org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
|
|||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | ||||||||
java.lang.Object
public class DefaultFilterInvocationSecurityMetadataSource
Default implementation of FilterInvocationDefinitionSource.
Stores an ordered map of RequestMatchers to ConfigAttribute collections and provides matching
of FilterInvocations against the items stored in the map.
The order of the RequestMatchers in the map is very important. The first one which matches the
request will be used. Later matchers in the map will not be invoked if a match has already been found.
Accordingly, the most specific matchers should be registered first, with the most general matches registered last.
The most common method creating an instance is using the Spring Security namespace. For example, the pattern
and access attributes of the <intercept-url> elements defined as children of the
<http> element are combined to build the instance used by the FilterSecurityInterceptor.
| Field Summary | |
|---|---|
protected org.apache.commons.logging.Log |
logger
|
| Constructor Summary | |
|---|---|
DefaultFilterInvocationSecurityMetadataSource(LinkedHashMap<RequestMatcher,Collection<ConfigAttribute>> requestMap)
Sets the internal request map from the supplied map. |
|
| Method Summary | |
|---|---|
Collection<ConfigAttribute> |
getAllConfigAttributes()
If available, returns all of the ConfigAttributes defined by the implementing class. |
Collection<ConfigAttribute> |
getAttributes(Object object)
Accesses the ConfigAttributes that apply to a given secure object. |
boolean |
supports(Class<?> clazz)
Indicates whether the SecurityMetadataSource implementation is able to provide
ConfigAttributes for the indicated secure object type. |
| Methods inherited from class java.lang.Object |
|---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Field Detail |
|---|
protected final org.apache.commons.logging.Log logger
| Constructor Detail |
|---|
public DefaultFilterInvocationSecurityMetadataSource(LinkedHashMap<RequestMatcher,Collection<ConfigAttribute>> requestMap)
RequestMatcher,
which. The path stored in the key will depend on
the type of the supplied UrlMatcher.
requestMap - order-preserving map of request definitions to attribute lists| Method Detail |
|---|
public Collection<ConfigAttribute> getAllConfigAttributes()
SecurityMetadataSourceConfigAttributes defined by the implementing class.
This is used by the AbstractSecurityInterceptor to perform startup time validation of each
ConfigAttribute configured against it.
getAllConfigAttributes in interface SecurityMetadataSourceConfigAttributes or null if unsupportedpublic Collection<ConfigAttribute> getAttributes(Object object)
SecurityMetadataSourceConfigAttributes that apply to a given secure object.
getAttributes in interface SecurityMetadataSourceobject - the object being secured
public boolean supports(Class<?> clazz)
SecurityMetadataSourceSecurityMetadataSource implementation is able to provide
ConfigAttributes for the indicated secure object type.
supports in interface SecurityMetadataSourceclazz - the class that is being queried
|
|||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | ||||||||