org.springframework.security.access.intercept
Class MethodInvocationPrivilegeEvaluator

java.lang.Object
  extended by org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
All Implemented Interfaces:
InitializingBean

public class MethodInvocationPrivilegeEvaluator
extends Object
implements InitializingBean

Allows users to determine whether they have "before invocation" privileges for a given method invocation.

Of course, if an AfterInvocationManager is used to authorize the result of a method invocation, this class cannot assist determine whether or not the AfterInvocationManager will enable access. Instead this class aims to allow applications to determine whether or not the current principal would be allowed to at least attempt to invoke the method, irrespective of the "after" invocation handling.


Field Summary
protected static org.apache.commons.logging.Log logger
           
 
Constructor Summary
MethodInvocationPrivilegeEvaluator()
           
 
Method Summary
 void afterPropertiesSet()
           
 boolean isAllowed(org.aopalliance.intercept.MethodInvocation mi, Authentication authentication)
           
 void setSecurityInterceptor(AbstractSecurityInterceptor securityInterceptor)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

logger

protected static final org.apache.commons.logging.Log logger
Constructor Detail

MethodInvocationPrivilegeEvaluator

public MethodInvocationPrivilegeEvaluator()
Method Detail

afterPropertiesSet

public void afterPropertiesSet()
                        throws Exception
Specified by:
afterPropertiesSet in interface InitializingBean
Throws:
Exception

isAllowed

public boolean isAllowed(org.aopalliance.intercept.MethodInvocation mi,
                         Authentication authentication)

setSecurityInterceptor

public void setSecurityInterceptor(AbstractSecurityInterceptor securityInterceptor)