Class PostInvocationAdviceProvider
java.lang.Object
org.springframework.security.access.prepost.PostInvocationAdviceProvider
- All Implemented Interfaces:
AfterInvocationProvider
@Deprecated
public class PostInvocationAdviceProvider
extends Object
implements AfterInvocationProvider
Deprecated.
AfterInvocationProvider which delegates to a
PostInvocationAuthorizationAdvice
instance passing it the
PostInvocationAttribute created from @PostAuthorize and @PostFilter
annotations.- Since:
- 3.0
-
Field Summary
Modifier and TypeFieldDescriptionprotected final org.apache.commons.logging.Log
Deprecated. -
Constructor Summary
ConstructorDescriptionDeprecated. -
Method Summary
Modifier and TypeMethodDescriptiondecide
(Authentication authentication, Object object, Collection<ConfigAttribute> config, Object returnedObject) Deprecated.boolean
Deprecated.Indicates whether theAfterInvocationProvider
is able to provide "after invocation" processing for the indicated secured object type.boolean
supports
(ConfigAttribute attribute) Deprecated.Indicates whether thisAfterInvocationProvider
is able to participate in a decision involving the passedConfigAttribute
.
-
Field Details
-
logger
protected final org.apache.commons.logging.Log loggerDeprecated.
-
-
Constructor Details
-
PostInvocationAdviceProvider
Deprecated.
-
-
Method Details
-
decide
public Object decide(Authentication authentication, Object object, Collection<ConfigAttribute> config, Object returnedObject) throws AccessDeniedException Deprecated.- Specified by:
decide
in interfaceAfterInvocationProvider
- Throws:
AccessDeniedException
-
supports
Deprecated.Description copied from interface:AfterInvocationProvider
Indicates whether thisAfterInvocationProvider
is able to participate in a decision involving the passedConfigAttribute
.This allows the
AbstractSecurityInterceptor
to check every configuration attribute can be consumed by the configuredAccessDecisionManager
and/orRunAsManager
and/orAccessDecisionManager
.- Specified by:
supports
in interfaceAfterInvocationProvider
- Parameters:
attribute
- a configuration attribute that has been configured against theAbstractSecurityInterceptor
- Returns:
- true if this
AfterInvocationProvider
can support the passed configuration attribute
-
supports
Deprecated.Description copied from interface:AfterInvocationProvider
Indicates whether theAfterInvocationProvider
is able to provide "after invocation" processing for the indicated secured object type.- Specified by:
supports
in interfaceAfterInvocationProvider
- Parameters:
clazz
- the class of secure object that is being queried- Returns:
- true if the implementation can process the indicated class
-
AuthorizationManagerAfterMethodInterceptor
instead