public class ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry extends AbstractConfigAttributeRequestMatcherRegistry<T>
Modifier and Type | Method and Description |
---|---|
R |
accessDecisionManager(AccessDecisionManager accessDecisionManager)
Allows setting the
AccessDecisionManager . |
H |
and() |
protected ExpressionUrlAuthorizationConfigurer.AuthorizedUrl |
chainRequestMatchersInternal(java.util.List<RequestMatcher> requestMatchers)
Subclasses should implement this method for returning the object that is chained to
the creation of the
RequestMatcher instances. |
ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry |
expressionHandler(SecurityExpressionHandler<FilterInvocation> expressionHandler)
Allows customization of the
SecurityExpressionHandler to be used. |
R |
filterSecurityInterceptorOncePerRequest(boolean filterSecurityInterceptorOncePerRequest)
Allows setting if the
FilterSecurityInterceptor should be only applied
once per request (i.e. |
ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl |
mvcMatchers(org.springframework.http.HttpMethod method,
java.lang.String... mvcPatterns)
Maps an
MvcRequestMatcher that also specifies a specific HttpMethod
to match on. |
ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl |
mvcMatchers(java.lang.String... patterns)
Maps an
MvcRequestMatcher that does not care which HttpMethod is
used. |
ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry |
withObjectPostProcessor(ObjectPostProcessor<?> objectPostProcessor)
Adds an
ObjectPostProcessor for this class. |
chainRequestMatchers
antMatchers, antMatchers, antMatchers, anyRequest, createMvcMatchers, getApplicationContext, regexMatchers, regexMatchers, requestMatchers, setApplicationContext
public ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl mvcMatchers(org.springframework.http.HttpMethod method, java.lang.String... mvcPatterns)
AbstractRequestMatcherRegistry
Maps an MvcRequestMatcher
that also specifies a specific HttpMethod
to match on. This matcher will use the same rules that Spring MVC uses for
matching. For example, often times a mapping of the path "/path" will match on
"/path", "/path/", "/path.html", etc.
If the current request will not be processed by Spring MVC, a reasonable default using the pattern as a ant pattern will be used.
mvcMatchers
in class AbstractRequestMatcherRegistry<ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>
method
- the HTTP method to match onmvcPatterns
- the patterns to match on. The rules for matching are defined by
Spring MVCRequestMatcher
.public ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl mvcMatchers(java.lang.String... patterns)
AbstractRequestMatcherRegistry
Maps an MvcRequestMatcher
that does not care which HttpMethod
is
used. This matcher will use the same rules that Spring MVC uses for matching. For
example, often times a mapping of the path "/path" will match on "/path", "/path/",
"/path.html", etc.
If the current request will not be processed by Spring MVC, a reasonable default using the pattern as a ant pattern will be used.
mvcMatchers
in class AbstractRequestMatcherRegistry<ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>
patterns
- the patterns to match on. The rules for matching are defined by
Spring MVCRequestMatcher
.protected final ExpressionUrlAuthorizationConfigurer.AuthorizedUrl chainRequestMatchersInternal(java.util.List<RequestMatcher> requestMatchers)
AbstractConfigAttributeRequestMatcherRegistry
RequestMatcher
instances.chainRequestMatchersInternal
in class AbstractConfigAttributeRequestMatcherRegistry<ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>
requestMatchers
- the RequestMatcher
instances that were createdRequestMatcher
public ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry expressionHandler(SecurityExpressionHandler<FilterInvocation> expressionHandler)
SecurityExpressionHandler
to be used. The
default is DefaultWebSecurityExpressionHandler
expressionHandler
- the SecurityExpressionHandler
to be usedExpressionUrlAuthorizationConfigurer
for further
customization.public ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry withObjectPostProcessor(ObjectPostProcessor<?> objectPostProcessor)
ObjectPostProcessor
for this class.objectPostProcessor
- ExpressionUrlAuthorizationConfigurer
for further
customizationspublic H and()
public R accessDecisionManager(AccessDecisionManager accessDecisionManager)
AccessDecisionManager
. If none is provided, a
default AccessDecisionManager
is created.accessDecisionManager
- the AccessDecisionManager
to useAbstractInterceptUrlConfigurer
for further customizationpublic R filterSecurityInterceptorOncePerRequest(boolean filterSecurityInterceptorOncePerRequest)
FilterSecurityInterceptor
should be only applied
once per request (i.e. if the filter intercepts on a forward, should it be
applied again).filterSecurityInterceptorOncePerRequest
- if the
FilterSecurityInterceptor
should be only applied once per requestAbstractInterceptUrlConfigurer
for further customization