@PreAuthorize,
@PreFilter, @PostAuthorize and @PostFilter annotations.See: Description
| Interface | Description |
|---|---|
| PostInvocationAttribute |
Marker interface for attributes which are created from combined @PostFilter
and @PostAuthorize annotations.
|
| PostInvocationAuthorizationAdvice |
Performs filtering and authorization logic after a method is invoked.
|
| PreInvocationAttribute |
Marker interface for attributes which are created from combined @PreFilter
and @PreAuthorize annotations.
|
| PreInvocationAuthorizationAdvice |
Performs argument filtering and authorization logic before a method is invoked.
|
| PrePostInvocationAttributeFactory |
| Class | Description |
|---|---|
| PostInvocationAdviceProvider |
AfterInvocationProvider which delegates to a
PostInvocationAuthorizationAdvice instance passing it the
PostInvocationAttribute created from @PostAuthorize and @PostFilter
annotations. |
| PreInvocationAuthorizationAdviceVoter |
Voter which performs the actions using a PreInvocationAuthorizationAdvice
implementation generated from @PreFilter and @PreAuthorize annotations.
|
| PrePostAdviceReactiveMethodInterceptor |
A
MethodInterceptor that supports PreAuthorize and
PostAuthorize for methods that return Mono or Flux |
| PrePostAnnotationSecurityMetadataSource |
MethodSecurityMetadataSource which extracts metadata from the @PreFilter
and @PreAuthorize annotations placed on a method.
|
| Annotation Type | Description |
|---|---|
| PostAuthorize |
Annotation for specifying a method access-control expression which will be evaluated
after a method has been invoked.
|
| PostFilter |
Annotation for specifying a method filtering expression which will be evaluated after a
method has been invoked.
|
| PreAuthorize |
Annotation for specifying a method access-control expression which will be evaluated to
decide whether a method invocation is allowed or not.
|
| PreFilter |
Annotation for specifying a method filtering expression which will be evaluated before
a method has been invoked.
|
@PreAuthorize,
@PreFilter, @PostAuthorize and @PostFilter annotations.
Other than the annotations themselves, the classes should be regarded as for internal framework use and are liable to change without notice.