org.springframework.security.authorization

Interface ReactiveAuthorizationManager<T>

Type Parameters:

T - the type of object that the authorization check is being done one.

All Known Implementing Classes:

AuthenticatedReactiveAuthorizationManager, AuthorityReactiveAuthorizationManager, DelegatingReactiveAuthorizationManager, PayloadExchangeMatcherReactiveAuthorizationManager

public interface ReactiveAuthorizationManager<T>

A reactive authorization manager which can determine if an Authentication has access to a specific object.

Since:

5.0

Method Summary

Modifier and Type	Method and Description
reactor.core.publisher.Mono<AuthorizationDecision>	check(reactor.core.publisher.Mono<Authentication> authentication, T object) Determines if access is granted for a specific authentication and object.
default reactor.core.publisher.Mono<java.lang.Void>	verify(reactor.core.publisher.Mono<Authentication> authentication, T object) Determines if access should be granted for a specific authentication and object

Method Detail

check

reactor.core.publisher.Mono<AuthorizationDecision> check(reactor.core.publisher.Mono<Authentication> authentication,
                                                         T object)

Determines if access is granted for a specific authentication and object.

Parameters:

authentication - the Authentication to check

object - the object to check

Returns:

an decision or empty Mono if no decision could be made.

verify

default reactor.core.publisher.Mono<java.lang.Void> verify(reactor.core.publisher.Mono<Authentication> authentication,
                                                           T object)

Determines if access should be granted for a specific authentication and object

Parameters:

authentication - the Authentication to check

object - the object to check

Returns:

an empty Mono if authorization is granted or a Mono error if access is denied