Core access-control related code, including security metadata related classes interception code Security access control annotations Voter-based AccessDecisionManager implementations


Interface Summary
AccessDecisionManager Makes a final access control (authorization) decision.
AccessDecisionVoter Indicates a class is responsible for voting on authorization decisions.
AfterInvocationProvider Indicates a class is responsible for participating in an AfterInvocationProviderManager decision.
ConfigAttribute Stores a security system related configuration attribute.
PermissionEvaluator Strategy used in expression evaluation to determine whether a user has a permission or permissions for a given domain object.
SecurityMetadataSource Implemented by classes that store and can identify the ConfigAttributes that applies to a given secure object invocation.

Class Summary
ConfigAttributeEditor Deprecated.  
SecurityConfig Stores a ConfigAttribute as a String.

Exception Summary
AccessDeniedException Thrown if an Authentication object does not hold a required authority.
AuthorizationServiceException Thrown if an authorization request could not be processed due to a system problem.

Package Description

Core access-control related code, including

Copyright © 2004-2009 SpringSource, Inc. All Rights Reserved.