Docjar: A Java Source and Docuemnt Enginecom.*    java.*    javax.*    org.*    all    new    plug-in

Quick Search    Search Deep
Overview  Package   Class  Use  Deprecated  Index 
Home >> All >> org >> acegisecurity >> [ vote overview ]  PREV CLASS  NEXT CLASS
SUMMARY: JavaDoc of org.acegisecurity.vote.AuthenticatedVoter JAVADOC | Sourc code of org.acegisecurity.vote.AuthenticatedVoter SOURCE | Download org.acegisecurity.vote.AuthenticatedVoter DOWNLOAD | NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.acegisecurity.vote
Class AuthenticatedVoter  view AuthenticatedVoter download AuthenticatedVoter.java

java.lang.Object
  extended byorg.acegisecurity.vote.AuthenticatedVoter
All Implemented Interfaces:
AccessDecisionVoter
public class AuthenticatedVoter
extends java.lang.Object
implements AccessDecisionVoter

Votes if a ConfigAttribute#getAttribute() of IS_AUTHENTICATED_FULLY or IS_AUTHENTICATED_REMEMBERED or IS_AUTHENTICATED_ANONYMOUSLY is present. This list is in order of most strict checking to least strict checking.

The current Authentication will be inspected to determine if the principal has a particular level of authentication. The "FULLY" authenticated option means the user is authenticated fully (ie AuthenticationTrustResolver.isAnonymous(Authentication)>AuthenticationTrustResolver.isAnonymous(Authentication) 55 is false and AuthenticationTrustResolver.isRememberMe(Authentication)>AuthenticationTrustResolver.isRememberMe(Authentication) 55 is false. The "REMEMBERED" will grant access if the principal was either authenticated via remember-me OR is fully authenticated. The "ANONYMOUSLY" will grant access if the principal was authenticated via remember-me, OR anonymously, OR via full authentication.

All comparisons and prefixes are case sensitive.

Version:
$Id: AuthenticatedVoter.java,v 1.2 2005/11/17 00:55:47 benalex Exp $

Field Summary
private  org.acegisecurity.AuthenticationTrustResolver authenticationTrustResolver
           
static java.lang.String IS_AUTHENTICATED_ANONYMOUSLY
           
static java.lang.String IS_AUTHENTICATED_FULLY
           
static java.lang.String IS_AUTHENTICATED_REMEMBERED
           
 
Fields inherited from interface org.acegisecurity.vote.AccessDecisionVoter
ACCESS_ABSTAIN, ACCESS_DENIED, ACCESS_GRANTED
 
Constructor Summary
AuthenticatedVoter()
           
 
Method Summary
private  boolean isFullyAuthenticated(org.acegisecurity.Authentication authentication)
           
 void setAuthenticationTrustResolver(org.acegisecurity.AuthenticationTrustResolver authenticationTrustResolver)
           
 boolean supports(ConfigAttribute attribute)
          Indicates whether this AccessDecisionVoter is able to vote on the passed ConfigAttribute.
 int vote(org.acegisecurity.Authentication authentication, java.lang.Object object, ConfigAttributeDefinition config)
          Indicates whether or not access is granted.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

IS_AUTHENTICATED_FULLY

public static final java.lang.String IS_AUTHENTICATED_FULLY
See Also:
Constant Field Values

IS_AUTHENTICATED_REMEMBERED

public static final java.lang.String IS_AUTHENTICATED_REMEMBERED
See Also:
Constant Field Values

IS_AUTHENTICATED_ANONYMOUSLY

public static final java.lang.String IS_AUTHENTICATED_ANONYMOUSLY
See Also:
Constant Field Values

authenticationTrustResolver

private org.acegisecurity.AuthenticationTrustResolver authenticationTrustResolver
Constructor Detail

AuthenticatedVoter

public AuthenticatedVoter()
Method Detail

setAuthenticationTrustResolver

public void setAuthenticationTrustResolver(org.acegisecurity.AuthenticationTrustResolver authenticationTrustResolver)

supports

public boolean supports(ConfigAttribute attribute)
Description copied from interface: AccessDecisionVoter
Indicates whether this AccessDecisionVoter is able to vote on the passed ConfigAttribute.

This allows the AbstractSecurityInterceptor to check every configuration attribute can be consumed by the configured AccessDecisionManager and/or RunAsManager and/or AccessDecisionManager.

Specified by:
supports in interface AccessDecisionVoter

vote

public int vote(org.acegisecurity.Authentication authentication,
                java.lang.Object object,
                ConfigAttributeDefinition config)
Description copied from interface: AccessDecisionVoter
Indicates whether or not access is granted.

The decision must be affirmative (ACCESS_GRANTED), negative (ACCESS_DENIED) or the AccessDecisionVoter can abstain (ACCESS_ABSTAIN) from voting. Under no circumstances should implementing classes return any other value. If a weighting of results is desired, this should be handled in a custom org.acegisecurity.AccessDecisionManager instead.

Unless an AccessDecisionVoter is specifically intended to vote on an access control decision due to a passed method invocation or configuration attribute parameter, it must return ACCESS_ABSTAIN. This prevents the coordinating AccessDecisionManager from counting votes from those AccessDecisionVoters without a legitimate interest in the access control decision.

Whilst the method invocation is passed as a parameter to maximise flexibility in making access control decisions, implementing classes must never modify the behaviour of the method invocation (such as calling MethodInvocation.proceed()).

Specified by:
vote in interface AccessDecisionVoter

isFullyAuthenticated

private boolean isFullyAuthenticated(org.acegisecurity.Authentication authentication)
Overview  Package   Class  Use  Deprecated  Index 
Home >> All >> org >> acegisecurity >> [ vote overview ]  PREV CLASS  NEXT CLASS
SUMMARY: JavaDoc of org.acegisecurity.vote.AuthenticatedVoter JAVADOC | Sourc code of org.acegisecurity.vote.AuthenticatedVoter SOURCE | Download org.acegisecurity.vote.AuthenticatedVoter DOWNLOAD | NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD