- abort() - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
-
Abort the authentication process by forgetting the Spring Security
Authentication
.
- AbstractAccessDecisionManager - Class in org.springframework.security.access.vote
-
- AbstractAccessDecisionManager(List<AccessDecisionVoter<? extends Object>>) - Constructor for class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- AbstractAclProvider - Class in org.springframework.security.acls.afterinvocation
-
- AbstractAclProvider(AclService, String, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- AbstractAclVoter - Class in org.springframework.security.access.vote
-
Provides helper methods for writing domain object ACL voters.
- AbstractAclVoter() - Constructor for class org.springframework.security.access.vote.AbstractAclVoter
-
- AbstractAuthenticationEvent - Class in org.springframework.security.authentication.event
-
Represents an application authentication event.
- AbstractAuthenticationEvent(Authentication) - Constructor for class org.springframework.security.authentication.event.AbstractAuthenticationEvent
-
- AbstractAuthenticationFailureEvent - Class in org.springframework.security.authentication.event
-
Abstract application event which indicates authentication failure for some reason.
- AbstractAuthenticationFailureEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AbstractAuthenticationFailureEvent
-
- AbstractAuthenticationFilterConfigurer<B extends HttpSecurityBuilder<B>,T extends AbstractAuthenticationFilterConfigurer<B,T,F>,F extends AbstractAuthenticationProcessingFilter> - Class in org.springframework.security.config.annotation.web.configurers
-
- AbstractAuthenticationFilterConfigurer(F, String) - Constructor for class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Creates a new instance
- AbstractAuthenticationProcessingFilter - Class in org.springframework.security.web.authentication
-
Abstract processor of browser-based HTTP-based authentication requests.
- AbstractAuthenticationProcessingFilter(String) - Constructor for class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- AbstractAuthenticationProcessingFilter(RequestMatcher) - Constructor for class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
Creates a new instance
- AbstractAuthenticationTargetUrlRequestHandler - Class in org.springframework.security.web.authentication
-
Base class containing the logic used by strategies which handle redirection to a URL
and are passed an Authentication
object as part of the contract.
- AbstractAuthenticationTargetUrlRequestHandler() - Constructor for class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
- AbstractAuthenticationToken - Class in org.springframework.security.authentication
-
Base class for Authentication
objects.
- AbstractAuthenticationToken(Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.authentication.AbstractAuthenticationToken
-
Creates a token with the supplied array of authorities.
- AbstractAuthorizationEvent - Class in org.springframework.security.access.event
-
Abstract superclass for all security interception related events.
- AbstractAuthorizationEvent(Object) - Constructor for class org.springframework.security.access.event.AbstractAuthorizationEvent
-
Construct the event, passing in the secure object being intercepted.
- AbstractAuthorizeTag - Class in org.springframework.security.taglibs.authz
-
A base class for an <authorize> tag that is independent of the tag rendering
technology (JSP, Facelets).
- AbstractAuthorizeTag() - Constructor for class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
- AbstractCasAssertionUserDetailsService - Class in org.springframework.security.cas.userdetails
-
Abstract class for using the provided CAS assertion to construct a new User object.
- AbstractCasAssertionUserDetailsService() - Constructor for class org.springframework.security.cas.userdetails.AbstractCasAssertionUserDetailsService
-
- AbstractConfigAttributeRequestMatcherRegistry<C> - Class in org.springframework.security.config.annotation.web.configurers
-
- AbstractConfigAttributeRequestMatcherRegistry() - Constructor for class org.springframework.security.config.annotation.web.configurers.AbstractConfigAttributeRequestMatcherRegistry
-
- AbstractConfiguredSecurityBuilder<O,B extends SecurityBuilder<O>> - Class in org.springframework.security.config.annotation
-
- AbstractConfiguredSecurityBuilder(ObjectPostProcessor<Object>) - Constructor for class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- AbstractConfiguredSecurityBuilder(ObjectPostProcessor<Object>, boolean) - Constructor for class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- AbstractFallbackMethodSecurityMetadataSource - Class in org.springframework.security.access.method
-
Abstract implementation of
MethodSecurityMetadataSource
that supports both
Spring AOP and AspectJ and performs attribute resolution from: 1.
- AbstractFallbackMethodSecurityMetadataSource() - Constructor for class org.springframework.security.access.method.AbstractFallbackMethodSecurityMetadataSource
-
- AbstractJaasAuthenticationProvider - Class in org.springframework.security.authentication.jaas
-
- AbstractJaasAuthenticationProvider() - Constructor for class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- AbstractLdapAuthenticationProvider - Class in org.springframework.security.ldap.authentication
-
Base class for the standard LdapAuthenticationProvider
and the
ActiveDirectoryLdapAuthenticationProvider
.
- AbstractLdapAuthenticationProvider() - Constructor for class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
- AbstractLdapAuthenticator - Class in org.springframework.security.ldap.authentication
-
Base class for the authenticator implementations.
- AbstractLdapAuthenticator(ContextSource) - Constructor for class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
- AbstractMethodSecurityMetadataSource - Class in org.springframework.security.access.method
-
Abstract implementation of MethodSecurityMetadataSource which resolves the
secured object type to a MethodInvocation.
- AbstractMethodSecurityMetadataSource() - Constructor for class org.springframework.security.access.method.AbstractMethodSecurityMetadataSource
-
- AbstractPasswordEncoder - Class in org.springframework.security.crypto.password
-
Abstract base class for password encoders
- AbstractPasswordEncoder() - Constructor for class org.springframework.security.crypto.password.AbstractPasswordEncoder
-
- AbstractPermission - Class in org.springframework.security.acls.domain
-
Provides an abstract superclass for
Permission
implementations.
- AbstractPermission(int) - Constructor for class org.springframework.security.acls.domain.AbstractPermission
-
Sets the permission mask and uses the '*' character to represent active bits when
represented as a bit pattern string.
- AbstractPermission(int, char) - Constructor for class org.springframework.security.acls.domain.AbstractPermission
-
Sets the permission mask and uses the specified character for active bits.
- AbstractPreAuthenticatedProcessingFilter - Class in org.springframework.security.web.authentication.preauth
-
Base class for processing filters that handle pre-authenticated authentication
requests, where it is assumed that the principal has already been authenticated by an
external system.
- AbstractPreAuthenticatedProcessingFilter() - Constructor for class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
- AbstractRememberMeServices - Class in org.springframework.security.web.authentication.rememberme
-
Base class for RememberMeServices implementations.
- AbstractRememberMeServices(String, UserDetailsService) - Constructor for class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- AbstractRequestMatcherRegistry<C> - Class in org.springframework.security.config.annotation.web
-
- AbstractRequestMatcherRegistry() - Constructor for class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- AbstractRetryEntryPoint - Class in org.springframework.security.web.access.channel
-
- AbstractRetryEntryPoint(String, int) - Constructor for class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- AbstractSecurityBuilder<O> - Class in org.springframework.security.config.annotation
-
A base
SecurityBuilder
that ensures the object being built is only built one
time.
- AbstractSecurityBuilder() - Constructor for class org.springframework.security.config.annotation.AbstractSecurityBuilder
-
- AbstractSecurityExpressionHandler<T> - Class in org.springframework.security.access.expression
-
Base implementation of the facade which isolates Spring Security's requirements for
evaluating security expressions from the implementation of the underlying expression
objects.
- AbstractSecurityExpressionHandler() - Constructor for class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- AbstractSecurityInterceptor - Class in org.springframework.security.access.intercept
-
Abstract class that implements security interception for secure objects.
- AbstractSecurityInterceptor() - Constructor for class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- AbstractSecurityWebApplicationInitializer - Class in org.springframework.security.web.context
-
Registers the
DelegatingFilterProxy
to use the springSecurityFilterChain before
any other registered
Filter
.
- AbstractSecurityWebApplicationInitializer() - Constructor for class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
Creates a new instance that assumes the Spring Security configuration is loaded by
some other means than this class.
- AbstractSecurityWebApplicationInitializer(Class<?>...) - Constructor for class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
- AbstractSecurityWebSocketMessageBrokerConfigurer - Class in org.springframework.security.config.annotation.web.socket
-
Allows configuring WebSocket Authorization.
- AbstractSecurityWebSocketMessageBrokerConfigurer() - Constructor for class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- AbstractUserDetailsAuthenticationProvider - Class in org.springframework.security.authentication.dao
-
- AbstractUserDetailsAuthenticationProvider() - Constructor for class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- AbstractUserDetailsServiceBeanDefinitionParser - Class in org.springframework.security.config.authentication
-
- AbstractUserDetailsServiceBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
-
- acceptMediaType(MediaType) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestBuilders.FormLoginRequestBuilder
-
Specify a media type to to set as the Accept header in the request.
- access(String) - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
-
Allows specifying that URLs are secured by an arbitrary expression
- access(String...) - Method in class org.springframework.security.config.annotation.web.configurers.UrlAuthorizationConfigurer.AuthorizedUrl
-
- access(String) - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry.Constraint
-
Allows specifying that Messages are secured by an arbitrary expression
- ACCESS_ABSTAIN - Static variable in interface org.springframework.security.access.AccessDecisionVoter
-
- ACCESS_DENIED - Static variable in interface org.springframework.security.access.AccessDecisionVoter
-
- ACCESS_DENIED_403 - Static variable in class org.springframework.security.web.WebAttributes
-
Used to cache an AccessDeniedException
in the request for rendering.
- ACCESS_DENIED_HANDLER - Static variable in class org.springframework.security.config.Elements
-
- ACCESS_GRANTED - Static variable in interface org.springframework.security.access.AccessDecisionVoter
-
- AccessControlEntry - Interface in org.springframework.security.acls.model
-
Represents an individual permission assignment within an
Acl
.
- AccessControlEntryImpl - Class in org.springframework.security.acls.domain
-
An immutable default implementation of AccessControlEntry
.
- AccessControlEntryImpl(Serializable, Acl, Sid, Permission, boolean, boolean, boolean) - Constructor for class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- AccessControlListTag - Class in org.springframework.security.taglibs.authz
-
An implementation of Tag
that allows its body through if all authorizations are
granted to the request's principal.
- AccessControlListTag() - Constructor for class org.springframework.security.taglibs.authz.AccessControlListTag
-
- AccessDecisionManager - Interface in org.springframework.security.access
-
Makes a final access control (authorization) decision.
- accessDecisionManager() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- AccessDecisionVoter<S> - Interface in org.springframework.security.access
-
Indicates a class is responsible for voting on authorization decisions.
- AccessDeniedException - Exception in org.springframework.security.access
-
Thrown if an
Authentication
object does not hold a required authority.
- AccessDeniedException(String) - Constructor for exception org.springframework.security.access.AccessDeniedException
-
Constructs an AccessDeniedException
with the specified message.
- AccessDeniedException(String, Throwable) - Constructor for exception org.springframework.security.access.AccessDeniedException
-
Constructs an AccessDeniedException
with the specified message and
root cause.
- accessDeniedHandler(AccessDeniedHandler) - Method in class org.springframework.security.config.annotation.web.configurers.ExceptionHandlingConfigurer
-
- AccessDeniedHandler - Interface in org.springframework.security.web.access
-
- AccessDeniedHandlerImpl - Class in org.springframework.security.web.access
-
- AccessDeniedHandlerImpl() - Constructor for class org.springframework.security.web.access.AccessDeniedHandlerImpl
-
- accessDeniedPage(String) - Method in class org.springframework.security.config.annotation.web.configurers.ExceptionHandlingConfigurer
-
- accountExpired(boolean) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Defines if the account is expired or not.
- AccountExpiredException - Exception in org.springframework.security.authentication
-
Thrown if an authentication request is rejected because the account has expired.
- AccountExpiredException(String) - Constructor for exception org.springframework.security.authentication.AccountExpiredException
-
Constructs a AccountExpiredException
with the specified message.
- AccountExpiredException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AccountExpiredException
-
Constructs a AccountExpiredException
with the specified message and
root cause.
- accountLocked(boolean) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Defines if the account is locked or not.
- AccountStatusException - Exception in org.springframework.security.authentication
-
Base class for authentication exceptions which are caused by a particular user account
status (locked, disabled etc).
- AccountStatusException(String) - Constructor for exception org.springframework.security.authentication.AccountStatusException
-
- AccountStatusException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AccountStatusException
-
- AccountStatusUserDetailsChecker - Class in org.springframework.security.authentication
-
- AccountStatusUserDetailsChecker() - Constructor for class org.springframework.security.authentication.AccountStatusUserDetailsChecker
-
- Acl - Interface in org.springframework.security.acls.model
-
Represents an access control list (ACL) for a domain object.
- AclAuthorizationStrategy - Interface in org.springframework.security.acls.domain
-
Strategy used by
AclImpl
to determine whether a principal is permitted to call
adminstrative methods on the
AclImpl
.
- AclAuthorizationStrategyImpl - Class in org.springframework.security.acls.domain
-
- AclAuthorizationStrategyImpl(GrantedAuthority...) - Constructor for class org.springframework.security.acls.domain.AclAuthorizationStrategyImpl
-
Constructor.
- AclCache - Interface in org.springframework.security.acls.model
-
- AclDataAccessException - Exception in org.springframework.security.acls.model
-
Abstract base class for Acl data operations.
- AclDataAccessException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.AclDataAccessException
-
Constructs an AclDataAccessException
with the specified message and
root cause.
- AclDataAccessException(String) - Constructor for exception org.springframework.security.acls.model.AclDataAccessException
-
Constructs an AclDataAccessException
with the specified message and no
root cause.
- AclEntryAfterInvocationCollectionFilteringProvider - Class in org.springframework.security.acls.afterinvocation
-
Given a
Collection
of domain object instances returned from a secure
object invocation, remove any
Collection
elements the principal does not
have appropriate permission to access as defined by the
AclService
.
- AclEntryAfterInvocationCollectionFilteringProvider(AclService, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationCollectionFilteringProvider
-
- AclEntryAfterInvocationProvider - Class in org.springframework.security.acls.afterinvocation
-
Given a domain object instance returned from a secure object invocation, ensures the
principal has appropriate permission as defined by the
AclService
.
- AclEntryAfterInvocationProvider(AclService, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
-
- AclEntryAfterInvocationProvider(AclService, String, List<Permission>) - Constructor for class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
-
- AclEntryVoter - Class in org.springframework.security.acls
-
Given a domain object instance passed as a method argument, ensures the principal has
appropriate permission as indicated by the
AclService
.
- AclEntryVoter(AclService, String, Permission[]) - Constructor for class org.springframework.security.acls.AclEntryVoter
-
- AclFormattingUtils - Class in org.springframework.security.acls.domain
-
Utility methods for displaying ACL information.
- AclFormattingUtils() - Constructor for class org.springframework.security.acls.domain.AclFormattingUtils
-
- AclImpl - Class in org.springframework.security.acls.domain
-
Base implementation of Acl
.
- AclImpl(ObjectIdentity, Serializable, AclAuthorizationStrategy, AuditLogger) - Constructor for class org.springframework.security.acls.domain.AclImpl
-
- AclImpl(ObjectIdentity, Serializable, AclAuthorizationStrategy, PermissionGrantingStrategy, Acl, List<Sid>, boolean, Sid) - Constructor for class org.springframework.security.acls.domain.AclImpl
-
Full constructor, which should be used by persistence tools that do not provide
field-level access features.
- AclPermissionCacheOptimizer - Class in org.springframework.security.acls
-
Batch loads ACLs for collections of objects to allow optimised filtering.
- AclPermissionCacheOptimizer(AclService) - Constructor for class org.springframework.security.acls.AclPermissionCacheOptimizer
-
- AclPermissionEvaluator - Class in org.springframework.security.acls
-
Used by Spring Security's expression-based access control implementation to evaluate
permissions for a particular object using the ACL module.
- AclPermissionEvaluator(AclService) - Constructor for class org.springframework.security.acls.AclPermissionEvaluator
-
- aclService - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- AclService - Interface in org.springframework.security.acls.model
-
Provides retrieval of
Acl
instances.
- ActiveDirectoryAuthenticationException - Exception in org.springframework.security.ldap.authentication.ad
-
- ActiveDirectoryLdapAuthenticationProvider - Class in org.springframework.security.ldap.authentication.ad
-
Specialized LDAP authentication provider which uses Active Directory configuration
conventions.
- ActiveDirectoryLdapAuthenticationProvider(String, String, String) - Constructor for class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
-
- ActiveDirectoryLdapAuthenticationProvider(String, String) - Constructor for class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
-
- addArgumentResolvers(List<HandlerMethodArgumentResolver>) - Method in class org.springframework.security.config.annotation.web.servlet.configuration.WebMvcSecurityConfiguration
-
Deprecated.
- addArgumentResolvers(List<HandlerMethodArgumentResolver>) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- addAuthorities(DistinguishedName, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- addAuthority(GrantedAuthority) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
- addAuthority(GrantedAuthority) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
Adds the authority to the list, unless it is already there, in which case it is
ignored
- addCn(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- addCustomAuthorities(String, List<GrantedAuthority>) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Allows subclasses to add their own granted authorities to the list to be returned
in the UserDetails.
- addFilter(Filter) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- addFilter(Filter) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
Adds a Filter
that must be an instance of or extend one of the Filters
provided within the Security framework.
- addFilterAfter(Filter, Class<? extends Filter>) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- addFilterAfter(Filter, Class<? extends Filter>) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
Allows adding a Filter
after one of the known Filter
classes.
- addFilterAt(Filter, Class<? extends Filter>) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Adds the Filter at the location of the specified Filter class.
- addFilterBefore(Filter, Class<? extends Filter>) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- addFilterBefore(Filter, Class<? extends Filter>) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
Allows adding a Filter
before one of the known Filter
classes.
- addGroupAuthority(String, GrantedAuthority) - Method in interface org.springframework.security.provisioning.GroupManager
-
Assigns a new authority to a group.
- addGroupAuthority(String, GrantedAuthority) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- addHeader(String, String) - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- addHeaderWriter(HeaderWriter) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer
-
- additionalAuthenticationChecks(UserDetails, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
Allows subclasses to perform any additional checks of a returned (or cached)
UserDetails
for a given authentication request.
- additionalAuthenticationChecks(UserDetails, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- addListener(SmartApplicationListener) - Method in class org.springframework.security.context.DelegatingApplicationListener
-
Adds a new SmartApplicationListener to use.
- addLogoutHandler(LogoutHandler) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- addObjectPostProcessor(ObjectPostProcessor<?>) - Method in class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
- addSecureMethod(Class<?>, String, List<ConfigAttribute>) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
-
Add configuration attributes for a secure method.
- addSecureMethod(Class<?>, Method, List<ConfigAttribute>) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
-
Adds configuration attributes for a specific method, for example where the method
has been matched using a pointcut expression.
- addSecurityFilterChainBuilder(SecurityBuilder<? extends SecurityFilterChain>) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
- addSha256Pins(String...) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HpkpConfig
-
Adds a list of SHA256 hashed pins for the pin- directive of the Public-Key-Pins header.
- addSha256Pins(String...) - Method in class org.springframework.security.web.header.writers.HpkpHeaderWriter
-
Adds a list of SHA256 hashed pins for the pin- directive of the Public-Key-Pins header.
- addUserToGroup(String, String) - Method in interface org.springframework.security.provisioning.GroupManager
-
Makes a user a member of a particular group.
- addUserToGroup(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- admin - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- ADMINISTRATION - Static variable in class org.springframework.security.acls.domain.BasePermission
-
- AffirmativeBased - Class in org.springframework.security.access.vote
-
Simple concrete implementation of
AccessDecisionManager
that grants access if
any
AccessDecisionVoter
returns an affirmative response.
- AffirmativeBased(List<AccessDecisionVoter<? extends Object>>) - Constructor for class org.springframework.security.access.vote.AffirmativeBased
-
- after(Authentication, MethodInvocation, PostInvocationAttribute, Object) - Method in class org.springframework.security.access.expression.method.ExpressionBasedPostInvocationAdvice
-
- after(Authentication, MethodInvocation, PostInvocationAttribute, Object) - Method in interface org.springframework.security.access.prepost.PostInvocationAuthorizationAdvice
-
- AFTER_INVOCATION_PROVIDER - Static variable in class org.springframework.security.config.Elements
-
- afterHandshake(ServerHttpRequest, ServerHttpResponse, WebSocketHandler, Exception) - Method in class org.springframework.security.messaging.web.socket.server.CsrfTokenHandshakeInterceptor
-
- afterInvocation(InterceptorStatusToken, Object) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
Completes the work of the AbstractSecurityInterceptor after the secure
object invocation has been completed.
- AfterInvocationManager - Interface in org.springframework.security.access.intercept
-
Reviews the
Object
returned from a secure object invocation, being able to
modify the
Object
or throw an
AccessDeniedException
.
- afterInvocationManager() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- AfterInvocationProvider - Interface in org.springframework.security.access
-
- AfterInvocationProviderManager - Class in org.springframework.security.access.intercept
-
- AfterInvocationProviderManager() - Constructor for class org.springframework.security.access.intercept.AfterInvocationProviderManager
-
- afterMessageHandled(Message<?>, MessageChannel, MessageHandler, Exception) - Method in class org.springframework.security.messaging.context.SecurityContextChannelInterceptor
-
- afterPropertiesSet() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- afterPropertiesSet() - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
-
- afterPropertiesSet() - Method in class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
-
- afterPropertiesSet() - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
-
- afterPropertiesSet() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
Validates the required properties are set.
- afterPropertiesSet() - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.ProviderManager
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
-
- afterPropertiesSet() - Method in class org.springframework.security.cas.ServiceProperties
-
- afterPropertiesSet() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
- afterPropertiesSet() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
-
- afterPropertiesSet() - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
-
Check whether all properties have been set to correct values.
- afterPropertiesSet() - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
-
- afterPropertiesSet() - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
-
- afterPropertiesSet() - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
-
- afterPropertiesSet() - Method in class org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper
-
Check whether all required properties have been set.
- afterPropertiesSet() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
- afterPropertiesSet() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- afterPropertiesSet() - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
-
- afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
-
- afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- afterPropertiesSet() - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- afterPropertiesSet() - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Check whether all required properties have been set.
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
-
Check that all required properties have been set.
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
-
Loads the web.xml file using the configured ResourceLoader and parses the
role-name elements from it, using these as the set of mappableAttributes.
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
Check whether all required properties have been set.
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- afterPropertiesSet() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.FilterChainProxy
-
- afterPropertiesSet() - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
- afterPropertiesSet() - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
-
- afterReceiveCompletion(Message<?>, MessageChannel, Exception) - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- afterSendCompletion(Message<?>, MessageChannel, boolean, Exception) - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- afterSendCompletion(Message<?>, MessageChannel, boolean, Exception) - Method in class org.springframework.security.messaging.context.SecurityContextChannelInterceptor
-
- afterSingletonsInstantiated() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- afterSingletonsInstantiated() - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- afterSpringSecurityFilterChain(ServletContext) - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
Invoked after the springSecurityFilterChain is added.
- afterTestMethod(TestContext) - Method in class org.springframework.security.test.context.support.WithSecurityContextTestExecutionListener
-
- allocateToken(String) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
-
- allocateToken(String) - Method in interface org.springframework.security.core.token.TokenService
-
Forces the allocation of a new
Token
.
- allowableSessionsExceeded(List<SessionInformation>, int, SessionRegistry) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy
-
Allows subclasses to customise behaviour when too many sessions are detected.
- allowed(String) - Method in class org.springframework.security.web.header.writers.frameoptions.RegExpAllowFromStrategy
-
- allowed(String) - Method in class org.springframework.security.web.header.writers.frameoptions.WhiteListedAllowFromStrategy
-
- AllowFromStrategy - Interface in org.springframework.security.web.header.writers.frameoptions
-
Strategy interfaces used by the FrameOptionsHeaderWriter
to determine the
actual value to use for the X-Frame-Options header when using the ALLOW-FROM directive.
- AlreadyBuiltException - Exception in org.springframework.security.config.annotation
-
- AlreadyBuiltException(String) - Constructor for exception org.springframework.security.config.annotation.AlreadyBuiltException
-
- AlreadyExistsException - Exception in org.springframework.security.acls.model
-
Thrown if an Acl
entry already exists for the object.
- AlreadyExistsException(String) - Constructor for exception org.springframework.security.acls.model.AlreadyExistsException
-
Constructs an AlreadyExistsException
with the specified message.
- AlreadyExistsException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.AlreadyExistsException
-
Constructs an AlreadyExistsException
with the specified message and
root cause.
- alwaysRemember(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
Whether the cookie should always be created even if the remember-me parameter is
not set.
- and() - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer.ContextSourceBuilder
-
- and() - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer.PasswordCompareConfigurer
-
- and() - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
- and() - Method in class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
- and() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity.RequestMatcherConfigurer
-
- and() - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity.IgnoredRequestConfigurer
-
- and() - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.ChannelRequestMatcherRegistry
-
- and() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry
-
- and() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.CacheControlConfig
-
Allows completing configuration of Strict Transport Security and continuing
configuration of headers.
- and() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.ContentSecurityPolicyConfig
-
Allows completing configuration of Content Security Policy and continuing
configuration of headers.
- and() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.ContentTypeOptionsConfig
-
- and() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.FrameOptionsConfig
-
Allows continuing customizing the headers configuration.
- and() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HpkpConfig
-
Allows completing configuration of Public Key Pinning and continuing
configuration of headers.
- and() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HstsConfig
-
Allows completing configuration of Strict Transport Security and continuing
configuration of headers.
- and() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.XXssConfig
-
Allows completing configuration of Strict Transport Security and continuing
configuration of headers.
- and() - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer.AttributeExchangeConfigurer
-
- and() - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer.AttributeExchangeConfigurer.AttributeConfigurer
-
- and() - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer.ConcurrencyControlConfigurer
-
- and() - Method in class org.springframework.security.config.annotation.web.configurers.UrlAuthorizationConfigurer.StandardInterceptUrlRegistry
-
- AndMessageMatcher<T> - Class in org.springframework.security.messaging.util.matcher
-
- AndMessageMatcher(List<MessageMatcher<T>>) - Constructor for class org.springframework.security.messaging.util.matcher.AndMessageMatcher
-
Creates a new instance
- AndMessageMatcher(MessageMatcher<T>...) - Constructor for class org.springframework.security.messaging.util.matcher.AndMessageMatcher
-
Creates a new instance
- AndRequestMatcher - Class in org.springframework.security.web.util.matcher
-
- AndRequestMatcher(List<RequestMatcher>) - Constructor for class org.springframework.security.web.util.matcher.AndRequestMatcher
-
Creates a new instance
- AndRequestMatcher(RequestMatcher...) - Constructor for class org.springframework.security.web.util.matcher.AndRequestMatcher
-
Creates a new instance
- AnnotationMetadataExtractor<A extends Annotation> - Interface in org.springframework.security.access.annotation
-
Strategy to process a custom security annotation to extract the relevant
ConfigAttribute
s for securing a method.
- AnnotationParameterNameDiscoverer - Class in org.springframework.security.core.parameters
-
Allows finding parameter names using the value attribute of any number of
Annotation
instances.
- AnnotationParameterNameDiscoverer(String...) - Constructor for class org.springframework.security.core.parameters.AnnotationParameterNameDiscoverer
-
- AnnotationParameterNameDiscoverer(Set<String>) - Constructor for class org.springframework.security.core.parameters.AnnotationParameterNameDiscoverer
-
- anonymous() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows configuring how an anonymous user is represented.
- anonymous() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
-
Specify that URLs are allowed by anonymous users.
- anonymous() - Method in class org.springframework.security.config.annotation.web.configurers.UrlAuthorizationConfigurer.AuthorizedUrl
-
Specifies that an anonymous user is allowed access
- anonymous() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry.Constraint
-
Specify that Messages are allowed by anonymous users.
- ANONYMOUS - Static variable in class org.springframework.security.config.Elements
-
- anonymous() - Static method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors
-
- AnonymousAuthenticationFilter - Class in org.springframework.security.web.authentication
-
Detects if there is no Authentication
object in the
SecurityContextHolder
, and populates it with one if needed.
- AnonymousAuthenticationFilter(String) - Constructor for class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
Creates a filter with a principal named "anonymousUser" and the single authority
"ROLE_ANONYMOUS".
- AnonymousAuthenticationFilter(String, Object, List<GrantedAuthority>) - Constructor for class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
- AnonymousAuthenticationProvider - Class in org.springframework.security.authentication
-
- AnonymousAuthenticationProvider(String) - Constructor for class org.springframework.security.authentication.AnonymousAuthenticationProvider
-
- AnonymousAuthenticationToken - Class in org.springframework.security.authentication
-
Represents an anonymous Authentication
.
- AnonymousAuthenticationToken(String, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.authentication.AnonymousAuthenticationToken
-
Constructor.
- AnonymousConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
Configures Anonymous authentication (i.e.
- AnonymousConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
Creates a new instance
- antMatcher(String) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows configuring the
HttpSecurity
to only be invoked when matching the
provided ant pattern.
- antMatchers(HttpMethod) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- antMatchers(HttpMethod, String...) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- antMatchers(String...) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- AntPathRequestMatcher - Class in org.springframework.security.web.util.matcher
-
Matcher which compares a pre-defined ant-style pattern against the URL (
servletPath + pathInfo
) of an HttpServletRequest
.
- AntPathRequestMatcher(String) - Constructor for class org.springframework.security.web.util.matcher.AntPathRequestMatcher
-
Creates a matcher with the specific pattern which will match all HTTP methods in a
case insensitive manner.
- AntPathRequestMatcher(String, String) - Constructor for class org.springframework.security.web.util.matcher.AntPathRequestMatcher
-
Creates a matcher with the supplied pattern and HTTP method in a case insensitive
manner.
- AntPathRequestMatcher(String, String, boolean) - Constructor for class org.springframework.security.web.util.matcher.AntPathRequestMatcher
-
Creates a matcher with the supplied pattern which will match the specified Http
method
- ANY_CHANNEL - Static variable in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
-
- ANY_MESSAGE - Static variable in interface org.springframework.security.messaging.util.matcher.MessageMatcher
-
Matches every Message
- anyMessage() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
Maps any Message
to a security expression.
- anyRequest() - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
Maps any request.
- AnyRequestMatcher - Class in org.springframework.security.web.util.matcher
-
Matches any supplied request.
- ApacheDSContainer - Class in org.springframework.security.ldap.server
-
Provides lifecycle services for the embedded apacheDS server defined by the supplied
configuration.
- ApacheDSContainer(String, String) - Constructor for class org.springframework.security.ldap.server.ApacheDSContainer
-
- appendFilters(ServletContext, Filter...) - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
- apply(C) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- apply(C) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- asHeader() - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.CsrfRequestPostProcessor
-
Instead of using the
CsrfToken
as a request parameter (default) will
populate the
CsrfToken
as a header.
- AspectJCallback - Interface in org.springframework.security.access.intercept.aspectj
-
- AspectJMethodSecurityInterceptor - Class in org.springframework.security.access.intercept.aspectj
-
AspectJ JoinPoint
security interceptor which wraps the JoinPoint
in a
MethodInvocation
adapter to make it compatible with security infrastructure
classes which only support MethodInvocation
s.
- AspectJMethodSecurityInterceptor() - Constructor for class org.springframework.security.access.intercept.aspectj.AspectJMethodSecurityInterceptor
-
- ATT_GROUP_ROLE_ATTRIBUTE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- ATT_GROUP_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- ATT_GROUP_SEARCH_FILTER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- ATT_HASH - Static variable in class org.springframework.security.config.authentication.PasswordEncoderParser
-
- ATT_LDIF_FILE - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
-
Optionally defines an ldif resource to be loaded.
- ATT_PORT - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
-
Defines the port the LDAP_PROVIDER server should run on
- ATT_ROOT_SUFFIX - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
-
sets the configuration suffix (default is "dc=springframework,dc=org").
- ATT_SERVER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- ATT_USER_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- ATT_USER_SEARCH_FILTER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- attemptAuthentication(String, String) - Method in interface org.springframework.security.authentication.rcp.RemoteAuthenticationManager
-
Attempts to authenticate the remote client using the presented username and
password.
- attemptAuthentication(String, String) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
-
- attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
- attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
Authentication has two phases.
- attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
Performs actual authentication.
- attemptAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
- attemptExitUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Attempt to exit from an already switched user.
- attemptSwitchUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Attempt to switch to another user.
- attribute(OpenIDAttribute) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer.AttributeExchangeConfigurer
-
- attribute(String) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer.AttributeExchangeConfigurer
-
- attributeExchange(String) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
Sets up OpenID attribute exchange for OpenID's matching the specified pattern.
- Attributes2GrantedAuthoritiesMapper - Interface in org.springframework.security.core.authority.mapping
-
Interface to be implemented by classes that can map a list of security attributes (such
as roles or group names) to a collection of Spring Security GrantedAuthority
s.
- AuditableAccessControlEntry - Interface in org.springframework.security.acls.model
-
Represents an ACE that provides auditing information.
- AuditableAcl - Interface in org.springframework.security.acls.model
-
A mutable ACL that provides audit capabilities.
- AuditLogger - Interface in org.springframework.security.acls.domain
-
Used by AclImpl
to log audit events.
- authenticate(Authentication) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
-
- authenticate(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationManager
-
Attempts to authenticate the passed
Authentication
object, returning a
fully populated
Authentication
object (including granted authorities)
if successful.
- authenticate(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
Attempts to login the user given the Authentication objects principal and
credential
- authenticate(Authentication) - Method in class org.springframework.security.authentication.ProviderManager
-
- authenticate(Authentication) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.authentication.TestingAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.ldap.authentication.BindAuthenticator
-
- authenticate(Authentication) - Method in interface org.springframework.security.ldap.authentication.LdapAuthenticator
-
Authenticates as a user and obtains additional user information from the directory.
- authenticate(Authentication) - Method in class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
-
- authenticate(Authentication) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
-
- authenticate(Authentication) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
Authenticate the given PreAuthenticatedAuthenticationToken.
- authenticated() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
-
Specify that URLs are allowed by any authenticated user.
- authenticated() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry.Constraint
-
Specify that Messages are allowed by any authenticated user.
- authenticated() - Static method in class org.springframework.security.test.web.servlet.response.SecurityMockMvcResultMatchers
-
ResultMatcher
that verifies that a specified user is authenticated.
- authenticatedUserDetailsService(AuthenticationUserDetailsService<PreAuthenticatedAuthenticationToken>) - Method in class org.springframework.security.config.annotation.web.configurers.JeeConfigurer
-
- AuthenticatedVoter - Class in org.springframework.security.access.vote
-
- AuthenticatedVoter() - Constructor for class org.springframework.security.access.vote.AuthenticatedVoter
-
- authentication - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- Authentication - Interface in org.springframework.security.core
-
- authentication(Authentication) - Static method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors
-
- AUTHENTICATION_EXCEPTION - Static variable in class org.springframework.security.web.WebAttributes
-
Used to cache an authentication-failure exception in the session.
- AUTHENTICATION_MANAGER - Static variable in class org.springframework.security.config.BeanIds
-
The "global" AuthenticationManager instance, registered by the
<authentication-manager> element
- AUTHENTICATION_MANAGER - Static variable in class org.springframework.security.config.Elements
-
- AUTHENTICATION_PROVIDER - Static variable in class org.springframework.security.config.Elements
-
- AuthenticationCancelledException - Exception in org.springframework.security.openid
-
Indicates that OpenID authentication was cancelled
- AuthenticationCancelledException(String) - Constructor for exception org.springframework.security.openid.AuthenticationCancelledException
-
- AuthenticationCancelledException(String, Throwable) - Constructor for exception org.springframework.security.openid.AuthenticationCancelledException
-
- AuthenticationConfiguration - Class in org.springframework.security.config.annotation.authentication.configuration
-
- AuthenticationConfiguration() - Constructor for class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- AuthenticationCredentialsNotFoundEvent - Class in org.springframework.security.access.event
-
Indicates a secure object invocation failed because the Authentication
could not be obtained from the SecurityContextHolder
.
- AuthenticationCredentialsNotFoundEvent(Object, Collection<ConfigAttribute>, AuthenticationCredentialsNotFoundException) - Constructor for class org.springframework.security.access.event.AuthenticationCredentialsNotFoundEvent
-
Construct the event.
- AuthenticationCredentialsNotFoundException - Exception in org.springframework.security.authentication
-
- AuthenticationCredentialsNotFoundException(String) - Constructor for exception org.springframework.security.authentication.AuthenticationCredentialsNotFoundException
-
Constructs an AuthenticationCredentialsNotFoundException
with the
specified message.
- AuthenticationCredentialsNotFoundException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AuthenticationCredentialsNotFoundException
-
Constructs an AuthenticationCredentialsNotFoundException
with the
specified message and root cause.
- AuthenticationDetailsSource<C,T> - Interface in org.springframework.security.authentication
-
- authenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
- authenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.config.annotation.web.configurers.HttpBasicConfigurer
-
- authenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails>) - Method in class org.springframework.security.config.annotation.web.configurers.X509Configurer
-
- authenticationDetailsSource - Variable in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- authenticationEntryPoint(AuthenticationEntryPoint) - Method in class org.springframework.security.config.annotation.web.configurers.ExceptionHandlingConfigurer
-
- authenticationEntryPoint(AuthenticationEntryPoint) - Method in class org.springframework.security.config.annotation.web.configurers.HttpBasicConfigurer
-
- AuthenticationEntryPoint - Interface in org.springframework.security.web
-
- AuthenticationEventPublisher - Interface in org.springframework.security.authentication
-
- authenticationEventPublisher(AuthenticationEventPublisher) - Method in class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
- AuthenticationException - Exception in org.springframework.security.core
-
Abstract superclass for all exceptions related to an
Authentication
object
being invalid for whatever reason.
- AuthenticationException(String, Throwable) - Constructor for exception org.springframework.security.core.AuthenticationException
-
Constructs an AuthenticationException
with the specified message and root
cause.
- AuthenticationException(String) - Constructor for exception org.springframework.security.core.AuthenticationException
-
Constructs an AuthenticationException
with the specified message and no
root cause.
- AuthenticationFailureBadCredentialsEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to invalid credentials
being presented.
- AuthenticationFailureBadCredentialsEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureBadCredentialsEvent
-
- AuthenticationFailureCredentialsExpiredEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to the user's credentials
having expired.
- AuthenticationFailureCredentialsExpiredEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureCredentialsExpiredEvent
-
- AuthenticationFailureDisabledEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to the user's account
being disabled.
- AuthenticationFailureDisabledEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureDisabledEvent
-
- AuthenticationFailureExpiredEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to the user's account
having expired.
- AuthenticationFailureExpiredEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureExpiredEvent
-
- AuthenticationFailureHandler - Interface in org.springframework.security.web.authentication
-
Strategy used to handle a failed authentication attempt.
- AuthenticationFailureLockedEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to the user's account
having been locked.
- AuthenticationFailureLockedEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureLockedEvent
-
- AuthenticationFailureProviderNotFoundEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to there being no
registered AuthenticationProvider
that can process the request.
- AuthenticationFailureProviderNotFoundEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureProviderNotFoundEvent
-
- AuthenticationFailureProxyUntrustedEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to the CAS user's ticket
being generated by an untrusted proxy.
- AuthenticationFailureProxyUntrustedEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureProxyUntrustedEvent
-
- AuthenticationFailureServiceExceptionEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates authentication failure due to there being a problem
internal to the AuthenticationManager
.
- AuthenticationFailureServiceExceptionEvent(Authentication, AuthenticationException) - Constructor for class org.springframework.security.authentication.event.AuthenticationFailureServiceExceptionEvent
-
- authenticationFilter(AnonymousAuthenticationFilter) - Method in class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
- AuthenticationManager - Interface in org.springframework.security.authentication
-
- authenticationManager() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- authenticationManager() - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- authenticationManagerBean() - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- AuthenticationManagerBeanDefinitionParser - Class in org.springframework.security.config.authentication
-
Registers the central ProviderManager used by the namespace configuration, and allows
the configuration of an alias, allowing users to reference it in their beans and
clearly see where the name is coming from.
- AuthenticationManagerBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser
-
- AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider - Class in org.springframework.security.config.authentication
-
Provider which doesn't provide any service.
- AuthenticationManagerBuilder - Class in org.springframework.security.config.annotation.authentication.builders
-
- AuthenticationManagerBuilder(ObjectPostProcessor<Object>) - Constructor for class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
Creates a new instance
- authenticationManagerBuilder(ObjectPostProcessor<Object>) - Method in class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- AuthenticationManagerFactoryBean - Class in org.springframework.security.config.authentication
-
Factory bean for the namespace AuthenticationManager, which allows a more meaningful
error message to be reported in the NoSuchBeanDefinitionException, if the user
has forgotten to declare the <authentication-manager> element.
- AuthenticationManagerFactoryBean() - Constructor for class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
-
- AuthenticationPrincipal - Annotation Type in org.springframework.security.core.annotation
-
- AuthenticationPrincipal - Annotation Type in org.springframework.security.web.bind.annotation
-
- AuthenticationPrincipalArgumentResolver - Class in org.springframework.security.messaging.context
-
- AuthenticationPrincipalArgumentResolver() - Constructor for class org.springframework.security.messaging.context.AuthenticationPrincipalArgumentResolver
-
- AuthenticationPrincipalArgumentResolver - Class in org.springframework.security.web.bind.support
-
- AuthenticationPrincipalArgumentResolver() - Constructor for class org.springframework.security.web.bind.support.AuthenticationPrincipalArgumentResolver
-
Deprecated.
- AuthenticationPrincipalArgumentResolver - Class in org.springframework.security.web.method.annotation
-
- AuthenticationPrincipalArgumentResolver() - Constructor for class org.springframework.security.web.method.annotation.AuthenticationPrincipalArgumentResolver
-
- AuthenticationProvider - Interface in org.springframework.security.authentication
-
Indicates a class can process a specific
Authentication
implementation.
- authenticationProvider(AuthenticationProvider) - Method in class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
- authenticationProvider(AuthenticationProvider) - Method in interface org.springframework.security.config.annotation.authentication.ProviderManagerBuilder
-
- authenticationProvider(AuthenticationProvider) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- authenticationProvider(AuthenticationProvider) - Method in class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
- authenticationProvider(AuthenticationProvider) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
- AuthenticationProviderBeanDefinitionParser - Class in org.springframework.security.config.authentication
-
Wraps a UserDetailsService bean with a DaoAuthenticationProvider and registers the
latter with the ProviderManager.
- AuthenticationProviderBeanDefinitionParser() - Constructor for class org.springframework.security.config.authentication.AuthenticationProviderBeanDefinitionParser
-
- AuthenticationServiceException - Exception in org.springframework.security.authentication
-
Thrown if an authentication request could not be processed due to a system problem.
- AuthenticationServiceException(String) - Constructor for exception org.springframework.security.authentication.AuthenticationServiceException
-
Constructs an AuthenticationServiceException
with the specified
message.
- AuthenticationServiceException(String, Throwable) - Constructor for exception org.springframework.security.authentication.AuthenticationServiceException
-
Constructs an AuthenticationServiceException
with the specified
message and root cause.
- AuthenticationSimpleHttpInvokerRequestExecutor - Class in org.springframework.security.remoting.httpinvoker
-
Adds BASIC authentication support to SimpleHttpInvokerRequestExecutor
.
- AuthenticationSimpleHttpInvokerRequestExecutor() - Constructor for class org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor
-
- AuthenticationSuccessEvent - Class in org.springframework.security.authentication.event
-
Application event which indicates successful authentication.
- AuthenticationSuccessEvent(Authentication) - Constructor for class org.springframework.security.authentication.event.AuthenticationSuccessEvent
-
- authenticationSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
Allows control over the destination a remembered user is sent to when they are
successfully authenticated.
- AuthenticationSuccessHandler - Interface in org.springframework.security.web.authentication
-
Strategy used to handle a successful user authentication.
- AuthenticationSwitchUserEvent - Class in org.springframework.security.web.authentication.switchuser
-
Application event which indicates that a user context switch.
- AuthenticationSwitchUserEvent(Authentication, UserDetails) - Constructor for class org.springframework.security.web.authentication.switchuser.AuthenticationSwitchUserEvent
-
Switch user context event constructor
- AuthenticationTag - Class in org.springframework.security.taglibs.authz
-
An Tag
implementation that allows convenient access to
the current Authentication
object.
- AuthenticationTag() - Constructor for class org.springframework.security.taglibs.authz.AuthenticationTag
-
- AuthenticationTrustResolver - Interface in org.springframework.security.authentication
-
Evaluates Authentication
tokens
- AuthenticationTrustResolverImpl - Class in org.springframework.security.authentication
-
- AuthenticationTrustResolverImpl() - Constructor for class org.springframework.security.authentication.AuthenticationTrustResolverImpl
-
- authenticationUserDetailsService(AuthenticationUserDetailsService<OpenIDAuthenticationToken>) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
- authenticationUserDetailsService(AuthenticationUserDetailsService<PreAuthenticatedAuthenticationToken>) - Method in class org.springframework.security.config.annotation.web.configurers.X509Configurer
-
- AuthenticationUserDetailsService<T extends Authentication> - Interface in org.springframework.security.core.userdetails
-
Interface that allows for retrieving a UserDetails object based on an
Authentication object.
- authorities(GrantedAuthority...) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Populates the authorities.
- authorities(List<? extends GrantedAuthority>) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Populates the authorities.
- authorities(String...) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Populates the authorities.
- authorities(List<GrantedAuthority>) - Method in class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
- authorities(String...) - Method in class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
- authorities(GrantedAuthority...) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.UserRequestPostProcessor
-
- authorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.UserRequestPostProcessor
-
- authoritiesByUsernameQuery(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.JdbcUserDetailsManagerConfigurer
-
Sets the query to be used for finding a user's authorities by their username.
- authoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
- AuthorityGranter - Interface in org.springframework.security.authentication.jaas
-
The AuthorityGranter interface is used to map a given principal to role names.
- authorityListToSet(Collection<? extends GrantedAuthority>) - Static method in class org.springframework.security.core.authority.AuthorityUtils
-
Converts an array of GrantedAuthority objects to a Set.
- AuthorityUtils - Class in org.springframework.security.core.authority
-
Utility method for manipulating GrantedAuthority collections etc.
- AuthorityUtils() - Constructor for class org.springframework.security.core.authority.AuthorityUtils
-
- AuthorizationFailureEvent - Class in org.springframework.security.access.event
-
Indicates a secure object invocation failed because the principal could not be
authorized for the request.
- AuthorizationFailureEvent(Object, Collection<ConfigAttribute>, Authentication, AccessDeniedException) - Constructor for class org.springframework.security.access.event.AuthorizationFailureEvent
-
Construct the event.
- AuthorizationServiceException - Exception in org.springframework.security.access
-
Thrown if an authorization request could not be processed due to a system problem.
- AuthorizationServiceException(String) - Constructor for exception org.springframework.security.access.AuthorizationServiceException
-
Constructs an AuthorizationServiceException
with the specified
message.
- AuthorizationServiceException(String, Throwable) - Constructor for exception org.springframework.security.access.AuthorizationServiceException
-
Constructs an AuthorizationServiceException
with the specified message
and root cause.
- authorize() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
Make an authorization decision by considering all <authorize> tag attributes.
- AuthorizedEvent - Class in org.springframework.security.access.event
-
Event indicating a secure object was invoked successfully.
- AuthorizedEvent(Object, Collection<ConfigAttribute>, Authentication) - Constructor for class org.springframework.security.access.event.AuthorizedEvent
-
Construct the event.
- authorizeRequests() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows restricting access based upon the HttpServletRequest
using
- authorizeUsingAccessExpression() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
Make an authorization decision based on a Spring EL expression.
- authorizeUsingUrlCheck() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
Make an authorization decision based on the URL and HTTP method attributes.
- autoLogin(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.NullRememberMeServices
-
- autoLogin(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Template implementation which locates the Spring Security cookie, decodes it into a
delimited array of tokens and submits it to subclasses for processing via the
processAutoLoginCookie method.
- autoLogin(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.authentication.RememberMeServices
-
This method will be called whenever the SecurityContextHolder
does not
contain an Authentication
object and Spring Security wishes to provide
an implementation with an opportunity to authenticate the request using remember-me
capabilities.
- autowiredWebSecurityConfigurersIgnoreParents(ConfigurableListableBeanFactory) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration
-
- awaitTermination(long, TimeUnit) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- AxFetchListFactory - Interface in org.springframework.security.openid
-
A strategy which can be used by an OpenID consumer implementation, to dynamically
determine the attribute exchange information based on the OpenID identifier.
- cacheControl() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer
-
- CacheControlHeadersWriter - Class in org.springframework.security.web.header.writers
-
Inserts headers to prevent caching if no cache control headers have been specified.
- CacheControlHeadersWriter() - Constructor for class org.springframework.security.web.header.writers.CacheControlHeadersWriter
-
Creates a new instance
- cachePermissionsFor(Authentication, Collection<?>) - Method in interface org.springframework.security.access.PermissionCacheOptimizer
-
Optimises the permission cache for anticipated operation on the supplied collection
of objects.
- cachePermissionsFor(Authentication, Collection<?>) - Method in class org.springframework.security.acls.AclPermissionCacheOptimizer
-
- CACHING_SUFFIX - Static variable in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
-
- CachingUserDetailsService - Class in org.springframework.security.config.authentication
-
- calculateLoginLifetime(HttpServletRequest, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
-
Calculates the validity period in seconds for a newly generated remember-me login.
- call() - Method in class org.springframework.security.concurrent.DelegatingSecurityContextCallable
-
- cancelCookie(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Sets a "cancel cookie" (with maxAge = 0) on the response to disable persistent
logins.
- CAS_STATEFUL_IDENTIFIER - Static variable in class org.springframework.security.cas.web.CasAuthenticationFilter
-
Used to identify a CAS request for a stateful user agent, such as a web browser.
- CAS_STATELESS_IDENTIFIER - Static variable in class org.springframework.security.cas.web.CasAuthenticationFilter
-
Used to identify a CAS request for a stateless user agent, such as a remoting
protocol client (e.g.
- CasAssertionAuthenticationToken - Class in org.springframework.security.cas.authentication
-
Temporary authentication object needed to load the user details service.
- CasAssertionAuthenticationToken(Assertion, String) - Constructor for class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
-
- CasAuthenticationEntryPoint - Class in org.springframework.security.cas.web
-
Used by the ExceptionTranslationFilter
to commence authentication via the
JA-SIG Central Authentication Service (CAS).
- CasAuthenticationEntryPoint() - Constructor for class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
- CasAuthenticationFilter - Class in org.springframework.security.cas.web
-
Processes a CAS service ticket, obtains proxy granting tickets, and processes proxy
tickets.
- CasAuthenticationFilter() - Constructor for class org.springframework.security.cas.web.CasAuthenticationFilter
-
- CasAuthenticationProvider - Class in org.springframework.security.cas.authentication
-
- CasAuthenticationProvider() - Constructor for class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- CasAuthenticationToken - Class in org.springframework.security.cas.authentication
-
Represents a successful CAS Authentication
.
- CasAuthenticationToken(String, Object, Object, Collection<? extends GrantedAuthority>, UserDetails, Assertion) - Constructor for class org.springframework.security.cas.authentication.CasAuthenticationToken
-
Constructor.
- chainRequestMatchers(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
Subclasses should implement this method for returning the object that is chained to
the creation of the
RequestMatcher
instances.
- chainRequestMatchers(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity.RequestMatcherConfigurer
-
- chainRequestMatchers(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity.IgnoredRequestConfigurer
-
- chainRequestMatchers(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractConfigAttributeRequestMatcherRegistry
-
- chainRequestMatchersInternal(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractConfigAttributeRequestMatcherRegistry
-
Subclasses should implement this method for returning the object that is chained to
the creation of the
RequestMatcher
instances.
- chainRequestMatchersInternal(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.ChannelRequestMatcherRegistry
-
- chainRequestMatchersInternal(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry
-
- chainRequestMatchersInternal(List<RequestMatcher>) - Method in class org.springframework.security.config.annotation.web.configurers.UrlAuthorizationConfigurer.StandardInterceptUrlRegistry
-
- CHANGE_AUDITING - Static variable in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
-
- CHANGE_GENERAL - Static variable in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
-
- CHANGE_OWNERSHIP - Static variable in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
-
- changePassword(String, String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
Changes the password for the current user.
- changePassword(String, String) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
-
- changePassword(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- changePassword(String, String) - Method in interface org.springframework.security.provisioning.UserDetailsManager
-
Modify the current user's password.
- changeSessionId() - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer.SessionFixationConfigurer
-
Specifies that the Servlet container-provided session fixation protection
should be used.
- ChangeSessionIdAuthenticationStrategy - Class in org.springframework.security.web.authentication.session
-
Uses HttpServletRequest.changeSessionId()
to protect against session fixation
attacks.
- ChangeSessionIdAuthenticationStrategy() - Constructor for class org.springframework.security.web.authentication.session.ChangeSessionIdAuthenticationStrategy
-
- ChannelAttributeFactory - Class in org.springframework.security.config.http
-
Used as a factory bean to create config attribute values for the
requires-channel attribute.
- ChannelAttributeFactory() - Constructor for class org.springframework.security.config.http.ChannelAttributeFactory
-
- ChannelDecisionManager - Interface in org.springframework.security.web.access.channel
-
Decides whether a web channel provides sufficient security.
- ChannelDecisionManagerImpl - Class in org.springframework.security.web.access.channel
-
- ChannelDecisionManagerImpl() - Constructor for class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
-
- ChannelEntryPoint - Interface in org.springframework.security.web.access.channel
-
- ChannelProcessingFilter - Class in org.springframework.security.web.access.channel
-
Ensures a web request is delivered over the required channel.
- ChannelProcessingFilter() - Constructor for class org.springframework.security.web.access.channel.ChannelProcessingFilter
-
- ChannelProcessor - Interface in org.springframework.security.web.access.channel
-
Decides whether a web channel meets a specific security condition.
- channelProcessors(List<ChannelProcessor>) - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.ChannelRequestMatcherRegistry
-
- ChannelSecurityConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
Adds channel security (i.e.
- ChannelSecurityConfigurer(ApplicationContext) - Constructor for class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer
-
Creates a new instance
- ChannelSecurityConfigurer.ChannelRequestMatcherRegistry - Class in org.springframework.security.config.annotation.web.configurers
-
- ChannelSecurityConfigurer.MvcMatchersRequiresChannelUrl - Class in org.springframework.security.config.annotation.web.configurers
-
- ChannelSecurityConfigurer.RequiresChannelUrl - Class in org.springframework.security.config.annotation.web.configurers
-
- ChannelSecurityInterceptor - Class in org.springframework.security.messaging.access.intercept
-
Performs security handling of Message resources via a ChannelInterceptor
implementation.
- ChannelSecurityInterceptor(MessageSecurityMetadataSource) - Constructor for class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
Creates a new instance
- check(UserDetails) - Method in class org.springframework.security.authentication.AccountStatusUserDetailsChecker
-
- check(UserDetails) - Method in interface org.springframework.security.core.userdetails.UserDetailsChecker
-
Examines the User
- checkAllowIfAllAbstainDecisions() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- checkpw(String, String) - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
-
Check that a plaintext password matches a previously hashed one
- ChildrenExistException - Exception in org.springframework.security.acls.model
-
Thrown if an
Acl
cannot be deleted because children
Acl
s exist.
- ChildrenExistException(String) - Constructor for exception org.springframework.security.acls.model.ChildrenExistException
-
Constructs an ChildrenExistException
with the specified message.
- ChildrenExistException(String, Throwable) - Constructor for exception org.springframework.security.acls.model.ChildrenExistException
-
Constructs an ChildrenExistException
with the specified message and
root cause.
- clear(Permission) - Method in class org.springframework.security.acls.domain.CumulativePermission
-
- clear() - Method in class org.springframework.security.acls.domain.CumulativePermission
-
- clearAuthentication(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- clearAuthenticationAttributes(HttpServletRequest) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
-
Removes temporary authentication-related data which may have been stored in the
session during the authentication process.
- clearCache() - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
-
- clearCache() - Method in class org.springframework.security.acls.domain.SpringCacheBasedAclCache
-
- clearCache() - Method in interface org.springframework.security.acls.model.AclCache
-
- clearContext() - Static method in class org.springframework.security.core.context.SecurityContextHolder
-
Explicitly clears the context value from the current thread.
- clearContext() - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
-
Clears the current context.
- clearContext() - Static method in class org.springframework.security.test.context.TestSecurityContextHolder
-
- closeContext(Context) - Static method in class org.springframework.security.ldap.LdapUtils
-
- closeEnumeration(NamingEnumeration) - Static method in class org.springframework.security.ldap.LdapUtils
-
- code - Variable in class org.springframework.security.acls.domain.AbstractPermission
-
- commaSeparatedStringToAuthorityList(String) - Static method in class org.springframework.security.core.authority.AuthorityUtils
-
Creates a array of GrantedAuthority objects from a comma-separated string
representation (e.g.
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
- commence(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- commence(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.access.channel.ChannelEntryPoint
-
Commences a secure channel.
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
-
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.Http403ForbiddenEntryPoint
-
Always returns a 403 error code to the client.
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.HttpStatusEntryPoint
-
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
Performs the redirect (or forward) to the login form URL.
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
-
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in interface org.springframework.security.web.AuthenticationEntryPoint
-
Commences an authentication scheme.
- commit() - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
-
Authenticate the Subject
(phase two) by adding the Spring Security
Authentication
to the Subject
's principals.
- compare(String, String, Object) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Performs an LDAP compare operation of the value of an attribute for a particular
directory entry.
- CompositeSessionAuthenticationStrategy - Class in org.springframework.security.web.authentication.session
-
- CompositeSessionAuthenticationStrategy(List<SessionAuthenticationStrategy>) - Constructor for class org.springframework.security.web.authentication.session.CompositeSessionAuthenticationStrategy
-
- concatenate(byte[]...) - Static method in class org.springframework.security.crypto.util.EncodingUtils
-
Combine the individual byte arrays into one array.
- CONCURRENT_SESSIONS - Static variable in class org.springframework.security.config.Elements
-
- ConcurrentSessionControlAuthenticationStrategy - Class in org.springframework.security.web.authentication.session
-
Strategy which handles concurrent session-control.
- ConcurrentSessionControlAuthenticationStrategy(SessionRegistry) - Constructor for class org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy
-
- ConcurrentSessionFilter - Class in org.springframework.security.web.session
-
Filter required by concurrent session handling package.
- ConcurrentSessionFilter(SessionRegistry) - Constructor for class org.springframework.security.web.session.ConcurrentSessionFilter
-
- ConcurrentSessionFilter(SessionRegistry, String) - Constructor for class org.springframework.security.web.session.ConcurrentSessionFilter
-
- ConfigAttribute - Interface in org.springframework.security.access
-
Stores a security system related configuration attribute.
- configurationSource(CorsConfigurationSource) - Method in class org.springframework.security.config.annotation.web.configurers.CorsConfigurer
-
- configure(AuthenticationManagerBuilder) - Method in class org.springframework.security.config.annotation.authentication.configurers.GlobalAuthenticationConfigurerAdapter
-
- configure(B) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
- configure(B) - Method in class org.springframework.security.config.annotation.authentication.configurers.userdetails.UserDetailsServiceConfigurer
-
- configure(AuthenticationManagerBuilder) - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
Sub classes can override this method to register different types of authentication.
- configure(B) - Method in interface org.springframework.security.config.annotation.SecurityConfigurer
-
- configure(B) - Method in class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
- configure(AuthenticationManagerBuilder) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- configure(WebSecurity) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- configure(HttpSecurity) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- configure(B) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.CorsConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.CsrfConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.DefaultLoginPageConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.ExceptionHandlingConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer
-
- configure(B) - Method in class org.springframework.security.config.annotation.web.configurers.HttpBasicConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.JeeConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.RequestCacheConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.SecurityContextConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.ServletApiConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
- configure(H) - Method in class org.springframework.security.config.annotation.web.configurers.X509Configurer
-
- configureClientInboundChannel(ChannelRegistration) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- configureInbound(MessageSecurityMetadataSourceRegistry) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- configureJaas(Resource) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
-
Hook method for configuring Jaas.
- ConsensusBased - Class in org.springframework.security.access.vote
-
- ConsensusBased(List<AccessDecisionVoter<? extends Object>>) - Constructor for class org.springframework.security.access.vote.ConsensusBased
-
- ConsoleAuditLogger - Class in org.springframework.security.acls.domain
-
- ConsoleAuditLogger() - Constructor for class org.springframework.security.acls.domain.ConsoleAuditLogger
-
- consumer(OpenIDConsumer) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
- consumerManager(ConsumerManager) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
Allows specifying the ConsumerManager
to be used.
- containsContext(HttpServletRequest) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
- containsContext(HttpServletRequest) - Method in class org.springframework.security.web.context.NullSecurityContextRepository
-
- containsContext(HttpServletRequest) - Method in interface org.springframework.security.web.context.SecurityContextRepository
-
Allows the repository to be queried as to whether it contains a security context
for the current request.
- containsMapping() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
Allows determining if a mapping was added.
- contentSecurityPolicy(String) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer
-
- ContentSecurityPolicyHeaderWriter - Class in org.springframework.security.web.header.writers
-
- ContentSecurityPolicyHeaderWriter(String) - Constructor for class org.springframework.security.web.header.writers.ContentSecurityPolicyHeaderWriter
-
Creates a new instance
- contentTypeOptions() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer
-
- CONTEXT_SOURCE - Static variable in class org.springframework.security.config.BeanIds
-
- CONTEXT_SOURCE_SETTING_POST_PROCESSOR - Static variable in class org.springframework.security.config.BeanIds
-
- ContextPropagatingRemoteInvocation - Class in org.springframework.security.remoting.rmi
-
The actual RemoteInvocation
that is passed from the client to the server.
- ContextPropagatingRemoteInvocation(MethodInvocation) - Constructor for class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation
-
Constructs the object, storing the principal and credentials extracted from the
client-side security context.
- ContextPropagatingRemoteInvocationFactory - Class in org.springframework.security.remoting.rmi
-
Called by a client-side instance of
org.springframework.remoting.rmi.RmiProxyFactoryBean
when it wishes to
create a remote invocation.
- ContextPropagatingRemoteInvocationFactory() - Constructor for class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory
-
- contextSource(BaseLdapPathContextSource) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
- contextSource() - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
- convertPasswordToString(Object) - Static method in class org.springframework.security.ldap.LdapUtils
-
- CookieClearingLogoutHandler - Class in org.springframework.security.web.authentication.logout
-
A logout handler which clears a defined list of cookies, using the context path as the
cookie path.
- CookieClearingLogoutHandler(String...) - Constructor for class org.springframework.security.web.authentication.logout.CookieClearingLogoutHandler
-
- CookieCsrfTokenRepository - Class in org.springframework.security.web.csrf
-
A
CsrfTokenRepository
that persist the CSRF token in a cookie named
"XSRF-TOKEN" and reads from the header "X-XSRF-TOKEN" following the conventions of
AngularJS.
- CookieCsrfTokenRepository() - Constructor for class org.springframework.security.web.csrf.CookieCsrfTokenRepository
-
- CookieTheftException - Exception in org.springframework.security.web.authentication.rememberme
-
- CookieTheftException(String) - Constructor for exception org.springframework.security.web.authentication.rememberme.CookieTheftException
-
- copyToContext(UserDetails, DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- cors() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- CORS - Static variable in class org.springframework.security.config.Elements
-
- CorsBeanDefinitionParser - Class in org.springframework.security.config.http
-
Parser for the CorsFilter
.
- CorsBeanDefinitionParser() - Constructor for class org.springframework.security.config.http.CorsBeanDefinitionParser
-
- CorsConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
Adds
CorsFilter
to the Spring Security filter chain.
- CorsConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.CorsConfigurer
-
Creates a new instance
- count(int) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer.AttributeExchangeConfigurer.AttributeConfigurer
-
Specifies the number of attribute values to request.
- create - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- CREATE - Static variable in class org.springframework.security.acls.domain.BasePermission
-
- create(Callable<V>, SecurityContext) - Static method in class org.springframework.security.concurrent.DelegatingSecurityContextCallable
-
- create(Runnable, SecurityContext) - Static method in class org.springframework.security.concurrent.DelegatingSecurityContextRunnable
-
- create(Object, String, Object...) - Static method in class org.springframework.security.util.MethodInvocationUtils
-
Generates a MethodInvocation
for specified methodName
on
the passed object, using the args
to locate the method.
- CREATE_TABLE_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
Default SQL for creating the database table to store the tokens
- createAcl(ObjectIdentity) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- createAcl(ObjectIdentity) - Method in interface org.springframework.security.acls.model.MutableAclService
-
Creates an empty Acl
object in the database.
- createAttributeList(String) - Method in interface org.springframework.security.openid.AxFetchListFactory
-
Builds the list of attributes which should be added to the fetch request for the
supplied OpenID identifier.
- createAttributeList(String) - Method in class org.springframework.security.openid.NullAxFetchListFactory
-
- createAttributeList(String) - Method in class org.springframework.security.openid.RegexBasedAxFetchListFactory
-
Iterates through the patterns stored in the map and returns the list of attributes
defined for the first match.
- createAuthentication(HttpServletRequest) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
- createAuthenticationRequest(String, String) - Method in class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation
-
Creates the server-side authentication request object.
- createAuthority(Object) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
-
Creates a GrantedAuthority from a role attribute.
- createAuthorityList(String...) - Static method in class org.springframework.security.core.authority.AuthorityUtils
-
- createChannelAttributes(String) - Static method in class org.springframework.security.config.http.ChannelAttributeFactory
-
- createCurrentUser(Authentication) - Method in class org.springframework.security.acls.domain.AclAuthorizationStrategyImpl
-
Creates a principal-like sid from the authentication information.
- createELContext(HttpServletRequest) - Method in class org.springframework.security.web.util.matcher.ELRequestMatcher
-
Subclasses can override this methode if they want to use a different EL root
context
- createEmptyContext() - Static method in class org.springframework.security.core.context.SecurityContextHolder
-
Delegates the creation of a new, empty context to the configured strategy.
- createEmptyContext() - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
-
Creates a new, empty context implementation, for use by
SecurityContextRepository implementations, when creating a new context for
the first time.
- createEntries(MutableAcl) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Creates a new row in acl_entry for every ACE defined in the passed MutableAcl
object.
- createEvaluationContext(Authentication, T) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
Invokes the internal template methods to create StandardEvaluationContext
and SecurityExpressionRoot
objects.
- createEvaluationContext(Authentication, T) - Method in interface org.springframework.security.access.expression.SecurityExpressionHandler
-
Provides an evaluation context in which to evaluate security expressions for the
invocation type.
- createEvaluationContextInternal(Authentication, T) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
Override to create a custom instance of StandardEvaluationContext
.
- createEvaluationContextInternal(Authentication, MethodInvocation) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
Uses a MethodSecurityEvaluationContext
as the EvaluationContext
implementation.
- createExpressionEvaluationContext(SecurityExpressionHandler<FilterInvocation>) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
Allows the EvaluationContext
to be customized for variable lookup etc.
- createExpressionEvaluationContext(SecurityExpressionHandler<FilterInvocation>) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- createExpressionHandler() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- createExpressionMessageMetadataSource(LinkedHashMap<MessageMatcher<?>, String>) - Static method in class org.springframework.security.messaging.access.expression.ExpressionBasedMessageSecurityMetadataSourceFactory
-
- createExpressionMessageMetadataSource(LinkedHashMap<MessageMatcher<?>, String>, SecurityExpressionHandler<Message<Object>>) - Static method in class org.springframework.security.messaging.access.expression.ExpressionBasedMessageSecurityMetadataSourceFactory
-
- createFromClass(Class<?>, String) - Static method in class org.springframework.security.util.MethodInvocationUtils
-
Generates a MethodInvocation
for the specified methodName
on the passed class.
- createFromClass(Object, Class<?>, String, Class<?>[], Object[]) - Static method in class org.springframework.security.util.MethodInvocationUtils
-
Generates a MethodInvocation
for specified methodName
on
the passed class, using the args
to locate the method.
- createGroup(String, List<GrantedAuthority>) - Method in interface org.springframework.security.provisioning.GroupManager
-
Creates a new group with the specified list of authorities.
- createGroup(String, List<GrantedAuthority>) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- createList(String...) - Static method in class org.springframework.security.access.SecurityConfig
-
- createListFromCommaDelimitedString(String) - Static method in class org.springframework.security.access.SecurityConfig
-
- createLoginContext(CallbackHandler) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
Creates the LoginContext to be used for authentication.
- createLoginContext(CallbackHandler) - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
-
- createLoginContext(CallbackHandler) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
-
- createLoginProcessingUrlMatcher(String) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
- createLoginProcessingUrlMatcher(String) - Method in class org.springframework.security.config.annotation.web.configurers.FormLoginConfigurer
-
- createLoginProcessingUrlMatcher(String) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
- createMatcher(ParserContext, String, String) - Method in enum org.springframework.security.config.http.MatcherType
-
- createMatcher(ParserContext, String, String, String) - Method in enum org.springframework.security.config.http.MatcherType
-
- createMessageMatcher(String, PathMatcher) - Static method in class org.springframework.security.messaging.util.matcher.SimpDestinationMessageMatcher
-
Creates a new instance with the specified pattern,
SimpMessageType.MESSAGE
,
and
PathMatcher
.
- createMetadataSource() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
- createMvcMatchers(HttpMethod, String...) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- createNewAuthentication(Authentication, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- createNewToken(PersistentRememberMeToken) - Method in class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
-
- createNewToken(PersistentRememberMeToken) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
- createNewToken(PersistentRememberMeToken) - Method in interface org.springframework.security.web.authentication.rememberme.PersistentTokenRepository
-
- createObjectIdentity(Serializable, String) - Method in class org.springframework.security.acls.domain.ObjectIdentityRetrievalStrategyImpl
-
- createObjectIdentity(ObjectIdentity, Sid) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Creates an entry in the acl_object_identity table for the passed ObjectIdentity.
- createObjectIdentity(Serializable, String) - Method in interface org.springframework.security.acls.model.ObjectIdentityGenerator
-
- createOrRetrieveClassPrimaryKey(String, boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Retrieves the primary key from acl_class
, creating a new row if needed and
the allowCreate
property is true
.
- createOrRetrieveSidPrimaryKey(Sid, boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Retrieves the primary key from acl_sid, creating a new row if needed and the
allowCreate property is true.
- createOrRetrieveSidPrimaryKey(String, boolean, boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Retrieves the primary key from acl_sid, creating a new row if needed and the
allowCreate property is true.
- createPasswordEncoderBeanDefinition(String, boolean) - Static method in class org.springframework.security.config.authentication.PasswordEncoderParser
-
- createPostInvocationAttribute(String, String) - Method in class org.springframework.security.access.expression.method.ExpressionBasedAnnotationAttributeFactory
-
- createPostInvocationAttribute(String, String) - Method in interface org.springframework.security.access.prepost.PrePostInvocationAttributeFactory
-
- createPreInvocationAttribute(String, String, String) - Method in class org.springframework.security.access.expression.method.ExpressionBasedAnnotationAttributeFactory
-
- createPreInvocationAttribute(String, String, String) - Method in interface org.springframework.security.access.prepost.PrePostInvocationAttributeFactory
-
- createRedirectUrl(String) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
Constructs the Url for Redirection to the CAS server.
- createRemoteInvocation(MethodInvocation) - Method in class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocationFactory
-
- createSecurityContext(A) - Method in interface org.springframework.security.test.context.support.WithSecurityContextFactory
-
- createSecurityExpressionRoot(Authentication, T) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
Implement in order to create a root object of the correct type for the supported
invocation type.
- createSecurityExpressionRoot(Authentication, MethodInvocation) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
Creates the root object for expression evaluation.
- createSecurityExpressionRoot(Authentication, Message<T>) - Method in class org.springframework.security.messaging.access.expression.DefaultMessageSecurityExpressionHandler
-
- createSecurityExpressionRoot(Authentication, FilterInvocation) - Method in class org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler
-
- createServiceUrl(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
Constructs a new Service Url.
- createSid(boolean, String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
Creates a particular implementation of
Sid
depending on the arguments.
- createSubscribeMatcher(String, PathMatcher) - Static method in class org.springframework.security.messaging.util.matcher.SimpDestinationMessageMatcher
-
Creates a new instance with the specified pattern,
SimpMessageType.SUBSCRIBE
, and
PathMatcher
.
- createSuccessAuthentication(Object, Authentication, UserDetails) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- createSuccessfulAuthentication(UsernamePasswordAuthenticationToken, UserDetails) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
Creates the final Authentication
object which will be returned from the
authenticate
method.
- createSuccessfulAuthentication(UserDetails, OpenIDAuthenticationToken) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
-
Handles the creation of the final Authentication object which will be
returned by the provider.
- createSuccessfulAuthentication(HttpServletRequest, UserDetails) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Creates the final Authentication object returned from the
autoLogin method.
- createTarget() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- createTarget() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- createTarget() - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- createUser(UserDetails) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- createUser(UserDetails) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
-
- createUser(UserDetails) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- createUser(UserDetails) - Method in interface org.springframework.security.provisioning.UserDetailsManager
-
Create a new user with the supplied details.
- createUserDetails(String, UserDetails, List<GrantedAuthority>) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Can be overridden to customize the creation of the final UserDetailsObject which is
returned by the loadUserByUsername method.
- createUserDetails() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- createUserDetails() - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- createUserDetails(Authentication, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesUserDetailsService
-
Creates the final UserDetails object.
- CredentialsContainer - Interface in org.springframework.security.core
-
Indicates that the implementing object contains sensitive data, which can be erased
using the eraseCredentials
method.
- credentialsExpired(boolean) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Defines if the credentials are expired or not.
- CredentialsExpiredException - Exception in org.springframework.security.authentication
-
Thrown if an authentication request is rejected because the account's credentials have
expired.
- CredentialsExpiredException(String) - Constructor for exception org.springframework.security.authentication.CredentialsExpiredException
-
Constructs a CredentialsExpiredException
with the specified message.
- CredentialsExpiredException(String, Throwable) - Constructor for exception org.springframework.security.authentication.CredentialsExpiredException
-
Constructs a CredentialsExpiredException
with the specified message
and root cause.
- csrf() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Adds CSRF support.
- CSRF - Static variable in class org.springframework.security.config.Elements
-
- csrf() - Static method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors
-
- CsrfAuthenticationStrategy - Class in org.springframework.security.web.csrf
-
- CsrfAuthenticationStrategy(CsrfTokenRepository) - Constructor for class org.springframework.security.web.csrf.CsrfAuthenticationStrategy
-
Creates a new instance
- CsrfBeanDefinitionParser - Class in org.springframework.security.config.http
-
Parser for the CsrfFilter
.
- CsrfBeanDefinitionParser() - Constructor for class org.springframework.security.config.http.CsrfBeanDefinitionParser
-
- csrfChannelInterceptor() - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- CsrfChannelInterceptor - Class in org.springframework.security.messaging.web.csrf
-
ChannelInterceptorAdapter
that validates that a valid CSRF is included in the
header of any SimpMessageType.CONNECT
message.
- CsrfChannelInterceptor() - Constructor for class org.springframework.security.messaging.web.csrf.CsrfChannelInterceptor
-
- CsrfConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
- CsrfConfigurer(ApplicationContext) - Constructor for class org.springframework.security.config.annotation.web.configurers.CsrfConfigurer
-
Creates a new instance
- CsrfException - Exception in org.springframework.security.web.csrf
-
Thrown when an invalid or missing
CsrfToken
is found in the HttpServletRequest
- CsrfException(String) - Constructor for exception org.springframework.security.web.csrf.CsrfException
-
- CsrfFilter - Class in org.springframework.security.web.csrf
-
Applies
CSRF
protection using a synchronizer token pattern.
- CsrfFilter(CsrfTokenRepository) - Constructor for class org.springframework.security.web.csrf.CsrfFilter
-
- CsrfInputTag - Class in org.springframework.security.taglibs.csrf
-
A JSP tag that prints out a hidden form field for the CSRF token.
- CsrfInputTag() - Constructor for class org.springframework.security.taglibs.csrf.CsrfInputTag
-
- CsrfLogoutHandler - Class in org.springframework.security.web.csrf
-
- CsrfLogoutHandler(CsrfTokenRepository) - Constructor for class org.springframework.security.web.csrf.CsrfLogoutHandler
-
Creates a new instance
- CsrfMetaTagsTag - Class in org.springframework.security.taglibs.csrf
-
A JSP tag that prints out a meta tags holding the CSRF form field name and token value
for use in JavaScrip code.
- CsrfMetaTagsTag() - Constructor for class org.springframework.security.taglibs.csrf.CsrfMetaTagsTag
-
- CsrfRequestDataValueProcessor - Class in org.springframework.security.web.servlet.support.csrf
-
Integration with Spring Web MVC that automatically adds the
CsrfToken
into
forms with hidden inputs when using Spring tag libraries.
- CsrfRequestDataValueProcessor() - Constructor for class org.springframework.security.web.servlet.support.csrf.CsrfRequestDataValueProcessor
-
- CsrfToken - Interface in org.springframework.security.web.csrf
-
Provides the information about an expected CSRF token.
- CsrfTokenArgumentResolver - Class in org.springframework.security.web.method.annotation
-
- CsrfTokenArgumentResolver() - Constructor for class org.springframework.security.web.method.annotation.CsrfTokenArgumentResolver
-
- CsrfTokenHandshakeInterceptor - Class in org.springframework.security.messaging.web.socket.server
-
Copies a CsrfToken from the HttpServletRequest's attributes to the WebSocket
attributes.
- CsrfTokenHandshakeInterceptor() - Constructor for class org.springframework.security.messaging.web.socket.server.CsrfTokenHandshakeInterceptor
-
- csrfTokenRepository(CsrfTokenRepository) - Method in class org.springframework.security.config.annotation.web.configurers.CsrfConfigurer
-
- CsrfTokenRepository - Interface in org.springframework.security.web.csrf
-
An API to allow changing the method in which the expected
CsrfToken
is
associated to the
HttpServletRequest
.
- CumulativePermission - Class in org.springframework.security.acls.domain
-
Represents a Permission
that is constructed at runtime from other
permissions.
- CumulativePermission() - Constructor for class org.springframework.security.acls.domain.CumulativePermission
-
- currentDate - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
-
Current formatted date.
- currentDateGenerated - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
-
Instant on which the currentDate object was generated.
- CUSTOM_FILTER - Static variable in class org.springframework.security.config.Elements
-
- customizeClientInboundChannel(ChannelRegistration) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
Allows subclasses to customize the configuration of the ChannelRegistration
.
- customMethodSecurityMetadataSource() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- CycleInRoleHierarchyException - Exception in org.springframework.security.access.hierarchicalroles
-
Exception that is thrown because of a cycle in the role hierarchy definition
- CycleInRoleHierarchyException() - Constructor for exception org.springframework.security.access.hierarchicalroles.CycleInRoleHierarchyException
-
- DaoAuthenticationConfigurer<B extends ProviderManagerBuilder<B>,U extends UserDetailsService> - Class in org.springframework.security.config.annotation.authentication.configurers.userdetails
-
- DaoAuthenticationConfigurer(U) - Constructor for class org.springframework.security.config.annotation.authentication.configurers.userdetails.DaoAuthenticationConfigurer
-
Creates a new instance
- DaoAuthenticationProvider - Class in org.springframework.security.authentication.dao
-
- DaoAuthenticationProvider() - Constructor for class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- dataSource(DataSource) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.JdbcUserDetailsManagerConfigurer
-
- debug(boolean) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
Controls debugging support for Spring Security.
- DEBUG - Static variable in class org.springframework.security.config.Elements
-
- DEBUG_FILTER - Static variable in class org.springframework.security.config.BeanIds
-
- DebugBeanDefinitionParser - Class in org.springframework.security.config
-
- DebugBeanDefinitionParser() - Constructor for class org.springframework.security.config.DebugBeanDefinitionParser
-
- DebugFilter - Class in org.springframework.security.web.debug
-
Spring Security debugging filter.
- DebugFilter(FilterChainProxy) - Constructor for class org.springframework.security.web.debug.DebugFilter
-
- decide(Authentication, Object, Collection<ConfigAttribute>) - Method in interface org.springframework.security.access.AccessDecisionManager
-
Resolves an access control decision for the passed parameters.
- decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in interface org.springframework.security.access.AfterInvocationProvider
-
- decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in interface org.springframework.security.access.intercept.AfterInvocationManager
-
Given the details of a secure object invocation including its returned
Object
, make an access control decision or optionally modify the
returned Object
.
- decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
-
- decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.access.prepost.PostInvocationAdviceProvider
-
- decide(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.AffirmativeBased
-
This concrete implementation simply polls all configured
AccessDecisionVoter
s and grants access if any
AccessDecisionVoter
voted affirmatively.
- decide(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.ConsensusBased
-
This concrete implementation simply polls all configured
AccessDecisionVoter
s and upon completion determines the consensus of
granted against denied responses.
- decide(Authentication, Object, Collection<ConfigAttribute>) - Method in class org.springframework.security.access.vote.UnanimousBased
-
- decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationCollectionFilteringProvider
-
- decide(Authentication, Object, Collection<ConfigAttribute>, Object) - Method in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
-
- decide(FilterInvocation, Collection<ConfigAttribute>) - Method in interface org.springframework.security.web.access.channel.ChannelDecisionManager
-
Decided whether the presented
FilterInvocation
provides the appropriate
level of channel security based on the requested list of
ConfigAttributes.
- decide(FilterInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
-
- decide(FilterInvocation, Collection<ConfigAttribute>) - Method in interface org.springframework.security.web.access.channel.ChannelProcessor
-
Decided whether the presented
FilterInvocation
provides the appropriate
level of channel security based on the requested list of
ConfigAttributes.
- decide(FilterInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- decide(FilterInvocation, Collection<ConfigAttribute>) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- DECODE - Static variable in class org.springframework.security.crypto.codec.Base64
-
Specify decoding in first bit.
- decode(byte[]) - Static method in class org.springframework.security.crypto.codec.Base64
-
- decode(CharSequence) - Static method in class org.springframework.security.crypto.codec.Hex
-
- decode(byte[]) - Static method in class org.springframework.security.crypto.codec.Utf8
-
Decode the bytes in UTF-8 form into a String.
- decodeCookie(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Decodes the cookie and splits it into a set of token strings using the ":"
delimiter.
- decorate(Node, BeanDefinitionHolder, ParserContext) - Method in class org.springframework.security.config.http.FilterChainMapBeanDefinitionDecorator
-
- decorate(Node, BeanDefinitionHolder, ParserContext) - Method in class org.springframework.security.config.method.InterceptMethodsBeanDefinitionDecorator
-
- decorate(Node, BeanDefinitionHolder, ParserContext) - Method in class org.springframework.security.config.SecurityNamespaceHandler
-
- decrypt(byte[]) - Method in class org.springframework.security.crypto.encrypt.BouncyCastleAesCbcBytesEncryptor
-
- decrypt(byte[]) - Method in class org.springframework.security.crypto.encrypt.BouncyCastleAesGcmBytesEncryptor
-
- decrypt(byte[]) - Method in interface org.springframework.security.crypto.encrypt.BytesEncryptor
-
Decrypt the byte array.
- decrypt(String) - Method in interface org.springframework.security.crypto.encrypt.TextEncryptor
-
Decrypt the encrypted text string.
- DEF_AUTHORITIES_BY_USERNAME_QUERY - Static variable in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- DEF_CHANGE_PASSWORD_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_CREATE_USER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_DELETE_GROUP_AUTHORITIES_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_DELETE_GROUP_AUTHORITY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_DELETE_GROUP_MEMBER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_DELETE_GROUP_MEMBERS_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_DELETE_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_DELETE_USER_AUTHORITIES_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_DELETE_USER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_FIND_GROUP_ID_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_FIND_GROUPS_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_FIND_USERS_IN_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_GROUP_AUTHORITIES_BY_USERNAME_QUERY - Static variable in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- DEF_GROUP_AUTHORITIES_QUERY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_GROUP_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- DEF_GROUP_SEARCH_FILTER - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- DEF_INSERT_AUTHORITY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_INSERT_GROUP_AUTHORITY_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_INSERT_GROUP_MEMBER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_INSERT_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_INSERT_TOKEN_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
The default SQL used by createNewToken
- DEF_REMOVE_USER_TOKENS_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
The default SQL used by removeUserTokens
- DEF_RENAME_GROUP_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_TOKEN_BY_SERIES_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
The default SQL used by the getTokenBySeries query
- DEF_UPDATE_TOKEN_SQL - Static variable in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
The default SQL used by updateToken
- DEF_UPDATE_USER_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_USER_EXISTS_SQL - Static variable in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- DEF_USER_SEARCH_BASE - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- DEF_USERS_BY_USERNAME_QUERY - Static variable in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- DEFAULT_CAS_ARTIFACT_PARAMETER - Static variable in class org.springframework.security.cas.ServiceProperties
-
- DEFAULT_CAS_SERVICE_PARAMETER - Static variable in class org.springframework.security.cas.ServiceProperties
-
- DEFAULT_CLAIMED_IDENTITY_FIELD - Static variable in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
- DEFAULT_CSRF_MATCHER - Static variable in class org.springframework.security.web.csrf.CsrfFilter
-
The default
RequestMatcher
that indicates if CSRF protection is required or
not.
- DEFAULT_EXTRACTOR - Static variable in class org.springframework.security.web.util.ThrowableAnalyzer
-
- DEFAULT_FILTER_NAME - Static variable in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
- DEFAULT_LOGIN_PAGE_URL - Static variable in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- DEFAULT_ORDER_BY_CLAUSE - Static variable in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
- DEFAULT_PARAMETER - Static variable in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- DEFAULT_SAML_ARTIFACT_PARAMETER - Static variable in class org.springframework.security.cas.SamlServiceProperties
-
- DEFAULT_SAML_SERVICE_PARAMETER - Static variable in class org.springframework.security.cas.SamlServiceProperties
-
- DEFAULT_SELECT_CLAUSE - Static variable in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
- DEFAULT_SERIES_LENGTH - Static variable in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- DEFAULT_TOKEN_LENGTH - Static variable in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- defaultAuthenticationEntryPointFor(AuthenticationEntryPoint, RequestMatcher) - Method in class org.springframework.security.config.annotation.web.configurers.ExceptionHandlingConfigurer
-
- DefaultAuthenticationEventPublisher - Class in org.springframework.security.authentication
-
The default strategy for publishing authentication events.
- DefaultAuthenticationEventPublisher() - Constructor for class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
-
- DefaultAuthenticationEventPublisher(ApplicationEventPublisher) - Constructor for class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
-
- DefaultCsrfToken - Class in org.springframework.security.web.csrf
-
A CSRF token that is used to protect against CSRF attacks.
- DefaultCsrfToken(String, String, String) - Constructor for class org.springframework.security.web.csrf.DefaultCsrfToken
-
Creates a new instance
- DefaultFilterChainValidator - Class in org.springframework.security.config.http
-
- DefaultFilterChainValidator() - Constructor for class org.springframework.security.config.http.DefaultFilterChainValidator
-
- DefaultFilterInvocationSecurityMetadataSource - Class in org.springframework.security.web.access.intercept
-
Default implementation of FilterInvocationDefinitionSource.
- DefaultFilterInvocationSecurityMetadataSource(LinkedHashMap<RequestMatcher, Collection<ConfigAttribute>>) - Constructor for class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
-
Sets the internal request map from the supplied map.
- DefaultHttpFirewall - Class in org.springframework.security.web.firewall
-
Default implementation which wraps requests in order to provide consistent
values of the
servletPath
and
pathInfo
, which do not contain
path parameters (as defined in
RFC 2396).
- DefaultHttpFirewall() - Constructor for class org.springframework.security.web.firewall.DefaultHttpFirewall
-
- DefaultJaasAuthenticationProvider - Class in org.springframework.security.authentication.jaas
-
Creates a LoginContext using the Configuration provided to it.
- DefaultJaasAuthenticationProvider() - Constructor for class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
-
- DefaultLdapAuthoritiesPopulator - Class in org.springframework.security.ldap.userdetails
-
The default strategy for obtaining user role information from the directory.
- DefaultLdapAuthoritiesPopulator(ContextSource, String) - Constructor for class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Constructor for group search scenarios.
- DefaultLdapUsernameToDnMapper - Class in org.springframework.security.ldap
-
This implementation appends a name component to the userDnBase context using
the usernameAttributeName property.
- DefaultLdapUsernameToDnMapper(String, String) - Constructor for class org.springframework.security.ldap.DefaultLdapUsernameToDnMapper
-
- DefaultLoginExceptionResolver - Class in org.springframework.security.authentication.jaas
-
This LoginExceptionResolver simply wraps the LoginException with an
AuthenticationServiceException.
- DefaultLoginExceptionResolver() - Constructor for class org.springframework.security.authentication.jaas.DefaultLoginExceptionResolver
-
- DefaultLoginPageConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
- DefaultLoginPageConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.DefaultLoginPageConfigurer
-
- DefaultLoginPageGeneratingFilter - Class in org.springframework.security.web.authentication.ui
-
For internal use with namespace configuration in the case where a user doesn't
configure a login page.
- DefaultLoginPageGeneratingFilter() - Constructor for class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- DefaultLoginPageGeneratingFilter(AbstractAuthenticationProcessingFilter) - Constructor for class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- DefaultLoginPageGeneratingFilter(UsernamePasswordAuthenticationFilter, AbstractAuthenticationProcessingFilter) - Constructor for class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- defaultLogoutSuccessHandlerFor(LogoutSuccessHandler, RequestMatcher) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- DefaultMessageSecurityExpressionHandler<T> - Class in org.springframework.security.messaging.access.expression
-
- DefaultMessageSecurityExpressionHandler() - Constructor for class org.springframework.security.messaging.access.expression.DefaultMessageSecurityExpressionHandler
-
- DefaultMessageSecurityMetadataSource - Class in org.springframework.security.messaging.access.intercept
-
- DefaultMessageSecurityMetadataSource(LinkedHashMap<MessageMatcher<?>, Collection<ConfigAttribute>>) - Constructor for class org.springframework.security.messaging.access.intercept.DefaultMessageSecurityMetadataSource
-
- DefaultMethodSecurityExpressionHandler - Class in org.springframework.security.access.expression.method
-
The standard implementation of MethodSecurityExpressionHandler
.
- DefaultMethodSecurityExpressionHandler() - Constructor for class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
- DefaultPermissionFactory - Class in org.springframework.security.acls.domain
-
- DefaultPermissionFactory() - Constructor for class org.springframework.security.acls.domain.DefaultPermissionFactory
-
Registers the Permission fields from the BasePermission class.
- DefaultPermissionFactory(Class<? extends Permission>) - Constructor for class org.springframework.security.acls.domain.DefaultPermissionFactory
-
Registers the Permission fields from the supplied class.
- DefaultPermissionFactory(Map<String, ? extends Permission>) - Constructor for class org.springframework.security.acls.domain.DefaultPermissionFactory
-
Registers a map of named Permission instances.
- DefaultPermissionGrantingStrategy - Class in org.springframework.security.acls.domain
-
- DefaultPermissionGrantingStrategy(AuditLogger) - Constructor for class org.springframework.security.acls.domain.DefaultPermissionGrantingStrategy
-
Creates an instance with the logger which will be used to record granting and
denial of requested permissions.
- DefaultRedirectStrategy - Class in org.springframework.security.web
-
Simple implementation of RedirectStrategy which is the default used throughout
the framework.
- DefaultRedirectStrategy() - Constructor for class org.springframework.security.web.DefaultRedirectStrategy
-
- DefaultSavedRequest - Class in org.springframework.security.web.savedrequest
-
Represents central information from a HttpServletRequest
.
- DefaultSavedRequest(HttpServletRequest, PortResolver) - Constructor for class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- defaultsDisabled() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer
-
Clears all of the default headers from the response.
- DefaultSecurityFilterChain - Class in org.springframework.security.web
-
Standard implementation of SecurityFilterChain
.
- DefaultSecurityFilterChain(RequestMatcher, Filter...) - Constructor for class org.springframework.security.web.DefaultSecurityFilterChain
-
- DefaultSecurityFilterChain(RequestMatcher, List<Filter>) - Constructor for class org.springframework.security.web.DefaultSecurityFilterChain
-
- DefaultSecurityParameterNameDiscoverer - Class in org.springframework.security.core.parameters
-
- DefaultSecurityParameterNameDiscoverer() - Constructor for class org.springframework.security.core.parameters.DefaultSecurityParameterNameDiscoverer
-
- DefaultSecurityParameterNameDiscoverer(List<? extends ParameterNameDiscoverer>) - Constructor for class org.springframework.security.core.parameters.DefaultSecurityParameterNameDiscoverer
-
- DefaultSpringSecurityContextSource - Class in org.springframework.security.ldap
-
ContextSource implementation which uses Spring LDAP's LdapContextSource as a
base class.
- DefaultSpringSecurityContextSource(String) - Constructor for class org.springframework.security.ldap.DefaultSpringSecurityContextSource
-
Create and initialize an instance which will connect to the supplied LDAP URL.
- DefaultSpringSecurityContextSource(List<String>, String) - Constructor for class org.springframework.security.ldap.DefaultSpringSecurityContextSource
-
Create and initialize an instance which will connect of the LDAP Spring Security
Context Source.
- defaultSuccessUrl(String) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Specifies where users will go after authenticating successfully if they have not
visited a secured page prior to authenticating.
- defaultSuccessUrl(String, boolean) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Specifies where users will go after authenticating successfully if they have not
visited a secured page prior to authenticating or alwaysUse
is true.
- DefaultToken - Class in org.springframework.security.core.token
-
The default implementation of
Token
.
- DefaultToken(String, long, String) - Constructor for class org.springframework.security.core.token.DefaultToken
-
- DefaultWebInvocationPrivilegeEvaluator - Class in org.springframework.security.web.access
-
Allows users to determine whether they have privileges for a given web URI.
- DefaultWebInvocationPrivilegeEvaluator(AbstractSecurityInterceptor) - Constructor for class org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
-
- DefaultWebSecurityExpressionHandler - Class in org.springframework.security.web.access.expression
-
- DefaultWebSecurityExpressionHandler() - Constructor for class org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler
-
- DelegatingAccessDeniedHandler - Class in org.springframework.security.web.access
-
- DelegatingAccessDeniedHandler(LinkedHashMap<Class<? extends AccessDeniedException>, AccessDeniedHandler>, AccessDeniedHandler) - Constructor for class org.springframework.security.web.access.DelegatingAccessDeniedHandler
-
Creates a new instance
- delegatingApplicationListener() - Static method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration
-
- DelegatingApplicationListener - Class in org.springframework.security.context
-
Used for delegating to a number of SmartApplicationListener instances.
- DelegatingApplicationListener() - Constructor for class org.springframework.security.context.DelegatingApplicationListener
-
- DelegatingAuthenticationEntryPoint - Class in org.springframework.security.web.authentication
-
An
AuthenticationEntryPoint
which selects a concrete
AuthenticationEntryPoint
based on a
RequestMatcher
evaluation.
- DelegatingAuthenticationEntryPoint(LinkedHashMap<RequestMatcher, AuthenticationEntryPoint>) - Constructor for class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
-
- DelegatingAuthenticationFailureHandler - Class in org.springframework.security.web.authentication
-
- DelegatingAuthenticationFailureHandler(LinkedHashMap<Class<? extends AuthenticationException>, AuthenticationFailureHandler>, AuthenticationFailureHandler) - Constructor for class org.springframework.security.web.authentication.DelegatingAuthenticationFailureHandler
-
Creates a new instance
- DelegatingLogoutSuccessHandler - Class in org.springframework.security.web.authentication.logout
-
Delegates to logout handlers based on matched request matchers
- DelegatingLogoutSuccessHandler(LinkedHashMap<RequestMatcher, LogoutSuccessHandler>) - Constructor for class org.springframework.security.web.authentication.logout.DelegatingLogoutSuccessHandler
-
- DelegatingMethodSecurityMetadataSource - Class in org.springframework.security.access.method
-
Automatically tries a series of method definition sources, relying on the first source
of metadata that provides a non-null/non-empty response.
- DelegatingMethodSecurityMetadataSource(List<MethodSecurityMetadataSource>) - Constructor for class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
-
- DelegatingRequestMatcherHeaderWriter - Class in org.springframework.security.web.header.writers
-
- DelegatingRequestMatcherHeaderWriter(RequestMatcher, HeaderWriter) - Constructor for class org.springframework.security.web.header.writers.DelegatingRequestMatcherHeaderWriter
-
Creates a new instance
- DelegatingSecurityContextAsyncTaskExecutor - Class in org.springframework.security.task
-
- DelegatingSecurityContextAsyncTaskExecutor(AsyncTaskExecutor, SecurityContext) - Constructor for class org.springframework.security.task.DelegatingSecurityContextAsyncTaskExecutor
-
- DelegatingSecurityContextAsyncTaskExecutor(AsyncTaskExecutor) - Constructor for class org.springframework.security.task.DelegatingSecurityContextAsyncTaskExecutor
-
- DelegatingSecurityContextCallable<V> - Class in org.springframework.security.concurrent
-
- DelegatingSecurityContextCallable(Callable<V>, SecurityContext) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextCallable
-
- DelegatingSecurityContextCallable(Callable<V>) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextCallable
-
- DelegatingSecurityContextExecutor - Class in org.springframework.security.concurrent
-
- DelegatingSecurityContextExecutor(Executor, SecurityContext) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextExecutor
-
- DelegatingSecurityContextExecutor(Executor) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextExecutor
-
- DelegatingSecurityContextExecutorService - Class in org.springframework.security.concurrent
-
- DelegatingSecurityContextExecutorService(ExecutorService, SecurityContext) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- DelegatingSecurityContextExecutorService(ExecutorService) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- DelegatingSecurityContextRunnable - Class in org.springframework.security.concurrent
-
- DelegatingSecurityContextRunnable(Runnable, SecurityContext) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextRunnable
-
- DelegatingSecurityContextRunnable(Runnable) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextRunnable
-
- DelegatingSecurityContextScheduledExecutorService - Class in org.springframework.security.concurrent
-
- DelegatingSecurityContextScheduledExecutorService(ScheduledExecutorService, SecurityContext) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextScheduledExecutorService
-
- DelegatingSecurityContextScheduledExecutorService(ScheduledExecutorService) - Constructor for class org.springframework.security.concurrent.DelegatingSecurityContextScheduledExecutorService
-
- DelegatingSecurityContextSchedulingTaskExecutor - Class in org.springframework.security.scheduling
-
- DelegatingSecurityContextSchedulingTaskExecutor(SchedulingTaskExecutor, SecurityContext) - Constructor for class org.springframework.security.scheduling.DelegatingSecurityContextSchedulingTaskExecutor
-
- DelegatingSecurityContextSchedulingTaskExecutor(SchedulingTaskExecutor) - Constructor for class org.springframework.security.scheduling.DelegatingSecurityContextSchedulingTaskExecutor
-
- DelegatingSecurityContextTaskExecutor - Class in org.springframework.security.task
-
- DelegatingSecurityContextTaskExecutor(TaskExecutor, SecurityContext) - Constructor for class org.springframework.security.task.DelegatingSecurityContextTaskExecutor
-
- DelegatingSecurityContextTaskExecutor(TaskExecutor) - Constructor for class org.springframework.security.task.DelegatingSecurityContextTaskExecutor
-
- delete - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- DELETE - Static variable in class org.springframework.security.acls.domain.BasePermission
-
- deleteAce(int) - Method in class org.springframework.security.acls.domain.AclImpl
-
- deleteAce(int) - Method in interface org.springframework.security.acls.model.MutableAcl
-
- deleteAcl(ObjectIdentity, boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- deleteAcl(ObjectIdentity, boolean) - Method in interface org.springframework.security.acls.model.MutableAclService
-
Removes the specified entry from the database.
- deleteCookies(String...) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
Allows specifying the names of cookies to be removed on logout success.
- deleteEntries(Long) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Deletes all ACEs defined in the acl_entry table belonging to the presented
ObjectIdentity primary key.
- deleteGroup(String) - Method in interface org.springframework.security.provisioning.GroupManager
-
Removes a group, including all members and authorities.
- deleteGroup(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- deleteObjectIdentity(Long) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Deletes a single row from acl_object_identity that is associated with the presented
ObjectIdentity primary key.
- deleteUser(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- deleteUser(String) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
-
- deleteUser(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- deleteUser(String) - Method in interface org.springframework.security.provisioning.UserDetailsManager
-
Remove the user with the given login name from the system.
- delux(CharSequence, CharSequence) - Static method in class org.springframework.security.crypto.encrypt.Encryptors
-
Creates a text encryptor that uses "stronger" password-based encryption.
- demergePasswordAndSalt(String) - Method in class org.springframework.security.authentication.encoding.BasePasswordEncoder
-
- demergePatterns(String, String) - Static method in class org.springframework.security.acls.domain.AclFormattingUtils
-
- deny() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.FrameOptionsConfig
-
Specify to DENY framing any content from this application.
- DENY_ALL_ATTRIBUTE - Static variable in class org.springframework.security.access.annotation.Jsr250SecurityConfig
-
- denyAll() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
-
Always denies access
- denyAll - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
-
Allows "denyAll" expression
- denyAll() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- denyAll() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
-
Specify that URLs are not allowed by anyone.
- denyAll() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry.Constraint
-
Specify that Messages are not allowed by anyone.
- DenyAllPermissionEvaluator - Class in org.springframework.security.access.expression
-
A null PermissionEvaluator which denies all access.
- DenyAllPermissionEvaluator() - Constructor for class org.springframework.security.access.expression.DenyAllPermissionEvaluator
-
- destroy() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- destroy() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
Not used (we rely on IoC container lifecycle services instead)
- destroy() - Method in class org.springframework.security.web.debug.DebugFilter
-
- determineCauseChain(Throwable) - Method in class org.springframework.security.web.util.ThrowableAnalyzer
-
Determines the cause chain of the provided Throwable
.
- determineExpiredUrl(HttpServletRequest, SessionInformation) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
-
- determineTargetUrl(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
Builds the target URL according to the logic defined in the main class Javadoc.
- determineUrlToUseForThisRequest(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
Allows subclasses to modify the login form URL that should be applicable for a
given request.
- digest() - Static method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors
-
Creates a DigestRequestPostProcessor that enables easily adding digest based
authentication to a request.
- digest(String) - Static method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors
-
Creates a DigestRequestPostProcessor that enables easily adding digest based
authentication to a request.
- DigestAuthenticationEntryPoint - Class in org.springframework.security.web.authentication.www
-
- DigestAuthenticationEntryPoint() - Constructor for class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- DigestAuthenticationFilter - Class in org.springframework.security.web.authentication.www
-
Processes a HTTP request's Digest authorization headers, putting the result into the
SecurityContextHolder
.
- DigestAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- DigestRequestPostProcessor() - Constructor for class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.DigestRequestPostProcessor
-
- disable() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.CacheControlConfig
-
Disables Cache Control
- disable() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.ContentTypeOptionsConfig
-
Removes the X-XSS-Protection header.
- disable() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.FrameOptionsConfig
-
Prevents the header from being added to the response.
- disable() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HpkpConfig
-
Prevents the header from being added to the response.
- disable() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HstsConfig
-
Disables Strict Transport Security
- disable() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.XXssConfig
-
Disables X-XSS-Protection header (does not include it)
- disabled(boolean) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Defines if the account is disabled or not.
- DisabledException - Exception in org.springframework.security.authentication
-
Thrown if an authentication request is rejected because the account is disabled.
- DisabledException(String) - Constructor for exception org.springframework.security.authentication.DisabledException
-
Constructs a DisabledException
with the specified message.
- DisabledException(String, Throwable) - Constructor for exception org.springframework.security.authentication.DisabledException
-
Constructs a DisabledException
with the specified message and root
cause.
- disableOnResponseCommitted() - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- disableSaveOnResponseCommitted() - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
-
Invoke this method to disable automatic saving of the
SecurityContext
when
the
HttpServletResponse
is committed.
- DN_KEY - Static variable in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Every search results where a record is defined by a Map<String,String[]>
contains at least this key - the DN of the record itself.
- DnsEntryNotFoundException - Exception in org.springframework.security.remoting.dns
-
This will be thrown if no entry matches the specified DNS query.
- DnsEntryNotFoundException(String) - Constructor for exception org.springframework.security.remoting.dns.DnsEntryNotFoundException
-
- DnsEntryNotFoundException(String, Throwable) - Constructor for exception org.springframework.security.remoting.dns.DnsEntryNotFoundException
-
- DnsLookupException - Exception in org.springframework.security.remoting.dns
-
This will be thrown for unknown DNS errors.
- DnsLookupException(String, Throwable) - Constructor for exception org.springframework.security.remoting.dns.DnsLookupException
-
- DnsLookupException(String) - Constructor for exception org.springframework.security.remoting.dns.DnsLookupException
-
- DnsResolver - Interface in org.springframework.security.remoting.dns
-
Helper class for DNS operations.
- DO_BREAK_LINES - Static variable in class org.springframework.security.crypto.codec.Base64
-
Do break lines when encoding.
- doAfterPropertiesSet() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- doAfterPropertiesSet() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- doAuthentication(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
- doAuthentication(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
-
- doAuthentication(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
-
- doBuild() - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- doBuild() - Method in class org.springframework.security.config.annotation.AbstractSecurityBuilder
-
Subclasses should implement this to perform the build.
- doEndTag() - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
-
- doEndTag() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
Default processing of the end tag returning EVAL_PAGE.
- doesRequestMatch(HttpServletRequest, PortResolver) - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
Determines if the current request matches the DefaultSavedRequest
.
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
Method that is actually called by the filter chain.
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
Invokes the
requiresAuthentication
method to determine whether the request is for
authentication and should be handled by this filter.
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Try to authenticate a pre-authenticated user with Spring Security if the user has
not yet been authenticated.
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.context.SecurityContextPersistenceFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.debug.DebugFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.FilterChainProxy
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.jaasapi.JaasApiIntegrationFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.savedrequest.RequestCacheAwareFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
-
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.springframework.security.web.session.SessionManagementFilter
-
- doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter
-
- doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.springframework.security.web.csrf.CsrfFilter
-
- doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.springframework.security.web.header.HeaderWriterFilter
-
- doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
-
- doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.authentication.JdbcUserServiceBeanDefinitionParser
-
- doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.authentication.UserServiceBeanDefinitionParser
-
- doParse(Element, ParserContext, BeanDefinitionBuilder) - Method in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- doPrepareConnection(HttpURLConnection, int) - Method in class org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor
-
Provided so subclasses can perform additional configuration if required (eg set
additional request headers for non-security related information etc).
- doStartTag() - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
-
- doStartTag() - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
-
- doStartTag() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- generateKey() - Method in interface org.springframework.security.crypto.keygen.BytesKeyGenerator
-
Generate a new key.
- generateKey() - Method in interface org.springframework.security.crypto.keygen.StringKeyGenerator
-
- generateNewContext() - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
- generateSeriesData() - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- generateToken(HttpServletRequest) - Method in class org.springframework.security.web.csrf.CookieCsrfTokenRepository
-
- generateToken(HttpServletRequest) - Method in interface org.springframework.security.web.csrf.CsrfTokenRepository
-
- generateToken(HttpServletRequest) - Method in class org.springframework.security.web.csrf.HttpSessionCsrfTokenRepository
-
- generateToken(HttpServletRequest) - Method in class org.springframework.security.web.csrf.LazyCsrfTokenRepository
-
Generates a new token
- generateTokenData() - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- gensalt(int, SecureRandom) - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
-
Generate a salt for use with the BCrypt.hashpw() method
- gensalt(int) - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
-
Generate a salt for use with the BCrypt.hashpw() method
- gensalt() - Static method in class org.springframework.security.crypto.bcrypt.BCrypt
-
Generate a salt for use with the BCrypt.hashpw() method, selecting a reasonable
default for the number of hashing rounds to apply
- getAccess() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
- getAccessDecisionManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- getAccessDeniedException() - Method in class org.springframework.security.access.event.AuthorizationFailureEvent
-
- getAccessor() - Static method in class org.springframework.security.core.SpringSecurityMessageSource
-
- getAcl() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- getAcl() - Method in interface org.springframework.security.acls.model.AccessControlEntry
-
- getAdditionalRoles(DirContextOperations, String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
This method should be overridden if required to obtain any additional roles for the
given user (on top of those obtained from the standard search implemented by this
class).
- getAdvice() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityMetadataSourceAdvisor
-
- getAfterInvocationManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- getAlgorithm() - Method in class org.springframework.security.authentication.encoding.Md4PasswordEncoder
-
- getAlgorithm() - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
-
- getAllConfigAttributes() - Method in class org.springframework.security.access.annotation.Jsr250MethodSecurityMetadataSource
-
- getAllConfigAttributes() - Method in class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
-
- getAllConfigAttributes() - Method in class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
-
- getAllConfigAttributes() - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
-
Obtains the configuration attributes explicitly defined against this bean.
- getAllConfigAttributes() - Method in class org.springframework.security.access.prepost.PrePostAnnotationSecurityMetadataSource
-
- getAllConfigAttributes() - Method in interface org.springframework.security.access.SecurityMetadataSource
-
If available, returns all of the ConfigAttribute
s defined by the
implementing class.
- getAllConfigAttributes() - Method in class org.springframework.security.messaging.access.intercept.DefaultMessageSecurityMetadataSource
-
- getAllConfigAttributes() - Method in class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
-
- getAllowFromValue(HttpServletRequest) - Method in interface org.springframework.security.web.header.writers.frameoptions.AllowFromStrategy
-
Gets the value for ALLOW-FROM excluding the ALLOW-FROM.
- getAllowFromValue(HttpServletRequest) - Method in class org.springframework.security.web.header.writers.frameoptions.StaticAllowFromStrategy
-
- getAllowSessionCreation() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- getAllPrincipals() - Method in interface org.springframework.security.core.session.SessionRegistry
-
Obtains all the known principals in the SessionRegistry
.
- getAllPrincipals() - Method in class org.springframework.security.core.session.SessionRegistryImpl
-
- getAllSessions(Object, boolean) - Method in interface org.springframework.security.core.session.SessionRegistry
-
Obtains all the known sessions for the specified principal.
- getAllSessions(Object, boolean) - Method in class org.springframework.security.core.session.SessionRegistryImpl
-
- getAppConfigurationEntry(String) - Method in class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
-
- getApplicationContext() - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- getApplicationContext() - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
Gets the ApplicationContext
- getApplicationEventPublisher() - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- getArguments() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
-
- getArguments() - Method in class org.springframework.security.util.SimpleMethodInvocation
-
- getArtifactParameter() - Method in class org.springframework.security.cas.ServiceProperties
-
- getAssertion() - Method in class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
-
- getAssertion() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
-
- getAttribute() - Method in interface org.springframework.security.access.ConfigAttribute
-
If the
ConfigAttribute
can be represented as a
String
and
that
String
is sufficient in precision to be relied upon as a
configuration parameter by a
RunAsManager
,
AccessDecisionManager
or
AccessDecisionManager
delegate, this method should return such a
String
.
- getAttribute() - Method in class org.springframework.security.access.SecurityConfig
-
- getAttributes() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
-
- getAttributes(Method, Class<?>) - Method in class org.springframework.security.access.method.AbstractFallbackMethodSecurityMetadataSource
-
- getAttributes(Object) - Method in class org.springframework.security.access.method.AbstractMethodSecurityMetadataSource
-
- getAttributes(Method, Class<?>) - Method in class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
-
- getAttributes(Method, Class<?>) - Method in interface org.springframework.security.access.method.MethodSecurityMetadataSource
-
- getAttributes(Method, Class<?>) - Method in class org.springframework.security.access.prepost.PrePostAnnotationSecurityMetadataSource
-
- getAttributes(Object) - Method in interface org.springframework.security.access.SecurityMetadataSource
-
Accesses the ConfigAttribute
s that apply to a given secure object.
- getAttributes() - Method in class org.springframework.security.ldap.userdetails.LdapAuthority
-
Returns the LDAP attributes
- getAttributes(Object) - Method in class org.springframework.security.messaging.access.intercept.DefaultMessageSecurityMetadataSource
-
- getAttributes() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
-
- getAttributes(Object) - Method in class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
-
- getAttributes2grantedAuthoritiesMap() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
-
- getAttributeValues(String) - Method in class org.springframework.security.ldap.userdetails.LdapAuthority
-
Returns the values for a specific attribute
- getAuthenticatedEnv(String, String) - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyAwareContextSource
-
- getAuthentication() - Method in class org.springframework.security.access.event.AuthorizationFailureEvent
-
- getAuthentication() - Method in class org.springframework.security.access.event.AuthorizedEvent
-
- getAuthentication() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
-
- getAuthentication() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- getAuthentication() - Method in class org.springframework.security.authentication.event.AbstractAuthenticationEvent
-
Getters for the Authentication
request that caused the event.
- getAuthentication() - Method in class org.springframework.security.authentication.jaas.event.JaasAuthenticationEvent
-
Pre-casted method that returns the 'source' of the event.
- getAuthentication() - Method in interface org.springframework.security.core.context.SecurityContext
-
Obtains the currently authenticated principal, or an authentication request token.
- getAuthentication() - Method in class org.springframework.security.core.context.SecurityContextImpl
-
- getAuthenticationDetailsSource() - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
- getAuthenticationDetailsSource() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- getAuthenticationEntryPoint() - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- getAuthenticationEntryPoint() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- getAuthenticationEntryPoint() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- getAuthenticationFilter() - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Gets the Authentication Filter
- getAuthenticationManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- getAuthenticationManager() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
-
- getAuthenticationManager() - Method in class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- getAuthenticationManager() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- getAuthenticationManager() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- getAuthenticationTrustResolver() - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- getAuthorities() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
-
- getAuthorities() - Method in interface org.springframework.security.core.Authentication
-
Set by an AuthenticationManager
to indicate the authorities that the
principal has been granted.
- getAuthorities() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
- getAuthorities() - Method in class org.springframework.security.core.userdetails.User
-
- getAuthorities() - Method in interface org.springframework.security.core.userdetails.UserDetails
-
Returns the authorities granted to the user.
- getAuthorities() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- getAuthorities() - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
- getAuthoritiesByUsernameQuery() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- getAuthoritiesMapper() - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
- getAuthoritiesPopulator() - Method in class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
-
- getAuthority() - Method in class org.springframework.security.authentication.jaas.JaasGrantedAuthority
-
- getAuthority() - Method in class org.springframework.security.core.authority.SimpleGrantedAuthority
-
- getAuthority() - Method in interface org.springframework.security.core.GrantedAuthority
-
If the
GrantedAuthority
can be represented as a
String
and that
String
is sufficient in precision to be relied upon for an
access control decision by an
AccessDecisionManager
(or delegate), this
method should return such a
String
.
- getAuthority() - Method in class org.springframework.security.ldap.userdetails.LdapAuthority
-
If the
GrantedAuthority
can be represented as a
String
and that
String
is sufficient in precision to be relied upon for an
access control decision by an
AccessDecisionManager
(or delegate), this
method should return such a
String
.
- getAuthority() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
-
- getBeanClassName(Element) - Method in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
-
- getBeanClassName(Element) - Method in class org.springframework.security.config.authentication.JdbcUserServiceBeanDefinitionParser
-
- getBeanClassName(Element) - Method in class org.springframework.security.config.authentication.UserServiceBeanDefinitionParser
-
- getBeanClassName(Element) - Method in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- getBuilder() - Method in class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
- getByTicketId(String) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
-
- getByTicketId(String) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
-
- getByTicketId(String) - Method in class org.springframework.security.cas.authentication.SpringCacheBasedTicketCache
-
- getByTicketId(String) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
-
Retrieves the CasAuthenticationToken
associated with the specified
ticket.
- getCache() - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
-
- getCache() - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
-
- getCarLicense() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getChain() - Method in class org.springframework.security.web.FilterInvocation
-
- getChannelDecisionManager() - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
-
- getChannelProcessors() - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
-
- getCn() - Method in class org.springframework.security.ldap.userdetails.Person
-
- getComment() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getConfigAttributes() - Method in class org.springframework.security.access.event.AuthenticationCredentialsNotFoundEvent
-
- getConfigAttributes() - Method in class org.springframework.security.access.event.AuthorizationFailureEvent
-
- getConfigAttributes() - Method in class org.springframework.security.access.event.AuthorizedEvent
-
- getConfiguration() - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
-
- getConfigurer(Class<C>) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- getConfigurer(Class<C>) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
- getConfigurers(Class<C>) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
Gets all the
SecurityConfigurer
instances by its class name or an empty
List if not found.
- getContext() - Static method in class org.springframework.security.core.context.SecurityContextHolder
-
Obtain the current SecurityContext
.
- getContext() - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
-
Obtains the current context.
- getContext(String, String) - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyAwareContextSource
-
- getContext(PageContext) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
-
Allows test cases to override where application context obtained from.
- getContext() - Static method in class org.springframework.security.test.context.TestSecurityContextHolder
-
- getContextHolderStrategy() - Static method in class org.springframework.security.core.context.SecurityContextHolder
-
Allows retrieval of the context strategy.
- getContextPath() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getContextSource() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
- getContextSource() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
- getControlInstance(Control) - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControlFactory
-
Creates an instance of PasswordPolicyResponseControl if the passed control is a
response control of this type.
- getCookie() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getCookieName() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- getCookies() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getCookies() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getCount() - Method in class org.springframework.security.openid.OpenIDAttribute
-
The requested count for the attribute when it is used as part of an authentication
request.
- getCredentials() - Method in class org.springframework.security.access.intercept.RunAsUserToken
-
- getCredentials() - Method in class org.springframework.security.authentication.AnonymousAuthenticationToken
-
Always returns an empty String
- getCredentials() - Method in class org.springframework.security.authentication.RememberMeAuthenticationToken
-
Always returns an empty String
- getCredentials() - Method in class org.springframework.security.authentication.TestingAuthenticationToken
-
- getCredentials() - Method in class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
-
- getCredentials() - Method in class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
-
- getCredentials() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
-
- getCredentials() - Method in interface org.springframework.security.core.Authentication
-
The credentials that prove the principal is correct.
- getCredentials() - Method in class org.springframework.security.ldap.authentication.SpringSecurityAuthenticationSource
-
- getCredentials() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
-
Returns 'null' always, as no credentials are processed by the OpenID provider.
- getCredentials() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
-
Get the credentials
- getCredentialsCharset(HttpServletRequest) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- getCredentialsNotFoundException() - Method in class org.springframework.security.access.event.AuthenticationCredentialsNotFoundEvent
-
- getCsrfTokenRepository(HttpServletRequest) - Static method in class org.springframework.security.test.web.support.WebTestUtils
-
- getCtx() - Method in interface org.springframework.security.remoting.dns.InitialContextFactory
-
Must return a DirContext which can be used for DNS queries
- getCurrentDate() - Static method in class org.springframework.security.web.savedrequest.FastHttpDateFormat
-
Gets the current date in HTTP format.
- getDatabasePopulator() - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.JdbcUserDetailsManagerConfigurer
-
- getDataCode() - Method in exception org.springframework.security.ldap.authentication.ad.ActiveDirectoryAuthenticationException
-
- getDate() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
-
- getDecisionVoters() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- getDefaultMessage() - Method in enum org.springframework.security.ldap.ppolicy.PasswordPolicyErrorStatus
-
- getDefaultTargetUrl() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
Supplies the default target Url that will be used if no saved request is found or
the alwaysUseDefaultTargetUrl
property is set to true.
- getDefaultUserDetailsService() - Method in class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
- getDelegateExecutor() - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutor
-
- getDepartmentNumber() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getDescription() - Method in class org.springframework.security.ldap.userdetails.Person
-
- getDescription() - Method in class org.springframework.security.util.InMemoryResource
-
- getDestinationIndicator() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getDetails() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
-
- getDetails() - Method in interface org.springframework.security.core.Authentication
-
Stores additional details about the authentication request.
- getDispatcherWebApplicationContextSuffix() - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
- getDisplayName() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getDn() - Method in class org.springframework.security.ldap.userdetails.LdapAuthority
-
Returns the DN for this LDAP authority
- getDn() - Method in interface org.springframework.security.ldap.userdetails.LdapUserDetails
-
The DN of the entry for this user's account.
- getDn() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- getDomain() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getDomainObject() - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
-
- getDomainObjectInstance(MethodInvocation) - Method in class org.springframework.security.access.vote.AbstractAclVoter
-
- getEmployeeNumber() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getEnableAuthorities() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- getEnableGroups() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- getEncodedValue() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
-
Retrieves the ASN.1 BER encoded value of the LDAP control.
- getEncodedValue() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
Returns the unchanged value of the response control.
- getEncodeHashAsBase64() - Method in class org.springframework.security.authentication.encoding.BaseDigestPasswordEncoder
-
- getEncodeServiceUrlWithSessionId() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
Sets whether to encode the service url with the session id or not.
- getEntries() - Method in class org.springframework.security.acls.domain.AclImpl
-
- getEntries() - Method in interface org.springframework.security.acls.model.Acl
-
Returns all of the entries represented by the present Acl.
- getEntryPoint() - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- getEntryPoint() - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- getErrorCode() - Method in enum org.springframework.security.ldap.ppolicy.PasswordPolicyErrorStatus
-
- getErrorStatus() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
- getException() - Method in class org.springframework.security.authentication.event.AbstractAuthenticationFailureEvent
-
- getException() - Method in class org.springframework.security.authentication.jaas.event.JaasAuthenticationFailedEvent
-
- getExpressionHandler() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- getExpressionHandler() - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
- getExpressionParser() - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- getExpressionParser() - Method in interface org.springframework.security.access.expression.SecurityExpressionHandler
-
- getExtendedInformation() - Method in class org.springframework.security.core.token.DefaultToken
-
- getExtendedInformation() - Method in interface org.springframework.security.core.token.Token
-
Obtains the extended information associated within the token, which was presented
when the token was first created.
- getExtensionId() - Method in class org.springframework.security.data.repository.query.SecurityEvaluationContextExtension
-
- getExtraHiddenFields(HttpServletRequest) - Method in class org.springframework.security.web.servlet.support.csrf.CsrfRequestDataValueProcessor
-
- getFailureHandler() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- getFailureUrl() - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Gets the URL to send users to if authentication fails
- getField(Class<?>, String) - Static method in class org.springframework.security.util.FieldUtils
-
Attempts to locate the specified field on the class.
- getFieldValue(Object, String) - Static method in class org.springframework.security.util.FieldUtils
-
Returns the value of a (nested) field on a bean.
- getFilterChains() - Method in class org.springframework.security.web.FilterChainProxy
-
- getFilterObject() - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
-
- getFilters() - Method in class org.springframework.security.web.DefaultSecurityFilterChain
-
- getFilters(String) - Method in class org.springframework.security.web.FilterChainProxy
-
Convenience method, mainly for testing.
- getFilters() - Method in interface org.springframework.security.web.SecurityFilterChain
-
- getFirewalledRequest(HttpServletRequest) - Method in class org.springframework.security.web.firewall.DefaultHttpFirewall
-
- getFirewalledRequest(HttpServletRequest) - Method in interface org.springframework.security.web.firewall.HttpFirewall
-
Provides the request object which will be passed through the filter chain.
- getFirewalledResponse(HttpServletResponse) - Method in class org.springframework.security.web.firewall.DefaultHttpFirewall
-
- getFirewalledResponse(HttpServletResponse) - Method in interface org.springframework.security.web.firewall.HttpFirewall
-
Provides the response which will be passed through the filter chain.
- getFirstAttributeValue(String) - Method in class org.springframework.security.ldap.userdetails.LdapAuthority
-
Returns the first attribute value for a specified attribute
- getFirstThrowableOfType(Class<? extends Throwable>, Throwable[]) - Method in class org.springframework.security.web.util.ThrowableAnalyzer
-
Returns the first throwable from the passed in array that is assignable to the
provided type.
- getFromCache(ObjectIdentity) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
-
- getFromCache(Serializable) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
-
- getFromCache(ObjectIdentity) - Method in class org.springframework.security.acls.domain.SpringCacheBasedAclCache
-
- getFromCache(Serializable) - Method in class org.springframework.security.acls.domain.SpringCacheBasedAclCache
-
- getFromCache(ObjectIdentity) - Method in interface org.springframework.security.acls.model.AclCache
-
- getFromCache(Serializable) - Method in interface org.springframework.security.acls.model.AclCache
-
- getFullDn(DistinguishedName, Context) - Static method in class org.springframework.security.ldap.LdapUtils
-
Gets the full dn of a name by prepending the name of the context it is relative to.
- getFullRequestUrl() - Method in class org.springframework.security.web.FilterInvocation
-
Indicates the URL that the user agent used for this request.
- getGeneratedBy() - Method in class org.springframework.security.authentication.event.InteractiveAuthenticationSuccessEvent
-
Getter for the Class
that generated this event.
- getGivenName() - Method in class org.springframework.security.ldap.userdetails.Person
-
- getGraceLoginsRemaining() - Method in interface org.springframework.security.ldap.ppolicy.PasswordPolicyData
-
- getGraceLoginsRemaining() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
Returns the graceLoginsRemaining.
- getGraceLoginsRemaining() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- getGrantedAuthorities() - Method in interface org.springframework.security.core.authority.GrantedAuthoritiesContainer
-
- getGrantedAuthorities(Collection<String>) - Method in interface org.springframework.security.core.authority.mapping.Attributes2GrantedAuthoritiesMapper
-
Implementations of this method should map the given collection of attributes to a
collection of Spring Security GrantedAuthorities.
- getGrantedAuthorities(Collection<String>) - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
-
Map the given array of attributes to Spring Security GrantedAuthorities.
- getGrantedAuthorities(Collection<String>) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
-
Map the given list of string attributes one-to-one to Spring Security
GrantedAuthorities.
- getGrantedAuthorities(DirContextOperations, String) - Method in class org.springframework.security.ldap.authentication.NullLdapAuthoritiesPopulator
-
- getGrantedAuthorities(DirContextOperations, String) - Method in class org.springframework.security.ldap.authentication.UserDetailsServiceLdapAuthoritiesPopulator
-
- getGrantedAuthorities(DirContextOperations, String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Obtains the authorities for the user who's directory entry is represented by the
supplied LdapUserDetails object.
- getGrantedAuthorities(DirContextOperations, String) - Method in interface org.springframework.security.ldap.userdetails.LdapAuthoritiesPopulator
-
Get the list of authorities for the user.
- getGrantedAuthorities() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- getGrantedAuthorities() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails
-
- getGrantedAuthority() - Method in class org.springframework.security.acls.domain.GrantedAuthoritySid
-
- getGroupMembershipRoles(String, String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
- getGroupMembershipRoles(String, String) - Method in class org.springframework.security.ldap.userdetails.NestedLdapAuthoritiesPopulator
- getGroupRoleAttribute() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Returns the attribute name of the LDAP attribute that will be mapped to the role
name Method available so that classes extending this can override
- getGroupSearchBase() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
- getGroupSearchFilter() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Returns the search filter configured for this populator Method available so that
classes extending this can override
- getHasPermission() - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
-
- getHeaderName() - Method in interface org.springframework.security.web.csrf.CsrfToken
-
Gets the HTTP header that the CSRF is populated on the response and can be placed
on requests instead of the parameter.
- getHeaderName() - Method in class org.springframework.security.web.csrf.DefaultCsrfToken
-
- getHeaderNames() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getHeaderNames() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getHeaderValues(String) - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getHeaderValues(String) - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getHomePhone() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getHomePostalAddress() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getHttp() - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- getHttpRequest() - Method in class org.springframework.security.web.FilterInvocation
-
- getHttpResponse() - Method in class org.springframework.security.web.FilterInvocation
-
- getId() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- getId() - Method in class org.springframework.security.acls.domain.AclImpl
-
- getId() - Method in interface org.springframework.security.acls.model.AccessControlEntry
-
Obtains an identifier that represents this ACE.
- getId() - Method in interface org.springframework.security.acls.model.MutableAcl
-
Obtains an identifier that represents this MutableAcl.
- getId() - Method in class org.springframework.security.core.session.SessionDestroyedEvent
-
- getID() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
-
Returns the OID of the Password Policy Control ("1.3.6.1.4.1.42.2.27.8.5.1").
- getId() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- getId() - Method in class org.springframework.security.web.session.HttpSessionDestroyedEvent
-
- getIdentifier() - Method in class org.springframework.security.acls.domain.ObjectIdentityImpl
-
- getIdentifier() - Method in interface org.springframework.security.acls.model.ObjectIdentity
-
Obtains the actual identifier.
- getIdentityUrl() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
-
- getInitializeCount() - Static method in class org.springframework.security.core.context.SecurityContextHolder
-
Primarily for troubleshooting purposes, this method shows how many times the class
has re-initialized its SecurityContextHolderStrategy
.
- getInitials() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getInputStream() - Method in class org.springframework.security.util.InMemoryResource
-
- getInsecureKeyword() - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- getInstance() - Static method in class org.springframework.security.crypto.password.NoOpPasswordEncoder
-
- getInternalMethod() - Method in class org.springframework.security.acls.AclEntryVoter
-
Optionally specifies a method of the domain object that will be used to obtain a
contained domain object.
- getKey() - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
-
- getKey() - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
-
- getKey() - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
-
- getKey() - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
-
- getKey() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- getKey() - Method in class org.springframework.security.core.token.DefaultToken
-
- getKey() - Method in interface org.springframework.security.core.token.Token
-
Obtains the randomised, secure key assigned to this token.
- getKey() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- getKey() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- getKeyCreationTime() - Method in class org.springframework.security.core.token.DefaultToken
-
- getKeyCreationTime() - Method in interface org.springframework.security.core.token.Token
-
The time the token key was initially created is available from this method.
- getKeyHash() - Method in class org.springframework.security.access.intercept.RunAsUserToken
-
- getKeyHash() - Method in class org.springframework.security.authentication.AnonymousAuthenticationToken
-
- getKeyHash() - Method in class org.springframework.security.authentication.RememberMeAuthenticationToken
-
- getKeyHash() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
-
- getKeyLength() - Method in interface org.springframework.security.crypto.keygen.BytesKeyGenerator
-
Get the length, in bytes, of keys created by this generator.
- getLastRequest() - Method in class org.springframework.security.core.session.SessionInformation
-
- getLdapTemplate() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Returns the current LDAP template.
- getLocales() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getLocales() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getLoginConfig() - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
-
- getLoginContext() - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationToken
-
- getLoginFormUrl() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- getLoginPage() - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Gets the login page
- getLoginPageUrl() - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- getLoginProcessingUrl() - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Gets the URL to submit an authentication request to (i.e.
- getLoginUrl() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
The enterprise-wide CAS login URL.
- getMail() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getMappableAttributes() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
-
- getMappableAttributes() - Method in interface org.springframework.security.core.authority.mapping.MappableAttributesRetriever
-
Implementations of this method should return a set of all string attributes which
can be mapped to GrantedAuthoritys.
- getMappableAttributes() - Method in class org.springframework.security.core.authority.mapping.SimpleMappableAttributesRetriever
-
- getMappableAttributes() - Method in class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
-
- getMappedPort(Integer) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- getMappedPort(Integer) - Method in class org.springframework.security.web.access.channel.RetryWithHttpEntryPoint
-
- getMappedPort(Integer) - Method in class org.springframework.security.web.access.channel.RetryWithHttpsEntryPoint
-
- getMask() - Method in class org.springframework.security.acls.domain.AbstractPermission
-
- getMask() - Method in interface org.springframework.security.acls.model.Permission
-
Returns the bits that represents the permission.
- getMatchers() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
-
- getMatchers() - Method in class org.springframework.security.config.annotation.web.configurers.UrlAuthorizationConfigurer.AuthorizedUrl
-
- getMatchingRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
-
- getMatchingRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
-
- getMatchingRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
-
Returns a wrapper around the saved request, if it matches the current request.
- getMaxAge() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getMaximumSessionsForThisUser(Authentication) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy
-
Method intended for use by subclasses to override the maximum number of sessions
that are permitted for a particular authentication.
- getMessage() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
-
- getMessageDigest() - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
-
Get a MessageDigest instance for the given algorithm.
- getMessageTypeMatcher() - Method in class org.springframework.security.messaging.util.matcher.SimpDestinationMessageMatcher
-
- getMethod() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
-
- getMethod() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
- getMethod() - Method in class org.springframework.security.util.SimpleMethodInvocation
-
- getMethod() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getMethod() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getMethodMapSize() - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
-
- getMethodSecurityMetadataSources() - Method in class org.springframework.security.access.method.DelegatingMethodSecurityMetadataSource
-
- getMobile() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getName() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
-
- getName() - Method in class org.springframework.security.openid.OpenIDAttribute
-
The attribute name
- getName() - Method in class org.springframework.security.web.header.Header
-
Gets the name of the header.
- getName() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getNewSessionId() - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionEvent
-
Getter for the session ID after it was changed.
- getNonceValiditySeconds() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- getO() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getObject() - Method in class org.springframework.security.config.annotation.AbstractSecurityBuilder
-
Gets the object that was built.
- getObject() - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
-
- getObject() - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
-
- getObjectIdentity() - Method in class org.springframework.security.acls.domain.AclImpl
-
- getObjectIdentity(Object) - Method in class org.springframework.security.acls.domain.ObjectIdentityRetrievalStrategyImpl
-
- getObjectIdentity() - Method in interface org.springframework.security.acls.model.Acl
-
Obtains the domain object this Acl provides entries for.
- getObjectIdentity(Object) - Method in interface org.springframework.security.acls.model.ObjectIdentityRetrievalStrategy
-
- getObjectType() - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
-
- getObjectType() - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
-
- getOldSessionId() - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionEvent
-
Getter for the session ID before it was changed.
- getOrBuild() - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- getOrder() - Method in class org.springframework.security.test.context.support.WithSecurityContextTestExecutionListener
-
Returns 10000
.
- getOrder() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
- getOrder() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- getOriginalAuthentication() - Method in class org.springframework.security.access.intercept.RunAsUserToken
-
- getOu() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getOutputStream() - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- getOwner() - Method in class org.springframework.security.acls.domain.AclImpl
-
- getOwner() - Method in interface org.springframework.security.acls.model.Acl
-
Determines the owner of the Acl.
- getParameter() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- getParameterMap() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getParameterMap() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getParameterName() - Method in interface org.springframework.security.web.csrf.CsrfToken
-
Gets the HTTP parameter name that should contain the token.
- getParameterName() - Method in class org.springframework.security.web.csrf.DefaultCsrfToken
-
- getParameterNames(Method) - Method in class org.springframework.security.core.parameters.AnnotationParameterNameDiscoverer
-
- getParameterNames(Constructor<?>) - Method in class org.springframework.security.core.parameters.AnnotationParameterNameDiscoverer
-
- getParameterNames() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getParameterValues(String) - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getParameterValues(String) - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getParent() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- getParentAcl() - Method in class org.springframework.security.acls.domain.AclImpl
-
- getParentAcl() - Method in interface org.springframework.security.acls.model.Acl
-
A domain object may have a parent for the purpose of ACL inheritance.
- getPassword() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
- getPassword() - Method in class org.springframework.security.core.userdetails.User
-
- getPassword() - Method in interface org.springframework.security.core.userdetails.UserDetails
-
Returns the password used to authenticate the user.
- getPassword() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- getPasswordEncoder() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- getPasswordEncoder() - Method in class org.springframework.security.config.authentication.PasswordEncoderParser
-
- getPasswordParameter() - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
- getPath() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getPathInfo() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getPattern() - Method in class org.springframework.security.acls.domain.AbstractPermission
-
- getPattern() - Method in class org.springframework.security.acls.domain.CumulativePermission
-
- getPattern() - Method in interface org.springframework.security.acls.model.Permission
-
Returns a 32-character long bit pattern String
representing this
permission.
- getPattern() - Method in class org.springframework.security.web.util.matcher.AntPathRequestMatcher
-
- getPermission() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- getPermission() - Method in interface org.springframework.security.acls.model.AccessControlEntry
-
- getPermissionEvaluator() - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- getPointcut() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityMetadataSourceAdvisor
-
- getPortMapper() - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- getPortMapper() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- getPortMapper() - Method in class org.springframework.security.web.PortResolverImpl
-
- getPortResolver() - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- getPortResolver() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- getPostalAddress() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getPostalCode() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getPostAuthenticationChecks() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Override to extract the credentials (if applicable) from the current request.
- getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eePreAuthenticatedProcessingFilter
-
For J2EE container-based authentication there is no generic way to retrieve the
credentials, as such this method returns a fixed dummy value.
- getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
-
Credentials aren't usually applicable, but if a credentialsRequestHeader
is
set, this will be read and used as the credentials value.
- getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedProcessingFilter
-
For J2EE container-based authentication there is no generic way to retrieve the
credentials, as such this method returns a fixed dummy value.
- getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.x509.X509AuthenticationFilter
-
- getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Override to extract the principal information from the current request
- getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eePreAuthenticatedProcessingFilter
-
Return the J2EE user name.
- getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
-
Read and returns the header named by principalRequestHeader
from the
request.
- getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedProcessingFilter
-
Return the WebSphere user name.
- getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.x509.X509AuthenticationFilter
-
- getPreAuthenticationChecks() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- getPrincipal() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- getPrincipal() - Method in class org.springframework.security.access.intercept.RunAsUserToken
-
- getPrincipal() - Method in class org.springframework.security.acls.domain.PrincipalSid
-
- getPrincipal() - Method in class org.springframework.security.authentication.AnonymousAuthenticationToken
-
- getPrincipal() - Method in class org.springframework.security.authentication.jaas.JaasGrantedAuthority
-
- getPrincipal() - Method in class org.springframework.security.authentication.RememberMeAuthenticationToken
-
- getPrincipal() - Method in class org.springframework.security.authentication.TestingAuthenticationToken
-
- getPrincipal() - Method in class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
-
- getPrincipal() - Method in class org.springframework.security.cas.authentication.CasAssertionAuthenticationToken
-
- getPrincipal() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
-
- getPrincipal() - Method in interface org.springframework.security.core.Authentication
-
The identity of the principal being authenticated.
- getPrincipal() - Method in class org.springframework.security.core.session.SessionInformation
-
- getPrincipal() - Method in class org.springframework.security.ldap.authentication.SpringSecurityAuthenticationSource
-
Get the principals of the logged in user, in this case the distinguished name.
- getPrincipal() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
-
Returns the principal value.
- getPrincipal() - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
- getPrincipal() - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
-
Get the principal
- getPrivilegeEvaluator() - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
- getProcessConfigAttribute() - Method in class org.springframework.security.acls.AclEntryVoter
-
- getProcessDomainObjectClass() - Method in class org.springframework.security.access.vote.AbstractAclVoter
-
- getProcessDomainObjectClass() - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- getProtectedFieldValue(String, Object) - Static method in class org.springframework.security.util.FieldUtils
-
- getProviders() - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
-
- getProviders() - Method in class org.springframework.security.authentication.ProviderManager
-
- getQueryString() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getReachableGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.access.hierarchicalroles.NullRoleHierarchy
-
- getReachableGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in interface org.springframework.security.access.hierarchicalroles.RoleHierarchy
-
Returns an array of all reachable authorities.
- getReachableGrantedAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl
-
- getRealmName() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
-
- getRealmName() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- getRedirectStrategy() - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- getRedirectStrategy() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
- getRedirectStrategy() - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
- getRedirectUrl() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
Indicates the URL that the user agent used for this request.
- getRedirectUrl() - Method in interface org.springframework.security.web.savedrequest.SavedRequest
-
- getRegistry() - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer
-
- getRegistry() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer
-
- getRegistry() - Method in class org.springframework.security.config.annotation.web.configurers.UrlAuthorizationConfigurer
-
- getRelativeName(String, Context) - Static method in class org.springframework.security.ldap.LdapUtils
-
Obtains the part of a DN relative to a supplied base context.
- getRememberMeServices() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- getRememberMeServices() - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
- getRemoteAddress() - Method in class org.springframework.security.web.authentication.WebAuthenticationDetails
-
Indicates the TCP/IP address the authentication request was received from.
- getRemoteAuthenticationManager() - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
-
- getRemoteUser() - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
-
Returns the principal's name, as obtained from the
SecurityContextHolder
.
- getRequest() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
This method allows subclasses to provide a way to access the ServletRequest
according to the rendering technology.
- getRequest() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- getRequest() - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
-
- getRequest() - Method in class org.springframework.security.web.FilterInvocation
-
- getRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
-
- getRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
-
- getRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
-
Returns the saved request, leaving it cached.
- getRequestMatcher() - Method in class org.springframework.security.web.DefaultSecurityFilterChain
-
- getRequestURI() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getRequestUrl() - Method in class org.springframework.security.web.FilterInvocation
-
Obtains the web application-specific fragment of the URL.
- getRequestURL() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getResponse() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
This method allows subclasses to provide a way to access the ServletResponse
according to the rendering technology.
- getResponse() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- getResponse() - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
-
- getResponse() - Method in class org.springframework.security.web.FilterInvocation
-
- getReturnObject() - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
-
- getRoleHierarchy() - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- getRolePrefix() - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
-
- getRolePrefix() - Method in class org.springframework.security.access.vote.RoleVoter
-
- getRolePrefix() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- getRolePrefix() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Returns the role prefix used by this populator Method available so that classes
extending this can override
- getRoomNumber() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getRootObject() - Method in class org.springframework.security.data.repository.query.SecurityEvaluationContextExtension
-
- getRunAsManager() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- getSalt(UserDetails) - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
-
Performs reflection on the passed User
to obtain the salt.
- getSalt(UserDetails) - Method in interface org.springframework.security.authentication.dao.SaltSource
-
Returns the salt to use for the indicated user.
- getSalt(UserDetails) - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
-
- getSaltSource() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- getSaltSource() - Method in class org.springframework.security.config.authentication.PasswordEncoderParser
-
- getScheme() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getSecuredUiPrefix() - Static method in class org.springframework.security.taglibs.TagLibConfig
-
- getSecuredUiSuffix() - Static method in class org.springframework.security.taglibs.TagLibConfig
-
- getSecureKeyword() - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- getSecureObject() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
-
- getSecureObjectClass() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
Indicates the type of secure objects the subclass will be presenting to the
abstract parent for processing.
- getSecureObjectClass() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
-
- getSecureObjectClass() - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- getSecureObjectClass() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
- getSecurityContext() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
-
- getSecurityContextRepository(HttpServletRequest) - Static method in class org.springframework.security.test.web.support.WebTestUtils
-
- getSecurityContexts() - Method in class org.springframework.security.core.session.SessionDestroyedEvent
-
Provides the SecurityContext
instances which were associated with the
destroyed session.
- getSecurityContexts() - Method in class org.springframework.security.web.session.HttpSessionDestroyedEvent
-
- getSecurityDispatcherTypes() - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
Get the DispatcherType
for the springSecurityFilterChain.
- getSecurityMetadataSource() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
-
- getSecurityMetadataSource() - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
-
- getSecurityMetadataSource() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
- getSeries() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
-
- getServerName() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getServerPort(ServletRequest) - Method in interface org.springframework.security.web.PortResolver
-
Indicates the port the ServletRequest
was received on.
- getServerPort(ServletRequest) - Method in class org.springframework.security.web.PortResolverImpl
-
- getServerPort() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getService() - Method in class org.springframework.security.cas.ServiceProperties
-
Represents the service the user is authenticating to.
- getService() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- getServiceParameter() - Method in class org.springframework.security.cas.ServiceProperties
-
Configures the Request parameter to look for when attempting to send a request to
CAS.
- getServiceProperties() - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
- getServiceUrl() - Method in interface org.springframework.security.cas.web.authentication.ServiceAuthenticationDetails
-
Gets the absolute service url (i.e.
- getServletContext() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
This method allows subclasses to provide a way to access the ServletContext
according to the rendering technology.
- getServletContext() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- getServletPath() - Method in class org.springframework.security.web.savedrequest.DefaultSavedRequest
-
- getServletPath() - Method in class org.springframework.security.web.servlet.util.matcher.MvcRequestMatcher
-
- getSession() - Method in class org.springframework.security.web.session.HttpSessionCreatedEvent
-
- getSession() - Method in class org.springframework.security.web.session.HttpSessionDestroyedEvent
-
- getSessionId() - Method in class org.springframework.security.core.session.SessionInformation
-
- getSessionId() - Method in class org.springframework.security.web.authentication.WebAuthenticationDetails
-
Indicates the HttpSession
id the authentication request was received
from.
- getSessionInformation(String) - Method in interface org.springframework.security.core.session.SessionRegistry
-
Obtains the session information for the specified sessionId
.
- getSessionInformation(String) - Method in class org.springframework.security.core.session.SessionRegistryImpl
-
- getSessionTrackingModes() - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
Determines how a session should be tracked.
- getSharedObject(Class<C>) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
Gets a shared Object.
- getSharedObject(Class<C>) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
Gets a shared Object.
- getSharedObjects() - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
Gets the shared objects
- getSid() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- getSid() - Method in interface org.springframework.security.acls.model.AccessControlEntry
-
- getSids(Authentication) - Method in class org.springframework.security.acls.domain.SidRetrievalStrategyImpl
-
- getSids(Authentication) - Method in interface org.springframework.security.acls.model.SidRetrievalStrategy
-
- getSn() - Method in class org.springframework.security.ldap.userdetails.Person
-
- getSource(Element, ParserContext) - Method in class org.springframework.security.config.http.CorsBeanDefinitionParser
-
- getSource() - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
-
Returns the original user associated with a successful user switch.
- getStatelessTicketCache() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- getStaticPart() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
-
- getStaticPart() - Method in class org.springframework.security.util.SimpleMethodInvocation
-
- getStatus() - Method in exception org.springframework.security.ldap.ppolicy.PasswordPolicyException
-
- getStatus() - Method in class org.springframework.security.openid.OpenIDAuthenticationToken
-
- getStreet() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getStringSeparator() - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
-
- getSuccessHandler() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- getSystemWideSalt() - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
-
- getTargetUrlParameter() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
- getTargetUser() - Method in class org.springframework.security.web.authentication.switchuser.AuthenticationSwitchUserEvent
-
- getTelephoneNumber() - Method in class org.springframework.security.ldap.userdetails.Person
-
- getThis() - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
-
- getThis() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
-
- getThis() - Method in class org.springframework.security.util.SimpleMethodInvocation
-
- getTicketValidator() - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- getTimeBeforeExpiration() - Method in interface org.springframework.security.ldap.ppolicy.PasswordPolicyData
-
- getTimeBeforeExpiration() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
Returns the timeBeforeExpiration.
- getTimeBeforeExpiration() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- getTitle() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getToken() - Method in interface org.springframework.security.web.csrf.CsrfToken
-
Gets the token value.
- getToken() - Method in class org.springframework.security.web.csrf.DefaultCsrfToken
-
- getTokenForSeries(String) - Method in class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
-
- getTokenForSeries(String) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
Loads the token data for the supplied series identifier.
- getTokenForSeries(String) - Method in interface org.springframework.security.web.authentication.rememberme.PersistentTokenRepository
-
- getTokenValiditySeconds() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- getTokenValue() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
-
- getTranslatedPortMappings() - Method in class org.springframework.security.web.PortMapperImpl
-
Returns the translated (Integer -> Integer) version of the original port mapping
specified via setHttpsPortMapping()
- getType() - Method in class org.springframework.security.acls.domain.ObjectIdentityImpl
-
- getType() - Method in interface org.springframework.security.acls.model.ObjectIdentity
-
Obtains the "type" metadata for the domain object.
- getType() - Method in class org.springframework.security.openid.OpenIDAttribute
-
The attribute type Identifier (a URI).
- getUid() - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- getUrl() - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
- getUrl() - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- getUserAttributes() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
- getUserCache() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- getUserCache() - Method in class org.springframework.security.config.authentication.CachingUserDetailsService
-
- getUserCache() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- getUserDetails() - Method in class org.springframework.security.cas.authentication.CasAuthenticationToken
-
- getUserDetailsContextMapper() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
Provides access to the injected UserDetailsContextMapper
strategy for use
by subclasses.
- getUserDetailsService() - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- getUserDetailsService() - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.JdbcUserDetailsManagerConfigurer
-
- getUserDetailsService() - Method in class org.springframework.security.config.annotation.authentication.configurers.userdetails.UserDetailsAwareConfigurer
-
- getUserDetailsService() - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- getUserDetailsService() - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- getUserDns(String) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
Builds list of possible DNs for the user, worked out from the
userDnPatterns property.
- getUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
-
- getUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.NullUserCache
-
- getUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.SpringCacheBasedUserCache
-
- getUserFromCache(String) - Method in interface org.springframework.security.core.userdetails.UserCache
-
- getUsername() - Method in class org.springframework.security.core.userdetails.User
-
- getUsername() - Method in interface org.springframework.security.core.userdetails.UserDetails
-
Returns the username used to authenticate the user.
- getUsername() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- getUsername() - Method in class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
-
- getUsernameParameter() - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
- getUserPrincipal() - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
-
Returns the Authentication
(which is a subclass of
Principal
), or null
if unavailable.
- getUserPropertyToUse() - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
-
- getUserRoles(HttpServletRequest) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
-
Obtains the list of user roles based on the current user's JEE roles.
- getUsersByUsernameQuery() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- getUserSearch() - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
- getValue() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getValues() - Method in class org.springframework.security.openid.OpenIDAttribute
-
The values obtained from an attribute exchange.
- getValues() - Method in class org.springframework.security.web.header.Header
-
Gets the values of the header.
- getVar() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- getVersion() - Static method in class org.springframework.security.core.SpringSecurityCoreVersion
-
- getVersion() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- getWriter() - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- GLOBAL_METHOD_SECURITY - Static variable in class org.springframework.security.config.Elements
-
- GlobalAuthenticationConfigurerAdapter - Class in org.springframework.security.config.annotation.authentication.configurers
-
- GlobalAuthenticationConfigurerAdapter() - Constructor for class org.springframework.security.config.annotation.authentication.configurers.GlobalAuthenticationConfigurerAdapter
-
- GlobalMethodSecurityBeanDefinitionParser - Class in org.springframework.security.config.method
-
Processes the top-level "global-method-security" element.
- GlobalMethodSecurityBeanDefinitionParser() - Constructor for class org.springframework.security.config.method.GlobalMethodSecurityBeanDefinitionParser
-
- GlobalMethodSecurityConfiguration - Class in org.springframework.security.config.annotation.method.configuration
-
- GlobalMethodSecurityConfiguration() - Constructor for class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- gmtZone - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
-
GMT time zone - all HTTP dates are on GMT
- grant(Principal) - Method in interface org.springframework.security.authentication.jaas.AuthorityGranter
-
The grant method is called for each principal returned from the LoginContext
subject.
- GrantedAuthoritiesContainer - Interface in org.springframework.security.core.authority
-
Indicates that a object stores GrantedAuthority objects.
- GrantedAuthoritiesMapper - Interface in org.springframework.security.core.authority.mapping
-
Mapping interface which can be injected into the authentication layer to convert the
authorities loaded from storage into those which will be used in the
Authentication
object.
- GrantedAuthority - Interface in org.springframework.security.core
-
- GrantedAuthorityFromAssertionAttributesUserDetailsService - Class in org.springframework.security.cas.userdetails
-
Populates the
GrantedAuthority
s for a user by
reading a list of attributes that were returned as part of the CAS response.
- GrantedAuthorityFromAssertionAttributesUserDetailsService(String[]) - Constructor for class org.springframework.security.cas.userdetails.GrantedAuthorityFromAssertionAttributesUserDetailsService
-
- GrantedAuthoritySid - Class in org.springframework.security.acls.domain
-
Represents a GrantedAuthority
as a Sid
.
- GrantedAuthoritySid(String) - Constructor for class org.springframework.security.acls.domain.GrantedAuthoritySid
-
- GrantedAuthoritySid(GrantedAuthority) - Constructor for class org.springframework.security.acls.domain.GrantedAuthoritySid
-
- groupAuthoritiesByUsername(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.JdbcUserDetailsManagerConfigurer
-
An SQL statement to query user's group authorities given a username.
- GroupManager - Interface in org.springframework.security.provisioning
-
Allows management of groups of authorities and their members.
- groupRoleAttribute(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
Specifies the attribute name which contains the role name.
- groupSearchBase(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
The search base for group membership searches.
- groupSearchFilter(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
The LDAP filter to search for groups.
- id - Variable in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- IdentityUnavailableException - Exception in org.springframework.security.acls.domain
-
Thrown if an ACL identity could not be extracted from an object.
- IdentityUnavailableException(String) - Constructor for exception org.springframework.security.acls.domain.IdentityUnavailableException
-
Constructs an IdentityUnavailableException
with the specified message.
- IdentityUnavailableException(String, Throwable) - Constructor for exception org.springframework.security.acls.domain.IdentityUnavailableException
-
Constructs an IdentityUnavailableException
with the specified message
and root cause.
- ignoring() - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
Allows adding
RequestMatcher
instances that should that Spring Security
should ignore.
- ignoringAntMatchers(String...) - Method in class org.springframework.security.config.annotation.web.configurers.CsrfConfigurer
-
- inboundChannelSecurity() - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- inboundMessageSecurityMetadataSource() - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- includeSubDomains(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HpkpConfig
-
If true, the pinning policy applies to this pinned host as well as any subdomains
of the host's domain name.
- includeSubDomains(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HstsConfig
-
If true, subdomains should be considered HSTS Hosts too.
- INET_ORG_PERSON_MAPPER_CLASS - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- InetOrgPerson - Class in org.springframework.security.ldap.userdetails
-
UserDetails implementation whose properties are based on a subset of the LDAP schema
for inetOrgPerson.
- InetOrgPerson() - Constructor for class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- InetOrgPerson.Essence - Class in org.springframework.security.ldap.userdetails
-
- InetOrgPersonContextMapper - Class in org.springframework.security.ldap.userdetails
-
- InetOrgPersonContextMapper() - Constructor for class org.springframework.security.ldap.userdetails.InetOrgPersonContextMapper
-
- init(AuthenticationManagerBuilder) - Method in class org.springframework.security.config.annotation.authentication.configurers.GlobalAuthenticationConfigurerAdapter
-
- init(B) - Method in interface org.springframework.security.config.annotation.SecurityConfigurer
-
- init(B) - Method in class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
- init(WebSecurity) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- init(B) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.DefaultLoginPageConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.FormLoginConfigurer
-
- init(B) - Method in class org.springframework.security.config.annotation.web.configurers.HttpBasicConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.JeeConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.PortMapperConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.RequestCacheConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
- init(H) - Method in class org.springframework.security.config.annotation.web.configurers.X509Configurer
-
- init() - Method in class org.springframework.security.config.SecurityNamespaceHandler
-
- init(FilterConfig) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
Not used (we rely on IoC container lifecycle services instead)
- init(FilterConfig) - Method in class org.springframework.security.web.debug.DebugFilter
-
- initDao() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- initDao() - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- initDao() - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
- initExtractorMap() - Method in class org.springframework.security.web.util.ThrowableAnalyzer
-
Initializes associations between Throwable
s and
ThrowableCauseExtractor
s.
- InitialContextFactory - Interface in org.springframework.security.remoting.dns
-
This is used in JndiDnsResolver to get an InitialDirContext for DNS queries.
- initialize(Subject, CallbackHandler, Map, Map) - Method in class org.springframework.security.authentication.jaas.SecurityContextLoginModule
-
Initialize this LoginModule
.
- initializeAuthenticationProviderBeanManagerConfigurer(ApplicationContext) - Static method in class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- initializeUserDetailsBeanManagerConfigurer(ApplicationContext) - Static method in class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- initUserDetailsService() - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.JdbcUserDetailsManagerConfigurer
-
- initUserDetailsService() - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer
-
Populates the users that have been added.
- initUserDetailsService() - Method in class org.springframework.security.config.annotation.authentication.configurers.userdetails.UserDetailsServiceConfigurer
-
- inMemoryAuthentication() - Method in class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
- InMemoryConfiguration - Class in org.springframework.security.authentication.jaas.memory
-
An in memory representation of a JAAS configuration.
- InMemoryConfiguration(AppConfigurationEntry[]) - Constructor for class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
-
Creates a new instance with only a defaultConfiguration.
- InMemoryConfiguration(Map<String, AppConfigurationEntry[]>) - Constructor for class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
-
- InMemoryConfiguration(Map<String, AppConfigurationEntry[]>, AppConfigurationEntry[]) - Constructor for class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
-
Creates a new instance with a mapping of login context name to an array of
AppConfigurationEntry
s along with a default configuration that will be used
if no mapping is found for the given login context name.
- InMemoryResource - Class in org.springframework.security.util
-
An in memory implementation of Spring's
Resource
interface.
- InMemoryResource(String) - Constructor for class org.springframework.security.util.InMemoryResource
-
- InMemoryResource(byte[]) - Constructor for class org.springframework.security.util.InMemoryResource
-
- InMemoryResource(byte[], String) - Constructor for class org.springframework.security.util.InMemoryResource
-
- InMemoryTokenRepositoryImpl - Class in org.springframework.security.web.authentication.rememberme
-
Simple PersistentTokenRepository implementation backed by a Map.
- InMemoryTokenRepositoryImpl() - Constructor for class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
-
- InMemoryUserDetailsManager - Class in org.springframework.security.provisioning
-
Non-persistent implementation of UserDetailsManager
which is backed by an
in-memory map.
- InMemoryUserDetailsManager(Collection<UserDetails>) - Constructor for class org.springframework.security.provisioning.InMemoryUserDetailsManager
-
- InMemoryUserDetailsManager(Properties) - Constructor for class org.springframework.security.provisioning.InMemoryUserDetailsManager
-
- InMemoryUserDetailsManagerConfigurer<B extends ProviderManagerBuilder<B>> - Class in org.springframework.security.config.annotation.authentication.configurers.provisioning
-
- InMemoryUserDetailsManagerConfigurer() - Constructor for class org.springframework.security.config.annotation.authentication.configurers.provisioning.InMemoryUserDetailsManagerConfigurer
-
Creates a new instance
- InsecureChannelProcessor - Class in org.springframework.security.web.access.channel
-
Ensures channel security is inactive by review of
HttpServletRequest.isSecure()
responses.
- InsecureChannelProcessor() - Constructor for class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- insertAce(int, Permission, Sid, boolean) - Method in class org.springframework.security.acls.domain.AclImpl
-
- insertAce(int, Permission, Sid, boolean) - Method in interface org.springframework.security.acls.model.MutableAcl
-
- insertFilters(ServletContext, Filter...) - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
- instance - Variable in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- INSTANCE - Static variable in class org.springframework.security.web.util.matcher.AnyRequestMatcher
-
- InsufficientAuthenticationException - Exception in org.springframework.security.authentication
-
Thrown if an authentication request is rejected because the credentials are not
sufficiently trusted.
- InsufficientAuthenticationException(String) - Constructor for exception org.springframework.security.authentication.InsufficientAuthenticationException
-
Constructs an InsufficientAuthenticationException
with the specified
message.
- InsufficientAuthenticationException(String, Throwable) - Constructor for exception org.springframework.security.authentication.InsufficientAuthenticationException
-
Constructs an InsufficientAuthenticationException
with the specified
message and root cause.
- InteractiveAuthenticationSuccessEvent - Class in org.springframework.security.authentication.event
-
Indicates an interactive authentication was successful.
- InteractiveAuthenticationSuccessEvent(Authentication, Class<?>) - Constructor for class org.springframework.security.authentication.event.InteractiveAuthenticationSuccessEvent
-
- INTERCEPT_MESSAGE - Static variable in class org.springframework.security.config.Elements
-
- INTERCEPT_METHODS - Static variable in class org.springframework.security.config.Elements
-
- INTERCEPT_URL - Static variable in class org.springframework.security.config.Elements
-
- InterceptMethodsBeanDefinitionDecorator - Class in org.springframework.security.config.method
-
- InterceptMethodsBeanDefinitionDecorator() - Constructor for class org.springframework.security.config.method.InterceptMethodsBeanDefinitionDecorator
-
- InterceptorStatusToken - Class in org.springframework.security.access.intercept
-
- InterceptorStatusToken(SecurityContext, boolean, Collection<ConfigAttribute>, Object) - Constructor for class org.springframework.security.access.intercept.InterceptorStatusToken
-
- InternalAuthenticationServiceException - Exception in org.springframework.security.authentication
-
Thrown if an authentication request could not be processed due to a system problem that
occurred internally.
- InternalAuthenticationServiceException(String, Throwable) - Constructor for exception org.springframework.security.authentication.InternalAuthenticationServiceException
-
- InternalAuthenticationServiceException(String) - Constructor for exception org.springframework.security.authentication.InternalAuthenticationServiceException
-
- invalidateHttpSession(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- InvalidCookieException - Exception in org.springframework.security.web.authentication.rememberme
-
Exception thrown by a RememberMeServices implementation to indicate that a submitted
cookie is of an invalid format or has expired.
- InvalidCookieException(String) - Constructor for exception org.springframework.security.web.authentication.rememberme.InvalidCookieException
-
- InvalidCsrfTokenException - Exception in org.springframework.security.web.csrf
-
Thrown when an expected
CsrfToken
exists, but it does not match the value
present on the
HttpServletRequest
- InvalidCsrfTokenException(CsrfToken, String) - Constructor for exception org.springframework.security.web.csrf.InvalidCsrfTokenException
-
- InvalidSessionAccessDeniedHandler - Class in org.springframework.security.web.session
-
- InvalidSessionAccessDeniedHandler(InvalidSessionStrategy) - Constructor for class org.springframework.security.web.session.InvalidSessionAccessDeniedHandler
-
Creates a new instance
- invalidSessionStrategy(InvalidSessionStrategy) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
- InvalidSessionStrategy - Interface in org.springframework.security.web.session
-
Determines the behaviour of the SessionManagementFilter
when an invalid session
Id is submitted and detected in the SessionManagementFilter
.
- invalidSessionUrl(String) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
- INVOCATION_ATTRIBUTE_FACTORY - Static variable in class org.springframework.security.config.Elements
-
- INVOCATION_HANDLING - Static variable in class org.springframework.security.config.Elements
-
- INVOCATIONTARGET_EXTRACTOR - Static variable in class org.springframework.security.web.util.ThrowableAnalyzer
-
- invoke(MethodInvocation) - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
-
This method should be used to enforce security on a MethodInvocation
.
- invoke(JoinPoint) - Method in class org.springframework.security.access.intercept.aspectj.AspectJMethodSecurityInterceptor
-
Method that is suitable for user with @Aspect notation.
- invoke(JoinPoint, AspectJCallback) - Method in class org.springframework.security.access.intercept.aspectj.AspectJMethodSecurityInterceptor
-
Method that is suitable for user with traditional AspectJ-code aspects.
- invoke(Object) - Method in class org.springframework.security.remoting.rmi.ContextPropagatingRemoteInvocation
-
Invoked on the server-side.
- invoke(FilterInvocation) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
- invokeAll(Collection) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- invokeAll(Collection, long, TimeUnit) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- invokeAny(Collection) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- invokeAny(Collection, long, TimeUnit) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- IpAddressMatcher - Class in org.springframework.security.web.util.matcher
-
Matches a request based on IP Address or subnet mask matching against the remote
address.
- IpAddressMatcher(String) - Constructor for class org.springframework.security.web.util.matcher.IpAddressMatcher
-
Takes a specific IP address or a range specified using the IP/Netmask (e.g.
- IS_AUTHENTICATED_ANONYMOUSLY - Static variable in class org.springframework.security.access.vote.AuthenticatedVoter
-
- IS_AUTHENTICATED_FULLY - Static variable in class org.springframework.security.access.vote.AuthenticatedVoter
-
- IS_AUTHENTICATED_REMEMBERED - Static variable in class org.springframework.security.access.vote.AuthenticatedVoter
-
- isAbsoluteUrl(String) - Static method in class org.springframework.security.web.util.UrlUtils
-
Decides if a URL is absolute based on whether it contains a valid scheme name, as
defined in RFC 1738.
- isAccountNonExpired() - Method in class org.springframework.security.core.userdetails.User
-
- isAccountNonExpired() - Method in interface org.springframework.security.core.userdetails.UserDetails
-
Indicates whether the user's account has expired.
- isAccountNonExpired() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- isAccountNonLocked() - Method in class org.springframework.security.core.userdetails.User
-
- isAccountNonLocked() - Method in interface org.springframework.security.core.userdetails.UserDetails
-
Indicates whether the user is locked or unlocked.
- isAccountNonLocked() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- isAllowed(MethodInvocation, Authentication) - Method in class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
-
- isAllowed(String, Authentication) - Method in class org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
-
Determines whether the user represented by the supplied Authentication
object is allowed to invoke the supplied URI.
- isAllowed(String, String, String, Authentication) - Method in class org.springframework.security.web.access.DefaultWebInvocationPrivilegeEvaluator
-
Determines whether the user represented by the supplied Authentication
object is allowed to invoke the supplied URI, with the given .
- isAllowed(String, Authentication) - Method in interface org.springframework.security.web.access.WebInvocationPrivilegeEvaluator
-
Determines whether the user represented by the supplied Authentication
object is allowed to invoke the supplied URI.
- isAllowed(String, String, String, Authentication) - Method in interface org.springframework.security.web.access.WebInvocationPrivilegeEvaluator
-
Determines whether the user represented by the supplied Authentication
object is allowed to invoke the supplied URI, with the given .
- isAllowIfAllAbstainDecisions() - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- isAllowIfEqualGrantedDeniedDecisions() - Method in class org.springframework.security.access.vote.ConsensusBased
-
- isAllowSessionCreation() - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
- isAlwaysReauthenticate() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- isAlwaysUseDefaultTargetUrl() - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
- isAnonymous() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
-
- isAnonymous() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- isAnonymous(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationTrustResolver
-
Indicates whether the passed Authentication
token represents an
anonymous user.
- isAnonymous(Authentication) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
-
- isAsyncSecuritySupported() - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
Determine if the springSecurityFilterChain should be marked as supporting asynch.
- isAuditFailure() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- isAuditFailure() - Method in interface org.springframework.security.acls.model.AuditableAccessControlEntry
-
- isAuditSuccess() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- isAuditSuccess() - Method in interface org.springframework.security.acls.model.AuditableAccessControlEntry
-
- isAuthenticateAllArtifacts() - Method in class org.springframework.security.cas.ServiceProperties
-
- isAuthenticated() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
-
- isAuthenticated() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- isAuthenticated() - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
-
- isAuthenticated() - Method in interface org.springframework.security.core.Authentication
-
Used to indicate to AbstractSecurityInterceptor
whether it should present
the authentication token to the AuthenticationManager
.
- isBase64(byte[]) - Static method in class org.springframework.security.crypto.codec.Base64
-
- isChangeAfterReset() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
- isConfigured() - Method in class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
- isContextHolderRefreshRequired() - Method in class org.springframework.security.access.intercept.InterceptorStatusToken
-
- isContextSaved() - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
-
Tells if the response wrapper has called saveContext()
because of this
wrapper.
- isConvertToUpperCase() - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Returns true if role names are converted to uppercase Method available so that
classes extending this can override
- isCredentialsNonExpired() - Method in class org.springframework.security.core.userdetails.User
-
- isCredentialsNonExpired() - Method in interface org.springframework.security.core.userdetails.UserDetails
-
Indicates whether the user's credentials (password) has expired.
- isCredentialsNonExpired() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- isCritical() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
-
Returns whether the control is critical for the client.
- isCustomLoginPage() - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
- isDisableOnResponseCommitted() - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- isEnabled() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
- isEnabled() - Method in class org.springframework.security.core.userdetails.User
-
- isEnabled() - Method in interface org.springframework.security.core.userdetails.UserDetails
-
Indicates whether the user is enabled or disabled.
- isEnabled() - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl
-
- isEnabled() - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- isEntriesInheriting() - Method in class org.springframework.security.acls.domain.AclImpl
-
- isEntriesInheriting() - Method in interface org.springframework.security.acls.model.Acl
-
Indicates whether the ACL entries from the
Acl.getParentAcl()
should flow down
into the current
Acl.
- isEraseCredentialsAfterAuthentication() - Method in class org.springframework.security.authentication.ProviderManager
-
- isExpired() - Method in class org.springframework.security.core.session.SessionInformation
-
- isExpired() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
- isForceHttps() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- isForcePrincipalAsString() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- isFullyAuthenticated() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
-
- isFullyAuthenticated() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- isGranted(List<Permission>, List<Sid>, boolean) - Method in class org.springframework.security.acls.domain.AclImpl
-
- isGranted(Acl, List<Permission>, List<Sid>, boolean) - Method in class org.springframework.security.acls.domain.DefaultPermissionGrantingStrategy
-
Determines authorization.
- isGranted(List<Permission>, List<Sid>, boolean) - Method in interface org.springframework.security.acls.model.Acl
-
This is the actual authorization logic method, and must be used whenever ACL
authorization decisions are required.
- isGranted(Acl, List<Permission>, List<Sid>, boolean) - Method in interface org.springframework.security.acls.model.PermissionGrantingStrategy
-
Returns true if the supplied strategy decides that the supplied Acl
grants access based on the supplied list of permissions and sids.
- isGranting() - Method in class org.springframework.security.acls.domain.AccessControlEntryImpl
-
- isGranting() - Method in interface org.springframework.security.acls.model.AccessControlEntry
-
Indicates the permission is being granted to the relevant Sid.
- isHideUserNotFoundExceptions() - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- isHtmlEscape() - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
-
Return the HTML escaping setting for this tag, or the default setting if not
overridden.
- isIgnoreFailure() - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- isIgnorePasswordCase() - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
-
- isInvalidateHttpSession() - Method in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
-
- isLocked() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
Determines whether an account locked error has been returned.
- isLogInteractiveAuthenticationSuccessEvents() - Method in class org.springframework.security.authentication.event.LoggerListener
-
- isObserveOncePerRequest() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
Indicates whether once-per-request handling will be observed.
- isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.LdapShaPasswordEncoder
-
Checks the validity of an unencoded password against an encoded one in the form
"{SSHA}sQuQF8vj8Eg2Y1hPdh3bkQhCKQBgjhQI".
- isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.Md4PasswordEncoder
-
Takes a previously encoded password and compares it with a raw password after
mixing in the salt and encoding that value.
- isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
-
Takes a previously encoded password and compares it with a rawpassword after mixing
in the salt and encoding that value
- isPasswordValid(String, String, Object) - Method in interface org.springframework.security.authentication.encoding.PasswordEncoder
-
Deprecated.
Validates a specified "raw" password against an encoded password.
- isPasswordValid(String, String, Object) - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
-
- isRejectPublicInvocations() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- isRememberMe() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
-
- isRememberMe() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- isRememberMe(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationTrustResolver
-
Indicates whether the passed Authentication
token represents user that
has been remembered (i.e.
- isRememberMe(Authentication) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
-
- isRequired() - Method in class org.springframework.security.openid.OpenIDAttribute
-
The "required" flag for the attribute when used with an authentication request.
- isRunning() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- isSecure() - Method in class org.springframework.security.web.savedrequest.SavedCookie
-
- isSendRenew() - Method in class org.springframework.security.cas.ServiceProperties
-
Indicates whether the renew
parameter should be sent to the CAS login
URL and CAS validation URL.
- isShutdown() - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- isSidLoaded(List<Sid>) - Method in class org.springframework.security.acls.domain.AclImpl
-
- isSidLoaded(List<Sid>) - Method in interface org.springframework.security.acls.model.Acl
-
For efficiency reasons an Acl may be loaded and not contain
entries for every Sid in the system.
- isSimpDestPathMatcherConfigured() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
- isSingleton() - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
-
- isSingleton() - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
-
- isTerminated() - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- isTokenExpired(long) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
-
- isUiSecurityDisabled() - Static method in class org.springframework.security.taglibs.TagLibConfig
-
- isUseForward() - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- isUseForward() - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
- isUserInRole(String) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
-
- isUsernameBasedPrimaryKey() - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- isUsingGraceLogins() - Method in class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
- isValid() - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
- isValidateConfigAttributes() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- isValidRedirectUrl(String) - Static method in class org.springframework.security.web.util.UrlUtils
-
Returns true if the supplied URL starts with a "/" or is absolute.
- ObjectIdentity - Interface in org.springframework.security.acls.model
-
Represents the identity of an individual domain object instance.
- ObjectIdentityGenerator - Interface in org.springframework.security.acls.model
-
Strategy which creates an
ObjectIdentity
from an object identifier (such as a
primary key) and type information.
- ObjectIdentityImpl - Class in org.springframework.security.acls.domain
-
- ObjectIdentityImpl(String, Serializable) - Constructor for class org.springframework.security.acls.domain.ObjectIdentityImpl
-
- ObjectIdentityImpl(Class<?>, Serializable) - Constructor for class org.springframework.security.acls.domain.ObjectIdentityImpl
-
Constructor which uses the name of the supplied class as the type
property.
- ObjectIdentityImpl(Object) - Constructor for class org.springframework.security.acls.domain.ObjectIdentityImpl
-
Creates the ObjectIdentityImpl
based on the passed object instance.
- objectIdentityRetrievalStrategy - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- ObjectIdentityRetrievalStrategy - Interface in org.springframework.security.acls.model
-
Strategy interface that provides the ability to determine which
ObjectIdentity
will be returned for a particular domain object
- ObjectIdentityRetrievalStrategyImpl - Class in org.springframework.security.acls.domain
-
- ObjectIdentityRetrievalStrategyImpl() - Constructor for class org.springframework.security.acls.domain.ObjectIdentityRetrievalStrategyImpl
-
- objectPostProcessor(ObjectPostProcessor<Object>) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- objectPostProcessor(AutowireCapableBeanFactory) - Method in class org.springframework.security.config.annotation.configuration.ObjectPostProcessorConfiguration
-
- ObjectPostProcessor<T> - Interface in org.springframework.security.config.annotation
-
Allows initialization of Objects.
- ObjectPostProcessorConfiguration - Class in org.springframework.security.config.annotation.configuration
-
- ObjectPostProcessorConfiguration() - Constructor for class org.springframework.security.config.annotation.configuration.ObjectPostProcessorConfiguration
-
- obtainArtifact(HttpServletRequest) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
If present, gets the artifact (CAS ticket) from the HttpServletRequest
.
- obtainPassword(HttpServletRequest) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
Enables subclasses to override the composition of the password, such as by
including additional values and a separator.
- obtainPasswordAndSalt(String) - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
-
- obtainSecurityMetadataSource() - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- obtainSecurityMetadataSource() - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
-
- obtainSecurityMetadataSource() - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- obtainSecurityMetadataSource() - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
- obtainSubject(ServletRequest) - Method in class org.springframework.security.web.jaasapi.JaasApiIntegrationFilter
-
Obtains the Subject
to run as or null
if no
Subject
is available.
- obtainUsername(HttpServletRequest) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
Reads the claimedIdentityFieldName from the submitted request.
- obtainUsername(HttpServletRequest) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
Enables subclasses to override the composition of the username, such as by
including additional values and a separator.
- OID - Static variable in class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
-
OID of the Password Policy Control
- onApplicationEvent(AbstractAuthorizationEvent) - Method in class org.springframework.security.access.event.LoggerListener
-
- onApplicationEvent(AbstractAuthenticationEvent) - Method in class org.springframework.security.authentication.event.LoggerListener
-
- onApplicationEvent(SessionDestroyedEvent) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- onApplicationEvent(ApplicationEvent) - Method in class org.springframework.security.context.DelegatingApplicationListener
-
- onApplicationEvent(SessionDestroyedEvent) - Method in class org.springframework.security.core.session.SessionRegistryImpl
-
- onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.session.CompositeSessionAuthenticationStrategy
-
- onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy
-
In addition to the steps from the superclass, the sessionRegistry will be updated
with the new session information.
- onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.session.NullAuthenticatedSessionStrategy
-
- onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.session.RegisterSessionAuthenticationStrategy
-
In addition to the steps from the superclass, the sessionRegistry will be updated
with the new session information.
- onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.authentication.session.SessionAuthenticationStrategy
-
Performs Http session-related functionality when a new authentication occurs.
- onAuthentication(Authentication, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.csrf.CsrfAuthenticationStrategy
-
- onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in interface org.springframework.security.web.authentication.AuthenticationFailureHandler
-
Called when an authentication attempt fails.
- onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.DelegatingAuthenticationFailureHandler
-
Called when an authentication attempt fails.
- onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.ExceptionMappingAuthenticationFailureHandler
-
- onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.ForwardAuthenticationFailureHandler
-
- onAuthenticationFailure(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
Performs the redirect or forward to the defaultFailureUrl
if set, otherwise
returns a 401 error code.
- onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in interface org.springframework.security.web.authentication.AuthenticationSuccessHandler
-
Called when a user has been successfully authenticated.
- onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.ForwardAuthenticationSuccessHandler
-
- onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler
-
- onAuthenticationSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
-
Calls the parent class handle()
method to forward or redirect to the target
URL, and then calls clearAuthenticationAttributes()
to remove any leftover
session data.
- OnCommittedResponseWrapper - Class in org.springframework.security.web.util
-
Base class for response wrappers which encapsulate the logic for handling an event when
the HttpServletResponse
is committed.
- OnCommittedResponseWrapper(HttpServletResponse) - Constructor for class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- onInvalidSessionDetected(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.session.InvalidSessionStrategy
-
- onInvalidSessionDetected(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.session.SimpleRedirectInvalidSessionStrategy
-
- onLoginFail(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- onLoginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Called from loginSuccess when a remember-me login has been requested.
- onLoginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
Creates a new persistent login token with a new series number, stores the data in
the persistent token repository and adds the corresponding cookie to the response.
- onLoginSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
-
- onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.logout.DelegatingLogoutSuccessHandler
-
- onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.logout.HttpStatusReturningLogoutSuccessHandler
-
- onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in interface org.springframework.security.web.authentication.logout.LogoutSuccessHandler
-
- onLogoutSuccess(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.logout.SimpleUrlLogoutSuccessHandler
-
- onResponseCommitted() - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
-
Calls
saveContext()
with the current contents of the
SecurityContextHolder as long as
()
was not invoked.
- onResponseCommitted() - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
Implement the logic for handling the HttpServletResponse
being committed
- onStartup(ServletContext) - Method in class org.springframework.security.web.context.AbstractSecurityWebApplicationInitializer
-
- onSuccessfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
Called if a remember-me token is presented and successfully authenticated by the
RememberMeServices
autoLogin
method and the
AuthenticationManager
.
- onSuccessfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- onUnsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
Called if the AuthenticationManager
rejects the authentication object
returned from the RememberMeServices
autoLogin
method.
- onUnsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- OpenID4JavaConsumer - Class in org.springframework.security.openid
-
- OpenID4JavaConsumer() - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
-
- OpenID4JavaConsumer(AxFetchListFactory) - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
-
- OpenID4JavaConsumer(ConsumerManager, AxFetchListFactory) - Constructor for class org.springframework.security.openid.OpenID4JavaConsumer
-
- OPENID_ATTRIBUTE - Static variable in class org.springframework.security.config.Elements
-
- OPENID_ATTRIBUTE_EXCHANGE - Static variable in class org.springframework.security.config.Elements
-
- OPENID_LOGIN - Static variable in class org.springframework.security.config.Elements
-
- OpenIDAttribute - Class in org.springframework.security.openid
-
Represents an OpenID subject identity attribute.
- OpenIDAttribute(String, String) - Constructor for class org.springframework.security.openid.OpenIDAttribute
-
- OpenIDAttribute(String, String, List<String>) - Constructor for class org.springframework.security.openid.OpenIDAttribute
-
- OpenIDAuthenticationFilter - Class in org.springframework.security.openid
-
Filter which processes OpenID authentication requests.
- OpenIDAuthenticationFilter() - Constructor for class org.springframework.security.openid.OpenIDAuthenticationFilter
-
- OpenIDAuthenticationProvider - Class in org.springframework.security.openid
-
Finalises the OpenID authentication by obtaining local authorities for the
authenticated user.
- OpenIDAuthenticationProvider() - Constructor for class org.springframework.security.openid.OpenIDAuthenticationProvider
-
- OpenIDAuthenticationStatus - Enum in org.springframework.security.openid
-
Authentication status codes, based on JanRain status codes
- OpenIDAuthenticationToken - Class in org.springframework.security.openid
-
OpenID Authentication Token
- OpenIDAuthenticationToken(OpenIDAuthenticationStatus, String, String, List<OpenIDAttribute>) - Constructor for class org.springframework.security.openid.OpenIDAuthenticationToken
-
- OpenIDAuthenticationToken(Object, Collection<? extends GrantedAuthority>, String, List<OpenIDAttribute>) - Constructor for class org.springframework.security.openid.OpenIDAuthenticationToken
-
Created by the OpenIDAuthenticationProvider on successful authentication.
- OpenIDConsumer - Interface in org.springframework.security.openid
-
An interface for OpenID library implementations
- OpenIDConsumerException - Exception in org.springframework.security.openid
-
Thrown by an OpenIDConsumer if it cannot process a request
- OpenIDConsumerException(String) - Constructor for exception org.springframework.security.openid.OpenIDConsumerException
-
- OpenIDConsumerException(String, Throwable) - Constructor for exception org.springframework.security.openid.OpenIDConsumerException
-
- openidLogin() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows configuring OpenID based authentication.
- OpenIDLoginConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers.openid
-
Adds support for OpenID based authentication.
- OpenIDLoginConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer
-
Creates a new instance
- OpenIDLoginConfigurer.AttributeExchangeConfigurer - Class in org.springframework.security.config.annotation.web.configurers.openid
-
A class used to add OpenID attributes to look up
- OpenIDLoginConfigurer.AttributeExchangeConfigurer.AttributeConfigurer - Class in org.springframework.security.config.annotation.web.configurers.openid
-
- OPT_DEFAULT_PORT - Static variable in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
-
- ORDERED - Static variable in class org.springframework.security.crypto.codec.Base64
-
- org.springframework.security.access - package org.springframework.security.access
-
Core access-control related code, including security metadata related classes, interception code, access control
annotations, EL support and voter-based implementations of the central
AccessDecisionManager
interface.
- org.springframework.security.access.annotation - package org.springframework.security.access.annotation
-
Support for JSR-250 and Spring Security @Secured
annotations.
- org.springframework.security.access.event - package org.springframework.security.access.event
-
Authorization event and listener classes.
- org.springframework.security.access.expression - package org.springframework.security.access.expression
-
Expression handling code to support the use of Spring-EL based expressions in @PreAuthorize
, @PreFilter
,
@PostAuthorize
and @PostFilter
annotations.
- org.springframework.security.access.expression.method - package org.springframework.security.access.expression.method
-
Implementation of expression-based method security.
- org.springframework.security.access.hierarchicalroles - package org.springframework.security.access.hierarchicalroles
-
Role hierarchy implementation.
- org.springframework.security.access.intercept - package org.springframework.security.access.intercept
-
Abstract level security interception classes which are responsible for enforcing the
configured security constraints for a secure object.
- org.springframework.security.access.intercept.aopalliance - package org.springframework.security.access.intercept.aopalliance
-
Enforces security for AOP Alliance MethodInvocation
s, such as via Spring AOP.
- org.springframework.security.access.intercept.aspectj - package org.springframework.security.access.intercept.aspectj
-
Enforces security for AspectJ JointPoint
s, delegating secure object callbacks to the calling aspect.
- org.springframework.security.access.method - package org.springframework.security.access.method
-
Provides SecurityMetadataSource
implementations for securing Java method invocations via different
AOP libraries.
- org.springframework.security.access.prepost - package org.springframework.security.access.prepost
-
Contains the infrastructure classes for handling the @PreAuthorize
, @PreFilter
, @PostAuthorize
and @PostFilter
annotations.
- org.springframework.security.access.vote - package org.springframework.security.access.vote
-
Implements a vote-based approach to authorization decisions.
- org.springframework.security.acls - package org.springframework.security.acls
-
The Spring Security ACL package which implements instance-based security for domain objects.
- org.springframework.security.acls.afterinvocation - package org.springframework.security.acls.afterinvocation
-
After-invocation providers for collection and array filtering.
- org.springframework.security.acls.domain - package org.springframework.security.acls.domain
-
Basic implementation of access control lists (ACLs) interfaces.
- org.springframework.security.acls.jdbc - package org.springframework.security.acls.jdbc
-
JDBC-based persistence of ACL information
- org.springframework.security.acls.model - package org.springframework.security.acls.model
-
Interfaces and shared classes to manage access control lists (ACLs) for domain object instances.
- org.springframework.security.authentication - package org.springframework.security.authentication
-
Core classes and interfaces related to user authentication, which are used throughout Spring Security.
- org.springframework.security.authentication.dao - package org.springframework.security.authentication.dao
-
An AuthenticationProvider
which relies upon a data access object.
- org.springframework.security.authentication.encoding - package org.springframework.security.authentication.encoding
-
Password encoding implementations.
- org.springframework.security.authentication.event - package org.springframework.security.authentication.event
-
Authentication success and failure events which can be published to the Spring application context.
- org.springframework.security.authentication.jaas - package org.springframework.security.authentication.jaas
-
An authentication provider for JAAS.
- org.springframework.security.authentication.jaas.event - package org.springframework.security.authentication.jaas.event
-
JAAS authentication events which can be published to the Spring application context by the JAAS authentication
provider.
- org.springframework.security.authentication.jaas.memory - package org.springframework.security.authentication.jaas.memory
-
An in memory JAAS implementation.
- org.springframework.security.authentication.rcp - package org.springframework.security.authentication.rcp
-
Allows remote clients to authenticate and obtain a populated Authentication
object.
- org.springframework.security.cas - package org.springframework.security.cas
-
Spring Security support for Jasig's Central Authentication Service (
CAS).
- org.springframework.security.cas.authentication - package org.springframework.security.cas.authentication
-
An AuthenticationProvider
that can process CAS service tickets and proxy tickets.
- org.springframework.security.cas.userdetails - package org.springframework.security.cas.userdetails
-
- org.springframework.security.cas.web - package org.springframework.security.cas.web
-
Authenticates standard web browser users via CAS.
- org.springframework.security.cas.web.authentication - package org.springframework.security.cas.web.authentication
-
Authentication processing mechanisms which respond to the submission of authentication
credentials using CAS.
- org.springframework.security.concurrent - package org.springframework.security.concurrent
-
- org.springframework.security.config - package org.springframework.security.config
-
Support classes for the Spring Security namespace.
- org.springframework.security.config.annotation - package org.springframework.security.config.annotation
-
- org.springframework.security.config.annotation.authentication - package org.springframework.security.config.annotation.authentication
-
- org.springframework.security.config.annotation.authentication.builders - package org.springframework.security.config.annotation.authentication.builders
-
- org.springframework.security.config.annotation.authentication.configuration - package org.springframework.security.config.annotation.authentication.configuration
-
- org.springframework.security.config.annotation.authentication.configurers - package org.springframework.security.config.annotation.authentication.configurers
-
- org.springframework.security.config.annotation.authentication.configurers.ldap - package org.springframework.security.config.annotation.authentication.configurers.ldap
-
- org.springframework.security.config.annotation.authentication.configurers.provisioning - package org.springframework.security.config.annotation.authentication.configurers.provisioning
-
- org.springframework.security.config.annotation.authentication.configurers.userdetails - package org.springframework.security.config.annotation.authentication.configurers.userdetails
-
- org.springframework.security.config.annotation.configuration - package org.springframework.security.config.annotation.configuration
-
- org.springframework.security.config.annotation.method.configuration - package org.springframework.security.config.annotation.method.configuration
-
- org.springframework.security.config.annotation.web - package org.springframework.security.config.annotation.web
-
- org.springframework.security.config.annotation.web.builders - package org.springframework.security.config.annotation.web.builders
-
- org.springframework.security.config.annotation.web.configuration - package org.springframework.security.config.annotation.web.configuration
-
- org.springframework.security.config.annotation.web.configurers - package org.springframework.security.config.annotation.web.configurers
-
- org.springframework.security.config.annotation.web.configurers.openid - package org.springframework.security.config.annotation.web.configurers.openid
-
- org.springframework.security.config.annotation.web.messaging - package org.springframework.security.config.annotation.web.messaging
-
- org.springframework.security.config.annotation.web.servlet.configuration - package org.springframework.security.config.annotation.web.servlet.configuration
-
- org.springframework.security.config.annotation.web.socket - package org.springframework.security.config.annotation.web.socket
-
- org.springframework.security.config.authentication - package org.springframework.security.config.authentication
-
Parsing of <authentication-manager> and related elements.
- org.springframework.security.config.debug - package org.springframework.security.config.debug
-
- org.springframework.security.config.http - package org.springframework.security.config.http
-
Parsing of the <http> namespace element.
- org.springframework.security.config.ldap - package org.springframework.security.config.ldap
-
Security namespace support for LDAP authentication.
- org.springframework.security.config.method - package org.springframework.security.config.method
-
Support for parsing of the <global-method-security> and <intercept-methods> elements.
- org.springframework.security.config.websocket - package org.springframework.security.config.websocket
-
- org.springframework.security.context - package org.springframework.security.context
-
- org.springframework.security.core - package org.springframework.security.core
-
Core classes and interfaces related to user authentication and authorization, as well as the maintenance of
a security context.
- org.springframework.security.core.annotation - package org.springframework.security.core.annotation
-
- org.springframework.security.core.authority - package org.springframework.security.core.authority
-
The default implementation of the GrantedAuthority
interface.
- org.springframework.security.core.authority.mapping - package org.springframework.security.core.authority.mapping
-
Strategies for mapping a list of attributes (such as roles or LDAP groups) to a list of
GrantedAuthority
s.
- org.springframework.security.core.context - package org.springframework.security.core.context
-
Classes related to the establishment of a security context for the duration of a request (such as
an HTTP or RMI invocation).
- org.springframework.security.core.parameters - package org.springframework.security.core.parameters
-
- org.springframework.security.core.session - package org.springframework.security.core.session
-
Session abstraction which is provided by the org.springframework.security.core.session.SessionInformation
SessionInformation
class.
- org.springframework.security.core.token - package org.springframework.security.core.token
-
A service for building secure random tokens.
- org.springframework.security.core.userdetails - package org.springframework.security.core.userdetails
-
The standard interfaces for implementing user data DAOs.
- org.springframework.security.core.userdetails.cache - package org.springframework.security.core.userdetails.cache
-
- org.springframework.security.core.userdetails.jdbc - package org.springframework.security.core.userdetails.jdbc
-
Exposes a JDBC-based authentication repository, implementing
org.springframework.security.core.userdetails.UserDetailsService UserDetailsService
.
- org.springframework.security.core.userdetails.memory - package org.springframework.security.core.userdetails.memory
-
Exposes an in-memory authentication repository.
- org.springframework.security.crypto.bcrypt - package org.springframework.security.crypto.bcrypt
-
- org.springframework.security.crypto.codec - package org.springframework.security.crypto.codec
-
Internal codec classes.
- org.springframework.security.crypto.encrypt - package org.springframework.security.crypto.encrypt
-
- org.springframework.security.crypto.keygen - package org.springframework.security.crypto.keygen
-
- org.springframework.security.crypto.password - package org.springframework.security.crypto.password
-
- org.springframework.security.crypto.scrypt - package org.springframework.security.crypto.scrypt
-
- org.springframework.security.crypto.util - package org.springframework.security.crypto.util
-
- org.springframework.security.data.repository.query - package org.springframework.security.data.repository.query
-
- org.springframework.security.ldap - package org.springframework.security.ldap
-
Spring Security's LDAP module.
- org.springframework.security.ldap.authentication - package org.springframework.security.ldap.authentication
-
The LDAP authentication provider package.
- org.springframework.security.ldap.authentication.ad - package org.springframework.security.ldap.authentication.ad
-
- org.springframework.security.ldap.ppolicy - package org.springframework.security.ldap.ppolicy
-
- org.springframework.security.ldap.search - package org.springframework.security.ldap.search
-
LdapUserSearch
implementations.
- org.springframework.security.ldap.server - package org.springframework.security.ldap.server
-
Embedded Apache Directory Server implementation, as used by the configuration namespace.
- org.springframework.security.ldap.userdetails - package org.springframework.security.ldap.userdetails
-
LDAP-focused UserDetails
implementations which map from a ubset of the data
contained in some of the standard LDAP types (such as InetOrgPerson
).
- org.springframework.security.messaging.access.expression - package org.springframework.security.messaging.access.expression
-
- org.springframework.security.messaging.access.intercept - package org.springframework.security.messaging.access.intercept
-
- org.springframework.security.messaging.context - package org.springframework.security.messaging.context
-
- org.springframework.security.messaging.util.matcher - package org.springframework.security.messaging.util.matcher
-
- org.springframework.security.messaging.web.csrf - package org.springframework.security.messaging.web.csrf
-
- org.springframework.security.messaging.web.socket.server - package org.springframework.security.messaging.web.socket.server
-
- org.springframework.security.openid - package org.springframework.security.openid
-
Authenticates standard web browser users via
OpenID.
- org.springframework.security.provisioning - package org.springframework.security.provisioning
-
Contains simple user and authority group account provisioning interfaces together with a a
JDBC-based implementation.
- org.springframework.security.remoting.dns - package org.springframework.security.remoting.dns
-
DNS resolution.
- org.springframework.security.remoting.httpinvoker - package org.springframework.security.remoting.httpinvoker
-
Enables use of Spring's HttpInvoker
extension points to
present the principal
and credentials
located
in the ContextHolder
via BASIC authentication.
- org.springframework.security.remoting.rmi - package org.springframework.security.remoting.rmi
-
Enables use of Spring's RMI remoting extension points to propagate the SecurityContextHolder
(which
should contain an Authentication
request token) from one JVM to the remote JVM.
- org.springframework.security.scheduling - package org.springframework.security.scheduling
-
- org.springframework.security.taglibs - package org.springframework.security.taglibs
-
Security related tag libraries that can be used in JSPs and templates.
- org.springframework.security.taglibs.authz - package org.springframework.security.taglibs.authz
-
JSP Security tag library implementation.
- org.springframework.security.taglibs.csrf - package org.springframework.security.taglibs.csrf
-
- org.springframework.security.task - package org.springframework.security.task
-
- org.springframework.security.test.context - package org.springframework.security.test.context
-
- org.springframework.security.test.context.annotation - package org.springframework.security.test.context.annotation
-
- org.springframework.security.test.context.support - package org.springframework.security.test.context.support
-
- org.springframework.security.test.web.servlet.request - package org.springframework.security.test.web.servlet.request
-
- org.springframework.security.test.web.servlet.response - package org.springframework.security.test.web.servlet.response
-
- org.springframework.security.test.web.servlet.setup - package org.springframework.security.test.web.servlet.setup
-
- org.springframework.security.test.web.support - package org.springframework.security.test.web.support
-
- org.springframework.security.util - package org.springframework.security.util
-
General utility classes used throughout the Spring Security framework.
- org.springframework.security.web - package org.springframework.security.web
-
Spring Security's web security module.
- org.springframework.security.web.access - package org.springframework.security.web.access
-
Access-control related classes and packages.
- org.springframework.security.web.access.channel - package org.springframework.security.web.access.channel
-
Classes that ensure web requests are received over required transport channels.
- org.springframework.security.web.access.expression - package org.springframework.security.web.access.expression
-
Implementation of web security expressions.
- org.springframework.security.web.access.intercept - package org.springframework.security.web.access.intercept
-
Enforcement of security for HTTP requests, typically by the URL requested.
- org.springframework.security.web.authentication - package org.springframework.security.web.authentication
-
Authentication processing mechanisms, which respond to the submission of authentication
credentials using various protocols (eg BASIC, CAS, form login etc).
- org.springframework.security.web.authentication.logout - package org.springframework.security.web.authentication.logout
-
Logout functionality based around a filter which handles a specific logout URL.
- org.springframework.security.web.authentication.preauth - package org.springframework.security.web.authentication.preauth
-
Support for "pre-authenticated" scenarios, where Spring Security assumes the incoming request has already been
authenticated by some externally configured system.
- org.springframework.security.web.authentication.preauth.j2ee - package org.springframework.security.web.authentication.preauth.j2ee
-
Pre-authentication support for container-authenticated requests.
- org.springframework.security.web.authentication.preauth.websphere - package org.springframework.security.web.authentication.preauth.websphere
-
Websphere-specific pre-authentication classes.
- org.springframework.security.web.authentication.preauth.x509 - package org.springframework.security.web.authentication.preauth.x509
-
X.509 client certificate authentication support.
- org.springframework.security.web.authentication.rememberme - package org.springframework.security.web.authentication.rememberme
-
Support for remembering a user between different web sessions.
- org.springframework.security.web.authentication.session - package org.springframework.security.web.authentication.session
-
Strategy interface and implementations for handling session-related behaviour for a newly authenticated user.
- org.springframework.security.web.authentication.switchuser - package org.springframework.security.web.authentication.switchuser
-
Provides HTTP-based "switch user" (su) capabilities.
- org.springframework.security.web.authentication.ui - package org.springframework.security.web.authentication.ui
-
Authentication user-interface rendering code.
- org.springframework.security.web.authentication.www - package org.springframework.security.web.authentication.www
-
WWW-Authenticate based authentication mechanism implementations: Basic and Digest authentication.
- org.springframework.security.web.bind.annotation - package org.springframework.security.web.bind.annotation
-
- org.springframework.security.web.bind.support - package org.springframework.security.web.bind.support
-
- org.springframework.security.web.context - package org.springframework.security.web.context
-
Classes which are responsible for maintaining the security context between HTTP requests.
- org.springframework.security.web.context.request.async - package org.springframework.security.web.context.request.async
-
- org.springframework.security.web.context.support - package org.springframework.security.web.context.support
-
- org.springframework.security.web.csrf - package org.springframework.security.web.csrf
-
- org.springframework.security.web.debug - package org.springframework.security.web.debug
-
- org.springframework.security.web.firewall - package org.springframework.security.web.firewall
-
- org.springframework.security.web.header - package org.springframework.security.web.header
-
- org.springframework.security.web.header.writers - package org.springframework.security.web.header.writers
-
- org.springframework.security.web.header.writers.frameoptions - package org.springframework.security.web.header.writers.frameoptions
-
- org.springframework.security.web.jaasapi - package org.springframework.security.web.jaasapi
-
Makes a JAAS Subject available as the current Subject.
- org.springframework.security.web.method.annotation - package org.springframework.security.web.method.annotation
-
- org.springframework.security.web.savedrequest - package org.springframework.security.web.savedrequest
-
Classes related to the caching of an HttpServletRequest
which requires authentication.
- org.springframework.security.web.servlet.support.csrf - package org.springframework.security.web.servlet.support.csrf
-
- org.springframework.security.web.servlet.util.matcher - package org.springframework.security.web.servlet.util.matcher
-
- org.springframework.security.web.servletapi - package org.springframework.security.web.servletapi
-
Populates a Servlet request with a new Spring Security compliant HttpServletRequestWrapper
.
- org.springframework.security.web.session - package org.springframework.security.web.session
-
Session management filters, HttpSession
events and publisher classes.
- org.springframework.security.web.util - package org.springframework.security.web.util
-
Web utility classes.
- org.springframework.security.web.util.matcher - package org.springframework.security.web.util.matcher
-
- OrMessageMatcher<T> - Class in org.springframework.security.messaging.util.matcher
-
- OrMessageMatcher(List<MessageMatcher<T>>) - Constructor for class org.springframework.security.messaging.util.matcher.OrMessageMatcher
-
Creates a new instance
- OrMessageMatcher(MessageMatcher<T>...) - Constructor for class org.springframework.security.messaging.util.matcher.OrMessageMatcher
-
Creates a new instance
- OrRequestMatcher - Class in org.springframework.security.web.util.matcher
-
- OrRequestMatcher(List<RequestMatcher>) - Constructor for class org.springframework.security.web.util.matcher.OrRequestMatcher
-
Creates a new instance
- OrRequestMatcher(RequestMatcher...) - Constructor for class org.springframework.security.web.util.matcher.OrRequestMatcher
-
Creates a new instance
- OwnershipAcl - Interface in org.springframework.security.acls.model
-
A mutable ACL that provides ownership capabilities.
- P - Annotation Type in org.springframework.security.access.method
-
- pageContext - Variable in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- parentAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.authentication.AbstractUserDetailsServiceBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.authentication.AuthenticationProviderBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.DebugBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.CorsBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.CsrfBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.FilterChainBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.FilterInvocationSecurityMetadataSourceParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.FormLoginBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.HeadersBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.HttpFirewallBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.http.HttpSecurityBeanDefinitionParser
-
The aim of this method is to build the list of filters which have been defined by
the namespace elements and attributes within the <http> configuration, along
with any custom-filter's linked to user-defined filter beans.
- parse(Element, ParserContext) - Method in class org.springframework.security.config.ldap.LdapProviderBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.ldap.LdapServerBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.method.GlobalMethodSecurityBeanDefinitionParser
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.SecurityNamespaceHandler
-
- parse(Element, ParserContext) - Method in class org.springframework.security.config.websocket.WebSocketMessageBrokerSecurityBeanDefinitionParser
-
- parseCache - Static variable in class org.springframework.security.web.savedrequest.FastHttpDateFormat
-
Parser cache.
- parseDate(String, DateFormat[]) - Static method in class org.springframework.security.web.savedrequest.FastHttpDateFormat
-
Tries to parse the given date as an HTTP date.
- parseInternal(Element, ParserContext) - Method in class org.springframework.security.config.method.MethodSecurityMetadataSourceBeanDefinitionParser
-
- parseRootDnFromUrl(String) - Static method in class org.springframework.security.ldap.LdapUtils
-
Works out the root DN for an LDAP URL.
- password(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Populates the password.
- password(String) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestBuilders.FormLoginRequestBuilder
-
The value of the password parameter.
- password(String, String) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestBuilders.FormLoginRequestBuilder
-
Specify both the password parameter name and the password.
- password(String) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.DigestRequestPostProcessor
-
Configures the password to use
- password(String) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.UserRequestPostProcessor
-
Populates the user's password.
- PASSWORD_ENCODER - Static variable in class org.springframework.security.config.Elements
-
- passwordAttribute(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer.PasswordCompareConfigurer
-
The attribute in the directory which contains the user password.
- passwordCompare() - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
- PasswordComparisonAuthenticator - Class in org.springframework.security.ldap.authentication
-
An
LdapAuthenticator
which compares the login password with the value stored in the
directory using a remote LDAP "compare" operation.
- PasswordComparisonAuthenticator(BaseLdapPathContextSource) - Constructor for class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
-
- PasswordEncoder - Interface in org.springframework.security.authentication.encoding
-
- passwordEncoder(PasswordEncoder) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer.PasswordCompareConfigurer
-
- passwordEncoder(PasswordEncoder) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
- passwordEncoder(PasswordEncoder) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
Specifies the
PasswordEncoder
to be used when authenticating with password comparison.
- PasswordEncoder - Interface in org.springframework.security.crypto.password
-
Service interface for encoding passwords.
- PasswordEncoderParser - Class in org.springframework.security.config.authentication
-
Stateful parser for the <password-encoder> element.
- PasswordEncoderParser(Element, ParserContext) - Constructor for class org.springframework.security.config.authentication.PasswordEncoderParser
-
- passwordParam(String) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestBuilders.FormLoginRequestBuilder
-
The HTTP parameter to place the password.
- passwordParameter(String) - Method in class org.springframework.security.config.annotation.web.configurers.FormLoginConfigurer
-
The HTTP parameter to look for the password when performing authentication.
- PasswordPolicyAwareContextSource - Class in org.springframework.security.ldap.ppolicy
-
Extended version of the
DefaultSpringSecurityContextSource which adds support
for the use of
PasswordPolicyControl
to make use of user account data stored in
the directory.
- PasswordPolicyAwareContextSource(String) - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyAwareContextSource
-
- PasswordPolicyControl - Class in org.springframework.security.ldap.ppolicy
-
A Password Policy request control.
- PasswordPolicyControl() - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
-
Creates a non-critical (request) control.
- PasswordPolicyControl(boolean) - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControl
-
Creates a (request) control.
- PasswordPolicyControlExtractor - Class in org.springframework.security.ldap.ppolicy
-
Obtains the PasswordPolicyControl from a context for use by other classes.
- PasswordPolicyControlExtractor() - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControlExtractor
-
- PasswordPolicyControlFactory - Class in org.springframework.security.ldap.ppolicy
-
Transforms a control object to a PasswordPolicyResponseControl object, if appropriate.
- PasswordPolicyControlFactory() - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyControlFactory
-
- PasswordPolicyData - Interface in org.springframework.security.ldap.ppolicy
-
- PasswordPolicyErrorStatus - Enum in org.springframework.security.ldap.ppolicy
-
Defines status codes for use with PasswordPolicyException, with error codes
(for message source lookup) and default messages.
- PasswordPolicyException - Exception in org.springframework.security.ldap.ppolicy
-
Generic exception raised by the ppolicy package.
- PasswordPolicyException(PasswordPolicyErrorStatus) - Constructor for exception org.springframework.security.ldap.ppolicy.PasswordPolicyException
-
- PasswordPolicyResponseControl - Class in org.springframework.security.ldap.ppolicy
-
Represents the response control received when a PasswordPolicyControl is used
when binding to a directory.
- PasswordPolicyResponseControl(byte[]) - Constructor for class org.springframework.security.ldap.ppolicy.PasswordPolicyResponseControl
-
Decodes the Ber encoded control data.
- Pbkdf2PasswordEncoder - Class in org.springframework.security.crypto.password
-
A PasswordEncoder
implementation that uses PBKDF2 with a configurable number of
iterations and a random 8-byte random salt value.
- Pbkdf2PasswordEncoder() - Constructor for class org.springframework.security.crypto.password.Pbkdf2PasswordEncoder
-
Constructs a PBKDF2 password encoder with no additional secret value.
- Pbkdf2PasswordEncoder(CharSequence) - Constructor for class org.springframework.security.crypto.password.Pbkdf2PasswordEncoder
-
Constructs a standard password encoder with a secret value which is also included
in the password hash.
- Pbkdf2PasswordEncoder(CharSequence, int, int) - Constructor for class org.springframework.security.crypto.password.Pbkdf2PasswordEncoder
-
Constructs a standard password encoder with a secret value as well as iterations
and hash.
- performBuild() - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
Subclasses must implement this method to build the object that is being returned.
- performBuild() - Method in class org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder
-
- performBuild() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- performBuild() - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
- Permission - Interface in org.springframework.security.acls.model
-
Represents a permission granted to a Sid for a given domain object.
- PermissionCacheOptimizer - Interface in org.springframework.security.access
-
Allows permissions to be pre-cached when using pre or post filtering with expressions
- PermissionEvaluator - Interface in org.springframework.security.access
-
Strategy used in expression evaluation to determine whether a user has a permission or
permissions for a given domain object.
- PermissionFactory - Interface in org.springframework.security.acls.domain
-
Provides a simple mechanism to retrieve
Permission
instances from integer
masks.
- PermissionGrantingStrategy - Interface in org.springframework.security.acls.model
-
Allow customization of the logic for determining whether a permission or permissions
are granted to a particular sid or sids by an
Acl
.
- PERMIT_ALL_ATTRIBUTE - Static variable in class org.springframework.security.access.annotation.Jsr250SecurityConfig
-
- permitAll() - Method in interface org.springframework.security.access.expression.SecurityExpressionOperations
-
Always grants access.
- permitAll - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
-
Allows "permitAll" expression
- permitAll() - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- permitAll() - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
Equivalent of invoking permitAll(true)
- permitAll(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
- permitAll() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
-
Specify that URLs are allowed by anyone.
- permitAll() - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- permitAll(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.LogoutConfigurer
-
- permitAll() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry.Constraint
-
Specify that Messages are allowed by anyone.
- PersistentRememberMeToken - Class in org.springframework.security.web.authentication.rememberme
-
- PersistentRememberMeToken(String, String, String, Date) - Constructor for class org.springframework.security.web.authentication.rememberme.PersistentRememberMeToken
-
- PersistentTokenBasedRememberMeServices - Class in org.springframework.security.web.authentication.rememberme
-
- PersistentTokenBasedRememberMeServices(String, UserDetailsService, PersistentTokenRepository) - Constructor for class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- PersistentTokenRepository - Interface in org.springframework.security.web.authentication.rememberme
-
- Person - Class in org.springframework.security.ldap.userdetails
-
UserDetails implementation whose properties are based on the LDAP schema for
Person.
- Person() - Constructor for class org.springframework.security.ldap.userdetails.Person
-
- Person.Essence - Class in org.springframework.security.ldap.userdetails
-
- PERSON_MAPPER_CLASS - Static variable in class org.springframework.security.config.ldap.LdapUserServiceBeanDefinitionParser
-
- PersonContextMapper - Class in org.springframework.security.ldap.userdetails
-
- PersonContextMapper() - Constructor for class org.springframework.security.ldap.userdetails.PersonContextMapper
-
- PlaintextPasswordEncoder - Class in org.springframework.security.authentication.encoding
-
Plaintext implementation of PasswordEncoder.
- PlaintextPasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
-
- populateContext(DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson
-
- populateContext(DirContextAdapter) - Method in class org.springframework.security.ldap.userdetails.Person
-
- port(int) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer.ContextSourceBuilder
-
The port to connect to LDAP to (the default is 33389 or random available port
if unavailable).
- PORT_MAPPING - Static variable in class org.springframework.security.config.Elements
-
- PORT_MAPPINGS - Static variable in class org.springframework.security.config.Elements
-
- portMapper() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- portMapper(PortMapper) - Method in class org.springframework.security.config.annotation.web.configurers.PortMapperConfigurer
-
- PortMapper - Interface in org.springframework.security.web
-
PortMapper
implementations provide callers with information about which
HTTP ports are associated with which HTTPS ports on the system, and vice versa.
- PortMapperConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
Allows configuring a shared
PortMapper
instance used to determine the ports
when redirecting between HTTP and HTTPS.
- PortMapperConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.PortMapperConfigurer
-
Creates a new instance
- PortMapperConfigurer.HttpPortMapping - Class in org.springframework.security.config.annotation.web.configurers
-
Allows specifying the HTTPS port for a given HTTP port when redirecting between
HTTP and HTTPS.
- PortMapperImpl - Class in org.springframework.security.web
-
Concrete implementation of
PortMapper
that obtains HTTP:HTTPS pairs from the
application context.
- PortMapperImpl() - Constructor for class org.springframework.security.web.PortMapperImpl
-
- PortResolver - Interface in org.springframework.security.web
-
A PortResolver
determines the port a web request was received on.
- PortResolverImpl - Class in org.springframework.security.web
-
Concrete implementation of
PortResolver
that obtains the port from
ServletRequest.getServerPort().
- PortResolverImpl() - Constructor for class org.springframework.security.web.PortResolverImpl
-
- POST_INVOCATION_ADVICE - Static variable in class org.springframework.security.config.Elements
-
- PostAuthorize - Annotation Type in org.springframework.security.access.prepost
-
Annotation for specifying a method access-control expression which will be evaluated
after a method has been invoked.
- postBuildAction(Runnable) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
Executes the Runnable immediately after the build takes place
- PostFilter - Annotation Type in org.springframework.security.access.prepost
-
Annotation for specifying a method filtering expression which will be evaluated after a
method has been invoked.
- PostInvocationAdviceProvider - Class in org.springframework.security.access.prepost
-
AfterInvocationProvider which delegates to a
PostInvocationAuthorizationAdvice
instance passing it the
PostInvocationAttribute created from @PostAuthorize and @PostFilter
annotations.
- PostInvocationAdviceProvider(PostInvocationAuthorizationAdvice) - Constructor for class org.springframework.security.access.prepost.PostInvocationAdviceProvider
-
- PostInvocationAttribute - Interface in org.springframework.security.access.prepost
-
Marker interface for attributes which are created from combined @PostFilter and @PostAuthorize
annotations.
- PostInvocationAuthorizationAdvice - Interface in org.springframework.security.access.prepost
-
Performs filtering and authorization logic after a method is invoked.
- postProcess(P) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
Performs post processing of an object.
- postProcess(O) - Method in interface org.springframework.security.config.annotation.ObjectPostProcessor
-
Initialize the object possibly returning a modified instance that should be used
instead.
- postProcess(T) - Method in class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
Performs post processing of an object.
- postProcess(NativeWebRequest, Callable<T>, Object) - Method in class org.springframework.security.web.context.request.async.SecurityContextCallableProcessingInterceptor
-
- postProcessBeanDefinitionRegistry(BeanDefinitionRegistry) - Method in class org.springframework.security.config.debug.SecurityDebugBeanFactoryPostProcessor
-
- postProcessBeanFactory(ConfigurableListableBeanFactory) - Method in class org.springframework.security.config.debug.SecurityDebugBeanFactoryPostProcessor
-
- postProcessRequest(MockHttpServletRequest) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.CsrfRequestPostProcessor
-
- postProcessRequest(MockHttpServletRequest) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.DigestRequestPostProcessor
-
- postProcessRequest(MockHttpServletRequest) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.UserRequestPostProcessor
-
- postReceive(Message<?>, MessageChannel) - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- postSend(Message<?>, MessageChannel, boolean) - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- PRE_INVOCATION_ADVICE - Static variable in class org.springframework.security.config.Elements
-
- PreAuthenticatedAuthenticationProvider - Class in org.springframework.security.web.authentication.preauth
-
Processes a pre-authenticated authentication request.
- PreAuthenticatedAuthenticationProvider() - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
- PreAuthenticatedAuthenticationToken - Class in org.springframework.security.web.authentication.preauth
-
- PreAuthenticatedAuthenticationToken(Object, Object) - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
-
Constructor used for an authentication request.
- PreAuthenticatedAuthenticationToken(Object, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationToken
-
Constructor used for an authentication response.
- PreAuthenticatedCredentialsNotFoundException - Exception in org.springframework.security.web.authentication.preauth
-
- PreAuthenticatedCredentialsNotFoundException(String) - Constructor for exception org.springframework.security.web.authentication.preauth.PreAuthenticatedCredentialsNotFoundException
-
- PreAuthenticatedCredentialsNotFoundException(String, Throwable) - Constructor for exception org.springframework.security.web.authentication.preauth.PreAuthenticatedCredentialsNotFoundException
-
- PreAuthenticatedGrantedAuthoritiesUserDetailsService - Class in org.springframework.security.web.authentication.preauth
-
This AuthenticationUserDetailsService implementation creates a UserDetails object based
solely on the information contained in the given PreAuthenticatedAuthenticationToken.
- PreAuthenticatedGrantedAuthoritiesUserDetailsService() - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesUserDetailsService
-
- PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails - Class in org.springframework.security.web.authentication.preauth
-
This WebAuthenticationDetails implementation allows for storing a list of
pre-authenticated Granted Authorities.
- PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails(HttpServletRequest, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.web.authentication.preauth.PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails
-
- PreAuthorize - Annotation Type in org.springframework.security.access.prepost
-
Annotation for specifying a method access-control expression which will be evaluated to
decide whether a method invocation is allowed or not.
- preCommence(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
Template method for you to do your own pre-processing before the redirect occurs.
- prefersShortLivedTasks() - Method in class org.springframework.security.scheduling.DelegatingSecurityContextSchedulingTaskExecutor
-
- PreFilter - Annotation Type in org.springframework.security.access.prepost
-
Annotation for specifying a method filtering expression which will be evaluated before
a method has been invoked.
- PreInvocationAttribute - Interface in org.springframework.security.access.prepost
-
Marker interface for attributes which are created from combined @PreFilter and @PreAuthorize
annotations.
- PreInvocationAuthorizationAdvice - Interface in org.springframework.security.access.prepost
-
Performs argument filtering and authorization logic before a method is invoked.
- preInvocationAuthorizationAdvice() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- PreInvocationAuthorizationAdviceVoter - Class in org.springframework.security.access.prepost
-
Voter which performs the actions using a PreInvocationAuthorizationAdvice
implementation generated from @PreFilter and @PreAuthorize annotations.
- PreInvocationAuthorizationAdviceVoter(PreInvocationAuthorizationAdvice) - Constructor for class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
-
- prepareConnection(HttpURLConnection, int) - Method in class org.springframework.security.remoting.httpinvoker.AuthenticationSimpleHttpInvokerRequestExecutor
-
Called every time a HTTP invocation is made.
- PrePostAnnotationSecurityMetadataSource - Class in org.springframework.security.access.prepost
-
MethodSecurityMetadataSource which extracts metadata from the @PreFilter and @PreAuthorize
annotations placed on a method.
- PrePostAnnotationSecurityMetadataSource(PrePostInvocationAttributeFactory) - Constructor for class org.springframework.security.access.prepost.PrePostAnnotationSecurityMetadataSource
-
- PrePostInvocationAttributeFactory - Interface in org.springframework.security.access.prepost
-
- preProcess(NativeWebRequest, Callable<T>) - Method in class org.springframework.security.web.context.request.async.SecurityContextCallableProcessingInterceptor
-
- preReceive(MessageChannel) - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- preSend(Message<?>, MessageChannel) - Method in class org.springframework.security.messaging.access.intercept.ChannelSecurityInterceptor
-
- preSend(Message<?>, MessageChannel) - Method in class org.springframework.security.messaging.context.SecurityContextChannelInterceptor
-
- preSend(Message<?>, MessageChannel) - Method in class org.springframework.security.messaging.web.csrf.CsrfChannelInterceptor
-
- principal(Object) - Method in class org.springframework.security.config.annotation.web.configurers.AnonymousConfigurer
-
- principalChanged(HttpServletRequest, Authentication) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Determines if the current principal has changed.
- PrincipalSid - Class in org.springframework.security.acls.domain
-
Represents an Authentication.getPrincipal()
as a Sid
.
- PrincipalSid(String) - Constructor for class org.springframework.security.acls.domain.PrincipalSid
-
- PrincipalSid(Authentication) - Constructor for class org.springframework.security.acls.domain.PrincipalSid
-
- printBinary(int) - Static method in class org.springframework.security.acls.domain.AclFormattingUtils
-
Returns a representation of the active bits in the presented mask, with each active
bit being denoted by character '*'.
- printBinary(int, char) - Static method in class org.springframework.security.acls.domain.AclFormattingUtils
-
Returns a representation of the active bits in the presented mask, with each active
bit being denoted by the passed character.
- privilegeEvaluator(WebInvocationPrivilegeEvaluator) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
- privilegeEvaluator() - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration
-
- proceed() - Method in class org.springframework.security.access.intercept.aspectj.MethodInvocationAdapter
-
- proceed() - Method in class org.springframework.security.util.SimpleMethodInvocation
-
- proceedWithObject() - Method in interface org.springframework.security.access.intercept.aspectj.AspectJCallback
-
- processAction(HttpServletRequest, String) - Method in class org.springframework.security.web.servlet.support.csrf.CsrfRequestDataValueProcessor
-
- processAction(HttpServletRequest, String, String) - Method in class org.springframework.security.web.servlet.support.csrf.CsrfRequestDataValueProcessor
-
- processAutoLoginCookie(String[], HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Called from autoLogin to process the submitted persistent login cookie.
- processAutoLoginCookie(String[], HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
Locates the presented cookie data in the token repository, using the series id.
- processAutoLoginCookie(String[], HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
-
- processConfigAttribute - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- processDomainObjectClass - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- processFormFieldValue(HttpServletRequest, String, String, String) - Method in class org.springframework.security.web.servlet.support.csrf.CsrfRequestDataValueProcessor
-
- processUrl(HttpServletRequest, String) - Method in class org.springframework.security.web.servlet.support.csrf.CsrfRequestDataValueProcessor
-
- PROTECT - Static variable in class org.springframework.security.config.Elements
-
- PROTECT_POINTCUT - Static variable in class org.springframework.security.config.Elements
-
- ProviderManager - Class in org.springframework.security.authentication
-
- ProviderManager(List<AuthenticationProvider>) - Constructor for class org.springframework.security.authentication.ProviderManager
-
- ProviderManager(List<AuthenticationProvider>, AuthenticationManager) - Constructor for class org.springframework.security.authentication.ProviderManager
-
- ProviderManagerBuilder<B extends ProviderManagerBuilder<B>> - Interface in org.springframework.security.config.annotation.authentication
-
Interface for operating on a SecurityBuilder that creates a
ProviderManager
- ProviderNotFoundException - Exception in org.springframework.security.authentication
-
- ProviderNotFoundException(String) - Constructor for exception org.springframework.security.authentication.ProviderNotFoundException
-
Constructs a ProviderNotFoundException
with the specified message.
- PublicInvocationEvent - Class in org.springframework.security.access.event
-
Event that is generated whenever a public secure object is invoked.
- PublicInvocationEvent(Object) - Constructor for class org.springframework.security.access.event.PublicInvocationEvent
-
Construct the event, passing in the public secure object.
- publishAuthenticationFailure(AuthenticationException, Authentication) - Method in interface org.springframework.security.authentication.AuthenticationEventPublisher
-
- publishAuthenticationFailure(AuthenticationException, Authentication) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
-
- publishAuthenticationSuccess(Authentication) - Method in interface org.springframework.security.authentication.AuthenticationEventPublisher
-
- publishAuthenticationSuccess(Authentication) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
-
- publishFailureEvent(UsernamePasswordAuthenticationToken, AuthenticationException) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- publishFailureEvent(UsernamePasswordAuthenticationToken, AuthenticationException) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
-
- publishSuccessEvent(UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- putInCache(MutableAcl) - Method in class org.springframework.security.acls.domain.EhCacheBasedAclCache
-
- putInCache(MutableAcl) - Method in class org.springframework.security.acls.domain.SpringCacheBasedAclCache
-
- putInCache(MutableAcl) - Method in interface org.springframework.security.acls.model.AclCache
-
- putTicketInCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
-
- putTicketInCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
-
This is a no-op since we are not storing tickets.
- putTicketInCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.SpringCacheBasedTicketCache
-
- putTicketInCache(CasAuthenticationToken) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
-
Adds the specified CasAuthenticationToken
to the cache.
- putUserInCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
-
- putUserInCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.NullUserCache
-
- putUserInCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.SpringCacheBasedUserCache
-
- putUserInCache(UserDetails) - Method in interface org.springframework.security.core.userdetails.UserCache
-
- read - Variable in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- READ - Static variable in class org.springframework.security.acls.domain.BasePermission
-
- readAclById(ObjectIdentity, List<Sid>) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
-
- readAclById(ObjectIdentity) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
-
- readAclById(ObjectIdentity) - Method in interface org.springframework.security.acls.model.AclService
-
- readAclById(ObjectIdentity, List<Sid>) - Method in interface org.springframework.security.acls.model.AclService
-
- readAclsById(List<ObjectIdentity>, List<Sid>) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
The main method.
- readAclsById(List<ObjectIdentity>) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
-
- readAclsById(List<ObjectIdentity>, List<Sid>) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
-
- readAclsById(List<ObjectIdentity>, List<Sid>) - Method in interface org.springframework.security.acls.jdbc.LookupStrategy
-
Perform database-specific optimized lookup.
- readAclsById(List<ObjectIdentity>) - Method in interface org.springframework.security.acls.model.AclService
-
Obtains all the Acls that apply for the passed Objects.
- readAclsById(List<ObjectIdentity>, List<Sid>) - Method in interface org.springframework.security.acls.model.AclService
-
Obtains all the Acls that apply for the passed Objects, but only
for the security identifies passed.
- realm(String) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.DigestRequestPostProcessor
-
Configures the realm to use
- realmName(String) - Method in class org.springframework.security.config.annotation.web.configurers.HttpBasicConfigurer
-
Allows easily changing the realm, but leaving the remaining defaults in place.
- RedirectStrategy - Interface in org.springframework.security.web
-
Encapsulates the redirection logic for all classes in the framework which perform
redirects.
- RedirectUrlBuilder - Class in org.springframework.security.web.util
-
Internal class for building redirect URLs.
- RedirectUrlBuilder() - Constructor for class org.springframework.security.web.util.RedirectUrlBuilder
-
- ReflectionSaltSource - Class in org.springframework.security.authentication.dao
-
Obtains a salt from a specified property of the
User
object.
- ReflectionSaltSource() - Constructor for class org.springframework.security.authentication.dao.ReflectionSaltSource
-
- refresh() - Method in class org.springframework.security.authentication.jaas.memory.InMemoryConfiguration
-
Does nothing, but required for JDK5
- refreshLastRequest() - Method in class org.springframework.security.core.session.SessionInformation
-
Refreshes the internal lastRequest to the current date and time.
- refreshLastRequest(String) - Method in interface org.springframework.security.core.session.SessionRegistry
-
Updates the given sessionId
so its last request time is equal to the
present date and time.
- refreshLastRequest(String) - Method in class org.springframework.security.core.session.SessionRegistryImpl
-
- RegexBasedAxFetchListFactory - Class in org.springframework.security.openid
-
- RegexBasedAxFetchListFactory(Map<String, List<OpenIDAttribute>>) - Constructor for class org.springframework.security.openid.RegexBasedAxFetchListFactory
-
- regexMatcher(String) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows configuring the
HttpSecurity
to only be invoked when matching the
provided regex pattern.
- regexMatchers(HttpMethod, String...) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- regexMatchers(String...) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- RegExpAllowFromStrategy - Class in org.springframework.security.web.header.writers.frameoptions
-
Implementation which uses a regular expression to validate the supplied origin.
- RegExpAllowFromStrategy(String) - Constructor for class org.springframework.security.web.header.writers.frameoptions.RegExpAllowFromStrategy
-
Creates a new instance
- RegexRequestMatcher - Class in org.springframework.security.web.util.matcher
-
Uses a regular expression to decide whether a supplied the URL of a supplied
HttpServletRequest
.
- RegexRequestMatcher(String, String) - Constructor for class org.springframework.security.web.util.matcher.RegexRequestMatcher
-
Creates a case-sensitive Pattern
instance to match against the request.
- RegexRequestMatcher(String, String, boolean) - Constructor for class org.springframework.security.web.util.matcher.RegexRequestMatcher
-
As above, but allows setting of whether case-insensitive matching should be used.
- registerExtractor(Class<? extends Throwable>, ThrowableCauseExtractor) - Method in class org.springframework.security.web.util.ThrowableAnalyzer
-
Registers a ThrowableCauseExtractor
for the specified type.
- registerNewSession(String, Object) - Method in interface org.springframework.security.core.session.SessionRegistry
-
Registers a new session for the specified principal.
- registerNewSession(String, Object) - Method in class org.springframework.security.core.session.SessionRegistryImpl
-
- registerPermission(Permission, String) - Method in class org.springframework.security.acls.domain.DefaultPermissionFactory
-
- registerPublicPermissions(Class<? extends Permission>) - Method in class org.springframework.security.acls.domain.DefaultPermissionFactory
-
Registers the public static fields of type
Permission
for a give class.
- RegisterSessionAuthenticationStrategy - Class in org.springframework.security.web.authentication.session
-
- RegisterSessionAuthenticationStrategy(SessionRegistry) - Constructor for class org.springframework.security.web.authentication.session.RegisterSessionAuthenticationStrategy
-
- registerStompEndpoints(StompEndpointRegistry) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- release() - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- REMEMBER_ME - Static variable in class org.springframework.security.config.Elements
-
- rememberMe() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows configuring of Remember Me authentication.
- rememberMe() - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
-
Specify that URLs are allowed by users that have been remembered.
- rememberMe() - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry.Constraint
-
Specify that Messages are allowed by users that have been remembered.
- RememberMeAuthenticationException - Exception in org.springframework.security.web.authentication.rememberme
-
This exception is thrown when an
Authentication
exception occurs while using
the remember-me authentication.
- RememberMeAuthenticationException(String, Throwable) - Constructor for exception org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationException
-
Constructs a RememberMeAuthenticationException
with the specified message
and root cause.
- RememberMeAuthenticationException(String) - Constructor for exception org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationException
-
Constructs an RememberMeAuthenticationException
with the specified message
and no root cause.
- RememberMeAuthenticationFilter - Class in org.springframework.security.web.authentication.rememberme
-
Detects if there is no
Authentication
object in the
SecurityContext
,
and populates the context with a remember-me authentication token if a
RememberMeServices
implementation so requests.
- RememberMeAuthenticationFilter(AuthenticationManager, RememberMeServices) - Constructor for class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
- RememberMeAuthenticationProvider - Class in org.springframework.security.authentication
-
- RememberMeAuthenticationProvider(String) - Constructor for class org.springframework.security.authentication.RememberMeAuthenticationProvider
-
- RememberMeAuthenticationToken - Class in org.springframework.security.authentication
-
Represents a remembered Authentication
.
- RememberMeAuthenticationToken(String, Object, Collection<? extends GrantedAuthority>) - Constructor for class org.springframework.security.authentication.RememberMeAuthenticationToken
-
Constructor.
- RememberMeConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
Configures Remember Me authentication.
- RememberMeConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
Creates a new instance
- rememberMeCookieDomain(String) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
The domain name within which the remember me cookie is visible.
- rememberMeCookieName(String) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
The name of cookie which store the token for remember me authentication.
- rememberMeParameter(String) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
The HTTP parameter used to indicate to remember the user at time of login.
- rememberMeRequested(HttpServletRequest, String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Allows customization of whether a remember-me login has been requested.
- rememberMeServices(RememberMeServices) - Method in class org.springframework.security.config.annotation.web.configurers.RememberMeConfigurer
-
- RememberMeServices - Interface in org.springframework.security.web.authentication
-
Implement by a class that is capable of providing a remember-me service.
- RemoteAuthenticationException - Exception in org.springframework.security.authentication.rcp
-
Thrown if a RemoteAuthenticationManager
cannot validate the presented
authentication request.
- RemoteAuthenticationException(String) - Constructor for exception org.springframework.security.authentication.rcp.RemoteAuthenticationException
-
Constructs a RemoteAuthenticationException
with the specified message
and no root cause.
- RemoteAuthenticationManager - Interface in org.springframework.security.authentication.rcp
-
Allows remote clients to attempt authentication.
- RemoteAuthenticationManagerImpl - Class in org.springframework.security.authentication.rcp
-
Server-side processor of a remote authentication request.
- RemoteAuthenticationManagerImpl() - Constructor for class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
-
- RemoteAuthenticationProvider - Class in org.springframework.security.authentication.rcp
-
- RemoteAuthenticationProvider() - Constructor for class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
-
- removeAuthorities(DistinguishedName, Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- removeConfigurer(Class<C>) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- removeConfigurer(Class<C>) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
- removeConfigurers(Class<C>) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
Removes all the
SecurityConfigurer
instances by its class name or an empty
List if not found.
- removeGroupAuthority(String, GrantedAuthority) - Method in interface org.springframework.security.provisioning.GroupManager
-
Deletes an authority from those assigned to a group
- removeGroupAuthority(String, GrantedAuthority) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- removeRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
-
- removeRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
-
- removeRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
-
Removes the cached request.
- removeSessionInformation(String) - Method in interface org.springframework.security.core.session.SessionRegistry
-
Deletes all the session information being maintained for the specified
sessionId
.
- removeSessionInformation(String) - Method in class org.springframework.security.core.session.SessionRegistryImpl
-
- removeTicketFromCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
-
- removeTicketFromCache(String) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
-
- removeTicketFromCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
-
This is a no-op since we are not storing tickets.
- removeTicketFromCache(String) - Method in class org.springframework.security.cas.authentication.NullStatelessTicketCache
-
This is a no-op since we are not storing tickets.
- removeTicketFromCache(CasAuthenticationToken) - Method in class org.springframework.security.cas.authentication.SpringCacheBasedTicketCache
-
- removeTicketFromCache(String) - Method in class org.springframework.security.cas.authentication.SpringCacheBasedTicketCache
-
- removeTicketFromCache(CasAuthenticationToken) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
-
- removeTicketFromCache(String) - Method in interface org.springframework.security.cas.authentication.StatelessTicketCache
-
Removes the specified ticket from the cache, meaning that future calls will require
a new service ticket.
- removeUserFromCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
-
- removeUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
-
- removeUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.NullUserCache
-
- removeUserFromCache(UserDetails) - Method in class org.springframework.security.core.userdetails.cache.SpringCacheBasedUserCache
-
- removeUserFromCache(String) - Method in class org.springframework.security.core.userdetails.cache.SpringCacheBasedUserCache
-
- removeUserFromCache(String) - Method in interface org.springframework.security.core.userdetails.UserCache
-
Removes the specified user from the cache.
- removeUserFromGroup(String, String) - Method in interface org.springframework.security.provisioning.GroupManager
-
Deletes a user's membership of a group.
- removeUserFromGroup(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- removeUserTokens(String) - Method in class org.springframework.security.web.authentication.rememberme.InMemoryTokenRepositoryImpl
-
- removeUserTokens(String) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
- removeUserTokens(String) - Method in interface org.springframework.security.web.authentication.rememberme.PersistentTokenRepository
-
- renameGroup(String, String) - Method in interface org.springframework.security.provisioning.GroupManager
-
Changes the name of a group without altering the assigned authorities or members.
- renameGroup(String, String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- reportOnly() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.ContentSecurityPolicyConfig
-
Enables (includes) the Content-Security-Policy-Report-Only header in the response.
- reportOnly(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HpkpConfig
-
If true, the browser should not terminate the connection with the server.
- reportUri(URI) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HpkpConfig
-
Sets the URI to which the browser should report pin validation failures.
- reportUri(String) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HpkpConfig
-
Sets the URI to which the browser should report pin validation failures.
- request - Variable in class org.springframework.security.web.access.expression.WebSecurityExpressionRoot
-
Allows direct access to the request object
- REQUEST_CACHE - Static variable in class org.springframework.security.config.Elements
-
- requestCache() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows configuring the Request Cache.
- requestCache(RequestCache) - Method in class org.springframework.security.config.annotation.web.configurers.RequestCacheConfigurer
-
Allows explicit configuration of the
RequestCache
to be used.
- RequestCache - Interface in org.springframework.security.web.savedrequest
-
Implements "saved request" logic, allowing a single request to be retrieved and
restarted after redirecting to an authentication mechanism.
- RequestCacheAwareFilter - Class in org.springframework.security.web.savedrequest
-
Responsible for reconstituting the saved request if one is cached and it matches the
current request.
- RequestCacheAwareFilter() - Constructor for class org.springframework.security.web.savedrequest.RequestCacheAwareFilter
-
- RequestCacheAwareFilter(RequestCache) - Constructor for class org.springframework.security.web.savedrequest.RequestCacheAwareFilter
-
- RequestCacheConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
Adds request cache for Spring Security.
- RequestCacheConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.RequestCacheConfigurer
-
- requestDataValueProcessor() - Method in class org.springframework.security.config.annotation.web.servlet.configuration.WebMvcSecurityConfiguration
-
Deprecated.
- RequestHeaderAuthenticationFilter - Class in org.springframework.security.web.authentication.preauth
-
A simple pre-authenticated filter which obtains the username from a request header, for
use with systems such as CA Siteminder.
- RequestHeaderAuthenticationFilter() - Constructor for class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
-
- RequestHeaderRequestMatcher - Class in org.springframework.security.web.util.matcher
-
A
RequestMatcher
that can be used to match request that contain a header with
an expected header name and an expected value.
- RequestHeaderRequestMatcher(String) - Constructor for class org.springframework.security.web.util.matcher.RequestHeaderRequestMatcher
-
- RequestHeaderRequestMatcher(String, String) - Constructor for class org.springframework.security.web.util.matcher.RequestHeaderRequestMatcher
-
- RequestKey - Class in org.springframework.security.web.access.intercept
-
- RequestKey(String) - Constructor for class org.springframework.security.web.access.intercept.RequestKey
-
- RequestKey(String, String) - Constructor for class org.springframework.security.web.access.intercept.RequestKey
-
- requestMatcher(RequestMatcher) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- requestMatcher(RequestMatcher) - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.HstsConfig
-
Sets the
RequestMatcher
used to determine if the
"Strict-Transport-Security" should be added.
- RequestMatcher - Interface in org.springframework.security.web.util.matcher
-
Simple strategy to match an HttpServletRequest.
- RequestMatcherEditor - Class in org.springframework.security.web.util.matcher
-
PropertyEditor which creates ELRequestMatcher instances from Strings
This allows to use a String in a BeanDefinition instead of an (inner) bean if a
RequestMatcher is required, e.g.
- RequestMatcherEditor() - Constructor for class org.springframework.security.web.util.matcher.RequestMatcherEditor
-
- requestMatchers(RequestMatcher...) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- requestMatchers() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows specifying which
HttpServletRequest
instances this
HttpSecurity
will be invoked on.
- requestMatchers - Variable in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.RequiresChannelUrl
-
- RequestRejectedException - Exception in org.springframework.security.web.firewall
-
- RequestRejectedException(String) - Constructor for exception org.springframework.security.web.firewall.RequestRejectedException
-
- RequestVariablesExtractor - Interface in org.springframework.security.web.util.matcher
-
An interface for extracting URI variables from the HttpServletRequest
.
- requireCsrfProtectionMatcher(RequestMatcher) - Method in class org.springframework.security.config.annotation.web.configurers.CsrfConfigurer
-
Specify the
RequestMatcher
to use for determining when CSRF should be
applied.
- required(boolean) - Method in class org.springframework.security.config.annotation.web.configurers.openid.OpenIDLoginConfigurer.AttributeExchangeConfigurer.AttributeConfigurer
-
Specifies that this attribute is required.
- requirePermission - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- requires(String) - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.RequiresChannelUrl
-
- requiresAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
Overridden to provide proxying capabilities.
- requiresAuthentication(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
Indicates whether this filter should attempt to process a login request for the
current invocation.
- requiresChannel() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Configures channel security.
- requiresExitUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Checks the request URI for the presence of exitUserUrl.
- requiresInsecure() - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.RequiresChannelUrl
-
- requiresLogout(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
-
Allow subclasses to modify when a logout should take place.
- requiresSecure() - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.RequiresChannelUrl
-
- requiresSwitchUser(HttpServletRequest) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Checks the request URI for the presence of switchUserUrl.
- RESERVED_OFF - Static variable in interface org.springframework.security.acls.model.Permission
-
- RESERVED_ON - Static variable in interface org.springframework.security.acls.model.Permission
-
- reset() - Method in class org.springframework.security.web.firewall.FirewalledRequest
-
This method will be called once the request has passed through the security filter
chain, when it is about to proceed to the application proper.
- resolveArgument(MethodParameter, Message<?>) - Method in class org.springframework.security.messaging.context.AuthenticationPrincipalArgumentResolver
-
- resolveArgument(MethodParameter, ModelAndViewContainer, NativeWebRequest, WebDataBinderFactory) - Method in class org.springframework.security.web.bind.support.AuthenticationPrincipalArgumentResolver
-
Deprecated.
- resolveArgument(MethodParameter, ModelAndViewContainer, NativeWebRequest, WebDataBinderFactory) - Method in class org.springframework.security.web.method.annotation.AuthenticationPrincipalArgumentResolver
-
- resolveArgument(MethodParameter, ModelAndViewContainer, NativeWebRequest, WebDataBinderFactory) - Method in class org.springframework.security.web.method.annotation.CsrfTokenArgumentResolver
-
- resolveException(LoginException) - Method in class org.springframework.security.authentication.jaas.DefaultLoginExceptionResolver
-
- resolveException(LoginException) - Method in interface org.springframework.security.authentication.jaas.LoginExceptionResolver
-
Translates a Jaas LoginException to an SpringSecurityException.
- resolveIpAddress(String) - Method in interface org.springframework.security.remoting.dns.DnsResolver
-
Resolves the IP Address (A record) to the specified host name.
- resolveIpAddress(String) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
-
- resolveServiceEntry(String, String) - Method in interface org.springframework.security.remoting.dns.DnsResolver
-
Resolves the host name for the specified service in the specified domain
- resolveServiceEntry(String, String) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
-
- resolveServiceIpAddress(String, String) - Method in interface org.springframework.security.remoting.dns.DnsResolver
-
Resolves the host name for the specified service and then the IP Address for this
host in one call.
- resolveServiceIpAddress(String, String) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
-
- retrieveEntry(String, String[]) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Composes an object from the attributes of the given DN.
- retrieveObjectIdentityPrimaryKey(ObjectIdentity) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Retrieves the primary key from the acl_object_identity table for the passed
ObjectIdentity.
- retrievePassword(Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
-
- retrieveUser(String, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
Allows subclasses to actually retrieve the UserDetails
from an
implementation-specific location, with the option of throwing an
AuthenticationException
immediately if the presented credentials are
incorrect (this is especially useful if it is necessary to bind to a resource as
the user in order to obtain or generate a UserDetails
).
- retrieveUser(String, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- retrieveUserName(Authentication) - Method in class org.springframework.security.web.authentication.rememberme.TokenBasedRememberMeServices
-
- RetryWithHttpEntryPoint - Class in org.springframework.security.web.access.channel
-
Commences an insecure channel by retrying the original request using HTTP.
- RetryWithHttpEntryPoint() - Constructor for class org.springframework.security.web.access.channel.RetryWithHttpEntryPoint
-
- RetryWithHttpsEntryPoint - Class in org.springframework.security.web.access.channel
-
Commences a secure channel by retrying the original request using HTTPS.
- RetryWithHttpsEntryPoint() - Constructor for class org.springframework.security.web.access.channel.RetryWithHttpsEntryPoint
-
- ROLE_PREVIOUS_ADMINISTRATOR - Static variable in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- RoleHierarchy - Interface in org.springframework.security.access.hierarchicalroles
-
The simple interface of a role hierarchy.
- RoleHierarchyAuthoritiesMapper - Class in org.springframework.security.access.hierarchicalroles
-
- RoleHierarchyAuthoritiesMapper(RoleHierarchy) - Constructor for class org.springframework.security.access.hierarchicalroles.RoleHierarchyAuthoritiesMapper
-
- RoleHierarchyImpl - Class in org.springframework.security.access.hierarchicalroles
-
This class defines a role hierarchy for use with the UserDetailsServiceWrapper.
- RoleHierarchyImpl() - Constructor for class org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl
-
- RoleHierarchyVoter - Class in org.springframework.security.access.vote
-
Extended RoleVoter which uses a
RoleHierarchy
definition to determine the roles
allocated to the current user before voting.
- RoleHierarchyVoter(RoleHierarchy) - Constructor for class org.springframework.security.access.vote.RoleHierarchyVoter
-
- rolePrefix(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer
-
A non-empty string prefix that will be added as a prefix to the existing roles.
- rolePrefix(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.JdbcUserDetailsManagerConfigurer
-
A non-empty string prefix that will be added to role strings loaded from persistent
storage (default is "").
- rolePrefix(String) - Method in class org.springframework.security.config.annotation.web.configurers.ServletApiConfigurer
-
- roles(String...) - Method in class org.springframework.security.config.annotation.authentication.configurers.provisioning.UserDetailsManagerConfigurer.UserDetailsBuilder
-
Populates the roles.
- roles(String...) - Method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors.UserRequestPostProcessor
-
Specify the roles of the user to authenticate as.
- RoleVoter - Class in org.springframework.security.access.vote
-
- RoleVoter() - Constructor for class org.springframework.security.access.vote.RoleVoter
-
- root(String) - Method in class org.springframework.security.config.annotation.authentication.configurers.ldap.LdapAuthenticationProviderConfigurer.ContextSourceBuilder
-
Optional root suffix for the embedded LDAP server.
- run() - Method in class org.springframework.security.concurrent.DelegatingSecurityContextRunnable
-
- RunAsImplAuthenticationProvider - Class in org.springframework.security.access.intercept
-
- RunAsImplAuthenticationProvider() - Constructor for class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
-
- RunAsManager - Interface in org.springframework.security.access.intercept
-
Creates a new temporary
Authentication
object for the current secure object
invocation only.
- runAsManager() - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- RunAsManagerImpl - Class in org.springframework.security.access.intercept
-
- RunAsManagerImpl() - Constructor for class org.springframework.security.access.intercept.RunAsManagerImpl
-
- RunAsUserToken - Class in org.springframework.security.access.intercept
-
- RunAsUserToken(String, Object, Object, Collection<? extends GrantedAuthority>, Class<? extends Authentication>) - Constructor for class org.springframework.security.access.intercept.RunAsUserToken
-
- SALT_SOURCE - Static variable in class org.springframework.security.config.Elements
-
- SaltSource - Interface in org.springframework.security.authentication.dao
-
Provides alternative sources of the salt to use for encoding passwords.
- sameOrigin() - Method in class org.springframework.security.config.annotation.web.configurers.HeadersConfigurer.FrameOptionsConfig
-
Specify to allow any request that comes from the same origin to frame this
application.
- sameOriginDisabled() - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
Determines if a CSRF token is required for connecting.
- SamlServiceProperties - Class in org.springframework.security.cas
-
Sets the appropriate parameters for CAS's implementation of SAML (which is not
guaranteed to be actually SAML compliant).
- SamlServiceProperties() - Constructor for class org.springframework.security.cas.SamlServiceProperties
-
- saveContext(SecurityContext, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
- saveContext(SecurityContext, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.context.NullSecurityContextRepository
-
- saveContext(SecurityContext) - Method in class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
-
Implements the logic for storing the security context.
- saveContext(SecurityContext, HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.context.SecurityContextRepository
-
Stores the security context on completion of a request.
- SaveContextOnUpdateOrErrorResponseWrapper - Class in org.springframework.security.web.context
-
Base class for response wrappers which encapsulate the logic for storing a security
context and which store the
SecurityContext
when a
sendError()
,
sendRedirect
,
getOutputStream().close()
,
getOutputStream().flush()
,
getWriter().close()
, or
getWriter().flush()
happens on the
same thread that this
SaveContextOnUpdateOrErrorResponseWrapper
was created.
- SaveContextOnUpdateOrErrorResponseWrapper(HttpServletResponse, boolean) - Constructor for class org.springframework.security.web.context.SaveContextOnUpdateOrErrorResponseWrapper
-
- SavedCookie - Class in org.springframework.security.web.savedrequest
-
Stores off the values of a cookie in a serializable holder
- SavedCookie(String, String, String, String, int, String, boolean, int) - Constructor for class org.springframework.security.web.savedrequest.SavedCookie
-
- SavedCookie(Cookie) - Constructor for class org.springframework.security.web.savedrequest.SavedCookie
-
- SavedRequest - Interface in org.springframework.security.web.savedrequest
-
Encapsulates the functionality required of a cached request for both an authentication
mechanism (typically form-based login) to redirect to the original URL and for a
RequestCache to build a wrapped request, reproducing the original request
data.
- SavedRequestAwareAuthenticationSuccessHandler - Class in org.springframework.security.web.authentication
-
- SavedRequestAwareAuthenticationSuccessHandler() - Constructor for class org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler
-
- saveException(HttpServletRequest, AuthenticationException) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
Caches the AuthenticationException
for use in view rendering.
- saveRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
-
Stores the current request, provided the configuration properties allow it.
- saveRequest(HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.savedrequest.NullRequestCache
-
- saveRequest(HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.savedrequest.RequestCache
-
Caches the current request for later retrieval, once authentication has taken
place.
- saveToken(CsrfToken, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.csrf.CookieCsrfTokenRepository
-
- saveToken(CsrfToken, HttpServletRequest, HttpServletResponse) - Method in interface org.springframework.security.web.csrf.CsrfTokenRepository
-
Saves the
CsrfToken
using the
HttpServletRequest
and
HttpServletResponse
.
- saveToken(CsrfToken, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.csrf.HttpSessionCsrfTokenRepository
-
- saveToken(CsrfToken, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.csrf.LazyCsrfTokenRepository
-
- schedule(Runnable, long, TimeUnit) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextScheduledExecutorService
-
- schedule(Callable<V>, long, TimeUnit) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextScheduledExecutorService
-
- scheduleAtFixedRate(Runnable, long, long, TimeUnit) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextScheduledExecutorService
-
- scheduleWithFixedDelay(Runnable, long, long, TimeUnit) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextScheduledExecutorService
-
- SCryptPasswordEncoder - Class in org.springframework.security.crypto.scrypt
-
Implementation of PasswordEncoder that uses the SCrypt hashing function.
- SCryptPasswordEncoder() - Constructor for class org.springframework.security.crypto.scrypt.SCryptPasswordEncoder
-
- SCryptPasswordEncoder(int, int, int, int, int) - Constructor for class org.springframework.security.crypto.scrypt.SCryptPasswordEncoder
-
Creates a new instance
- searchForMultipleAttributeValues(String, String, Object[], String[]) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Performs a search using the supplied filter and returns the values of each named
attribute found in all entries matched by the search.
- searchForSingleAttributeValues(String, String, Object[], String) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Performs a search using the supplied filter and returns the union of the values of
the named attribute found in all entries matched by the search.
- searchForSingleEntry(String, String, Object[]) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Performs a search, with the requirement that the search shall return a single
directory entry, and uses the supplied mapper to create the object from that entry.
- searchForSingleEntryInternal(DirContext, SearchControls, String, String, Object[]) - Static method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Internal method extracted to avoid code duplication in AD search.
- searchForUser(String) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
-
Return the LdapUserDetails containing the user's information
- searchForUser(String) - Method in interface org.springframework.security.ldap.search.LdapUserSearch
-
Locates a single user in the directory and returns the LDAP information for that
user.
- SecureChannelProcessor - Class in org.springframework.security.web.access.channel
-
Ensures channel security is active by review of
HttpServletRequest.isSecure()
responses.
- SecureChannelProcessor() - Constructor for class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- Secured - Annotation Type in org.springframework.security.access.annotation
-
Java 5 annotation for describing service layer security attributes.
- SecuredAnnotationSecurityMetadataSource - Class in org.springframework.security.access.annotation
-
Sources method security metadata from Spring Security's
Secured
annotation.
- SecuredAnnotationSecurityMetadataSource() - Constructor for class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
-
- SecuredAnnotationSecurityMetadataSource(AnnotationMetadataExtractor) - Constructor for class org.springframework.security.access.annotation.SecuredAnnotationSecurityMetadataSource
-
- secureRandom() - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
-
- secureRandom(int) - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
-
- SecureRandomFactoryBean - Class in org.springframework.security.core.token
-
- SecureRandomFactoryBean() - Constructor for class org.springframework.security.core.token.SecureRandomFactoryBean
-
- SecurityBuilder<O> - Interface in org.springframework.security.config.annotation
-
Interface for building an Object
- securityCheck(Acl, int) - Method in interface org.springframework.security.acls.domain.AclAuthorizationStrategy
-
- securityCheck(Acl, int) - Method in class org.springframework.security.acls.domain.AclAuthorizationStrategyImpl
-
- SecurityConfig - Class in org.springframework.security.access
-
- SecurityConfig(String) - Constructor for class org.springframework.security.access.SecurityConfig
-
- SecurityConfigurer<O,B extends SecurityBuilder<O>> - Interface in org.springframework.security.config.annotation
-
- SecurityConfigurerAdapter<O,B extends SecurityBuilder<O>> - Class in org.springframework.security.config.annotation
-
A base class for
SecurityConfigurer
that allows subclasses to only implement
the methods they are interested in.
- SecurityConfigurerAdapter() - Constructor for class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
- securityContext() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- SecurityContext - Interface in org.springframework.security.core.context
-
Interface defining the minimum security information associated with the current thread
of execution.
- securityContext(SecurityContext) - Static method in class org.springframework.security.test.web.servlet.request.SecurityMockMvcRequestPostProcessors
-
- SecurityContextCallableProcessingInterceptor - Class in org.springframework.security.web.context.request.async
-
Allows for integration with Spring MVC's
Callable
support.
- SecurityContextCallableProcessingInterceptor() - Constructor for class org.springframework.security.web.context.request.async.SecurityContextCallableProcessingInterceptor
-
- SecurityContextCallableProcessingInterceptor(SecurityContext) - Constructor for class org.springframework.security.web.context.request.async.SecurityContextCallableProcessingInterceptor
-
- securityContextChannelInterceptor() - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- SecurityContextChannelInterceptor - Class in org.springframework.security.messaging.context
-
Creates a
ExecutorChannelInterceptor
that will obtain the
Authentication
from the specified
Message.getHeaders()
.
- SecurityContextChannelInterceptor() - Constructor for class org.springframework.security.messaging.context.SecurityContextChannelInterceptor
-
Creates a new instance using the header of the name
SimpMessageHeaderAccessor.USER_HEADER
.
- SecurityContextChannelInterceptor(String) - Constructor for class org.springframework.security.messaging.context.SecurityContextChannelInterceptor
-
Creates a new instance that uses the specified header to obtain the
Authentication
.
- SecurityContextConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
- SecurityContextConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.SecurityContextConfigurer
-
Creates a new instance
- SecurityContextHolder - Class in org.springframework.security.core.context
-
- SecurityContextHolder() - Constructor for class org.springframework.security.core.context.SecurityContextHolder
-
- SecurityContextHolderAwareRequestFilter - Class in org.springframework.security.web.servletapi
-
A Filter
which populates the ServletRequest
with a request
wrapper which implements the servlet API security methods.
- SecurityContextHolderAwareRequestFilter() - Constructor for class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
- SecurityContextHolderAwareRequestWrapper - Class in org.springframework.security.web.servletapi
-
- SecurityContextHolderAwareRequestWrapper(HttpServletRequest, String) - Constructor for class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
-
- SecurityContextHolderAwareRequestWrapper(HttpServletRequest, AuthenticationTrustResolver, String) - Constructor for class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestWrapper
-
Creates a new instance
- SecurityContextHolderStrategy - Interface in org.springframework.security.core.context
-
A strategy for storing security context information against a thread.
- SecurityContextImpl - Class in org.springframework.security.core.context
-
- SecurityContextImpl() - Constructor for class org.springframework.security.core.context.SecurityContextImpl
-
- SecurityContextLoginModule - Class in org.springframework.security.authentication.jaas
-
- SecurityContextLoginModule() - Constructor for class org.springframework.security.authentication.jaas.SecurityContextLoginModule
-
- SecurityContextLogoutHandler - Class in org.springframework.security.web.authentication.logout
-
- SecurityContextLogoutHandler() - Constructor for class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
-
- SecurityContextPersistenceFilter - Class in org.springframework.security.web.context
-
- SecurityContextPersistenceFilter() - Constructor for class org.springframework.security.web.context.SecurityContextPersistenceFilter
-
- SecurityContextPersistenceFilter(SecurityContextRepository) - Constructor for class org.springframework.security.web.context.SecurityContextPersistenceFilter
-
- securityContextRepository(SecurityContextRepository) - Method in class org.springframework.security.config.annotation.web.configurers.SecurityContextConfigurer
-
- SecurityContextRepository - Interface in org.springframework.security.web.context
-
- SecurityDebugBeanFactoryPostProcessor - Class in org.springframework.security.config.debug
-
- SecurityDebugBeanFactoryPostProcessor() - Constructor for class org.springframework.security.config.debug.SecurityDebugBeanFactoryPostProcessor
-
- SecurityEvaluationContextExtension - Class in org.springframework.security.data.repository.query
-
By defining this object as a Bean, Spring Security is exposed as SpEL expressions for
creating Spring Data queries.
- SecurityEvaluationContextExtension() - Constructor for class org.springframework.security.data.repository.query.SecurityEvaluationContextExtension
-
- SecurityEvaluationContextExtension(Authentication) - Constructor for class org.springframework.security.data.repository.query.SecurityEvaluationContextExtension
-
Creates a new instance that always uses the same
Authentication
object.
- SecurityExpressionHandler<T> - Interface in org.springframework.security.access.expression
-
Facade which isolates Spring Security's requirements for evaluating security
expressions from the implementation of the underlying expression objects
- SecurityExpressionOperations - Interface in org.springframework.security.access.expression
-
Standard interface for expression root objects used with expression-based security.
- SecurityExpressionRoot - Class in org.springframework.security.access.expression
-
Base root object for use in Spring Security expression evaluations.
- SecurityExpressionRoot(Authentication) - Constructor for class org.springframework.security.access.expression.SecurityExpressionRoot
-
Creates a new instance
- SecurityFilterChain - Interface in org.springframework.security.web
-
Defines a filter chain which is capable of being matched against an
HttpServletRequest
.
- securityInterceptor(FilterSecurityInterceptor) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
- SecurityMetadataSource - Interface in org.springframework.security.access
-
Implemented by classes that store and can identify the
ConfigAttribute
s that
applies to a given secure object invocation.
- SecurityMockMvcConfigurers - Class in org.springframework.security.test.web.servlet.setup
-
- SecurityMockMvcConfigurers() - Constructor for class org.springframework.security.test.web.servlet.setup.SecurityMockMvcConfigurers
-
- SecurityMockMvcRequestBuilders - Class in org.springframework.security.test.web.servlet.request
-
- SecurityMockMvcRequestBuilders.FormLoginRequestBuilder - Class in org.springframework.security.test.web.servlet.request
-
Creates a form based login request including any necessary
CsrfToken
.
- SecurityMockMvcRequestBuilders.LogoutRequestBuilder - Class in org.springframework.security.test.web.servlet.request
-
Creates a logout request (including any necessary
CsrfToken
)
- SecurityMockMvcRequestPostProcessors - Class in org.springframework.security.test.web.servlet.request
-
- SecurityMockMvcRequestPostProcessors.CsrfRequestPostProcessor - Class in org.springframework.security.test.web.servlet.request
-
Populates a valid
CsrfToken
into the request.
- SecurityMockMvcRequestPostProcessors.DigestRequestPostProcessor - Class in org.springframework.security.test.web.servlet.request
-
- SecurityMockMvcRequestPostProcessors.UserRequestPostProcessor - Class in org.springframework.security.test.web.servlet.request
-
- SecurityMockMvcResultMatchers - Class in org.springframework.security.test.web.servlet.response
-
- SecurityMockMvcResultMatchers.AuthenticatedMatcher - Class in org.springframework.security.test.web.servlet.response
-
- SecurityNamespaceHandler - Class in org.springframework.security.config
-
Parses elements from the "security" namespace
(http://www.springframework.org/schema/security).
- SecurityNamespaceHandler() - Constructor for class org.springframework.security.config.SecurityNamespaceHandler
-
- SecurityTestExecutionListeners - Annotation Type in org.springframework.security.test.context.annotation
-
There are many times a user may want to use Spring Security's test support
(i.e.
- SecurityWebApplicationContextUtils - Class in org.springframework.security.web.context.support
-
- SecurityWebApplicationContextUtils() - Constructor for class org.springframework.security.web.context.support.SecurityWebApplicationContextUtils
-
- sendError(int) - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- sendError(int, String) - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- sendRedirect(HttpServletRequest, HttpServletResponse, String) - Method in class org.springframework.security.web.DefaultRedirectStrategy
-
Redirects the response to the supplied URL.
- sendRedirect(HttpServletRequest, HttpServletResponse, String) - Method in interface org.springframework.security.web.RedirectStrategy
-
Performs a redirect to the supplied URL
- sendRedirect(String) - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- sendStartAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, AuthenticationException) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- SERIAL_VERSION_UID - Static variable in class org.springframework.security.core.SpringSecurityCoreVersion
-
Global Serialization value for Spring Security classes.
- ServiceAuthenticationDetails - Interface in org.springframework.security.cas.web.authentication
-
- ServiceAuthenticationDetailsSource - Class in org.springframework.security.cas.web.authentication
-
The AuthenticationDetailsSource
that is set on the
CasAuthenticationFilter
should return a value that implements
ServiceAuthenticationDetails
if the application needs to authenticate dynamic
service urls.
- ServiceAuthenticationDetailsSource(ServiceProperties) - Constructor for class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
-
Creates an implementation that uses the specified ServiceProperites and the default
CAS artifactParameterName.
- ServiceAuthenticationDetailsSource(ServiceProperties, String) - Constructor for class org.springframework.security.cas.web.authentication.ServiceAuthenticationDetailsSource
-
Creates an implementation that uses the specified artifactParameterName
- ServiceProperties - Class in org.springframework.security.cas
-
Stores properties related to this CAS service.
- ServiceProperties() - Constructor for class org.springframework.security.cas.ServiceProperties
-
- servletApi() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Integrates the
HttpServletRequest
methods with the values found on the
SecurityContext
.
- ServletApiConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
- ServletApiConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.ServletApiConfigurer
-
Creates a new instance
- servletPath(String) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity.MvcMatchersRequestMatcherConfigurer
-
- servletPath(String) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity.MvcMatchersIgnoredRequestConfigurer
-
- servletPath(String) - Method in class org.springframework.security.config.annotation.web.configurers.ChannelSecurityConfigurer.MvcMatchersRequiresChannelUrl
-
- servletPath(String) - Method in class org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl
-
- servletPath(String) - Method in class org.springframework.security.config.annotation.web.configurers.UrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl
-
- SESSION_MANAGEMENT - Static variable in class org.springframework.security.config.Elements
-
- sessionAuthenticationErrorUrl(String) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
Defines the URL of the error page which should be shown when the
SessionAuthenticationStrategy raises an exception.
- SessionAuthenticationException - Exception in org.springframework.security.web.authentication.session
-
Thrown by an SessionAuthenticationStrategy to indicate that an authentication
object is not valid for the current session, typically because the same user has
exceeded the number of sessions they are allowed to have concurrently.
- SessionAuthenticationException(String) - Constructor for exception org.springframework.security.web.authentication.session.SessionAuthenticationException
-
- sessionAuthenticationStrategy(SessionAuthenticationStrategy) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
- SessionAuthenticationStrategy - Interface in org.springframework.security.web.authentication.session
-
Allows pluggable support for HttpSession-related behaviour when an authentication
occurs.
- sessionCreated(HttpSessionEvent) - Method in class org.springframework.security.web.session.HttpSessionEventPublisher
-
- SessionCreationEvent - Class in org.springframework.security.core.session
-
Generic session creation event which indicates that a session (potentially represented
by a security context) has begun.
- SessionCreationEvent(Object) - Constructor for class org.springframework.security.core.session.SessionCreationEvent
-
- sessionCreationPolicy(SessionCreationPolicy) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
- SessionCreationPolicy - Enum in org.springframework.security.config.http
-
Specifies the various session creation policies for Spring Security.
- sessionDestroyed(HttpSessionEvent) - Method in class org.springframework.security.web.session.HttpSessionEventPublisher
-
- SessionDestroyedEvent - Class in org.springframework.security.core.session
-
Generic "session termination" event which indicates that a session (potentially
represented by a security context) has ended.
- SessionDestroyedEvent(Object) - Constructor for class org.springframework.security.core.session.SessionDestroyedEvent
-
- sessionFixation() - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
- SessionFixationConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer.SessionFixationConfigurer
-
- SessionFixationProtectionEvent - Class in org.springframework.security.web.authentication.session
-
Indicates a session ID was changed for the purposes of session fixation protection.
- SessionFixationProtectionEvent(Authentication, String, String) - Constructor for class org.springframework.security.web.authentication.session.SessionFixationProtectionEvent
-
Constructs a new session fixation protection event.
- SessionFixationProtectionStrategy - Class in org.springframework.security.web.authentication.session
-
- SessionFixationProtectionStrategy() - Constructor for class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
-
- SessionInformation - Class in org.springframework.security.core.session
-
Represents a record of a session within the Spring Security framework.
- SessionInformation(Object, String, Date) - Constructor for class org.springframework.security.core.session.SessionInformation
-
- sessionManagement() - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
Allows configuring of Session Management.
- SessionManagementConfigurer<H extends HttpSecurityBuilder<H>> - Class in org.springframework.security.config.annotation.web.configurers
-
Allows configuring session management.
- SessionManagementConfigurer() - Constructor for class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer
-
Creates a new instance
- SessionManagementConfigurer.ConcurrencyControlConfigurer - Class in org.springframework.security.config.annotation.web.configurers
-
Allows configuring controlling of multiple sessions.
- SessionManagementConfigurer.SessionFixationConfigurer - Class in org.springframework.security.config.annotation.web.configurers
-
Allows configuring SessionFixation protection
- SessionManagementFilter - Class in org.springframework.security.web.session
-
Detects that a user has been authenticated since the start of the request and, if they
have, calls the configured
SessionAuthenticationStrategy
to perform any
session-related activity such as activating session-fixation protection mechanisms or
checking for multiple concurrent logins.
- SessionManagementFilter(SecurityContextRepository) - Constructor for class org.springframework.security.web.session.SessionManagementFilter
-
- SessionManagementFilter(SecurityContextRepository, SessionAuthenticationStrategy) - Constructor for class org.springframework.security.web.session.SessionManagementFilter
-
- sessionRegistry(SessionRegistry) - Method in class org.springframework.security.config.annotation.web.configurers.SessionManagementConfigurer.ConcurrencyControlConfigurer
-
- SessionRegistry - Interface in org.springframework.security.core.session
-
Maintains a registry of SessionInformation
instances.
- SessionRegistryImpl - Class in org.springframework.security.core.session
-
- SessionRegistryImpl() - Constructor for class org.springframework.security.core.session.SessionRegistryImpl
-
- set(Permission) - Method in class org.springframework.security.acls.domain.CumulativePermission
-
- setAccess(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
- setAccessDecisionManager(AccessDecisionManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setAccessDeniedHandler(AccessDeniedHandler) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- setAccessDeniedHandler(AccessDeniedHandler) - Method in class org.springframework.security.web.csrf.CsrfFilter
-
- setAccountNonExpired(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setAccountNonLocked(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setAdditionalExceptionMappings(Properties) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
-
Sets additional exception to event mappings.
- setAddPrefixIfAlreadyExisting(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
-
- setAfterInvocationManager(AfterInvocationManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setAlgorithm(String) - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
-
Allows the Pseudo Random Number Generator (PRNG) algorithm to be nominated.
- setAllowIfAllAbstainDecisions(boolean) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- setAllowIfEqualGrantedDeniedDecisions(boolean) - Method in class org.springframework.security.access.vote.ConsensusBased
-
- setAllowSessionCreation(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setAllowSessionCreation(boolean) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
- setAllowSessionCreation(boolean) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
If set to true (the default), a session will be created (if required) to store the
security context if it is determined that its contents are different from the
default empty context value.
- setAllowUrlEncodedSlash(boolean) - Method in class org.springframework.security.web.firewall.DefaultHttpFirewall
-
Sets if the application should allow a URL encoded slash character.
- setAlwaysReauthenticate(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setAlwaysRemember(boolean) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- setAlwaysUseDefaultTargetUrl(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
If true
, will always redirect to the value of defaultTargetUrl
(defaults to false
).
- setAnonymousAuthentication(Authentication) - Method in class org.springframework.security.messaging.context.SecurityContextChannelInterceptor
-
Allows setting the Authentication used for anonymous authentication.
- setAnonymousClass(Class<? extends Authentication>) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.annotation.web.builders.WebSecurity
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.config.http.UserDetailsServiceFactoryBean
-
- setApplicationContext(ApplicationContext) - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.authentication.DefaultAuthenticationEventPublisher
-
- setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
- setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
- setApplicationEventPublisher(ApplicationEventPublisher) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- setArtifactParameter(String) - Method in class org.springframework.security.cas.ServiceProperties
-
Configures the Request Parameter to look for when attempting to see if a CAS ticket
was sent from the server.
- setAsText(String) - Method in class org.springframework.security.core.userdetails.memory.UserAttributeEditor
-
- setAsText(String) - Method in class org.springframework.security.web.util.matcher.RequestMatcherEditor
-
- setAttributeNames(Set<String>) - Method in class org.springframework.security.ldap.userdetails.NestedLdapAuthoritiesPopulator
-
Sets the attribute names to retrieve for each ldap groups.
- setAttributePrefix(String) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
-
- setAttributes2grantedAuthoritiesMap(Map<?, ?>) - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
-
- setAttributesToRetrieve(String[]) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- setAuthenticateAllArtifacts(boolean) - Method in class org.springframework.security.cas.ServiceProperties
-
If true, then any non-null artifact (ticket) should be authenticated.
- setAuthenticated(boolean) - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
-
- setAuthenticated(boolean) - Method in class org.springframework.security.authentication.UsernamePasswordAuthenticationToken
-
- setAuthenticated(boolean) - Method in interface org.springframework.security.core.Authentication
-
- setAuthentication(Authentication) - Method in interface org.springframework.security.core.context.SecurityContext
-
Changes the currently authenticated principal, or removes the authentication
information.
- setAuthentication(Authentication) - Method in class org.springframework.security.core.context.SecurityContextImpl
-
- setAuthenticationConfiguration(AuthenticationConfiguration) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.AnonymousAuthenticationFilter
-
- setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
- setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- setAuthenticationDetailsSource(AuthenticationDetailsSource<HttpServletRequest, ?>) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- setAuthenticationEntryPoint(DigestAuthenticationEntryPoint) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- setAuthenticationEntryPoint(AuthenticationEntryPoint) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
- setAuthenticationEventPublisher(AuthenticationEventPublisher) - Method in class org.springframework.security.authentication.ProviderManager
-
- setAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
- setAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Sets the strategy used to handle a failed authentication.
- setAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.web.session.SessionManagementFilter
-
The handler which will be invoked if the AuthenticatedSessionStrategy
raises a SessionAuthenticationException, indicating that the user is not
allowed to be authenticated for this session (typically because they already have
too many sessions open).
- setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationManagerImpl
-
- setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.provisioning.InMemoryUserDetailsManager
-
- setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
- setAuthenticationManager(AuthenticationManager) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
- setAuthenticationSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
Sets the strategy used to handle a successful authentication.
- setAuthenticationSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Sets the strategy used to handle a successful authentication.
- setAuthenticationSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.web.authentication.rememberme.RememberMeAuthenticationFilter
-
Allows control over the destination a remembered user is sent to when they are
successfully authenticated.
- setAuthenticationTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.access.vote.AuthenticatedVoter
-
- setAuthenticationTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- setAuthenticationUrl(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setAuthenticationUserDetailsService(AuthenticationUserDetailsService<CasAssertionAuthenticationToken>) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setAuthenticationUserDetailsService(AuthenticationUserDetailsService<OpenIDAuthenticationToken>) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
-
Used to load the UserDetails
for the authenticated OpenID user.
- setAuthorities(List<GrantedAuthority>) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
Set all authorities for this user.
- setAuthorities(Collection<? extends GrantedAuthority>) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setAuthoritiesAsString(List<String>) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
Set all authorities for this user from String values.
- setAuthoritiesByUsernameQuery(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Allows the default query string used to retrieve authorities based on username to
be overridden, if default table or column names need to be changed.
- setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
- setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
-
- setAuthoritiesMapper(GrantedAuthoritiesMapper) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- setAuthorityGranters(AuthorityGranter[]) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
Set the AuthorityGranters that should be consulted for role names to be granted to
the Authentication.
- setBatchSize(int) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
- setBeanClassLoader(ClassLoader) - Method in class org.springframework.security.access.method.MapBasedMethodSecurityMetadataSource
-
- setBeanClassLoader(ClassLoader) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration
-
- setBeanFactory(BeanFactory) - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityMetadataSourceAdvisor
-
- setBeanFactory(BeanFactory) - Method in class org.springframework.security.config.authentication.AuthenticationManagerFactoryBean
-
- setBlock(boolean) - Method in class org.springframework.security.web.header.writers.XXssProtectionHeaderWriter
-
If false, will not specify the mode as blocked.
- setBuilder(B) - Method in class org.springframework.security.config.annotation.SecurityConfigurerAdapter
-
- setCache(Ehcache) - Method in class org.springframework.security.cas.authentication.EhCacheBasedTicketCache
-
- setCache(Ehcache) - Method in class org.springframework.security.core.userdetails.cache.EhCacheBasedUserCache
-
- setCallbackHandlers(JaasAuthenticationCallbackHandler[]) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
Set the JAASAuthentcationCallbackHandler array to handle callback objects generated
by the LoginContext.login method.
- setCarLicense(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setChangePasswordSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setChannelDecisionManager(ChannelDecisionManager) - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
-
- setChannelProcessors(List<?>) - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
-
- setCheckForPrincipalChanges(boolean) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
If set, the pre-authenticated principal will be checked on each request and
compared against the name of the current Authentication object.
- setClaimedIdentityFieldName(String) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
The name of the request parameter containing the OpenID identity, as submitted from
the initial login form.
- setClassIdentityQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Sets the query that will be used to retrieve the identity of a newly created row in
the acl_class table.
- setClassPrimaryKeyQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setClearAuthentication(boolean) - Method in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
-
- setCn(String[]) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- setConfiguration(Configuration) - Method in class org.springframework.security.authentication.jaas.DefaultJaasAuthenticationProvider
-
Sets the Configuration to use for Authentication.
- setConsumer(OpenIDConsumer) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
- setContentLength(int) - Method in class org.springframework.security.web.util.OnCommittedResponseWrapper
-
- setContentNegotationStrategy(ContentNegotiationStrategy) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- setContext(SecurityContext) - Static method in class org.springframework.security.core.context.SecurityContextHolder
-
Associates a new SecurityContext
with the current thread of execution.
- setContext(SecurityContext) - Method in interface org.springframework.security.core.context.SecurityContextHolderStrategy
-
Sets the current context.
- setContext(SecurityContext) - Static method in class org.springframework.security.test.context.TestSecurityContextHolder
-
- setContextPath(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- setContextRelative(boolean) - Method in class org.springframework.security.web.DefaultRedirectStrategy
-
If true, causes any redirection URLs to be calculated minus the protocol
and context path (defaults to false).
- setContinueChainBeforeSuccessfulAuthentication(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setContinueFilterChainOnUnsuccessfulAuthentication(boolean) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
If set to true
, any AuthenticationException
raised by the
AuthenticationManager
will be swallowed, and the request will be allowed to
proceed, potentially using alternative authentication mechanisms.
- setConvertAttributeToLowerCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
-
- setConvertAttributeToUpperCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
-
- setConvertSubErrorCodesToExceptions(boolean) - Method in class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
-
By default, a failed authentication (LDAP error 49) will result in a
BadCredentialsException
.
- setConvertToLowerCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
-
Whether to convert the authority value to lower case in the mapping.
- setConvertToUpperCase(boolean) - Method in class org.springframework.security.cas.userdetails.GrantedAuthorityFromAssertionAttributesUserDetailsService
-
Converts the returned attribute values to uppercase values.
- setConvertToUpperCase(boolean) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
-
Whether to convert the authority value to upper case in the mapping.
- setConvertToUpperCase(boolean) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Convert the role to uppercase
- setConvertToUpperCase(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
-
Determines whether role field values will be converted to upper case when loaded.
- setCookie(String[], int, HttpServletRequest, HttpServletResponse) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Sets the cookie on the response.
- setCookieDomain(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- setCookieHttpOnly(boolean) - Method in class org.springframework.security.web.csrf.CookieCsrfTokenRepository
-
Sets the HttpOnly attribute on the cookie containing the CSRF token.
- setCookieName(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- setCookieName(String) - Method in class org.springframework.security.web.csrf.CookieCsrfTokenRepository
-
Sets the name of the cookie that the expected CSRF token is saved to and read from.
- setCount(int) - Method in class org.springframework.security.openid.OpenIDAttribute
-
- setCreateAuthenticatedToken(boolean) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
If you set this property, the Authentication object, which is created after the
successful digest authentication will be marked as authenticated and filled
with the authorities loaded by the UserDetailsService.
- setCreateAuthoritySql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setCreateEmptySubject(boolean) - Method in class org.springframework.security.web.jaasapi.JaasApiIntegrationFilter
-
Sets createEmptySubject
.
- setCreateNewSession(boolean) - Method in class org.springframework.security.web.session.SimpleRedirectInvalidSessionStrategy
-
Determines whether a new session should be created before redirecting (to avoid
possible looping issues where the same session ID is sent with the redirected
request).
- setCreateSessionAllowed(boolean) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
-
If true
, indicates that it is permitted to store the target URL and
exception information in a new HttpSession
(the default).
- setCreateTableOnStartup(boolean) - Method in class org.springframework.security.web.authentication.rememberme.JdbcTokenRepositoryImpl
-
Intended for convenience in debugging.
- setCreateUserSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setCredentialsCharset(String) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- setCredentialsNonExpired(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setCredentialsRequestHeader(String) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
-
- setCsrfTokenRepository(HttpServletRequest, CsrfTokenRepository) - Static method in class org.springframework.security.test.web.support.WebTestUtils
-
- setCtxFactory(InitialContextFactory) - Method in class org.springframework.security.remoting.dns.JndiDnsResolver
-
Allows to inject an own JNDI context factory.
- setDefaultAuthority(String) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
-
Sets a default authority to be assigned to all users
- setDefaultEntryPoint(AuthenticationEntryPoint) - Method in class org.springframework.security.web.authentication.DelegatingAuthenticationEntryPoint
-
EntryPoint which is used when no RequestMatcher returned true
- setDefaultFailureUrl(String) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
The URL which will be used as the failure destination.
- setDefaultLogoutSuccessHandler(LogoutSuccessHandler) - Method in class org.springframework.security.web.authentication.logout.DelegatingLogoutSuccessHandler
-
- setDefaultRole(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
The default role which will be assigned to all users.
- setDefaultRolePrefix(String) - Method in class org.springframework.security.access.annotation.Jsr250MethodSecurityMetadataSource
-
- setDefaultRolePrefix(String) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
- setDefaultRolePrefix(String) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- setDefaultRolePrefix(String) - Method in class org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler
-
- setDefaultTargetUrl(String) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
Supplies the default target Url that will be used if no saved request is found in
the session, or the alwaysUseDefaultTargetUrl
property is set to true.
- setDeleteEntryByObjectIdentityForeignKeySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setDeleteGroupAuthoritiesSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setDeleteGroupAuthoritySql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setDeleteGroupMemberSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setDeleteGroupMembersSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setDeleteGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setDeleteObjectIdentityByPrimaryKeySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setDeleteUserAuthoritiesSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setDeleteUserSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setDepartmentNumber(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setDerefLinkFlag(boolean) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
-
Sets the corresponding property on the
SearchControls
instance used in the
search.
- setDescription(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- setDestinationIndicator(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setDetails(Object) - Method in class org.springframework.security.authentication.AbstractAuthenticationToken
-
- setDetails(HttpServletRequest, UsernamePasswordAuthenticationToken) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
Provided so that subclasses may configure what is put into the authentication
request's details property.
- setDisableUrlRewriting(boolean) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
Allows the use of session identifiers in URLs to be disabled.
- setDisplayName(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setDn(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setDn(Name) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setDomainObject(Object) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
-
- setEmployeeNumber(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setEnableAuthorities(boolean) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Enables loading of authorities (roles) from the authorities table.
- setEnabled(boolean) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
- setEnabled(boolean) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setEnabled(boolean) - Method in class org.springframework.security.web.header.writers.XXssProtectionHeaderWriter
-
If true, will contain a value of 1.
- setEnableGroups(boolean) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Enables support for group authorities.
- setEncodeHashAsBase64(boolean) - Method in class org.springframework.security.authentication.encoding.BaseDigestPasswordEncoder
-
The encoded password is normally returned as Hex (32 char) version of the hash
bytes.
- setEncodeServiceUrlWithSessionId(boolean) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
Sets whether to encode the service url with the session id or not.
- setEntriesInheriting(boolean) - Method in class org.springframework.security.acls.domain.AclImpl
-
- setEntriesInheriting(boolean) - Method in interface org.springframework.security.acls.model.MutableAcl
-
- setEntryPoint(ChannelEntryPoint) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- setEntryPoint(ChannelEntryPoint) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- setEraseCredentialsAfterAuthentication(boolean) - Method in class org.springframework.security.authentication.ProviderManager
-
If set to, a resulting
Authentication
which implements the
CredentialsContainer
interface will have its
eraseCredentials
method called
before it is returned from the
authenticate()
method.
- setErrorPage(String) - Method in class org.springframework.security.web.access.AccessDeniedHandlerImpl
-
The error page to use.
- setExceptionIfHeaderMissing(boolean) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
-
Defines whether an exception should be raised if the principal header is missing.
- setExceptionIfMaximumExceeded(boolean) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy
-
Sets the exceptionIfMaximumExceeded property, which determines whether the
user should be prevented from opening more sessions than allowed.
- setExceptionMappings(Map<?, ?>) - Method in class org.springframework.security.web.authentication.ExceptionMappingAuthenticationFailureHandler
-
Sets the map of exception types (by name) to URLs.
- setExitUserUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Set the URL to respond to exit user processing.
- setExpressionHandler(MethodSecurityExpressionHandler) - Method in class org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice
-
- setExpressionHandler(SecurityExpressionHandler<Message<T>>) - Method in class org.springframework.security.messaging.access.expression.MessageExpressionVoter
-
- setExpressionHandler(SecurityExpressionHandler<FilterInvocation>) - Method in class org.springframework.security.web.access.expression.WebExpressionVoter
-
- setExpressionParser(ExpressionParser) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- setFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Used to define custom behaviour when a switch fails.
- setFailureUrl(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setFilterChainProxySecurityConfigurer(ObjectPostProcessor<Object>, List<SecurityConfigurer<Filter, WebSecurity>>) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration
-
Sets the <SecurityConfigurer<FilterChainProxy, WebSecurityBuilder>
instances used to create the web configuration.
- setFilterChainValidator(FilterChainProxy.FilterChainValidator) - Method in class org.springframework.security.web.FilterChainProxy
-
Used (internally) to specify a validation strategy for the filters in each
configured chain.
- setFilterObject(Object) - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
-
- setFilterProcessesUrl(String) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
Sets the URL that determines if authentication is required
- setFilterProcessesUrl(String) - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
-
- setFindAllGroupsSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setFindChildrenQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcAclService
-
Allows customization of the SQL query used to find child object identities.
- setFindGroupIdSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setFindUsersInGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setFirewall(HttpFirewall) - Method in class org.springframework.security.web.FilterChainProxy
-
Sets the "firewall" implementation which will be used to validate and wrap (or
potentially reject) the incoming requests.
- setForceEagerSessionCreation(boolean) - Method in class org.springframework.security.web.context.SecurityContextPersistenceFilter
-
- setForceHttps(boolean) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
Set to true to force login form access to be via https.
- setForceLowerCasePrefix(boolean) - Method in class org.springframework.security.authentication.encoding.LdapShaPasswordEncoder
-
- setForcePrincipalAsString(boolean) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- setForeignKeysInDatabase(boolean) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setFormLoginEnabled(boolean) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setGivenName(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- setGlobalAuthenticationConfigurers(List<GlobalAuthenticationConfigurerAdapter>) - Method in class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- setGraceLoginsRemaining(int) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setGroupAuthoritiesByUsernameQuery(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Allows the default query string used to retrieve group authorities based on
username to be overridden, if default table or column names need to be changed.
- setGroupAuthoritiesSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setGroupMemberAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
Sets the name of the multi-valued attribute which holds the DNs of users who are
members of a group.
- setGroupRoleAttribute(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
- setGroupRoleAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- setGroupSearchBase(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- setGroupSearchFilter(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
- setHasPermission(String) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
-
- setHeaderName(String) - Method in class org.springframework.security.web.csrf.CookieCsrfTokenRepository
-
Sets the name of the HTTP header that should be used to provide the token.
- setHeaderName(String) - Method in class org.springframework.security.web.csrf.HttpSessionCsrfTokenRepository
-
Sets the header name that the
CsrfToken
is expected to appear on and the
header that the response will contain the
CsrfToken
.
- setHideUserNotFoundExceptions(boolean) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
By default the AbstractUserDetailsAuthenticationProvider
throws a
BadCredentialsException
if a username is not found or the password is
incorrect.
- setHideUserNotFoundExceptions(boolean) - Method in class org.springframework.security.ldap.authentication.LdapAuthenticationProvider
-
- setHierarchy(String) - Method in class org.springframework.security.access.hierarchicalroles.RoleHierarchyImpl
-
Set the role hierarchy and pre-calculate for every role the set of all reachable
roles, i.e.
- setHomePhone(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setHomePostalAddress(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setHtmlEscape(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
-
Set HTML escaping for this tag, as boolean value.
- setId(String) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- setIgnoredMediaTypes(Set<MediaType>) - Method in class org.springframework.security.web.util.matcher.MediaTypeRequestMatcher
-
- setIgnorePartialResultException(boolean) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Sets the corresponding property on the underlying template, avoiding specific
issues with Active Directory.
- setIgnorePasswordCase(boolean) - Method in class org.springframework.security.authentication.encoding.PlaintextPasswordEncoder
-
Indicates whether the password comparison is case sensitive.
- setImportMetadata(AnnotationMetadata) - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- setImportMetadata(AnnotationMetadata) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration
-
- setIncludeSubDomains(boolean) - Method in class org.springframework.security.web.header.writers.HpkpHeaderWriter
-
If true, the pinning policy applies to this pinned host as well as any subdomains
of the host's domain name.
- setIncludeSubDomains(boolean) - Method in class org.springframework.security.web.header.writers.HstsHeaderWriter
-
If true, subdomains should be considered HSTS Hosts too.
- setInitials(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setInsecureKeyword(String) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- setInsertClassSql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setInsertEntrySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setInsertGroupAuthoritySql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setInsertGroupMemberSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setInsertGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setInsertObjectIdentitySql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setInsertSidSql(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setInternalMethod(String) - Method in class org.springframework.security.acls.AclEntryVoter
-
- setInvalidateHttpSession(boolean) - Method in class org.springframework.security.web.authentication.logout.SecurityContextLogoutHandler
-
Causes the
HttpSession
to be invalidated when this
LogoutHandler
is
invoked.
- setInvalidateSessionOnPrincipalChange(boolean) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
If checkForPrincipalChanges is set, and a change of principal is detected,
determines whether any existing session should be invalidated before proceeding to
authenticate the new principal.
- setInvalidSessionStrategy(InvalidSessionStrategy) - Method in class org.springframework.security.web.session.SessionManagementFilter
-
Sets the strategy which will be invoked instead of allowing the filter chain to
prceed, if the user agent requests an invalid session Id.
- setIterations(int) - Method in class org.springframework.security.authentication.encoding.MessageDigestPasswordEncoder
-
Sets the number of iterations for which the calculated hash value should be
"stretched".
- setJsr250MethodSecurityMetadataSource(Jsr250MethodSecurityMetadataSource) - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- setKey(String) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
-
- setKey(String) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
-
- setKey(String) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setKey(String) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- setLoginConfig(Resource) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
-
Set the JAAS login configuration file.
- setLoginContextName(String) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
Set the loginContextName, this name is used as the index to the configuration
specified in the loginConfig property.
- setLoginExceptionResolver(LoginExceptionResolver) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- setLoginPageUrl(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setLogInteractiveAuthenticationSuccessEvents(boolean) - Method in class org.springframework.security.authentication.event.LoggerListener
-
- setLoginUrl(String) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
- setLogoutHandlers(List<LogoutHandler>) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
Sets the
LogoutHandler
s used when integrating with
HttpServletRequest
with Servlet 3 APIs.
- setLogoutHandlers(LogoutHandler[]) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
-
- setLogoutRequestMatcher(RequestMatcher) - Method in class org.springframework.security.web.authentication.logout.LogoutFilter
-
- setLogoutSuccessUrl(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setLookupObjectIdentitiesWhereClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
The SQL for the where clause used in the lookupObjectIdentities method.
- setLookupPrimaryKeysWhereClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
The SQL for the where clause used in the lookupPrimaryKey method.
- setMail(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setMappableAttributes(Set<String>) - Method in class org.springframework.security.core.authority.mapping.SimpleMappableAttributesRetriever
-
- setMappableRolesRetriever(MappableAttributesRetriever) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
-
- setMaxAgeInSeconds(long) - Method in class org.springframework.security.web.header.writers.HpkpHeaderWriter
-
Sets the value (in seconds) for the max-age directive of the Public-Key-Pins header.
- setMaxAgeInSeconds(long) - Method in class org.springframework.security.web.header.writers.HstsHeaderWriter
-
Sets the value (in seconds) for the max-age directive of the
Strict-Transport-Security header.
- setMaximumSessions(int) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy
-
Sets the maxSessions property.
- setMaxSearchDepth(int) - Method in class org.springframework.security.ldap.userdetails.NestedLdapAuthoritiesPopulator
-
How far should a nested search go.
- setMessageExpessionHandler(List<SecurityExpressionHandler<Message<Object>>>) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
Deprecated.
- setMessageExpressionHandler(List<SecurityExpressionHandler<Message<Object>>>) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.acls.afterinvocation.AclEntryAfterInvocationProvider
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.ProviderManager
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.session.ConcurrentSessionControlAuthenticationStrategy
-
Sets the
MessageSource
used for reporting errors back to the user when the
user has exceeded the maximum number of authentications.
- setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- setMessageSource(MessageSource) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- setMethod(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
- setMethod(HttpMethod) - Method in class org.springframework.security.web.servlet.util.matcher.MvcRequestMatcher
-
- setMethodSecurityExpressionHandler(List<MethodSecurityExpressionHandler>) - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- setMigrateSessionAttributes(boolean) - Method in class org.springframework.security.web.authentication.session.SessionFixationProtectionStrategy
-
Defines whether attributes should be migrated to a new session or not.
- setMobile(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setNonceValiditySeconds(int) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- setO(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setObjectIdentityGenerator(ObjectIdentityGenerator) - Method in class org.springframework.security.acls.AclPermissionEvaluator
-
- setObjectIdentityPrimaryKeyQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.AclEntryVoter
-
- setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionCacheOptimizer
-
- setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionEvaluator
-
- setObjectIdentityRetrievalStrategy(ObjectIdentityRetrievalStrategy) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- setObjectPostProcessor(ObjectPostProcessor<Object>) - Method in class org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration
-
- setObjectPostProcessor(ObjectPostProcessor<Object>) - Method in class org.springframework.security.config.annotation.method.configuration.GlobalMethodSecurityConfiguration
-
- setObjectPostProcessor(ObjectPostProcessor<Object>) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- setObjectPostProcessor(ObjectPostProcessor<Object>) - Method in class org.springframework.security.config.annotation.web.socket.AbstractSecurityWebSocketMessageBrokerConfigurer
-
- setObserveOncePerRequest(boolean) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
- setOpenIDauthenticationUrl(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setOpenIdEnabled(boolean) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setOpenIDusernameParameter(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setOrder(int) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
- setOrder(int) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- setOrderByClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
The SQL for the "order by" clause used in both queries.
- setOu(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setOwner(Sid) - Method in class org.springframework.security.acls.domain.AclImpl
-
- setOwner(Sid) - Method in interface org.springframework.security.acls.model.MutableAcl
-
Changes the present owner to a different owner.
- setOwner(Sid) - Method in interface org.springframework.security.acls.model.OwnershipAcl
-
- setPageContext(PageContext) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- setParameter(String) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Sets the name of the parameter which should be checked for to see if a remember-me
has been requested during a login request.
- setParameterName(String) - Method in class org.springframework.security.web.csrf.CookieCsrfTokenRepository
-
Sets the name of the HTTP request parameter that should be used to provide a token.
- setParameterName(String) - Method in class org.springframework.security.web.csrf.HttpSessionCsrfTokenRepository
-
Sets the
HttpServletRequest
parameter name that the
CsrfToken
is
expected to appear on
- setParameterNameDiscoverer(ParameterNameDiscoverer) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
- setParent(Acl) - Method in class org.springframework.security.acls.domain.AclImpl
-
- setParent(Acl) - Method in interface org.springframework.security.acls.model.MutableAcl
-
Changes the parent of this ACL.
- setParent(Tag) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- setPassword(String) - Method in class org.springframework.security.core.userdetails.memory.UserAttribute
-
- setPassword(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setPasswordAlreadyEncoded(boolean) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- setPasswordAttributeName(String) - Method in class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
-
- setPasswordAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- setPasswordAttributeName(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
-
The name of the attribute which contains the user's password.
- setPasswordEncoder(Object) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
Sets the PasswordEncoder instance to be used to encode and validate passwords.
- setPasswordEncoder(Object) - Method in class org.springframework.security.ldap.authentication.PasswordComparisonAuthenticator
-
- setPasswordParameter(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setPasswordParameter(String) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
Sets the parameter name which will be used to obtain the password from the login
request..
- setPathInfo(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- setPermissionCacheOptimizer(PermissionCacheOptimizer) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
- setPermissionEvaluator(PermissionEvaluator) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- setPermissionEvaluator(PermissionEvaluator) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- setPermissionFactory(PermissionFactory) - Method in class org.springframework.security.acls.AclPermissionEvaluator
-
- setPermissionFactory(PermissionFactory) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
Sets the PermissionFactory
instance which will be used to convert loaded
permission data values to Permission
s.
- setPins(Map<String, String>) - Method in class org.springframework.security.web.header.writers.HpkpHeaderWriter
-
Sets the value for the pin- directive of the Public-Key-Pins header.
- setPolicyDirectives(String) - Method in class org.springframework.security.web.header.writers.ContentSecurityPolicyHeaderWriter
-
Sets the security policy directive(s) to be used in the response header.
- setPort(int) - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- setPort(int) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- setPortMapper(PortMapper) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- setPortMapper(PortMapper) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- setPortMapper(PortMapper) - Method in class org.springframework.security.web.PortResolverImpl
-
- setPortMappings(Map<String, String>) - Method in class org.springframework.security.web.PortMapperImpl
-
Set to override the default HTTP port to HTTPS port mappings of 80:443, and
8080:8443.
- setPortResolver(PortResolver) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
- setPortResolver(PortResolver) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
- setPortResolver(PortResolver) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
-
- setPostalAddress(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setPostalCode(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setPostAuthenticationChecks(UserDetailsChecker) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- setPostOnly(boolean) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
Defines whether only HTTP POST requests will be allowed by this filter.
- setPreAuthenticatedUserDetailsService(AuthenticationUserDetailsService<PreAuthenticatedAuthenticationToken>) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
Set the AuthenticatedUserDetailsService to be used to load the UserDetails
for the authenticated user.
- setPreAuthenticationChecks(UserDetailsChecker) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
Sets the policy will be used to verify the status of the loaded
UserDetails before validation of the credentials takes place.
- setPrefix(String) - Method in class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
-
Sets the prefix which should be added to the authority name (if it doesn't already
exist)
- setPrincipalExtractor(X509PrincipalExtractor) - Method in class org.springframework.security.web.authentication.preauth.x509.X509AuthenticationFilter
-
- setPrincipalRequestHeader(String) - Method in class org.springframework.security.web.authentication.preauth.RequestHeaderAuthenticationFilter
-
- setProcessConfigAttribute(String) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- setProcessDomainObjectClass(Class<?>) - Method in class org.springframework.security.access.vote.AbstractAclVoter
-
- setProcessDomainObjectClass(Class<?>) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- setProperty(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
-
- setProtectedFieldValue(String, Object, Object) - Static method in class org.springframework.security.util.FieldUtils
-
- setProviders(List<?>) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
-
- setProxyAuthenticationFailureHandler(AuthenticationFailureHandler) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
- setProxyGrantingTicketStorage(ProxyGrantingTicketStorage) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
- setProxyReceptorUrl(String) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
- setPseudoRandomNumberBytes(int) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
-
- setPublishAuthorizationSuccess(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
Only AuthorizationFailureEvent
will be published.
- setQuery(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- setRealmMapping(Map<String, String>) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
Maps the return_to url to a realm, for example:
- setRealmName(String) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationEntryPoint
-
- setRealmName(String) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationEntryPoint
-
- setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.access.channel.AbstractRetryEntryPoint
-
Sets the strategy to be used for redirecting to the required channel URL.
- setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
Allows overriding of the behaviour when redirecting to a target URL.
- setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
Allows overriding of the behaviour when redirecting to a target URL.
- setRedirectStrategy(RedirectStrategy) - Method in class org.springframework.security.web.session.ConcurrentSessionFilter
-
- setRefreshConfigurationOnStartup(boolean) - Method in class org.springframework.security.authentication.jaas.JaasAuthenticationProvider
-
If set, a call to Configuration#refresh()
will be made by
#configureJaas(Resource)
method.
- setRejectPublicInvocations(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
By rejecting public invocations (and setting this property to true),
essentially you are ensuring that every secure object invocation advised by
AbstractSecurityInterceptor
has a configuration attribute defined.
- setRememberMeClass(Class<? extends Authentication>) - Method in class org.springframework.security.authentication.AuthenticationTrustResolverImpl
-
- setRememberMeParameter(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setRememberMeServices(RememberMeServices) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setRememberMeServices(RememberMeServices) - Method in class org.springframework.security.web.authentication.www.BasicAuthenticationFilter
-
- setRemoteAuthenticationManager(RemoteAuthenticationManager) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
-
- setRenameGroupSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setReportOnly(boolean) - Method in class org.springframework.security.web.header.writers.ContentSecurityPolicyHeaderWriter
-
If true, includes the Content-Security-Policy-Report-Only header in the response,
otherwise, defaults to the Content-Security-Policy header.
- setReportOnly(boolean) - Method in class org.springframework.security.web.header.writers.HpkpHeaderWriter
-
To get a Public-Key-Pins header you should set this to false,
otherwise the header will be Public-Key-Pins-Report-Only.
- setReportUri(URI) - Method in class org.springframework.security.web.header.writers.HpkpHeaderWriter
-
Sets the URI to which the browser should report pin validation failures.
- setReportUri(String) - Method in class org.springframework.security.web.header.writers.HpkpHeaderWriter
-
Sets the URI to which the browser should report pin validation failures.
- setRequest(HttpServletRequest) - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
-
- setRequestCache(RequestCache) - Method in class org.springframework.security.web.authentication.SavedRequestAwareAuthenticationSuccessHandler
-
- setRequestMatcher(RequestMatcher) - Method in class org.springframework.security.web.header.writers.HstsHeaderWriter
-
Sets the
RequestMatcher
used to determine if the
"Strict-Transport-Security" should be added.
- setRequestMatcher(RequestMatcher) - Method in class org.springframework.security.web.savedrequest.HttpSessionRequestCache
-
Allows selective use of saved requests for a subset of requests.
- setRequireCsrfProtectionMatcher(RequestMatcher) - Method in class org.springframework.security.web.csrf.CsrfFilter
-
Specifies a
RequestMatcher
that is used to determine if CSRF protection
should be applied.
- setRequired(boolean) - Method in class org.springframework.security.openid.OpenIDAttribute
-
- setRequiresAuthenticationRequestMatcher(RequestMatcher) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
- setResourceLoader(ResourceLoader) - Method in class org.springframework.security.web.authentication.preauth.j2ee.WebXmlMappableAttributesRetriever
-
- setResponse(HttpServletResponse) - Method in class org.springframework.security.web.context.HttpRequestResponseHolder
-
- setReturningAttributes(String[]) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
-
Specifies the attributes that will be returned as part of the search.
- setReturnObject(Object, EvaluationContext) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
- setReturnObject(Object, EvaluationContext) - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionHandler
-
Used to inform the expression system of the return object for the given evaluation
context.
- setReturnObject(Object) - Method in interface org.springframework.security.access.expression.method.MethodSecurityExpressionOperations
-
- setReturnToUrlParameters(Set<String>) - Method in class org.springframework.security.openid.OpenIDAuthenticationFilter
-
- setRoleAttributes(String[]) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
-
The names of any attributes in the user's entry which represent application roles.
- setRoleHierarchy(RoleHierarchy) - Method in class org.springframework.security.access.expression.AbstractSecurityExpressionHandler
-
- setRoleHierarchy(RoleHierarchy) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- setRoleMapper(AttributesMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- setRolePrefix(String) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
-
Allows the default role prefix of ROLE_
to be overridden.
- setRolePrefix(String) - Method in class org.springframework.security.access.vote.RoleVoter
-
Allows the default role prefix of ROLE_
to be overridden.
- setRolePrefix(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Allows a default role prefix to be specified.
- setRolePrefix(String) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
Sets the prefix which will be prepended to the values loaded from the directory.
- setRolePrefix(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsMapper
-
The prefix that should be applied to the role names
- setRolePrefix(String) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
- setRoomNumber(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setRunAsManager(RunAsManager) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setSaltSource(SaltSource) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
The source of salts to use when decoding passwords.
- setScheme(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- setScope(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
-
- setSearchControls(SearchControls) - Method in class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
Sets the search controls which will be used for search operations by the template.
- setSearchFilter(String) - Method in class org.springframework.security.ldap.authentication.ad.ActiveDirectoryLdapAuthenticationProvider
-
The LDAP filter string to search for the user being authenticated.
- setSearchSubtree(boolean) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
-
If true then searches the entire subtree as identified by context, if false (the
default) then only searches the level identified by the context.
- setSearchSubtree(boolean) - Method in class org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator
-
If set to true, a subtree scope search will be performed.
- setSearchTimeLimit(int) - Method in class org.springframework.security.ldap.search.FilterBasedLdapUserSearch
-
The time to wait before the search fails; the default is zero, meaning forever.
- setSecureKeyword(String) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- setSecureRandom(SecureRandom) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
-
- setSecurityContextRepository(HttpServletRequest, SecurityContextRepository) - Static method in class org.springframework.security.test.web.support.WebTestUtils
-
- setSecurityInterceptor(AbstractSecurityInterceptor) - Method in class org.springframework.security.access.intercept.MethodInvocationPrivilegeEvaluator
-
- setSecurityMetadataSource(MethodSecurityMetadataSource) - Method in class org.springframework.security.access.intercept.aopalliance.MethodSecurityInterceptor
-
- setSecurityMetadataSource(FilterInvocationSecurityMetadataSource) - Method in class org.springframework.security.web.access.channel.ChannelProcessingFilter
-
- setSecurityMetadataSource(FilterInvocationSecurityMetadataSource) - Method in class org.springframework.security.web.access.intercept.FilterSecurityInterceptor
-
- setSeed(Resource) - Method in class org.springframework.security.core.token.SecureRandomFactoryBean
-
Allows the user to specify a resource which will act as a seed for the
SecureRandom
instance.
- setSelectClause(String) - Method in class org.springframework.security.acls.jdbc.BasicLookupStrategy
-
The SQL for the select clause.
- setSendRenew(boolean) - Method in class org.springframework.security.cas.ServiceProperties
-
- setSeriesLength(int) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- setServerInteger(Integer) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
-
- setServerName(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- setServerSecret(String) - Method in class org.springframework.security.core.token.KeyBasedPersistenceTokenService
-
- setService(String) - Method in class org.springframework.security.cas.ServiceProperties
-
- setServiceParameter(String) - Method in class org.springframework.security.cas.ServiceProperties
-
- setServiceProperties(ServiceProperties) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setServiceProperties(ServiceProperties) - Method in class org.springframework.security.cas.web.CasAuthenticationEntryPoint
-
- setServiceProperties(ServiceProperties) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
- setServletPath(String) - Method in class org.springframework.security.web.servlet.util.matcher.MvcRequestMatcher
-
The servlet path to match on.
- setServletPath(String) - Method in class org.springframework.security.web.util.RedirectUrlBuilder
-
- setSessionAttributeName(String) - Method in class org.springframework.security.web.csrf.HttpSessionCsrfTokenRepository
-
Sets the
HttpSession
attribute name that the
CsrfToken
is stored in
- setSessionAuthenticationStrategy(SessionAuthenticationStrategy) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
The session handling strategy which will be invoked immediately after an
authentication request is successfully processed by the
AuthenticationManager.
- setSharedObject(Class<C>, C) - Method in class org.springframework.security.config.annotation.AbstractConfiguredSecurityBuilder
-
- setSharedObject(Class<C>, C) - Method in class org.springframework.security.config.annotation.web.builders.HttpSecurity
-
- setSharedObject(Class<C>, C) - Method in interface org.springframework.security.config.annotation.web.HttpSecurityBuilder
-
- setSidIdentityQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
Sets the query that will be used to retrieve the identity of a newly created row in
the acl_sid table.
- setSidPrimaryKeyQuery(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.AclEntryVoter
-
- setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionCacheOptimizer
-
- setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.AclPermissionEvaluator
-
- setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- setSidRetrievalStrategy(SidRetrievalStrategy) - Method in class org.springframework.security.acls.domain.AclAuthorizationStrategyImpl
-
- setSn(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- setSpringSecurityContextKey(String) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
Allows the session attribute name to be customized for this repository instance.
- setStatelessTicketCache(StatelessTicketCache) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setStrategyName(String) - Static method in class org.springframework.security.core.context.SecurityContextHolder
-
Changes the preferred strategy.
- setStreet(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setStringSeparator(String) - Method in class org.springframework.security.core.authority.mapping.MapBasedAttributes2GrantedAuthoritiesMapper
-
- setSubjectDnRegex(String) - Method in class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
-
Sets the regular expression which will by used to extract the user name from the
certificate's Subject DN.
- setSuccessHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Used to define custom behaviour on a successful switch or exit user.
- setSwitchAuthorityRole(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Allows the role of the switchAuthority to be customized.
- setSwitchFailureUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Sets the URL to which a user should be redirected if the switch fails.
- setSwitchUserAuthorityChanger(SwitchUserAuthorityChanger) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- setSwitchUserUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Set the URL to respond to switch user processing.
- setSystemWideSalt(String) - Method in class org.springframework.security.authentication.dao.SystemWideSaltSource
-
- setTargetUrl(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Sets the URL to go to after a successful switch / exit user request.
- setTargetUrlParameter(String) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
If this property is set, the current request will be checked for this a parameter
with this name and the value used as the target URL if present.
- setTelephoneNumber(String) - Method in class org.springframework.security.ldap.userdetails.Person.Essence
-
- setThrowableAnalyzer(ThrowableAnalyzer) - Method in class org.springframework.security.web.access.ExceptionTranslationFilter
-
- setThrowExceptionWhenTokenRejected(boolean) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
If true, causes the provider to throw a BadCredentialsException if the presented
authentication request is invalid (contains a null principal or credentials).
- setTicketValidator(TicketValidator) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setTimeBeforeExpiration(int) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setTitle(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setTokenLength(int) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- setTokenValiditySeconds(int) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- setTokenValiditySeconds(int) - Method in class org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.access.expression.SecurityExpressionRoot
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.messaging.access.expression.DefaultMessageSecurityExpressionHandler
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.web.access.expression.DefaultWebSecurityExpressionHandler
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter
-
- setTrustResolver(AuthenticationTrustResolver) - Method in class org.springframework.security.web.session.SessionManagementFilter
-
- setUid(String) - Method in class org.springframework.security.ldap.userdetails.InetOrgPerson.Essence
-
- setUpdateObjectIdentity(String) - Method in class org.springframework.security.acls.jdbc.JdbcMutableAclService
-
- setUpdateUserSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setUrl(String) - Method in class org.springframework.security.taglibs.authz.AbstractAuthorizeTag
-
- setUseAuthenticationRequestCredentials(boolean) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
Determines whether the supplied password will be used as the credentials in the
successful authentication token.
- setUseEquals(boolean) - Method in class org.springframework.security.web.util.matcher.MediaTypeRequestMatcher
-
- setUseForward(boolean) - Method in class org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint
-
Tells if we are to do a forward to the loginFormUrl
using the
RequestDispatcher
, instead of a 302 redirect.
- setUseForward(boolean) - Method in class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
If set to true, performs a forward to the failure destination URL instead
of a redirect.
- setUserAttributes(String[]) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
Sets the user attributes which will be retrieved from the directory.
- setUserCache(UserCache) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- setUserCache(UserCache) - Method in class org.springframework.security.config.authentication.CachingUserDetailsService
-
- setUserCache(UserCache) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
Optionally sets the UserCache if one is in use in the application.
- setUserCache(UserCache) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- setUserDetailsChecker(UserDetailsChecker) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
Sets the strategy which will be used to validate the loaded UserDetails
object for the user.
- setUserDetailsChecker(UserDetailsChecker) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Sets the strategy to be used to validate the UserDetails
object obtained
for the user when processing a remember-me cookie to automatically log in a user.
- setUserDetailsChecker(UserDetailsChecker) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- setUserDetailsContextMapper(UserDetailsContextMapper) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
- setUserDetailsMapper(UserDetailsContextMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- setUserDetailsMapper(UserDetailsContextMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsService
-
- setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.authentication.dao.DaoAuthenticationProvider
-
- setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.core.userdetails.UserDetailsByNameServiceWrapper
-
Set the wrapped UserDetailsService implementation
- setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
-
Used to load the UserDetails
for the authenticated OpenID user.
- setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Sets the authentication data access object.
- setUserDetailsService(UserDetailsService) - Method in class org.springframework.security.web.authentication.www.DigestAuthenticationFilter
-
- setUserDnPatterns(String[]) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
Sets the pattern which will be used to supply a DN for the user.
- setUseReferer(boolean) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationTargetUrlRequestHandler
-
If set to true
the Referer
header will be used (if available).
- setUserExistsSql(String) - Method in class org.springframework.security.provisioning.JdbcUserDetailsManager
-
- setUsername(String) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsImpl.Essence
-
- setUsernameBasedPrimaryKey(boolean) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
- setUsernameMapper(LdapUsernameToDnMapper) - Method in class org.springframework.security.ldap.userdetails.LdapUserDetailsManager
-
- setUsernameParameter(String) - Method in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
Allows the parameter containing the username to be customized.
- setUsernameParameter(String) - Method in class org.springframework.security.web.authentication.ui.DefaultLoginPageGeneratingFilter
-
- setUsernameParameter(String) - Method in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
Sets the parameter name which will be used to obtain the username from the login
request.
- setUserPropertyToUse(String) - Method in class org.springframework.security.authentication.dao.ReflectionSaltSource
-
The method name to call to obtain the salt.
- setUserRoles2GrantedAuthoritiesMapper(Attributes2GrantedAuthoritiesMapper) - Method in class org.springframework.security.web.authentication.preauth.j2ee.J2eeBasedPreAuthenticatedWebAuthenticationDetailsSource
-
- setUsersByUsernameQuery(String) - Method in class org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl
-
Allows the default query string used to retrieve users based on username to be
overridden, if default table or column names need to be changed.
- setUserSearch(LdapUserSearch) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticator
-
- setUseSecureCookie(boolean) - Method in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
Whether the cookie should be flagged as secure or not.
- setValidateConfigAttributes(boolean) - Method in class org.springframework.security.access.intercept.AbstractSecurityInterceptor
-
- setVar(String) - Method in class org.springframework.security.taglibs.authz.AccessControlListTag
-
- setVar(String) - Method in class org.springframework.security.taglibs.authz.AuthenticationTag
-
- setVar(String) - Method in class org.springframework.security.taglibs.authz.JspAuthorizeTag
-
- setWebSphereGroups2GrantedAuthoritiesMapper(Attributes2GrantedAuthoritiesMapper) - Method in class org.springframework.security.web.authentication.preauth.websphere.WebSpherePreAuthenticatedWebAuthenticationDetailsSource
-
- setWorkingDirectory(File) - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- sha(byte[]) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
-
Calculates the SHA digest and returns the value as a byte[]
.
- sha(String) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
-
Calculates the SHA digest and returns the value as a byte[]
.
- Sha512DigestUtils - Class in org.springframework.security.core.token
-
Provides SHA512 digest methods.
- Sha512DigestUtils() - Constructor for class org.springframework.security.core.token.Sha512DigestUtils
-
- shaHex(byte[]) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
-
Calculates the SHA digest and returns the value as a hex string.
- shaHex(String) - Static method in class org.springframework.security.core.token.Sha512DigestUtils
-
Calculates the SHA digest and returns the value as a hex string.
- ShaPasswordEncoder - Class in org.springframework.security.authentication.encoding
-
SHA implementation of PasswordEncoder.
- ShaPasswordEncoder() - Constructor for class org.springframework.security.authentication.encoding.ShaPasswordEncoder
-
Initializes the ShaPasswordEncoder for SHA-1 strength
- ShaPasswordEncoder(int) - Constructor for class org.springframework.security.authentication.encoding.ShaPasswordEncoder
-
Initialize the ShaPasswordEncoder with a given SHA stength as supported by the JVM
EX: ShaPasswordEncoder encoder = new ShaPasswordEncoder(256);
initializes with SHA-256
- shared(int) - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
-
- shutdown() - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- shutdownNow() - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- Sid - Interface in org.springframework.security.acls.model
-
A security identity recognised by the ACL system.
- sidRetrievalStrategy - Variable in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- SidRetrievalStrategy - Interface in org.springframework.security.acls.model
-
Strategy interface that provides an ability to determine the
Sid
instances
applicable for an
Authentication
.
- SidRetrievalStrategyImpl - Class in org.springframework.security.acls.domain
-
Basic implementation of
SidRetrievalStrategy
that creates a
Sid
for the
principal, as well as every granted authority the principal holds.
- SidRetrievalStrategyImpl() - Constructor for class org.springframework.security.acls.domain.SidRetrievalStrategyImpl
-
- SidRetrievalStrategyImpl(RoleHierarchy) - Constructor for class org.springframework.security.acls.domain.SidRetrievalStrategyImpl
-
- SimpDestinationMessageMatcher - Class in org.springframework.security.messaging.util.matcher
-
MessageMatcher which compares a pre-defined pattern against the destination of a
Message
.
- SimpDestinationMessageMatcher(String) - Constructor for class org.springframework.security.messaging.util.matcher.SimpDestinationMessageMatcher
-
Creates a new instance with the specified pattern, null
SimpMessageType
(matches any type), and a
AntPathMatcher
created from the default
constructor.
- SimpDestinationMessageMatcher(String, PathMatcher) - Constructor for class org.springframework.security.messaging.util.matcher.SimpDestinationMessageMatcher
-
Creates a new instance with the specified pattern and
PathMatcher
.
- simpDestMatchers(String...) - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
- simpDestPathMatcher(PathMatcher) - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
- SimpleAttributes2GrantedAuthoritiesMapper - Class in org.springframework.security.core.authority.mapping
-
This class implements the Attributes2GrantedAuthoritiesMapper interface by doing a
one-to-one mapping from roles to Spring Security GrantedAuthorities.
- SimpleAttributes2GrantedAuthoritiesMapper() - Constructor for class org.springframework.security.core.authority.mapping.SimpleAttributes2GrantedAuthoritiesMapper
-
- SimpleAuthorityMapper - Class in org.springframework.security.core.authority.mapping
-
Simple one-to-one GrantedAuthoritiesMapper
which allows for case conversion of
the authority name and the addition of a string prefix (which defaults to ROLE_
).
- SimpleAuthorityMapper() - Constructor for class org.springframework.security.core.authority.mapping.SimpleAuthorityMapper
-
- SimpleGrantedAuthority - Class in org.springframework.security.core.authority
-
- SimpleGrantedAuthority(String) - Constructor for class org.springframework.security.core.authority.SimpleGrantedAuthority
-
- SimpleMappableAttributesRetriever - Class in org.springframework.security.core.authority.mapping
-
This class implements the MappableAttributesRetriever interface by just returning a
list of mappable attributes as previously set using the corresponding setter method.
- SimpleMappableAttributesRetriever() - Constructor for class org.springframework.security.core.authority.mapping.SimpleMappableAttributesRetriever
-
- SimpleMethodInvocation - Class in org.springframework.security.util
-
Represents the AOP Alliance MethodInvocation
.
- SimpleMethodInvocation(Object, Method, Object...) - Constructor for class org.springframework.security.util.SimpleMethodInvocation
-
- SimpleMethodInvocation() - Constructor for class org.springframework.security.util.SimpleMethodInvocation
-
- SimpleRedirectInvalidSessionStrategy - Class in org.springframework.security.web.session
-
Performs a redirect to a fixed URL when an invalid requested session is detected by the
SessionManagementFilter
.
- SimpleRedirectInvalidSessionStrategy(String) - Constructor for class org.springframework.security.web.session.SimpleRedirectInvalidSessionStrategy
-
- SimpleUrlAuthenticationFailureHandler - Class in org.springframework.security.web.authentication
-
AuthenticationFailureHandler which performs a redirect to the value of the
defaultFailureUrl
property when the
onAuthenticationFailure method is called.
- SimpleUrlAuthenticationFailureHandler() - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
- SimpleUrlAuthenticationFailureHandler(String) - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler
-
- SimpleUrlAuthenticationSuccessHandler - Class in org.springframework.security.web.authentication
-
AuthenticationSuccessHandler which can be configured with a default URL which
users should be sent to upon successful authentication.
- SimpleUrlAuthenticationSuccessHandler() - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
-
- SimpleUrlAuthenticationSuccessHandler(String) - Constructor for class org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
-
Constructor which sets the defaultTargetUrl property of the base class.
- SimpleUrlLogoutSuccessHandler - Class in org.springframework.security.web.authentication.logout
-
- SimpleUrlLogoutSuccessHandler() - Constructor for class org.springframework.security.web.authentication.logout.SimpleUrlLogoutSuccessHandler
-
- simpMessageDestMatchers(String...) - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
- SimpMessageTypeMatcher - Class in org.springframework.security.messaging.util.matcher
-
A
MessageMatcher
that matches if the provided
Message
has a type that
is the same as the
SimpMessageType
that was specified in the constructor.
- SimpMessageTypeMatcher(SimpMessageType) - Constructor for class org.springframework.security.messaging.util.matcher.SimpMessageTypeMatcher
-
Creates a new instance
- simpSubscribeDestMatchers(String...) - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
- simpTypeMatchers(SimpMessageType...) - Method in class org.springframework.security.config.annotation.web.messaging.MessageSecurityMetadataSourceRegistry
-
- SPRING_SECURITY_CONTEXT_KEY - Static variable in class org.springframework.security.web.context.HttpSessionSecurityContextRepository
-
The default key under which the security context will be stored in the session.
- SPRING_SECURITY_FILTER_CHAIN - Static variable in class org.springframework.security.config.BeanIds
-
External alias for FilterChainProxy bean, for use in web.xml files
- SPRING_SECURITY_FORM_PASSWORD_KEY - Static variable in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
- SPRING_SECURITY_FORM_USERNAME_KEY - Static variable in class org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter
-
- SPRING_SECURITY_REMEMBER_ME_COOKIE_KEY - Static variable in class org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices
-
- SPRING_SECURITY_SWITCH_USERNAME_KEY - Static variable in class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- SpringCacheBasedAclCache - Class in org.springframework.security.acls.domain
-
Simple implementation of
AclCache
that
delegates to
Cache
implementation.
- SpringCacheBasedAclCache(Cache, PermissionGrantingStrategy, AclAuthorizationStrategy) - Constructor for class org.springframework.security.acls.domain.SpringCacheBasedAclCache
-
- SpringCacheBasedTicketCache - Class in org.springframework.security.cas.authentication
-
Caches tickets using a Spring IoC defined
Cache
.
- SpringCacheBasedTicketCache(Cache) - Constructor for class org.springframework.security.cas.authentication.SpringCacheBasedTicketCache
-
- SpringCacheBasedUserCache - Class in org.springframework.security.core.userdetails.cache
-
- SpringCacheBasedUserCache(Cache) - Constructor for class org.springframework.security.core.userdetails.cache.SpringCacheBasedUserCache
-
- springSecurity() - Static method in class org.springframework.security.test.web.servlet.setup.SecurityMockMvcConfigurers
-
Configures the MockMvcBuilder for use with Spring Security.
- springSecurity(Filter) - Static method in class org.springframework.security.test.web.servlet.setup.SecurityMockMvcConfigurers
-
Configures the MockMvcBuilder for use with Spring Security.
- SpringSecurityAuthenticationSource - Class in org.springframework.security.ldap.authentication
-
An AuthenticationSource to retrieve authentication information stored in Spring
Security's
SecurityContextHolder
.
- SpringSecurityAuthenticationSource() - Constructor for class org.springframework.security.ldap.authentication.SpringSecurityAuthenticationSource
-
- SpringSecurityCoreVersion - Class in org.springframework.security.core
-
Internal class used for checking version compatibility in a deployed application.
- SpringSecurityCoreVersion() - Constructor for class org.springframework.security.core.SpringSecurityCoreVersion
-
- springSecurityFilterChain() - Method in class org.springframework.security.config.annotation.web.configuration.WebSecurityConfiguration
-
Creates the Spring Security Filter Chain
- SpringSecurityLdapTemplate - Class in org.springframework.security.ldap
-
Extension of Spring LDAP's LdapTemplate class which adds extra functionality required
by Spring Security.
- SpringSecurityLdapTemplate(ContextSource) - Constructor for class org.springframework.security.ldap.SpringSecurityLdapTemplate
-
- SpringSecurityMessageSource - Class in org.springframework.security.core
-
The default MessageSource
used by Spring Security.
- SpringSecurityMessageSource() - Constructor for class org.springframework.security.core.SpringSecurityMessageSource
-
- standard(CharSequence, CharSequence) - Static method in class org.springframework.security.crypto.encrypt.Encryptors
-
Creates a standard password-based bytes encryptor using 256 bit AES encryption.
- StandardPasswordEncoder - Class in org.springframework.security.crypto.password
-
A standard PasswordEncoder
implementation that uses SHA-256 hashing with 1024
iterations and a random 8-byte random salt value.
- StandardPasswordEncoder() - Constructor for class org.springframework.security.crypto.password.StandardPasswordEncoder
-
Constructs a standard password encoder with no additional secret value.
- StandardPasswordEncoder(CharSequence) - Constructor for class org.springframework.security.crypto.password.StandardPasswordEncoder
-
Constructs a standard password encoder with a secret value which is also included
in the password hash.
- start() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- StatelessTicketCache - Interface in org.springframework.security.cas.authentication
-
Caches CAS service tickets and CAS proxy tickets for stateless connections.
- StaticAllowFromStrategy - Class in org.springframework.security.web.header.writers.frameoptions
-
Simple implementation of the AllowFromStrategy
- StaticAllowFromStrategy(URI) - Constructor for class org.springframework.security.web.header.writers.frameoptions.StaticAllowFromStrategy
-
- StaticHeadersWriter - Class in org.springframework.security.web.header.writers
-
HeaderWriter
implementation which writes the same Header
instance.
- StaticHeadersWriter(List<Header>) - Constructor for class org.springframework.security.web.header.writers.StaticHeadersWriter
-
Creates a new instance
- StaticHeadersWriter(String, String...) - Constructor for class org.springframework.security.web.header.writers.StaticHeadersWriter
-
Creates a new instance with a single header
- stop() - Method in class org.springframework.security.ldap.server.ApacheDSContainer
-
- string() - Static method in class org.springframework.security.crypto.keygen.KeyGenerators
-
- StringKeyGenerator - Interface in org.springframework.security.crypto.keygen
-
A generator for unique string keys.
- stronger(CharSequence, CharSequence) - Static method in class org.springframework.security.crypto.encrypt.Encryptors
-
Creates a standard password-based bytes encryptor using 256 bit AES encryption with
Galois Counter Mode (GCM).
- subArray(byte[], int, int) - Static method in class org.springframework.security.crypto.util.EncodingUtils
-
Extract a sub array of bytes out of the byte array.
- SubjectDnX509PrincipalExtractor - Class in org.springframework.security.web.authentication.preauth.x509
-
Obtains the principal from a certificate using a regular expression match against the
Subject (as returned by a call to
X509Certificate.getSubjectDN()
).
- SubjectDnX509PrincipalExtractor() - Constructor for class org.springframework.security.web.authentication.preauth.x509.SubjectDnX509PrincipalExtractor
-
- subjectPrincipalRegex(String) - Method in class org.springframework.security.config.annotation.web.configurers.X509Configurer
-
Specifies the regex to extract the principal from the certificate.
- submit(Callable<T>) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- submit(Runnable, T) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- submit(Runnable) - Method in class org.springframework.security.concurrent.DelegatingSecurityContextExecutorService
-
- submit(Runnable) - Method in class org.springframework.security.task.DelegatingSecurityContextAsyncTaskExecutor
-
- submit(Callable<T>) - Method in class org.springframework.security.task.DelegatingSecurityContextAsyncTaskExecutor
-
- successForwardUrl(String) - Method in class org.springframework.security.config.annotation.web.configurers.FormLoginConfigurer
-
Forward Authentication Success Handler
- successfulAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, Authentication) - Method in class org.springframework.security.cas.web.CasAuthenticationFilter
-
- successfulAuthentication(HttpServletRequest, HttpServletResponse, FilterChain, Authentication) - Method in class org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter
-
Default behaviour for successful authentication.
- successfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.springframework.security.web.authentication.preauth.AbstractPreAuthenticatedProcessingFilter
-
Puts the Authentication
instance returned by the authentication
manager into the secure context.
- successHandler(AuthenticationSuccessHandler) - Method in class org.springframework.security.config.annotation.web.configurers.AbstractAuthenticationFilterConfigurer
-
- supports(ConfigAttribute) - Method in interface org.springframework.security.access.AccessDecisionManager
-
Indicates whether this AccessDecisionManager
is able to process
authorization requests presented with the passed ConfigAttribute
.
- supports(Class<?>) - Method in interface org.springframework.security.access.AccessDecisionManager
-
Indicates whether the AccessDecisionManager
implementation is able to
provide access control decisions for the indicated secured object type.
- supports(ConfigAttribute) - Method in interface org.springframework.security.access.AccessDecisionVoter
-
Indicates whether this AccessDecisionVoter
is able to vote on the passed
ConfigAttribute
.
- supports(Class<?>) - Method in interface org.springframework.security.access.AccessDecisionVoter
-
Indicates whether the AccessDecisionVoter
implementation is able to provide
access control votes for the indicated secured object type.
- supports(ConfigAttribute) - Method in interface org.springframework.security.access.AfterInvocationProvider
-
Indicates whether this AfterInvocationProvider
is able to participate
in a decision involving the passed ConfigAttribute
.
- supports(Class<?>) - Method in interface org.springframework.security.access.AfterInvocationProvider
-
Indicates whether the AfterInvocationProvider
is able to provide
"after invocation" processing for the indicated secured object type.
- supports(ConfigAttribute) - Method in class org.springframework.security.access.annotation.Jsr250Voter
-
- supports(Class<?>) - Method in class org.springframework.security.access.annotation.Jsr250Voter
-
All classes are supported.
- supports(ConfigAttribute) - Method in interface org.springframework.security.access.intercept.AfterInvocationManager
-
Indicates whether this AfterInvocationManager
is able to process
"after invocation" requests presented with the passed ConfigAttribute
.
- supports(Class<?>) - Method in interface org.springframework.security.access.intercept.AfterInvocationManager
-
Indicates whether the AfterInvocationManager
implementation is able to
provide access control decisions for the indicated secured object type.
- supports(ConfigAttribute) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
-
- supports(Class<?>) - Method in class org.springframework.security.access.intercept.AfterInvocationProviderManager
-
Iterates through all AfterInvocationProvider
s and ensures each can
support the presented class.
- supports(Class<?>) - Method in class org.springframework.security.access.intercept.RunAsImplAuthenticationProvider
-
- supports(ConfigAttribute) - Method in interface org.springframework.security.access.intercept.RunAsManager
-
Indicates whether this RunAsManager
is able to process the passed
ConfigAttribute
.
- supports(Class<?>) - Method in interface org.springframework.security.access.intercept.RunAsManager
-
Indicates whether the RunAsManager
implementation is able to provide
run-as replacement for the indicated secure object type.
- supports(ConfigAttribute) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
-
- supports(Class<?>) - Method in class org.springframework.security.access.intercept.RunAsManagerImpl
-
This implementation supports any type of class, because it does not query the
presented secure object.
- supports(Class<?>) - Method in class org.springframework.security.access.method.AbstractMethodSecurityMetadataSource
-
- supports(ConfigAttribute) - Method in class org.springframework.security.access.prepost.PostInvocationAdviceProvider
-
- supports(Class<?>) - Method in class org.springframework.security.access.prepost.PostInvocationAdviceProvider
-
- supports(ConfigAttribute) - Method in class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
-
- supports(Class<?>) - Method in class org.springframework.security.access.prepost.PreInvocationAuthorizationAdviceVoter
-
- supports(Class<?>) - Method in interface org.springframework.security.access.SecurityMetadataSource
-
Indicates whether the SecurityMetadataSource
implementation is able to
provide ConfigAttribute
s for the indicated secure object type.
- supports(ConfigAttribute) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
- supports(Class<?>) - Method in class org.springframework.security.access.vote.AbstractAccessDecisionManager
-
Iterates through all AccessDecisionVoter
s and ensures each can support
the presented class.
- supports(Class<?>) - Method in class org.springframework.security.access.vote.AbstractAclVoter
-
This implementation supports only MethodSecurityInterceptor
, because
it queries the presented MethodInvocation
.
- supports(ConfigAttribute) - Method in class org.springframework.security.access.vote.AuthenticatedVoter
-
- supports(Class<?>) - Method in class org.springframework.security.access.vote.AuthenticatedVoter
-
This implementation supports any type of class, because it does not query the
presented secure object.
- supports(ConfigAttribute) - Method in class org.springframework.security.access.vote.RoleVoter
-
- supports(Class<?>) - Method in class org.springframework.security.access.vote.RoleVoter
-
This implementation supports any type of class, because it does not query the
presented secure object.
- supports(ConfigAttribute) - Method in class org.springframework.security.acls.AclEntryVoter
-
- supports(ConfigAttribute) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
- supports(Class<?>) - Method in class org.springframework.security.acls.afterinvocation.AbstractAclProvider
-
This implementation supports any type of class, because it does not query the
presented secure object.
- supports(Class<?>) - Method in class org.springframework.security.authentication.AnonymousAuthenticationProvider
-
- supports(Class<?>) - Method in interface org.springframework.security.authentication.AuthenticationProvider
-
Returns true
if this AuthenticationProvider
supports the
indicated Authentication
object.
- supports(Class<?>) - Method in class org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider
-
- supports(Class<?>) - Method in class org.springframework.security.authentication.jaas.AbstractJaasAuthenticationProvider
-
- supports(Class<?>) - Method in class org.springframework.security.authentication.rcp.RemoteAuthenticationProvider
-
- supports(Class<?>) - Method in class org.springframework.security.authentication.RememberMeAuthenticationProvider
-
- supports(Class<?>) - Method in class org.springframework.security.authentication.TestingAuthenticationProvider
-
- supports(Class<?>) - Method in class org.springframework.security.cas.authentication.CasAuthenticationProvider
-
- supports(Class<?>) - Method in class org.springframework.security.config.authentication.AuthenticationManagerBeanDefinitionParser.NullAuthenticationProvider
-
- supports(Class<?>) - Method in class org.springframework.security.ldap.authentication.AbstractLdapAuthenticationProvider
-
- supports(ConfigAttribute) - Method in class org.springframework.security.messaging.access.expression.MessageExpressionVoter
-
- supports(Class<?>) - Method in class org.springframework.security.messaging.access.expression.MessageExpressionVoter
-
- supports(Class<?>) - Method in class org.springframework.security.messaging.access.intercept.DefaultMessageSecurityMetadataSource
-
- supports(Class<?>) - Method in class org.springframework.security.openid.OpenIDAuthenticationProvider
-
- supports(ConfigAttribute) - Method in interface org.springframework.security.web.access.channel.ChannelDecisionManager
-
Indicates whether this ChannelDecisionManager
is able to process the
passed ConfigAttribute
.
- supports(ConfigAttribute) - Method in class org.springframework.security.web.access.channel.ChannelDecisionManagerImpl
-
- supports(ConfigAttribute) - Method in interface org.springframework.security.web.access.channel.ChannelProcessor
-
Indicates whether this ChannelProcessor
is able to process the passed
ConfigAttribute
.
- supports(ConfigAttribute) - Method in class org.springframework.security.web.access.channel.InsecureChannelProcessor
-
- supports(ConfigAttribute) - Method in class org.springframework.security.web.access.channel.SecureChannelProcessor
-
- supports(ConfigAttribute) - Method in class org.springframework.security.web.access.expression.WebExpressionVoter
-
- supports(Class<?>) - Method in class org.springframework.security.web.access.expression.WebExpressionVoter
-
- supports(Class<?>) - Method in class org.springframework.security.web.access.intercept.DefaultFilterInvocationSecurityMetadataSource
-
- supports(Class<?>) - Method in class org.springframework.security.web.authentication.preauth.PreAuthenticatedAuthenticationProvider
-
Indicate that this provider only supports PreAuthenticatedAuthenticationToken
(sub)classes.
- supportsParameter(MethodParameter) - Method in class org.springframework.security.messaging.context.AuthenticationPrincipalArgumentResolver
-
- supportsParameter(MethodParameter) - Method in class org.springframework.security.web.bind.support.AuthenticationPrincipalArgumentResolver
-
Deprecated.
- supportsParameter(MethodParameter) - Method in class org.springframework.security.web.method.annotation.AuthenticationPrincipalArgumentResolver
-
- supportsParameter(MethodParameter) - Method in class org.springframework.security.web.method.annotation.CsrfTokenArgumentResolver
-
- SwitchUserAuthorityChanger - Interface in org.springframework.security.web.authentication.switchuser
-
Allows subclasses to modify the
GrantedAuthority
list that will be assigned to
the principal when they assume the identity of a different principal.
- SwitchUserFilter - Class in org.springframework.security.web.authentication.switchuser
-
Switch User processing filter responsible for user context switching.
- SwitchUserFilter() - Constructor for class org.springframework.security.web.authentication.switchuser.SwitchUserFilter
-
- SwitchUserGrantedAuthority - Class in org.springframework.security.web.authentication.switchuser
-
- SwitchUserGrantedAuthority(String, Authentication) - Constructor for class org.springframework.security.web.authentication.switchuser.SwitchUserGrantedAuthority
-
- SYSTEM_PROPERTY - Static variable in class org.springframework.security.core.context.SecurityContextHolder
-
- SystemWideSaltSource - Class in org.springframework.security.authentication.dao
-
Uses a static system-wide String
as the salt.
- SystemWideSaltSource() - Constructor for class org.springframework.security.authentication.dao.SystemWideSaltSource
-