PostInvocationAdviceProvider
 
supports(Class<?>) - Method in class org.springframework.security.access.prepost.PostInvocationAdviceProvider
 
supports(ConfigAttribute) - Method in class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
 
supports(Class<?>) - Method in class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
 
supports(Class<?>) - Method in interface org.springframework.security.access.SecurityMetadataSource
Indicates whether the SecurityMetadataSource implementation is able to provide ConfigAttributes for the indicated secure object type.
supports(ConfigAttribute) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
 
supports(Class<?>) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
Iterates through all AccessDecisionVoters and ensures each can support the presented class.
supports(Class<?>) - Method in class org.springframework.security.access.vote.AbstractAclVoter
This implementation supports only MethodSecurityInterceptor, because it queries the presented MethodInvocation.
supports(ConfigAttribute) - Method in class org.springframework.security.access.vote.AuthenticatedVoter
 
supports(Class<?>) - Method in class org.springframework.security.access.vote.AuthenticatedVoter
This implementation supports any type of class, because it does not query the presented secure object.
supports(ConfigAttribute) - Method in class org.springframework.security.access.vote.RoleVoter
 
supports(Class<?>) - Method in class org.springframework.security.access.vote.RoleVoter
This implementation supports any type of class, because it does not query the presented secure object.
supports(ConfigAttribute) - Method in class org.springframework.security.acls.AclEntryVoter
 
supports(ConfigAttribute) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
 
supports(Class<?>) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
This implementation supports any type of class, because it does not query the presented secure object.
supports(Class<?>) - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
 
supports(Class<?>) - Method in interface org.springframework.security.authentication.AuthenticationProvider
Returns true if this AuthenticationProvider supports the indicated Authentication object.
supports(Class<?>) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.authentication.TestingAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
supports(Class<?>) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
 
supports(ConfigAttribute) - Method in interface org.springframework.security.web.access.channel.ChannelDecisionManager
Indicates whether this ChannelDecisionManager is able to process the passed ConfigAttribute.
supports(ConfigAttribute) - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
 
supports(ConfigAttribute) - Method in interface org.springframework.security.web.access.channel.ChannelProcessor
Indicates whether this ChannelProcessor is able to process the passed ConfigAttribute.
supports(ConfigAttribute) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
 
supports(ConfigAttribute) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
 
supports(ConfigAttribute) - Method in class org.springframework.security.web.access.expression.WebExpressionVoter
 
supports(Class<?>) - Method in class org.springframework.security.web.access.expression.WebExpressionVoter
 
supports(Class<?>) - Method in class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
 
supports(Class<?>) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
Indicate that this provider only supports PreAuthenticatedAuthenticationToken (sub)classes.
SwitchUserAuthorityChanger - Interface in org.springframework.security.web.authentication.switchuser
Allows subclasses to modify the GrantedAuthority list that will be assigned to the principal when they assume the identity of a different principal.
SwitchUserFilter - Class in org.springframework.security.web.authentication.switchuser
Switch User processing filter responsible for user context switching.
SwitchUserFilter() - Constructor for class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
 
SwitchUserGrantedAuthority - Class in org.springframework.security.web.authentication.switchuser
Custom GrantedAuthority used by SwitchUserFilter
SwitchUserGrantedAuthority(String, Authentication) - Constructor for class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
 
SYSTEM_PROPERTY - Static variable in class org.springframework.security.core.context.SecurityContextHolder
 
SystemWideSaltSource - Class in org.springframework.security.authentication.dao
Uses a static system-wide String as the salt.
SystemWideSaltSource() - Constructor for class org.springframework.security.authentication.dao.SystemWideSaltSource
 

T

TagLibConfig - Class in org.springframework.security.taglibs
internal cconfiguration class for taglibs.
TagLibConfig() - Constructor for class org.springframework.security.taglibs.TagLibConfig
 
TestingAuthenticationProvider - Class in org.springframework.security.authentication
TestingAuthenticationProvider() - Constructor for class org.springframework.security.authentication.TestingAuthenticationProvider
 
TestingAuthenticationToken - Class in org.springframework.security.authentication
An Authentication implementation that is designed for use whilst unit testing.
TestingAuthenticationToken(Object, Object) - Constructor for class org.springframework.security.authentication.TestingAuthenticationToken
 
TestingAuthenticationToken(Object, Object, String...) - Constructor for class org.springframework.security.authentication.TestingAuthenticationToken
 
TestingAuthenticationToken(Object, Object, List<GrantedAuthority>) - Constructor for class org.springframework.security.authentication.TestingAuthenticationToken
 
text(CharSequence, CharSequence) - Static method in class org.springframework.security.crypto.encrypt.Encryptors
Creates a text encryptor that uses standard password-based encryption.
TextEncryptor - Interface in org.springframework.security.crypto.encrypt
Service interface for symmetric encryption of text strings.
TextEscapeUtils - Class in org.springframework.security.web.util
Internal utility for escaping characters in HTML strings.
TextEscapeUtils() - Constructor for class org.springframework.security.web.util.TextEscapeUtils
 
THIRTY_TWO_RESERVED_OFF - Static variable in interface org.springframework.security.acls.model.Permission
 
ThrowableAnalyzer - Class in org.springframework.security.web.util
Handler for analyzing Throwable instances.
ThrowableAnalyzer() - Constructor for class org.springframework.security.web.util.ThrowableAnalyzer
Creates a new ThrowableAnalyzer instance.
ThrowableCauseExtractor - Interface in org.springframework.security.web.util
Interface for handlers extracting the cause out of a specific Throwable type.
Token - Interface in org.springframework.security.core.token
A token issued by TokenService.
TokenBasedRememberMeServices - Class in org.springframework.security.web.authentication.rememberme
Identifies previously remembered users by a Base-64 encoded cookie.
TokenBasedRememberMeServices() - Constructor for class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
Deprecated.
Use with-args constructor
TokenBasedRememberMeServices(String, UserDetailsService) - Constructor for class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
 
TokenService - Interface in org.springframework.security.core.token
Provides a mechanism to allocate and rebuild secure, randomised tokens.
toString() - Method in class org.springframework.security.access.intercept.RunAsUserToken
 
toString() - Method in class org.springframework.security.access.SecurityConfig
 
toString() - Method in class org.springframework.security.acls.domain.AbstractPermission
 
toString() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
 
toString() - Method in class org.springframework.security.acls.domain.AclImpl
 
toString() - Method in class org.springframework.security.acls.domain.GrantedAuthoritySid
 
toString() - Method in class org.springframework.security.acls.domain.ObjectIdentityImpl
 
toString() - Method in class org.springframework.security.acls.domain.PrincipalSid
 
toString() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
 
toString() - Method in class org.springframework.security.authentication.AuthenticationDetails
Deprecated.
 
toString() - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
 
toString() - Method in class org.springframework.security.authentication.jaas.JaasGrantedAuthority
 
toString() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
 
toString() - Method in class org.springframework.security.core.authority.GrantedAuthoritiesContainerImpl
Deprecated.
 
toString() - Method in class org.springframework.security.core.authority.GrantedAuthorityImpl
Deprecated.
 
toString() - Method in class org.springframework.security.core.authority.SimpleGrantedAuthority
 
toString() - Method in class org.springframework.security.core.context.SecurityContextHolder
 
toString() - Method in class org.springframework.security.core.context.SecurityContextImpl
 
toString() - Method in class org.springframework.security.core.token.DefaultToken
 
toString() - Method in class org.springframework.security.core.userdetails.User
 
toString() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
Create a textual representation containing error and warning messages, if any are present.
toString() - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
 
toString() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
 
toString() - Method in class org.springframework.security.openid.OpenIDAttribute
 
toString() - Method in enum org.springframework.security.openid.OpenIDAuthenticationStatus
 
toString() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
 
toString() - Method in class org.springframework.security.web.access.intercept.RequestKey
 
toString() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesAuthenticationDetails
Deprecated.
 
toString() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails
 
toString() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
 
toString() - Method in class org.springframework.security.web.authentication.WebAuthenticationDetails
 
toString() - Method in class org.springframework.security.web.DefaultSecurityFilterChain
 
toString() - Method in class org.springframework.security.web.FilterChainProxy
 
toString() - Method in class org.springframework.security.web.FilterInvocation
 
toString() - Method in class org.springframework.security.web.firewall.FirewalledRequest
 
toString() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
 
toString() - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
 
toString() - Method in class org.springframework.security.web.util.AntPathRequestMatcher
 
TWO_WEEKS_S - Static variable in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
 

U

UnanimousBased - Class in org.springframework.security.access.vote
Simple concrete implementation of AccessDecisionManager that requires all voters to abstain or grant access.
UnanimousBased() - Constructor for class org.springframework.security.access.vote.UnanimousBased
Deprecated.
Use constructor which takes voter list
UnanimousBased(List<AccessDecisionVoter>) - Constructor for class org.springframework.security.access.vote.UnanimousBased
 
UnloadedSidException - Exception in org.springframework.security.acls.model
Thrown if an Acl cannot perform an operation because it only loaded a subset of Sids and the caller has requested details for an unloaded Sid.
UnloadedSidException(String) - Constructor for exception org.springframework.security.acls.model.UnloadedSidException
Constructs an NotFoundException with the specified message.
UnloadedSidException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.UnloadedSidException
Constructs an NotFoundException with the specified message and root cause.
unsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
Default behaviour for unsuccessful authentication.
unsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
Ensures the authentication object in the secure context is set to null when authentication fails.
updateAce(int, Permission) - Method in class org.springframework.security.acls.domain.AclImpl
 
updateAce(int, Permission) - Method in interface org.springframework.security.acls.model.MutableAcl
 
updateAcl(MutableAcl) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
This implementation will simply delete all ACEs in the database and recreate them on each invocation of this method.
updateAcl(MutableAcl) - Method in interface org.springframework.security.acls.model.MutableAclService
Changes an existing Acl in the database.
updateAuditing(int, boolean, boolean) - Method in class org.springframework.security.acls.domain.AclImpl
 
updateAuditing(int, boolean, boolean) - Method in interface org.springframework.security.acls.model.AuditableAcl
 
updateObjectIdentity(MutableAcl) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
Updates an existing acl_object_identity row, with new information presented in the passed MutableAcl object.
updateToken(String, String, Date) - Method in class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
 
updateToken(String, String, Date) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
 
updateToken(String, String, Date) - Method in interface org.springframework.security.web.authentication.rememberme.PersistentTokenRepository
 
updateUser(UserDetails) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
updateUser(UserDetails) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
updateUser(UserDetails) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
updateUser(UserDetails) - Method in interface org.springframework.security.provisioning.UserDetailsManager
Update the specified user.
URL_SAFE - Static variable in class org.springframework.security.crypto.codec.Base64
Encode using Base64-like encoding that is URL- and Filename-safe as described in Section 4 of RFC3548: http://www.faqs.org/rfcs/rfc3548.html.
UrlUtils - Class in org.springframework.security.web.util
Provides static methods for composing URLs.
UrlUtils() - Constructor for class org.springframework.security.web.util.UrlUtils
 
User - Class in org.springframework.security.core.userdetails
Models core user information retrieved by a UserDetailsService.
User(String, String, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.core.userdetails.User
Calls the more complex constructor with all boolean arguments set to true.
User(String, String, boolean, boolean, boolean, boolean, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.core.userdetails.User
Construct the User with the details required by DaoAuthenticationProvider.
USER_DETAILS_SERVICE - Static variable in class org.springframework.security.config.BeanIds
 
USER_DETAILS_SERVICE_FACTORY - Static variable in class org.springframework.security.config.BeanIds
 
USER_SERVICE - Static variable in class org.springframework.security.config.Elements
 
UserAttribute - Class in org.springframework.security.core.userdetails.memory
Used by InMemoryDaoImpl to temporarily store the attributes associated with a user.
UserAttribute() - Constructor for class org.springframework.security.core.userdetails.memory.UserAttribute
 
UserAttributeEditor - Class in org.springframework.security.core.userdetails.memory
Property editor that creates a UserAttribute from a comma separated list of values.
UserAttributeEditor() - Constructor for class org.springframework.security.core.userdetails.memory.UserAttributeEditor
 
UserCache - Interface in org.springframework.security.core.userdetails
Provides a cache of UserDetails objects.
UserDetails - Interface in org.springframework.security.core.userdetails
Provides core user information.
UserDetailsByNameServiceWrapper<T extends Authentication> - Class in org.springframework.security.core.userdetails
This implementation for AuthenticationUserDetailsService wraps a regular Spring Security UserDetailsService implementation, to retrieve a UserDetails object based on the user name contained in an Authentication object.
UserDetailsByNameServiceWrapper() - Constructor for class org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper
Constructs an empty wrapper for compatibility with Spring Security 2.0.x's method of using a setter.
UserDetailsByNameServiceWrapper(UserDetailsService) - Constructor for class org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper
Constructs a new wrapper using the supplied UserDetailsService as the service to delegate to.
UserDetailsChecker - Interface in org.springframework.security.core.userdetails
Called by classes which make use of a UserDetailsService to check the status of the loaded UserDetails object.
userDetailsContextMapper - Variable in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
 
UserDetailsContextMapper - Interface in org.springframework.security.ldap.userdetails
Operations to map a UserDetails object to and from a Spring LDAP DirContextOperations implementation.
UserDetailsManager - Interface in org.springframework.security.provisioning
An extension of the UserDetailsService which provides the ability to create new users and update existing ones.
UserDetailsService - Interface in org.springframework.security.core.userdetails
Core interface which loads user-specific data.
UserDetailsServiceFactoryBean - Class in org.springframework.security.config.http
Bean used to lookup a named UserDetailsService or AuthenticationUserDetailsService.
UserDetailsServiceFactoryBean() - Constructor for class org.springframework.security.config.http.UserDetailsServiceFactoryBean
 
UserDetailsServiceLdapAuthoritiesPopulator - Class in org.springframework.security.ldap.authentication
Simple LdapAuthoritiesPopulator which delegates to a UserDetailsService, using the name which was supplied at login as the username.
UserDetailsServiceLdapAuthoritiesPopulator(UserDetailsService) - Constructor for class org.springframework.security.ldap.authentication.UserDetailsServiceLdapAuthoritiesPopulator
 
UserDetailsServiceWrapper - Class in org.springframework.security.access.hierarchicalroles
Deprecated.
use a RoleHierarchyVoter or use a RoleHierarchyAuthoritiesMapper to populate the Authentication object with the additional authorities.
UserDetailsServiceWrapper() - Constructor for class org.springframework.security.access.hierarchicalroles.UserDetailsServiceWrapper
Deprecated.
 
UserDetailsWrapper - Class in org.springframework.security.access.hierarchicalroles
Deprecated.
use a RoleHierarchyVoter or RoleHierarchyAuthoritiesMapper instead.
UserDetailsWrapper(UserDetails, RoleHierarchy) - Constructor for class org.springframework.security.access.hierarchicalroles.UserDetailsWrapper
Deprecated.
 
userExists(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
 
userExists(String) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
 
userExists(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
 
userExists(String) - Method in interface org.springframework.security.provisioning.UserDetailsManager
Check if a user with the supplied login name exists in the system.
UserMap - Class in org.springframework.security.core.userdetails.memory
Deprecated.
Use a plain map instead
UserMap() - Constructor for class org.springframework.security.core.userdetails.memory.UserMap
Deprecated.
 
UserMapEditor - Class in org.springframework.security.core.userdetails.memory
Deprecated.
UserMapEditor() - Constructor for class org.springframework.security.core.userdetails.memory.UserMapEditor
Deprecated.
 
UsernameNotFoundException - Exception in org.springframework.security.core.userdetails
Thrown if an UserDetailsService implementation cannot locate a User by its username.
UsernameNotFoundException(String) - Constructor for exception org.springframework.security.core.userdetails.UsernameNotFoundException
Constructs a UsernameNotFoundException with the specified message.
UsernameNotFoundException(String, Object) - Constructor for exception org.springframework.security.core.userdetails.UsernameNotFoundException
Deprecated.
UsernameNotFoundException(String, Throwable) - Constructor for exception org.springframework.security.core.userdetails.UsernameNotFoundException
Constructs a UsernameNotFoundException with the specified message and root cause.
UsernamePasswordAuthenticationFilter - Class in org.springframework.security.web.authentication
Processes an authentication form submission.
UsernamePasswordAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
 
UsernamePasswordAuthenticationToken - Class in org.springframework.security.authentication
An Authentication implementation that is designed for simple presentation of a username and password.
UsernamePasswordAuthenticationToken(Object, Object) - Constructor for class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
This constructor can be safely used by any code that wishes to create a UsernamePasswordAuthenticationToken, as the AbstractAuthenticationToken.isAuthenticated() will return false.
UsernamePasswordAuthenticationToken(Object, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
This constructor should only be used by AuthenticationManager or AuthenticationProvider implementations that are satisfied with producing a trusted (i.e.
UserServiceBeanDefinitionParser - Class in org.springframework.security.config.authentication
 
UserServiceBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.UserServiceBeanDefinitionParser
 
Utf8 - Class in org.springframework.security.crypto.codec
UTF-8 Charset encoder/decoder.
Utf8() - Constructor for class org.springframework.security.crypto.codec.Utf8
 

V

validate(FilterChainProxy) - Method in class org.springframework.security.config.http.DefaultFilterChainValidator
 
validate(FilterChainProxy) - Method in interface org.springframework.security.web.FilterChainProxy.FilterChainValidator
 
valueOf(String) - Static method in enum org.springframework.security.config.http.MatcherType
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum org.springframework.security.ldap.ppolicy.PasswordPolicyErrorStatus
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum org.springframework.security.openid.OpenIDAuthenticationStatus
Returns the enum constant of this type with the specified name.
values() - Static method in enum org.springframework.security.config.http.MatcherType
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum org.springframework.security.ldap.ppolicy.PasswordPolicyErrorStatus
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum org.springframework.security.openid.OpenIDAuthenticationStatus
Returns an array containing the constants of this enum type, in the order they are declared.
verifyThrowableHierarchy(Throwable, Class<? extends Throwable>) - Static method in class org.springframework.security.web.util.ThrowableAnalyzer
Verifies that the provided throwable is a valid subclass of the provided type (or of the type itself).
verifyToken(String) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
 
verifyToken(String) - Method in interface org.springframework.security.core.token.TokenService
Permits verification the <Token.getKey() was issued by this TokenService and reconstructs the corresponding Token.
vote(Authentication, S, Collection<ConfigAttribute>) - Method in interface org.springframework.security.access.AccessDecisionVoter
Indicates whether or not access is granted.
vote(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.annotation.Jsr250Voter
Votes according to JSR 250.
vote(Authentication, MethodInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
 
vote(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.AuthenticatedVoter
 
vote(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.RoleVoter
 
vote(Authentication, MethodInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.acls.AclEntryVoter
 
vote(Authentication, FilterInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.web.access.expression.WebExpressionVoter
 

W

WEB_INVOCATION_PRIVILEGE_EVALUATOR_ATTRIBUTE - Static variable in class org.springframework.security.web.WebAttributes
Set as a request attribute to override the default WebInvocationPrivilegeEvaluator
WebAttributes - Class in org.springframework.security.web
Well-known keys which are used to store Spring Security information in request or session scope.
WebAttributes() - Constructor for class org.springframework.security.web.WebAttributes
 
WebAuthenticationDetails - Class in org.springframework.security.web.authentication
A holder of selected HTTP details related to a web authentication request.
WebAuthenticationDetails(HttpServletRequest) - Constructor for class org.springframework.security.web.authentication.WebAuthenticationDetails
Records the remote address and will also set the session Id if a session already exists (it won't create one).
WebAuthenticationDetailsSource - Class in org.springframework.security.web.authentication
Implementation of AuthenticationDetailsSource which builds the details object from an HttpServletRequest object, creating a WebAuthenticationDetails.
WebAuthenticationDetailsSource() - Constructor for class org.springframework.security.web.authentication.WebAuthenticationDetailsSource
 
WebExpressionVoter - Class in org.springframework.security.web.access.expression
Voter which handles web authorisation decisions.
WebExpressionVoter() - Constructor for class org.springframework.security.web.access.expression.WebExpressionVoter
 
WebInvocationPrivilegeEvaluator - Interface in org.springframework.security.web.access
Allows users to determine whether they have privileges for a given web URI.
WebSecurityExpressionHandler - Interface in org.springframework.security.web.access.expression
Deprecated.
WebSecurityExpressionRoot - Class in org.springframework.security.web.access.expression
 
WebSecurityExpressionRoot(Authentication, FilterInvocation) - Constructor for class org.springframework.security.web.access.expression.WebSecurityExpressionRoot
 
WebSphere2SpringSecurityPropagationInterceptor - Class in org.springframework.security.web.authentication.preauth.websphere
Deprecated.
WebSphere2SpringSecurityPropagationInterceptor() - Constructor for class org.springframework.security.web.authentication.preauth.websphere.WebSphere2SpringSecurityPropagationInterceptor
Deprecated.
 
WebSpherePreAuthenticatedAuthenticationDetailsSource - Class in org.springframework.security.web.authentication.preauth.websphere
Deprecated.
WebSpherePreAuthenticatedAuthenticationDetailsSource() - Constructor for class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedAuthenticationDetailsSource
Deprecated.
Public constructor which overrides the default AuthenticationDetails class to be used.
WebSpherePreAuthenticatedProcessingFilter - Class in org.springframework.security.web.authentication.preauth.websphere
This AbstractPreAuthenticatedProcessingFilter implementation is based on WebSphere authentication.
WebSpherePreAuthenticatedProcessingFilter() - Constructor for class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedProcessingFilter
Public constructor which overrides the default AuthenticationDetails class to be used.
WebSpherePreAuthenticatedWebAuthenticationDetailsSource - Class in org.springframework.security.web.authentication.preauth.websphere
This AuthenticationDetailsSource implementation will set the pre-authenticated granted authorities based on the WebSphere groups for the current WebSphere user, mapped using the configured Attributes2GrantedAuthoritiesMapper.
WebSpherePreAuthenticatedWebAuthenticationDetailsSource() - Constructor for class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedWebAuthenticationDetailsSource
 
WebSpherePreAuthenticatedWebAuthenticationDetailsSource(WASUsernameAndGroupsExtractor) - Constructor for class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedWebAuthenticationDetailsSource
 
WebXmlMappableAttributesRetriever - Class in org.springframework.security.web.authentication.preauth.j2ee
This MappableAttributesRetriever implementation reads the list of defined J2EE roles from a web.xml file and returns these from {WebXmlMappableAttributesRetriever.getMappableAttributes().
WebXmlMappableAttributesRetriever() - Constructor for class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
 
write - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
 
WRITE - Static variable in class org.springframework.security.acls.domain.BasePermission
 
writeMessage(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
 

X

X509 - Static variable in class org.springframework.security.config.Elements
 
X509AuthenticationFilter - Class in org.springframework.security.web.authentication.preauth.x509
 
X509AuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.preauth.x509.X509AuthenticationFilter
 
X509PrincipalExtractor - Interface in org.springframework.security.web.authentication.preauth.x509
Obtains the principal from an X509Certificate for use within the framework.
A B C D E F G H I J K L M N O P Q R S T U V W X