Docjar: A Java Source and Docuemnt Enginecom.*    java.*    javax.*    org.*    all    new    plug-in

Quick Search    Search Deep
Home >> All >> org >> acegisecurity >> [ intercept Javadoc ]

org.acegisecurity.intercept.method.* (10)org.acegisecurity.intercept.method.aopalliance.* (2)
org.acegisecurity.intercept.method.aspectj.* (2)org.acegisecurity.intercept.web.* (10)

org.acegisecurity.intercept: Javadoc index of package org.acegisecurity.intercept.


Package Samples:

org.acegisecurity.intercept.method.aopalliance: Provides support objects for securing Java method invocations via different AOP libraries.  
org.acegisecurity.intercept.method: Actually enforces the security and ties the whole security system together.  
org.acegisecurity.intercept.web
org.acegisecurity.intercept.method.aspectj

Classes:

AbstractSecurityInterceptor: Abstract class that implements security interception for secure objects. The AbstractSecurityInterceptor will ensure the proper startup configuration of the security interceptor. It will also implement the proper handling of secure object invocations, being: Obtain the org.acegisecurity.Authentication object from the SecurityContextHolder . Determine if the request relates to a secured or public invocation by looking up the secure object request against the ObjectDefinitionSource . For an invocation that is secured (there is a ConfigAttributeDefinition for the secure object invocation): If either ...
SecurityEnforcementFilter: Wraps requests to the FilterSecurityInterceptor . This filter is necessary because it provides the bridge between incoming requests and the FilterSecurityInterceptor instance. If an org.acegisecurity.AuthenticationException is detected, the filter will launch the authenticationEntryPoint . This allows common handling of authentication failures originating from any subclass of org.acegisecurity.intercept.AbstractSecurityInterceptor . If an org.acegisecurity.AccessDeniedException is detected, the filter will determine whether or not the user is an anonymous user. If they are an anonymous user, the ...
AspectJSecurityInterceptor: Provides security interception of AspectJ method invocations. The ObjectDefinitionSource required by this security interceptor is of type org.acegisecurity.intercept.method.MethodDefinitionSource . This is shared with the AOP Alliance based security interceptor ( MethodSecurityInterceptor ), since both work with Java Method s. The secure object type is org.aspectj.lang.JoinPoint , which is passed from the relevant around() advice. The around() advice also passes an anonymous implementation of AspectJCallback which contains the call for AspectJ to continue processing: return proceed(); . Refer to ...
MethodDefinitionMap: Stores a ConfigAttributeDefinition for each method signature defined in a bean context. For consistency with MethodDefinitionAttributes as well as support for MethodDefinitionSourceAdvisor , this implementation will return a ConfigAttributeDefinition containing all configuration attributes defined against: The method-specific attributes defined for the intercepted method of the intercepted class. The method-specific attributes defined by any explicitly implemented interface if that interface contains a method signature matching that of the intercepted method. In general you should therefore define ...
FilterSecurityInterceptor: Performs security handling of HTTP resources via a filter implementation. End users should only use this class to configure their HTTP security configuration in an application context. They should not attempt to invoke the FilterSecurityInterceptor except as a standard bean registration in an application context. At runtime, this class will provide services to web applications via the SecurityEnforcementFilter . The ObjectDefinitionSource required by this security interceptor is of type FilterInvocationDefinitionSource . Refer to org.acegisecurity.intercept.AbstractSecurityInterceptor for details ...
MethodDefinitionSourceAdvisor: Advisor driven by a org.acegisecurity.intercept.method.MethodDefinitionSource , used to exclude a MethodSecurityInterceptor from public (ie non-secure) methods. Because the AOP framework caches advice calculations, this is normally faster than just letting the MethodSecurityInterceptor run and find out itself that it has no work to do. This class also allows the use of Spring's DefaultAdvisorAutoProxyCreator , which makes configuration easier than setup a ProxyFactoryBean for each object requiring security. Note that autoproxying is not supported for BeanFactory implementations, as post-processing ...
RegExpBasedFilterInvocationDefinitionMap: Maintains a List of ConfigAttributeDefinition s associated with different HTTP request URL regular expression patterns. Regular expressions are used to match a HTTP request URL against a ConfigAttributeDefinition . The order of registering the regular expressions using the addSecureUrl(String, ConfigAttributeDefinition) 55 is very important. The system will identify the first matching regular expression for a given HTTP URL. It will not proceed to evaluate later regular expressions if a match has already been found. Accordingly, the most specific regular expressions should be registered first, ...
MethodDefinitionAttributes: Stores a ConfigAttributeDefinition for each method signature defined by Commons Attributes. This class will only detect those attributes which are defined for: The class-wide attributes defined for the intercepted class. The class-wide attributes defined for interfaces explicitly implemented by the intercepted class. The method-specific attributes defined for the intercepted method of the intercepted class. The method-specific attributes defined by any explicitly implemented interface if that interface contains a method signature matching that of the intercepted method. Note that attributes defined ...
FilterInvocationDefinitionSourceEditor: Property editor to assist with the setup of a FilterInvocationDefinitionSource . The class creates and populates a RegExpBasedFilterInvocationDefinitionMap or PathBasedFilterInvocationDefinitionMap (depending on the type of patterns presented). By default the class treats presented patterns as regular expressions. If the keyword PATTERN_TYPE_APACHE_ANT is present (case sensitive), patterns will be treated as Apache Ant paths rather than regular expressions.
PathBasedFilterInvocationDefinitionMap: Maintains a List of ConfigAttributeDefinition s associated with different HTTP request URL Apache Ant path-based patterns. Apache Ant path expressions are used to match a HTTP request URL against a ConfigAttributeDefinition . The order of registering the Ant paths using the addSecureUrl(String, ConfigAttributeDefinition) 55 is very important. The system will identify the first matching path for a given HTTP URL. It will not proceed to evaluate later paths if a match has already been found. Accordingly, the most specific paths should be registered first, with the most general paths registered last. ...
MethodSecurityInterceptor: Provides security interception of AOP Alliance based method invocations. The ObjectDefinitionSource required by this security interceptor is of type org.acegisecurity.intercept.method.MethodDefinitionSource . This is shared with the AspectJ based security interceptor ( AspectJSecurityInterceptor ), since both work with Java Method s. Refer to org.acegisecurity.intercept.AbstractSecurityInterceptor for details on the workflow.
MethodInvocationPrivilegeEvaluator: Allows users to determine whether they have "before invocation" privileges for a given method invocation. Of course, if an org.acegisecurity.AfterInvocationManager is used to authorize the result of a method invocation, this class cannot assist determine whether or not the AfterInvocationManager will enable access. Instead this class aims to allow applications to determine whether or not the current principal would be allowed to at least attempt to invoke the method, irrespective of the "after" invocation handling.
InterceptorStatusToken: A return object received by AbstractSecurityInterceptor subclasses. This class reflects the status of the security interception, so that the final call to AbstractSecurityInterceptor.afterInvocation(InterceptorStatusToken, Object) 55 can tidy up correctly.
MethodDefinitionSourceEditor: Property editor to assist with the setup of a MethodDefinitionSource . The class creates and populates a MethodDefinitionMap .
FilterInvocation: Holds objects associated with a HTTP filter. Guarantees the request and response are instances of HttpServletRequest and HttpServletResponse , and that there are no null objects. Required so that security system classes can obtain access to the filter environment, as well as the request and response.
AspectJCallback: Called by the AspectJSecurityInterceptor when it wishes for the AspectJ processing to continue. Typically implemented in the around() advice as a simple return proceed(); statement.
FilterInvocationDefinitionSource: Marker interface for ObjectDefinitionSource implementations that are designed to perform lookups keyed on FilterInvocation s.
FilterInvocationDefinitionMap: Exposes methods required so that a property editor can populate the relevant FilterInvocationDefinitionSource .
AuthenticationEntryPoint: Used by SecurityEnforcementFilter to commence an authentication scheme.
ObjectDefinitionSource: Implemented by classes that store and can identify the ConfigAttributeDefinition that applies to a given secure object invocation.
MethodDefinitionSource: Marker interface for ObjectDefinitionSource implementations that are designed to perform lookups keyed on Method s.
AbstractFilterInvocationDefinitionSource: Abstract implementation of FilterInvocationDefinitionSource .
AbstractMethodDefinitionSource: Abstract implementation of MethodDefinitionSource .

Home | Contact Us | Privacy Policy | Terms of Service