|
|||||||||
| PREV NEXT | FRAMES NO FRAMES | ||||||||
Authentication.
AccessDecisionManager.AfterInvocationProvider which provides commonly-used ACL-related services.Authentication object as part of the contract.Authentication objects.MethodSecurityMetadataSource that supports both Spring AOP and AspectJ and
performs attribute resolution from: 1.AuthenticationProvider implementation that retrieves user details from a JAAS login configuration.LdapAuthenticationProvider and the
ActiveDirectoryLdapAuthenticationProvider.ContextSource provided.
Permission implementations.AuthenticationProvider that allows subclasses to override and work with UserDetails objects.AccessDeniedException in the request for rendering.
Acl.AccessControlEntry.Tag that allows its body through if some authorizations are granted to the request's
principal.Authentication object does not hold a
required authority.AccessDeniedException with the specified
message.
AccessDeniedException with the specified
message and root cause.
ExceptionTranslationFilter to handle an
AccessDeniedException.AccessDeniedHandler.AccountExpiredException with the specified
message.
AccountExpiredException with the specified
message and root cause.
AclImpl to determine whether a principal is permitted to call
adminstrative methods on the AclImpl.AclAuthorizationStrategy.JdbcAclService.AclDataAccessException with the specified
message and root cause.
AclDataAccessException with the specified
message and no root cause.
Collection of domain object instances returned from a secure object invocation, remove
any Collection elements the principal does not have appropriate permission to access as defined by the
AclService.AclService.AclService.Acl.MutableAclService.createAcl(ObjectIdentity).
PermissionGrantingStrategy argument instead.
Acl instances.AuthenticationException when attempting to authenticate against
Active Directory using ActiveDirectoryLdapAuthenticationProvider.UserDetails
for a given authentication request.
AccessDecisionManager that grants access if any
AccessDecisionVoter returns an affirmative response.Object returned from a secure object invocation,
being able to modify the Object or throw an AccessDeniedException.AfterInvocationProviderManager decision.AfterInvocationManager.Token.
Acl entry already exists for the object.AlreadyExistsException with the specified message.
AlreadyExistsException with the specified message
and root cause.
ConfigAttributes for
securing a method.Authentication object in the SecurityContextHolder, and
populates it with one if needed.AuthenticationProvider implementation that validates AnonymousAuthenticationTokens.Authentication.servletPath + pathInfo) of an HttpServletRequest.AspectJMethodSecurityInterceptor when it wishes for the
AspectJ processing to continue.JoinPoint security interceptor which wraps the JoinPoint in a MethodInvocation
adapter to make it compatible with security infrastructure classes which only support MethodInvocations.GrantedAuthoritys.AclImpl to log audit events.Authentication object, returning a fully populated
Authentication object (including granted authorities) if successful.
AuthenticationManager.authenticate(Authentication).
Authentication object.
ConfigAttribute.getAttribute() of IS_AUTHENTICATED_FULLY or
IS_AUTHENTICATED_REMEMBERED or IS_AUTHENTICATED_ANONYMOUSLY is present.AuthenticationManager.authenticate(Authentication) method.Authentication could not be obtained from
the SecurityContextHolder.Authentication object in the SecurityContext.AuthenticationCredentialsNotFoundException
with the specified message.
AuthenticationCredentialsNotFoundException
with the specified message and root cause.
Authentication.getDetails() object for
a given web request.ExceptionTranslationFilter to commence an authentication scheme.Authentication object being invalid for whatever
reason.AuthenticationException with the specified message and root cause.
AuthenticationException with the specified message and no root cause.
AuthenticationProvider that can process the request.AuthenticationManager.Authentication request.Authentication implementation.AuthenticationServiceException with the
specified message.
AuthenticationServiceException with the
specified message and root cause.
SimpleHttpInvokerRequestExecutor.Tag implementation that allows convenient access to the current
Authentication object.Authentication tokensAuthenticationTrustResolver.AuthorizationServiceException with the
specified message.
AuthorizationServiceException with the
specified message and root cause.
SecurityContextHolder does not contain an
Authentication object and Spring Security wishes to provide an implementation with an
opportunity to authenticate the request using remember-me capabilities.
BadCredentialsException with the specified
message.
BadCredentialsException with the specified
message and root cause.
ExceptionTraslationFilter to commence authentication via the BasicAuthenticationFilter.SecurityContextHolder.AuthenticationManager
and which will ignore failed authentication attempts, allowing the request to proceed down the filter chain.
AuthenticationManager and
use the supplied AuthenticationEntryPoint to handle authentication failures.
PermissionGrantingStrategy argument instead.
BaseLdapPathContextSource provided.
CumulativePermission or BasePermission representing the
active bits in the passed mask.
Authentication object for the current secure object invocation, or
null if replacement not required.
ExceptionTranslationFilter to commence authentication via the JA-SIG Central
Authentication Service (CAS).AuthenticationProvider implementation that integrates with JA-SIG Central Authentication Service
(CAS).Authentication.ChannelDecisionManager.ChannelProcessor to launch a web channel.Acl cannot be deleted because children Acls exist.ChildrenExistException with the specified
message.
ChildrenExistException with the specified
message and root cause.
Subject (phase two) by adding the Spring Security
Authentication to the Subject's principals.
AccessDecisionManager that uses a
consensus-based approach.AuditLogger.RemoteInvocation that is passed from the client to the server.org.springframework.remoting.rmi.RmiProxyFactoryBean when it
wishes to create a remote invocation.MethodInvocation for specified methodName on the passed object,
using the args to locate the method.
Acl object in the database.
StandardEvaluationContext and SecurityExpressionRoot
objects.
StandardEvaluationContext.
MethodSecurityEvaluationContext as the EvaluationContext implementation.
EvaluationContext to be customized for variable lookup etc.
MethodInvocation for the specified methodName on the passed class.
MethodInvocation for specified methodName on the passed class,
using the args to locate the method.
DefaultJaasAuthenticationProvider.setConfiguration(Configuration).
acl_class, creating a new row if needed and the
allowCreate property is true.
Authentication object.
Authentication object which will be returned from the authenticate method.
eraseCredentials method.CredentialsExpiredException with the specified
message.
CredentialsExpiredException with the specified
message and root cause.
Permission that is constructed at runtime from other permissions.AuthenticationProvider implementation that retrieves user details from a UserDetailsService.Object, make an
access control decision or optionally modify the returned Object.
AccessDecisionVoters and grants access
if any AccessDecisionVoter voted affirmatively.
AccessDecisionVoters and upon
completion determines the consensus of granted against denied responses.
AccessDecisionVoters for each ConfigAttribute and grants access if only grant (or abstain) votes were received.
FilterInvocation provides the appropriate level of channel
security based on the requested list of ConfigAttributes.
FilterInvocation provides the appropriate level of channel
security based on the requested list of ConfigAttributes.
Throwable instances.
servletPath and
pathInfo, which do not contain path parameters (as defined in
RFC 2396).MethodSecurityExpressionHandler.PermissionFactory.HttpServletRequest.SecurityFilterChain.Token.AuthenticationEntryPoint which selects a concrete AuthenticationEntryPoint based on a
RequestMatcher evaluation.String created using
BasePasswordEncoder.mergePasswordAndSalt(String,Object,boolean).
Throwable.
SecurityEnforcementFilter to commence authentication via the DigestAuthenticationFilter.SecurityContextHolder.DisabledException with the specified message.
DisabledException with the specified message
and root cause.
DefaultSavedRequest.
requiresAuthentication
method to determine whether the request is for authentication and should be handled by this filter.
Subject using
JaasApiIntegrationFilter.obtainSubject(ServletRequest).
AbstractAuthorizeTag.authorize() method to
decide if the body of the tag should be skipped or not.
AclCache that delegates to EH-CACHE.User objects using a Spring IoC defined EHCACHE.Enumeration around a Java 2 collection Iterator.java.lang.Object documentation for the interface contract.
true if the supplied object is a User instance with the
same username value.
credentials, principal and details objects, invoking the
eraseCredentials method on any which implement CredentialsContainer.
AccessDeniedException and AuthenticationException thrown within the
filter chain.PrePostInvocationAttributeFactory which interprets the annotation value as
an expression to be evaluated at runtime.FilterInvocationSecurityMetadataSource.Throwable.
filterTarget object (which must be either a collection or an array), by evaluating the
supplied expression.
Filter requests to a list of Spring-managed filter beans.SecurityMetadataSource implementations
that are designed to perform lookups keyed on FilterInvocations.FilterInvocationSecurityMetadataSource bean for use with a FilterSecurityInterceptor.HttpFirewall interface.flushBuffer()
getDateHeader().
SecurityContextHolder.createEmptyContext() to obtain a new context (there should be
no context present in the holder when this method is called).
ConfigAttributes defined by the implementing class.
SessionRegistry.
ConfigAttribute can be represented as a String and that
String is sufficient in precision to be relied upon as a configuration parameter by a RunAsManager, AccessDecisionManager or AccessDecisionManager delegate, this method should
return such a String.
ConfigAttributes that apply to a given secure object.
Authentication request that caused the event.
AuthenticationManager to indicate the authorities that the principal has been
granted.
GrantedAuthority can be represented as a String and that
String is sufficient in precision to be relied upon for an access control decision by an AccessDecisionManager (or delegate), this method should return such a String.
CasAuthenticationToken associated with the
specified ticket.
SecurityContext.
String
String
alwaysUseDefaultTargetUrl property is set to true.
SecurityFilterChains instead
Class that generated this event.
SecurityContextHolderStrategy.
NoOpPasswordEncoder.
getOutputStream().close() or
getOutputStream().flush()
String representing this permission.
credentialsRequestHeader is set, this
will be read and used as the credentials value.
principalRequestHeader from the request.
Authentication object, such as a String or UserDetails instance
SecurityContextHolder.
User to obtain the salt.
SecurityContext instances which were associated with the destroyed session.
ServletRequest was received on.
HttpSession id the authentication request was received from.
sessionId.
UserDetailsContextMapper strategy for use by subclasses.
UserDetails from the cache.
Authentication (which is a subclass of Principal), or
null if unavailable.
getWriter().close() or
getWriter().flush()
Authentication object.Authentication object.GrantedAuthoritys for a user by reading a list of attributes that were returned as
part of the CAS response.SimpleGrantedAuthority or implement your own.GrantedAuthority as a Sid.RedirectStrategy with the URL returned by the determineTargetUrl method.
LoginContext.logout() for any which contain a JaasAuthenticationToken.
java.lang.Object documentation for the interface contract.
username.
HttpFirewall bean reference into the FilterChainProxy.SecurityContextRepository.loadContext(HttpRequestResponseHolder),
allowing the method to swap the request for a wrapped version, as well as returning the SecurityContext
value.HttpSessionEventPublisher when an HttpSession is created by the containerHttpSessionEventPublisher when a HttpSession is created in the containerRequestCache which stores the SavedRequest in the HttpSession.SecurityContextRepository implementation which stores the security context in the HttpSession
between requests.IdentityUnavailableException with the specified message.
IdentityUnavailableException with the specified message
and root cause.
Throwables and ThrowableCauseExtractors.
LoginModule.
AppConfigurationEntrys.
AppConfigurationEntrys along with a default configuration that
will be used if no mapping is found for the given login context name.
Resource interface.UserDetailsManager which is backed by an in-memory map.HttpServletRequest.isSecure() responses.InsufficientAuthenticationException with the
specified message.
InsufficientAuthenticationException with the
specified message and root cause.
AbstractSecurityInterceptor subclasses.SessionManagementFilter when an invalid session Id is submitted and
detected in the SessionManagementFilter.InvocationTargetException instances.
MethodInvocation.
Authentication token represents an anonymous user.
AbstractSecurityInterceptor whether it should present the
authentication token to the AuthenticationManager.
saveContext() because of this wrapper.
Acl.getParentAcl() should flow down into the current
Acl.
PermissionGrantingStrategy.
Acl grants access
based on the supplied list of permissions and sids.
Authentication token represents user that has been remembered
(i.e.
renew parameter should be sent to the CAS login URL and CAS
validation URL.
GrantedAuthority.getAuthority().
HttpServletRequest.isUserInRole(String)) into GrantedAuthoritys and stores these in the authentication
details object.MappableAttributesRetriever
Filter which attempts to obtain a JAAS Subject
and continue the FilterChain running as that
Subject.JaasAuthenticationProvider.AuthenticationProvider implementation that retrieves user details from a JAAS login configuration.JaasAuthenticationProvider
after successfully logging the user into the LoginContext, handling all callbacks, and calling all
AuthorityGranters.GrantedAuthority which, in addition to the assigned role, holds the principal that an
AuthorityGranter used as a reason to grant this authority.AclService.MutableAclService.Tag implementation of AbstractAuthorizeTag.TokenService that is compatible with clusters and across machine restarts,
without requiring database persistence.AuthenticationProvider implementation that authenticates
against an LDAP server.ShaPasswordEncoder which supports Ldap SHA and SSHA (salted-SHA) encodings.LdapUserSearch
and an LdapAuthoritiesPopulator.memberOf attribute obtained from the user's
Active Directory entry.
UserDetails via the supplied CAS
assertion.
LockedException with the specified message.
LockedException with the specified message and
root cause.
Subject (phase one) by extracting the Spring Security
Authentication from the current SecurityContext.
ExceptionTranslationFilter to commence a form login
authentication via the UsernamePasswordAuthenticationFilter.Subject.
LogoutHandler.
LogoutFilter, to handle redirection or
forwarding to the appropriate destination.AclService.RequestMatcher types supported by the namespace.servletPath + pathInfo + queryString) against
the compiled pattern.
String.
MethodInvocation instances.MethodInvocations usable within Spring Security.SecurityMetadataSource implementations
that are designed to perform lookups keyed on Methods.MethodSecurityMetadataSource, used to exclude a MethodSecurityInterceptor from
public (non-secure) methods.Acl instances.NonceExpiredException with the specified
message.
NonceExpiredException with the specified
message and root cause.
NotFoundException with the specified message.
NotFoundException with the specified message
and root cause.
NullRememberMeServices that does nothing.StatelessTicketCache that has no backing cache.ObjectIdentity from an object identifier (such as a primary key)
and type information.ObjectIdentity.ObjectIdentityImpl based on the passed
object instance.
ObjectIdentity
will be returned for a particular domain objectObjectIdentityRetrievalStrategy and ObjectIdentityGenerator
that uses the constructors of ObjectIdentityImpl to create the ObjectIdentity.HttpServletRequest.
PlaintextPasswordEncoder.encodePassword(String, Object)String.
Subject to run as or null if no
Subject is available.
defaultFailureUrl if set, otherwise returns a 401 error code.
handle() method to forward or redirect to the target URL, and
then calls clearAuthenticationAttributes() to remove any leftover session data.
RememberMeServices
autoLogin method and the AuthenticationManager.
AuthenticationManager rejects the authentication object returned from the
RememberMeServices autoLogin method.
AxFetchListFactory version instead.
AccessDecisionManager interface.@Secured annotations.@PreAuthorize, @PreFilter,
@PostAuthorize and @PostFilter annotations.MethodInvocations, such as via Spring AOP.JointPoints, delegating secure object callbacks to the calling aspect.SecurityMetadataSource implementations for securing Java method invocations via different
AOP libraries.@PreAuthorize, @PreFilter, @PostAuthorize
and @PostFilter annotations.AuthenticationProvider which relies upon a data access object.Authentication object.AuthenticationProvider that can process CAS service tickets and proxy tickets.GrantedAuthority interface.GrantedAuthoritys.org.springframework.security.core.session.SessionInformation
SessionInformation class.UserCache.org.springframework.security.core.userdetails.UserDetailsService UserDetailsService.LdapUserSearch implementations.UserDetails implementations which map from a ubset of the data
contained in some of the standard LDAP types (such as InetOrgPerson).HttpInvoker extension points to
present the principal and credentials located
in the ContextHolder via BASIC authentication.SecurityContextHolder (which
should contain an Authentication request token) from one JVM to the remote JVM.HttpServletRequest which requires authentication.HttpServletRequestWrapper.HttpSession events and publisher classes.LdapAuthenticator which compares the login
password with the value stored in the directory using a remote LDAP "compare" operation.PasswordEncoder
instead which better accommodates best practice of randomly
generated salt that is included with the password.PasswordPolicyControl to make use of user account data stored in the directory.Permission instances from integer masks.Acl.RememberMeServices implementation based on Barry Jaspan's
Improved Persistent Login Cookie
Best Practice.PersistentTokenBasedRememberMeServices to store the persistent
login tokens for a user.PortMapper implementations provide callers with information
about which HTTP ports are associated with which HTTPS ports on the system,
and vice versa.PortMapper that obtains HTTP:HTTPS pairs from the application context.PortResolver determines the port a web request was received
on.PortResolver that obtains the port from ServletRequest.getServerPort().PostInvocationAuthorizationAdvice instance
passing it the PostInvocationAttribute created from @PostAuthorize and @PostFilter annotations.Authentication implementation for pre-authenticated
authentication.Authentication.getPrincipal() as a Sid.Authentication request through a list of AuthenticationProviders.ProviderManager if no AuthenticationProvider could be found that supports the
presented Authentication object.ProviderNotFoundException with the specified
message.
JaasAuthenticationFailedEvent.
JaasAuthenticationFailedEvent.
JaasAuthenticationSuccessEvent.
CasAuthenticationToken to the cache.
UserDetails in the cache.
AclService.readAclsById(List) except it returns only a single Acl.
AclService.readAclsById(List, List) except it returns only a single Acl.
User object.sessionId so its last request time is equal to the present date and time.
HttpServletRequest.Pattern instance to match against the request.
ThrowableCauseExtractor for the specified type.
Permission for a give class.
Authentication object in the SecurityContext, and populates the context with
a remember-me authentication token if a RememberMeServices implementation so requests.AuthenticationProvider implementation that validates RememberMeAuthenticationTokens.Authentication.RemoteAuthenticationManager cannot validate the presented authentication request.RemoteAuthenticationException with the
specified message and no root cause.
RemoteAuthenticationManager to validate an authentication request.sessionId.
StatelessTicketCache.removeTicketFromCache(String).
UserDetails from an implementation-specific
location, with the option of throwing an AuthenticationException immediately if the presented
credentials are incorrect (this is especially useful if it is necessary to bind to a resource as the user in
order to obtain or generate a UserDetails).
RoleHierarchy definition to determine the
roles allocated to the current user before voting.ConfigAttribute.getAttribute() starts with a prefix
indicating that it is a role.AuthenticationProvider implementation that can authenticate a RunAsUserToken.Authentication object for the current secure
object invocation only.RunAsManager.Authentication implementation that supports RunAsManagerImpl.SecurityContext when a sendError(), sendRedirect,
getOutputStream().close(), getOutputStream().flush(), getWriter().close(), or
getWriter().flush() happens.DefaultSavedRequest which may have been stored in
the session by the ExceptionTranslationFilter.AuthenticationException for use in view rendering.
HttpServletRequest.isSecure() responses.Secured annotation.BytesKeyGenerator that uses a SecureRandom to generate keys of 8 bytes in length.
BytesKeyGenerator that uses a SecureRandom to generate keys of a custom length.
SecureRandom instance.ConfigAttribute as a String.SecurityContext with the current execution thread.Filter which populates the ServletRequest with a request wrapper
which implements the servlet API security methods.HttpServletRequestWrapper, which uses the
SecurityContext-defined Authentication object to implement the servlet API security
methods SecurityContextHolderAwareRequestWrapper.isUserInRole(String) and HttpServletRequestWrapper.getRemoteUser().SecurityContext.LoginModule that uses a Spring Security SecurityContext to provide authentication.SecurityContextHolder.SecurityContextHolder with information obtained from
the configured SecurityContextRepository prior to the request and stores it back in the repository
once the request has completed and clearing the context holder.SecurityContext between requests.HttpServletRequest.ConfigAttributes that applies to a given secure object
invocation.sendError()
sendError()
sendRedirect()
CasAuthenticationProvider to provide the correct
service url to authenticate the ticket, the returned value of
Authentication.getDetails() should implement this interface when
tickets can be sent to any URL rather than only
ServiceProperties.getService().AuthenticationDetailsSource that is set on the
CasAuthenticationFilter should return a value that implements
ServiceAuthenticationDetails if the application needs to authenticate
dynamic service urls.HttpSessionCreatedEvent to the application
appContext.
HttpSessionDestroyedEvent to the application
appContext.
SessionAuthenticationStrategy.SessionAuthenticationStrategy to perform any session-related activity such as
activating session-fixation protection mechanisms or checking for multiple concurrent logins.SessionInformation instances.SessionRegistry
which listens for SessionDestroyedEvents
published in the Spring application context.AbstractSecurityInterceptor should
ignore the Authentication.isAuthenticated() property.
true, will always redirect to the value of defaultTargetUrl
(defaults to false).
Authentication.isAuthenticated() for a full description.
AuthenticationFailureHandler to distinguish between
handling proxy ticket authentication failures and service ticket
failures.
UserDetails for the authenticated OpenID user.
Authentication from the SecurityContext to prevent issues with concurrent
requests.
extraInformation property is deprecated
SecurityContext with the current thread of execution.
AbstractAuthenticationProcessingFilter.successfulAuthentication(HttpServletRequest, HttpServletResponse,
Authentication), which may be useful in certain environment (such as
Tapestry applications).
true, any AuthenticationException raised by the AuthenticationManager will be
swallowed, and the request will be allowed to proceed, potentially using alternative authentication mechanisms.
BadCredentialsException.
AuthenticationProvider using a GrantedAuthoritiesMapper.
createEmptySubject.
true, indicates that it is permitted to store the target
URL and exception information in a new HttpSession (the default).
AuthenticationProvider using a GrantedAuthoritiesMapper.
alwaysUseDefaultTargetUrl property is set to true.
SearchControls instance used in the search.
Acl.isEntriesInheriting().
Authentication which implements the CredentialsContainer interface
will have its eraseCredentials method called before it is returned
from the authenticate() method.
List<SecurityFilterChain> instead.
AbstractUserDetailsAuthenticationProvider throws a
BadCredentialsException if a username is not found or the password is incorrect.
HttpSession to be invalidated when this LogoutHandler is invoked.
PermissionFactory instance which will be used to convert loaded permission
data values to Permissions.
UserDetails for the authenticated user.
AuthenticationFailureHandler for proxy requests.
AuthorizationFailureEvent will be published.
Configuration#refresh() will be made by #configureJaas(Resource)
method.
AbstractSecurityInterceptor has a configuration
attribute defined.
extractAttributes method instead
return_to URL which is assembled by OpenIDAuthenticationFilter.buildReturnToUrl(javax.servlet.http.HttpServletRequest).
ROLE_ to be overridden.
ROLE_ to be overridden.
AuthenticationProvider using a GrantedAuthoritiesMapper.
SecureRandom
instance.
loginFormUrl using the RequestDispatcher,
instead of a 302 redirect.
UserDetails object obtained for
the user when processing a remember-me cookie to automatically log in a user.
AbstractLdapAuthenticationProvider.createSuccessfulAuthentication(org.springframework.security.authentication.UsernamePasswordAuthenticationToken, org.springframework.security.core.userdetails.UserDetails) method.
UserDetails for the authenticated OpenID user.
true the Referer header will be used (if available).
true (the default), indicates the JdbcDaoImpl.getUsersByUsernameQuery() returns a username
in response to a query.
UserMap to reflect the Properties instance passed.
UserMap.
byte[].
byte[].
ShaPasswordEncoder encoder = new ShaPasswordEncoder(256); initializes with SHA-256
BytesKeyGenerator that returns a single, shared SecureRandom key of a custom length.
Sid instances applicable
for an Authentication.SidRetrievalStrategy that creates a Sid for the principal, as well as
every granted authority the principal holds.GrantedAuthoritiesMapper which allows for case conversion of the authority name
and the addition of a string prefix (which defaults to ROLE_).GrantedAuthority.MethodInvocation.SessionManagementFilter.defaultFailureUrl property when the onAuthenticationFailure method is called.AbstractAuthenticationTargetUrlRequestHandler
base class logic.WebAttributes directly.
AuthenticationFailureHandler
SecurityContextHolder.MessageSource used by Spring Security.PasswordEncoder implementation that uses SHA-256 hashing with 1024 iterations and a
random 8-byte random salt value.StringKeyGenerator that hex-encodes SecureRandom keys of 8 bytes in length.
X509Certificate.getSubjectDN()).AbstractAuthenticationProcessingFilter.successfulAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, Authentication) instead.
Authentication instance returned by the
authentication manager into the secure context.
AccessDecisionManager is able to process authorization requests
presented with the passed ConfigAttribute.
AccessDecisionManager implementation is able to provide access
control decisions for the indicated secured object type.
AccessDecisionVoter is able to vote on the passed ConfigAttribute.
AccessDecisionVoter implementation is able to provide access control
votes for the indicated secured object type.
AfterInvocationProvider is able to participate in a decision
involving the passed ConfigAttribute.
AfterInvocationProvider is able to provide "after invocation"
processing for the indicated secured object type.
Jsr250SecurityConfig.
AfterInvocationManager is able to process "after invocation"
requests presented with the passed ConfigAttribute.
AfterInvocationManager implementation is able to provide access
control decisions for the indicated secured object type.
AfterInvocationProviders and ensures each can support the presented
class.
RunAsManager is able to process the passed
ConfigAttribute.
RunAsManager implementation is able to provide run-as replacement for
the indicated secure object type.
SecurityMetadataSource implementation is able to provide
ConfigAttributes for the indicated secure object type.
AccessDecisionVoters and ensures each can support the presented class.
MethodSecurityInterceptor, because it queries the
presented MethodInvocation.
true if this AuthenticationProvider supports the indicated
Authentication object.
ChannelDecisionManager is able to process the passed
ConfigAttribute.
ChannelProcessor is able to process the passed
ConfigAttribute.
GrantedAuthority list that will be assigned to the principal
when they assume the identity of a different principal.GrantedAuthority used by
SwitchUserFilterString as the salt.AuthenticationProvider implementation for the TestingAuthenticationToken.Authentication implementation that is designed for use whilst unit testing.Throwable instances.ThrowableAnalyzer instance.
Throwable type.TokenService.AccessDecisionManager that requires all
voters to abstain or grant access.Acl cannot perform an operation because it only loaded a subset of Sids and
the caller has requested details for an unloaded Sid.NotFoundException with the specified message.
NotFoundException with the specified message
and root cause.
Acl in the database.
UserDetailsService.true.
User with the details required by
DaoAuthenticationProvider.
InMemoryDaoImpl to temporarily store the attributes associated with a user.UserAttribute from a comma separated list of values.UserDetails objects.UserDetailsService
as the service to delegate to.
UserDetailsService to check the status of the loaded
UserDetails object.DirContextOperations implementation.UserDetailsService which provides the ability
to create new users and update existing ones.RoleHierarchyVoter or use a RoleHierarchyAuthoritiesMapper to populate the
Authentication object with the additional authorities.RoleHierarchyVoter or RoleHierarchyAuthoritiesMapper instead.UserDetailsService implementation cannot locate a User by its username.UsernameNotFoundException with the specified
message.
UsernameNotFoundException with the specified message and root cause.
Authentication implementation that is designed for simple presentation
of a username and password.UsernamePasswordAuthenticationToken, as the AbstractAuthenticationToken.isAuthenticated() will return false.
AuthenticationManager or AuthenticationProvider
implementations that are satisfied with producing a trusted (i.e.
Token.getKey() was issued by this TokenService and
reconstructs the corresponding Token.
WebInvocationPrivilegeEvaluator
AuthenticationDetailsSource which builds the details object from
an HttpServletRequest object, creating a WebAuthenticationDetails.WebXmlMappableAttributesRetriever.getMappableAttributes().
|
|||||||||
| PREV NEXT | FRAMES NO FRAMES | ||||||||