Interface AuthenticationTrustResolver
- All Known Implementing Classes:
AuthenticationTrustResolverImpl
public interface AuthenticationTrustResolver
Evaluates
Authentication
tokens-
Method Summary
Modifier and TypeMethodDescriptionboolean
isAnonymous
(Authentication authentication) Indicates whether the passedAuthentication
token represents an anonymous user.boolean
isRememberMe
(Authentication authentication) Indicates whether the passedAuthentication
token represents user that has been remembered (i.e.
-
Method Details
-
isAnonymous
Indicates whether the passedAuthentication
token represents an anonymous user. Typically the framework will call this method if it is trying to decide whether anAccessDeniedException
should result in a final rejection (i.e. as would be the case if the principal was non-anonymous/fully authenticated) or direct the principal to attempt actual authentication (i.e. as would be the case if theAuthentication
was merely anonymous).- Parameters:
authentication
- to test (may benull
in which case the method will always returnfalse
)- Returns:
true
the passed authentication token represented an anonymous principal,false
otherwise
-
isRememberMe
Indicates whether the passedAuthentication
token represents user that has been remembered (i.e. not a user that has been fully authenticated).The method is provided to assist with custom
AccessDecisionVoter
s and the like that you might develop. Of course, you don't need to use this method either and can develop your own "trust level" hierarchy instead.- Parameters:
authentication
- to test (may benull
in which case the method will always returnfalse
)- Returns:
true
the passed authentication token represented a principal authenticated using a remember-me token,false
otherwise
-