A B C D E F G H I L M O P R S T U W
All Classes All Packages
All Classes All Packages
All Classes All Packages
A
- AbstractRestHandlerBase - Class in org.craftercms.security.utils.handlers
-
Base for login, logout and access denied REST handlers.
- AbstractRestHandlerBase() - Constructor for class org.craftercms.security.utils.handlers.AbstractRestHandlerBase
- ACCESS_DENIED_EXCEPTION_SESSION_ATTRIBUTE - Static variable in class org.craftercms.security.utils.SecurityUtils
- AccessDeniedException - Exception in org.craftercms.security.exception
-
Thrown when a user doesn't have enough privileges to access a resource.
- AccessDeniedException(String) - Constructor for exception org.craftercms.security.exception.AccessDeniedException
- AccessDeniedException(String, Throwable) - Constructor for exception org.craftercms.security.exception.AccessDeniedException
- accessDeniedHandler - Variable in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
- AccessDeniedHandler - Interface in org.craftercms.security.authorization
-
Handles the request after access to a resource is denied for a user.
- AccessDeniedHandlerImpl - Class in org.craftercms.security.authorization.impl
-
Default implementation of
AccessDeniedHandler
, which forwards to the error page URL, so that the original URL is preserved in the browser. - AccessDeniedHandlerImpl() - Constructor for class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
- AccessRestrictionExpressionRoot - Class in org.craftercms.security.utils.spring.el
-
Instances of this class are used as the root object for Spring EL
Expression
s that are used to evaluate access restrictions. - AccessRestrictionExpressionRoot() - Constructor for class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
- addConnectionData(Profile, ConnectionData, TextEncryptor) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Adds the specified
ConnectionData
to the profile. - addCookies() - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- addProfileLastModifiedCookie(long) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- addProviderProfileInfo(Profile, UserProfile) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Adds the info from the provider profile to the specified profile.
- addRememberMeCookie(String, HttpServletResponse) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- AddSecurityCookiesProcessor - Class in org.craftercms.security.processors.impl
-
RequestSecurityProcessor
implementation that creates a wrapper so that the ticket and profile last update cookies are added to the response, just before it is sent to the client. - AddSecurityCookiesProcessor() - Constructor for class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor
- AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper - Class in org.craftercms.security.processors.impl
- AddSecurityCookiesResponseWrapper(HttpServletRequest, HttpServletResponse) - Constructor for class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- addTicketCookie(String) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- AllTenantsResolver - Class in org.craftercms.security.utils.tenant
-
TenantsResolver
that uses all the available tenants. - AllTenantsResolver() - Constructor for class org.craftercms.security.utils.tenant.AllTenantsResolver
- alwaysUseDefaultTargetUrl - Variable in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- authenticate(String) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- authenticateUser(String[], String, String) - Method in interface org.craftercms.security.authentication.AuthenticationManager
-
Authenticates a user.
- authenticateUser(String[], String, String) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- authenticateUser(String, String, String) - Method in interface org.craftercms.security.authentication.AuthenticationManager
-
Authenticates a user.
- authenticateUser(String, String, String) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- authenticateUser(Profile) - Method in interface org.craftercms.security.authentication.AuthenticationManager
-
Authenticates a user just with it's profile ID.
- authenticateUser(Profile) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- authenticateUser(Profile, boolean) - Method in interface org.craftercms.security.authentication.AuthenticationManager
-
Authenticates a user just with it's profile ID.
- authenticateUser(Profile, boolean) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- Authentication - Interface in org.craftercms.security.authentication
-
Represents a successful authentication.
- AUTHENTICATION_EXCEPTION_SESSION_ATTRIBUTE - Static variable in class org.craftercms.security.utils.SecurityUtils
- AUTHENTICATION_REQUEST_ATTRIBUTE_NAME - Static variable in class org.craftercms.security.utils.SecurityUtils
- authenticationCache - Variable in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- authenticationCache - Variable in class org.craftercms.security.utils.profile.RefreshCurrentAuthenticationOnProfileUpdateAspect
- AuthenticationCache - Interface in org.craftercms.security.authentication
-
Cache for
Authentication
objects. - AuthenticationException - Exception in org.craftercms.security.exception
-
General exception thrown by the authentication service.
- AuthenticationException() - Constructor for exception org.craftercms.security.exception.AuthenticationException
- AuthenticationException(String) - Constructor for exception org.craftercms.security.exception.AuthenticationException
- AuthenticationException(String, Throwable) - Constructor for exception org.craftercms.security.exception.AuthenticationException
- AuthenticationException(Throwable) - Constructor for exception org.craftercms.security.exception.AuthenticationException
- AuthenticationHeadersLoginProcessor - Class in org.craftercms.security.processors.impl
-
RequestSecurityProcessor
that auto logins a user through the headers provided by the Apache mod_auth_mellon SAML authentication module. - AuthenticationHeadersLoginProcessor() - Constructor for class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- authenticationManager - Variable in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- authenticationManager - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- authenticationManager - Variable in class org.craftercms.security.processors.impl.CurrentAuthenticationResolvingProcessor
- authenticationManager - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- authenticationManager - Variable in class org.craftercms.security.processors.impl.LogoutProcessor
- authenticationManager - Variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- AuthenticationManager - Interface in org.craftercms.security.authentication
-
Manages authentication.
- AuthenticationManagerImpl - Class in org.craftercms.security.authentication.impl
-
Default implementation of
AuthenticationManager
. - AuthenticationManagerImpl() - Constructor for class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- AuthenticationRequiredException - Exception in org.craftercms.security.exception
-
Thrown if the user is required to authenticate to access a resource.
- AuthenticationRequiredException(String) - Constructor for exception org.craftercms.security.exception.AuthenticationRequiredException
- AuthenticationRequiredException(String, Throwable) - Constructor for exception org.craftercms.security.exception.AuthenticationRequiredException
- authenticationRequiredHandler - Variable in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
- AuthenticationRequiredHandler - Interface in org.craftercms.security.authentication
-
Handles the request when authentication is required.
- AuthenticationRequiredHandlerImpl - Class in org.craftercms.security.authentication.impl
-
Default implementation of
AuthenticationRequiredHandler
: - AuthenticationRequiredHandlerImpl() - Constructor for class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
-
Default constructor
- authenticationService - Variable in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- authenticationService - Variable in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- AuthenticationSystemException - Exception in org.craftercms.security.exception
-
Thrown when something in the authentication system fails.
- AuthenticationSystemException() - Constructor for exception org.craftercms.security.exception.AuthenticationSystemException
- AuthenticationSystemException(String) - Constructor for exception org.craftercms.security.exception.AuthenticationSystemException
- AuthenticationSystemException(String, Throwable) - Constructor for exception org.craftercms.security.exception.AuthenticationSystemException
- autoLogin(RequestContext) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- autoLogin(RequestContext) - Method in interface org.craftercms.security.authentication.RememberMeManager
-
Attempts auto login if a remember me cookie is present in the current request
- AVATAR_LINK_ATTRIBUTE_NAME - Static variable in class org.craftercms.security.utils.social.ConnectionUtils
B
- BAD_CREDENTIALS_EXCEPTION_SESSION_ATTRIBUTE - Static variable in class org.craftercms.security.utils.SecurityUtils
- BadCredentialsException - Exception in org.craftercms.security.exception
-
Thrown when user authentication fails because of invalid username/password.
- BadCredentialsException() - Constructor for exception org.craftercms.security.exception.BadCredentialsException
- BadCredentialsException(String) - Constructor for exception org.craftercms.security.exception.BadCredentialsException
- BadCredentialsException(String, Throwable) - Constructor for exception org.craftercms.security.exception.BadCredentialsException
C
- cache - Variable in class org.craftercms.security.authentication.impl.GuavaAuthenticationCache
- chainAllTenants - Variable in class org.craftercms.security.utils.tenant.TenantsResolverChain
- clearSession(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- complete(String, String, HttpServletRequest) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- complete(String, String, HttpServletRequest) - Method in interface org.craftercms.security.social.ProviderLoginSupport
-
Completes the OAuth authentication, returning the resulting
Authentication
object, or null if it couldn't be completed. - complete(String, String, HttpServletRequest, Set<String>, Map<String, Object>) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- complete(String, String, HttpServletRequest, Set<String>, Map<String, Object>) - Method in interface org.craftercms.security.social.ProviderLoginSupport
-
Completes the OAuth authentication, returning the resulting
Authentication
object, or null if it couldn't be completed. - complete(String, String, HttpServletRequest, Set<String>, Map<String, Object>, ConnectSupport) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- complete(String, String, HttpServletRequest, Set<String>, Map<String, Object>, ConnectSupport) - Method in interface org.craftercms.security.social.ProviderLoginSupport
-
Completes the OAuth authentication, returning the resulting
Authentication
object, or null if it couldn't be completed. - completeConnection(ConnectSupport, String, HttpServletRequest) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- connectionDataToMap(ConnectionData, TextEncryptor) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Creates a new map from the specified
ConnectionData
. - connectionFactoryLocator - Variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- CONNECTIONS_ATTRIBUTE_NAME - Static variable in class org.craftercms.security.utils.social.ConnectionUtils
- ConnectionUtils - Class in org.craftercms.security.utils.social
-
Utility methods related with connections with providers.
- ConnectionUtils() - Constructor for class org.craftercms.security.utils.social.ConnectionUtils
- connectSupport - Variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- cookiesAdded - Variable in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- CookieTheftException - Exception in org.craftercms.security.exception.rememberme
-
Thrown when a remember me cookie has been possibly stolen and is being used.
- CookieTheftException(String) - Constructor for exception org.craftercms.security.exception.rememberme.CookieTheftException
- CookieTheftException(String, Throwable) - Constructor for exception org.craftercms.security.exception.rememberme.CookieTheftException
- createExpressionRoot(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
- createProfile(String, Connection<?>, Profile) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- createProfile(Connection<?>) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Creates a profile from the specified connection.
- createProfileWithSsoInfo(String, Tenant, HttpServletRequest) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- createRequestContext(HttpServletRequest, HttpServletResponse) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Returns a new
RequestContext
, using the specifiedHttpServletRequest
andHttpServletResponse
. - CurrentAuthenticationResolvingProcessor - Class in org.craftercms.security.processors.impl
-
Obtains and sets the authentication for the current request.
- CurrentAuthenticationResolvingProcessor() - Constructor for class org.craftercms.security.processors.impl.CurrentAuthenticationResolvingProcessor
D
- DEFAULT_EMAIL_HEADER_NAME - Static variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- DEFAULT_LOGIN_METHOD - Static variable in class org.craftercms.security.processors.impl.LoginProcessor
- DEFAULT_LOGIN_URL - Static variable in class org.craftercms.security.processors.impl.LoginProcessor
- DEFAULT_LOGOUT_METHOD - Static variable in class org.craftercms.security.processors.impl.LogoutProcessor
- DEFAULT_LOGOUT_SUCCESS_MESSAGE - Static variable in class org.craftercms.security.authentication.impl.RestLogoutSuccessHandler
- DEFAULT_LOGOUT_URL - Static variable in class org.craftercms.security.processors.impl.LogoutProcessor
- DEFAULT_MELLON_HEADER_PREFIX - Static variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- DEFAULT_PASSWORD_PARAM - Static variable in class org.craftercms.security.processors.impl.LoginProcessor
- DEFAULT_REMEMBER_ME_PARAM - Static variable in class org.craftercms.security.processors.impl.LoginProcessor
- DEFAULT_SERVICE_METHOD - Static variable in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- DEFAULT_SERVICE_URL - Static variable in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- DEFAULT_TENANT_NAME_PARAM - Static variable in class org.craftercms.security.utils.tenant.ParamTenantsResolver
- DEFAULT_TOKEN_HEADER_NAME - Static variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- DEFAULT_USERNAME_HEADER_NAME - Static variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- DEFAULT_USERNAME_PARAM - Static variable in class org.craftercms.security.processors.impl.LoginProcessor
- DefaultAuthentication - Class in org.craftercms.security.authentication.impl
-
Default implementation of
Authentication
. - DefaultAuthentication(String, Profile) - Constructor for class org.craftercms.security.authentication.impl.DefaultAuthentication
- DefaultAuthentication(String, Profile, boolean) - Constructor for class org.craftercms.security.authentication.impl.DefaultAuthentication
- defaultTargetUrl - Variable in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- defaultTenantNames - Variable in class org.craftercms.security.utils.tenant.DefaultTenantsResolver
- DefaultTenantsResolver - Class in org.craftercms.security.utils.tenant
-
TenantsResolver
that uses default tenant values. - DefaultTenantsResolver() - Constructor for class org.craftercms.security.utils.tenant.DefaultTenantsResolver
- deleteProfileLastModifiedCookie() - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- deleteRememberMeCookie(HttpServletResponse) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- deleteTicketCookie() - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- denyAll() - Method in class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
-
Always returns false (deny access to everyone).
- deserializeLogin(String) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- DisabledUserException - Exception in org.craftercms.security.exception
-
Thrown if an authentication attempt is performed with a disabled user.
- DisabledUserException(String) - Constructor for exception org.craftercms.security.exception.DisabledUserException
- DisabledUserException(String, Throwable) - Constructor for exception org.craftercms.security.exception.DisabledUserException
- disableRememberMe(String, RequestContext) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- disableRememberMe(RequestContext) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- disableRememberMe(RequestContext) - Method in interface org.craftercms.security.authentication.RememberMeManager
-
Disabled remember me for the current authenticated profile, generally by removing remember me cookie.
- DISPLAY_NAME_ATTRIBUTE_NAME - Static variable in class org.craftercms.security.utils.social.ConnectionUtils
- doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
If
securityEnabled
, passes the request through the chain ofRequestSecurityProcessor
s, depending if the request URL matches or not theurlsToInclude
or theurlsToExclude
. - doFilterInternal(HttpServletRequest, HttpServletResponse, FilterChain) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Passes the request through the chain of
RequestSecurityProcessor
s.
E
- emailHeaderName - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- enableRememberMe(Authentication, RequestContext) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- enableRememberMe(Authentication, RequestContext) - Method in interface org.craftercms.security.authentication.RememberMeManager
-
Enables remember me for the current authenticated profile, generally by adding a remember me cookie.
- encryptor - Variable in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- equals(Object) - Method in class org.craftercms.security.authentication.impl.DefaultAuthentication
- errorPageUrl - Variable in class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
- excludeRequest(HttpServletRequest) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Returns trues if the request should be excluded from processing.
F
- findSecurityException(Exception) - Method in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
- FIRST_NAME_ATTRIBUTE_NAME - Static variable in class org.craftercms.security.utils.social.ConnectionUtils
- flushBuffer() - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- forwardToErrorPage(RequestContext) - Method in class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
G
- getAuthentication(String) - Method in interface org.craftercms.security.authentication.AuthenticationCache
-
Returns the cached authentication for the given ticket.
- getAuthentication(String) - Method in class org.craftercms.security.authentication.impl.GuavaAuthenticationCache
- getAuthentication(String, boolean) - Method in interface org.craftercms.security.authentication.AuthenticationManager
-
Returns the authentication associated to the given ticket ID
- getAuthentication(String, boolean) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- getAuthentication(HttpServletRequest) - Static method in class org.craftercms.security.utils.SecurityUtils
-
Returns the authentication attribute from the specified request.
- getConnectionData(Profile, String, TextEncryptor) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Returns the list of
ConnectionData
associated to the provider ID of the specified profile - getConnectionFactory(String) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- getCurrentAuthentication() - Static method in class org.craftercms.security.utils.SecurityUtils
-
Returns the authentication attribute from the current request.
- getCurrentProfile() - Static method in class org.craftercms.security.utils.SecurityUtils
-
Returns the profile from authentication attribute from the current request.
- getCurrentTenantName() - Static method in class org.craftercms.security.utils.tenant.TenantUtils
-
Returns the current tenant name, which is the tenant of the currently authenticated profile.
- getDefaultTargetUrl() - Method in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- getError() - Method in exception org.craftercms.security.exception.OAuth2Exception
- getErrorDescription() - Method in exception org.craftercms.security.exception.OAuth2Exception
- getErrorPageUrl() - Method in class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
- getErrorUri() - Method in exception org.craftercms.security.exception.OAuth2Exception
- getLastProcessorInChain(FilterChain) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Returns the last processor of the chain, which should actually call the
FilterChain
. - getLoginFormUrl() - Method in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
- getOutputStream() - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- getPassword(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- getPersistentLoginFromCookie(HttpServletRequest) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- getProfile() - Method in interface org.craftercms.security.authentication.Authentication
-
Returns the profile associated to the authentication.
- getProfile() - Method in class org.craftercms.security.authentication.impl.DefaultAuthentication
- getProfile(String, Profile) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- getProfile(HttpServletRequest) - Static method in class org.craftercms.security.utils.SecurityUtils
-
Returns the profile from authentication attribute from the specified request.
- getProfileLastModifiedCookie(HttpServletRequest) - Static method in class org.craftercms.security.utils.SecurityUtils
-
Returns the last modified timestamp cookie from the request.
- getRememberMe(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- getRememberMeCookie(HttpServletRequest) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- getRequestUrl(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
-
Returns the request URL without the context path.
- getSsoEnabledTenant(String[]) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- getTargetUrl() - Method in class org.craftercms.security.authentication.impl.LoginFailureHandlerImpl
- getTargetUrl() - Method in class org.craftercms.security.authentication.impl.LogoutSuccessHandlerImpl
- getTenantNames(TenantService) - Static method in class org.craftercms.security.utils.tenant.TenantUtils
-
Returns a list with the names of all tenants.
- getTenants() - Method in class org.craftercms.security.utils.tenant.AllTenantsResolver
- getTenants() - Method in class org.craftercms.security.utils.tenant.DefaultTenantsResolver
- getTenants() - Method in class org.craftercms.security.utils.tenant.ParamTenantsResolver
- getTenants() - Method in interface org.craftercms.security.utils.tenant.TenantsResolver
-
Returns the tenants the application can use.
- getTenants() - Method in class org.craftercms.security.utils.tenant.TenantsResolverChain
- getTicket() - Method in interface org.craftercms.security.authentication.Authentication
-
Returns the ticket that identifies the authentication.
- getTicket() - Method in class org.craftercms.security.authentication.impl.DefaultAuthentication
- getTicketCookie(HttpServletRequest) - Static method in class org.craftercms.security.utils.SecurityUtils
-
Returns the ticket cookie value from the request.
- getTokenExpectedValue() - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- getUrlRestrictions() - Method in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
- getUsername(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- getWriter() - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- GuavaAuthenticationCache - Class in org.craftercms.security.authentication.impl
-
Implementation of
AuthenticationCache
that uses a GuavaCache
. - GuavaAuthenticationCache(Cache<String, Authentication>) - Constructor for class org.craftercms.security.authentication.impl.GuavaAuthenticationCache
H
- handle(RequestContext) - Method in class org.craftercms.security.authentication.impl.LogoutSuccessHandlerImpl
-
Redirects to the target URL.
- handle(RequestContext) - Method in class org.craftercms.security.authentication.impl.RestLogoutSuccessHandler
- handle(RequestContext) - Method in interface org.craftercms.security.authentication.LogoutSuccessHandler
-
Handles the request after a successful logout.
- handle(RequestContext, Authentication) - Method in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- handle(RequestContext, Authentication) - Method in class org.craftercms.security.authentication.impl.RestLoginSuccessHandler
- handle(RequestContext, Authentication) - Method in interface org.craftercms.security.authentication.LoginSuccessHandler
-
Handles the request after a successful authentication.
- handle(RequestContext, AccessDeniedException) - Method in interface org.craftercms.security.authorization.AccessDeniedHandler
-
Handles the request after access to a resource is denied for a user.
- handle(RequestContext, AccessDeniedException) - Method in class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
-
Forwards to the error page, but if not error page was specified, a 403 error is sent.
- handle(RequestContext, AccessDeniedException) - Method in class org.craftercms.security.authorization.impl.RestAccessDeniedHandler
- handle(RequestContext, AuthenticationException) - Method in interface org.craftercms.security.authentication.AuthenticationRequiredHandler
-
Handles the request when authentication is required.
- handle(RequestContext, AuthenticationException) - Method in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
-
Saves the current request in the request cache and then redirects to the login form page.
- handle(RequestContext, AuthenticationException) - Method in class org.craftercms.security.authentication.impl.LoginFailureHandlerImpl
-
Redirects the response to target URL if target URL is not empty.
- handle(RequestContext, AuthenticationException) - Method in class org.craftercms.security.authentication.impl.RestAuthenticationRequiredHandler
- handle(RequestContext, AuthenticationException) - Method in class org.craftercms.security.authentication.impl.RestLoginFailureHandler
- handle(RequestContext, AuthenticationException) - Method in interface org.craftercms.security.authentication.LoginFailureHandler
-
Handles the request after a failed authentication
- handleAccessDeniedException(RequestContext, AccessDeniedException) - Method in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
-
Handles the specified
AccessDeniedException
, by calling theAccessDeniedHandler
. - handleAuthenticationRequiredException(RequestContext, AuthenticationRequiredException) - Method in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
- handleSecurityProviderException(SecurityProviderException, RequestContext) - Method in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
- hasAnyRole(Collection<String>) - Method in class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
-
Returns trues if the profile has any of the specified roles.
- hashCode() - Method in class org.craftercms.security.authentication.impl.DefaultAuthentication
- hasRole(String) - Method in class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
-
Returns trues if the profile has the specified role.
- hasValidToken(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
I
- includeRequest(HttpServletRequest) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Returns trues if the request should be included for processing.
- invalidateAuthentication(Authentication) - Method in interface org.craftercms.security.authentication.AuthenticationManager
-
Invalidates the given authentication.
- invalidateAuthentication(Authentication) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- InvalidCookieException - Exception in org.craftercms.security.exception.rememberme
-
Thrown when a remember me cookie provided has an invalid format.
- InvalidCookieException(String) - Constructor for exception org.craftercms.security.exception.rememberme.InvalidCookieException
- InvalidCookieException(String, Throwable) - Constructor for exception org.craftercms.security.exception.rememberme.InvalidCookieException
- isAccessAllowed(HttpServletRequest, Expression) - Method in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
- isAlwaysUseDefaultTargetUrl() - Method in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- isAnonymous() - Method in class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
-
Returns trues if user is anonymous.
- isAuthenticated() - Method in class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
-
Returns trues if user is authenticated.
- isLoginRequest(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- isLogoutRequest(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
- isRemembered() - Method in interface org.craftercms.security.authentication.Authentication
-
Indicates if it's a remembered authentication.
- isRemembered() - Method in class org.craftercms.security.authentication.impl.DefaultAuthentication
- isServiceRequest(HttpServletRequest) - Method in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
L
- LAST_NAME_ATTRIBUTE_NAME - Static variable in class org.craftercms.security.utils.social.ConnectionUtils
- loadProfile(String) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- logger - Static variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- logger - Static variable in class org.craftercms.security.processors.impl.LoginProcessor
- logger - Static variable in class org.craftercms.security.processors.impl.LogoutProcessor
- logger - Static variable in class org.craftercms.security.processors.impl.SavedRequestAwareProcessor
- logger - Static variable in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
- logger - Static variable in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
- loginFailureHandler - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- LoginFailureHandler - Interface in org.craftercms.security.authentication
-
Handles the request after a failed authentication.
- LoginFailureHandlerImpl - Class in org.craftercms.security.authentication.impl
-
Default implementation of
LoginFailureHandler
, which redirects the response to a target URL or 401 is sent if there's no target URL. - LoginFailureHandlerImpl() - Constructor for class org.craftercms.security.authentication.impl.LoginFailureHandlerImpl
- loginFormUrl - Variable in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
- loginMethod - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- LoginProcessor - Class in org.craftercms.security.processors.impl
-
Processes login requests.
- LoginProcessor() - Constructor for class org.craftercms.security.processors.impl.LoginProcessor
-
Default constructor.
- loginSuccessHandler - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- LoginSuccessHandler - Interface in org.craftercms.security.authentication
-
Handles the response after a successful authentication.
- LoginSuccessHandlerImpl - Class in org.craftercms.security.authentication.impl
-
Default implementation of
LoginSuccessHandler
: - LoginSuccessHandlerImpl() - Constructor for class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- loginUrl - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- logoutMethod - Variable in class org.craftercms.security.processors.impl.LogoutProcessor
- LogoutProcessor - Class in org.craftercms.security.processors.impl
-
Processes logout requests.
- LogoutProcessor() - Constructor for class org.craftercms.security.processors.impl.LogoutProcessor
-
Default constructor.
- logoutSuccessHandler - Variable in class org.craftercms.security.processors.impl.LogoutProcessor
- LogoutSuccessHandler - Interface in org.craftercms.security.authentication
-
Handles the request after a successful logout.
- LogoutSuccessHandlerImpl - Class in org.craftercms.security.authentication.impl
-
Default implementation for
LogoutSuccessHandlerImpl
, which redirects to a target URL. - LogoutSuccessHandlerImpl() - Constructor for class org.craftercms.security.authentication.impl.LogoutSuccessHandlerImpl
- logoutSuccessMessage - Variable in class org.craftercms.security.authentication.impl.RestLogoutSuccessHandler
- logoutUrl - Variable in class org.craftercms.security.processors.impl.LogoutProcessor
M
- mapToConnectionData(String, Map<String, Object>, TextEncryptor) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Creates a new instance of
ConnectionData
from the specified map. - mellonHeaderPrefix - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
O
- OAuth2Exception - Exception in org.craftercms.security.exception
-
Exception used when a OAuth2 provider returns an error on a login attempt.
- OAuth2Exception(String, String, String) - Constructor for exception org.craftercms.security.exception.OAuth2Exception
- onLoginFailure(RequestContext, AuthenticationException) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- onLoginSuccess(RequestContext, Authentication) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- onLogoutSuccess(RequestContext, Authentication) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
- org.craftercms.security.annotations - package org.craftercms.security.annotations
- org.craftercms.security.aop - package org.craftercms.security.aop
- org.craftercms.security.authentication - package org.craftercms.security.authentication
- org.craftercms.security.authentication.impl - package org.craftercms.security.authentication.impl
- org.craftercms.security.authorization - package org.craftercms.security.authorization
- org.craftercms.security.authorization.impl - package org.craftercms.security.authorization.impl
- org.craftercms.security.exception - package org.craftercms.security.exception
- org.craftercms.security.exception.rememberme - package org.craftercms.security.exception.rememberme
- org.craftercms.security.processors - package org.craftercms.security.processors
- org.craftercms.security.processors.impl - package org.craftercms.security.processors.impl
- org.craftercms.security.servlet.filters - package org.craftercms.security.servlet.filters
- org.craftercms.security.social - package org.craftercms.security.social
- org.craftercms.security.social.impl - package org.craftercms.security.social.impl
- org.craftercms.security.utils - package org.craftercms.security.utils
- org.craftercms.security.utils.handlers - package org.craftercms.security.utils.handlers
- org.craftercms.security.utils.profile - package org.craftercms.security.utils.profile
- org.craftercms.security.utils.social - package org.craftercms.security.utils.social
- org.craftercms.security.utils.spring - package org.craftercms.security.utils.spring
- org.craftercms.security.utils.spring.el - package org.craftercms.security.utils.spring.el
- org.craftercms.security.utils.tenant - package org.craftercms.security.utils.tenant
P
- PARAM_CODE - Static variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- PARAM_ERROR - Static variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- PARAM_ERROR_DESCRIPTION - Static variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- PARAM_ERROR_URI - Static variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- PARAM_OAUTH_TOKEN - Static variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- ParamTenantsResolver - Class in org.craftercms.security.utils.tenant
-
TenantsResolver
that resolves the tenants through a param. - ParamTenantsResolver() - Constructor for class org.craftercms.security.utils.tenant.ParamTenantsResolver
- passwordParameter - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- pathMatcher - Variable in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
- pathMatcher - Variable in class org.craftercms.security.servlet.filters.RequestSecurityFilter
- permitAll() - Method in class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
-
Always returns true (allow access to everyone).
- postProcessAfterInitialization(Object, String) - Method in class org.craftercms.security.utils.spring.SecurityEnabledAwareProcessor
- postProcessBeforeInitialization(Object, String) - Method in class org.craftercms.security.utils.spring.SecurityEnabledAwareProcessor
- processRequest(RequestContext) - Method in class org.craftercms.security.processors.impl.RequestSecurityProcessorChainImpl
-
Calls the next
RequestSecurityProcessor
of the iterator. - processRequest(RequestContext) - Method in interface org.craftercms.security.processors.RequestSecurityProcessorChain
-
Calls the next processor in the chain.
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor
-
Wraps the response in a wrapper that adds (or deletes) the security cookies before the response is sent.
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.CurrentAuthenticationResolvingProcessor
-
Sets the authentication for the current request.
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.LoginProcessor
-
Checks if the request URL matches the
loginUrl
and the HTTP method matches theloginMethod
. - processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
-
Checks if the request URL matches the
logoutUrl
and the HTTP method matches thelogoutMethod
. - processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.RememberMeAutoLoginProcessor
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.SavedRequestAwareProcessor
-
Checks if there's a request in the request cache (which means that a previous request was cached).
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
-
Catches any exception thrown by the processor chain.
- processRequest(RequestContext, RequestSecurityProcessorChain) - Method in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
-
Matches the request URL against the keys of the
restriction
map, which are ANT-style path patterns. - processRequest(RequestContext, RequestSecurityProcessorChain) - Method in interface org.craftercms.security.processors.RequestSecurityProcessor
-
Processes a request, enforcing security when required.
- PROFILE_LAST_MODIFIED_COOKIE_NAME - Static variable in class org.craftercms.security.utils.SecurityUtils
- profileLastModifiedCookieManager - Variable in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor
- profileService - Variable in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- profileService - Variable in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- profileService - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- profileService - Variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- ProviderLoginSupport - Interface in org.craftercms.security.social
-
Helper class that allows for executing logins with a social service provider like Facebook, Twitter, LinkedIn, etc.
- ProviderLoginSupportImpl - Class in org.craftercms.security.social.impl
-
Default implementation of
ProviderLoginSupport
. - ProviderLoginSupportImpl() - Constructor for class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- putAuthentication(Authentication) - Method in interface org.craftercms.security.authentication.AuthenticationCache
-
Puts the specified authentication in the cache.
- putAuthentication(Authentication) - Method in class org.craftercms.security.authentication.impl.GuavaAuthenticationCache
R
- redirect(HttpServletRequest, HttpServletResponse, String) - Static method in class org.craftercms.security.utils.RedirectUtils
-
Redirects to the specified URL.
- redirectToSavedRequest(HttpServletRequest, HttpServletResponse) - Method in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- RedirectUtils - Class in org.craftercms.security.utils
-
Utility class for redirection.
- RedirectUtils() - Constructor for class org.craftercms.security.utils.RedirectUtils
- refreshCurrentAuthentication(Profile) - Method in class org.craftercms.security.utils.profile.RefreshCurrentAuthenticationOnProfileUpdateAspect
- RefreshCurrentAuthenticationOnProfileUpdateAspect - Class in org.craftercms.security.utils.profile
-
Aspect for
ProfileService
that refreshes the current authentication object when the profile associated to the authentication is updated. - RefreshCurrentAuthenticationOnProfileUpdateAspect() - Constructor for class org.craftercms.security.utils.profile.RefreshCurrentAuthenticationOnProfileUpdateAspect
- REMEMBER_ME_COOKIE_NAME - Static variable in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- RememberMeAutoLoginProcessor - Class in org.craftercms.security.processors.impl
-
RequestSecurityProcessor
that executes auto login when a valid remember me cookie is found in the request and there's no authentication present yet. - RememberMeAutoLoginProcessor() - Constructor for class org.craftercms.security.processors.impl.RememberMeAutoLoginProcessor
- rememberMeCookieManager - Variable in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- RememberMeException - Exception in org.craftercms.security.exception.rememberme
-
Root exception for remember me related errors.
- RememberMeException(String) - Constructor for exception org.craftercms.security.exception.rememberme.RememberMeException
- RememberMeException(String, Throwable) - Constructor for exception org.craftercms.security.exception.rememberme.RememberMeException
- rememberMeManager - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- rememberMeManager - Variable in class org.craftercms.security.processors.impl.LogoutProcessor
- rememberMeManager - Variable in class org.craftercms.security.processors.impl.RememberMeAutoLoginProcessor
- RememberMeManager - Interface in org.craftercms.security.authentication
-
Manages remember me functionality.
- RememberMeManagerImpl - Class in org.craftercms.security.authentication.impl
-
Default implementation of
RememberMeManager
. - RememberMeManagerImpl() - Constructor for class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- rememberMeParameter - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- removeAuthentication(String) - Method in interface org.craftercms.security.authentication.AuthenticationCache
-
Removes the authentication associated to the given ticket from the cache.
- removeAuthentication(String) - Method in class org.craftercms.security.authentication.impl.GuavaAuthenticationCache
- removeAuthentication(HttpServletRequest) - Static method in class org.craftercms.security.utils.SecurityUtils
-
Removes the authentication attribute from the specified request.
- removeConnectionData(String, String, Profile) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Remove the
ConnectionData
associated to the provider ID and user ID. - removeConnectionData(Profile, String) - Static method in class org.craftercms.security.utils.social.ConnectionUtils
-
Remove all
ConnectionData
associated to the specified provider ID. - removeCurrentAuthentication() - Static method in class org.craftercms.security.utils.SecurityUtils
-
Removes the authentication attribute from the current request.
- request - Variable in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- requestCache - Variable in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
- requestCache - Variable in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- requestCache - Variable in class org.craftercms.security.processors.impl.SavedRequestAwareProcessor
- RequestSecurityFilter - Class in org.craftercms.security.servlet.filters
-
Filter for running security.
- RequestSecurityFilter() - Constructor for class org.craftercms.security.servlet.filters.RequestSecurityFilter
- RequestSecurityProcessor - Interface in org.craftercms.security.processors
-
Implementations should process a request to enforce a security aspect (authentication, authorization, etc.).
- RequestSecurityProcessorChain - Interface in org.craftercms.security.processors
-
Represents a chain of
RequestSecurityProcessor
s. - RequestSecurityProcessorChainImpl - Class in org.craftercms.security.processors.impl
-
Default implementation of a handler chain, using an iterator.
- RequestSecurityProcessorChainImpl(Iterator<RequestSecurityProcessor>) - Constructor for class org.craftercms.security.processors.impl.RequestSecurityProcessorChainImpl
-
Default constructor
- resolvers - Variable in class org.craftercms.security.utils.tenant.TenantsResolverChain
- responseWriter - Variable in class org.craftercms.security.utils.handlers.AbstractRestHandlerBase
- RestAccessDeniedHandler - Class in org.craftercms.security.authorization.impl
-
Implementation of
AccessDeniedHandler
for REST based applications, which returns a 403 FORBIDDEN status with the access denied exception message. - RestAccessDeniedHandler() - Constructor for class org.craftercms.security.authorization.impl.RestAccessDeniedHandler
- RestAuthenticationRequiredHandler - Class in org.craftercms.security.authentication.impl
-
Implementation of
AuthenticationRequiredHandler
for REST based applications, which returns a 401 UNAUTHORIZED status with the authentication exception message. - RestAuthenticationRequiredHandler() - Constructor for class org.craftercms.security.authentication.impl.RestAuthenticationRequiredHandler
- RestLoginFailureHandler - Class in org.craftercms.security.authentication.impl
-
Implementation of
LoginFailureHandler
for REST based applications, which returns a 401 UNAUTHORIZED status with a the authentication exception message. - RestLoginFailureHandler() - Constructor for class org.craftercms.security.authentication.impl.RestLoginFailureHandler
- RestLoginSuccessHandler - Class in org.craftercms.security.authentication.impl
-
Implementation of
LoginSuccessHandler
for REST based applications, which returns theAuthentication
object as the response body. - RestLoginSuccessHandler() - Constructor for class org.craftercms.security.authentication.impl.RestLoginSuccessHandler
- RestLogoutSuccessHandler - Class in org.craftercms.security.authentication.impl
-
Implementation of
LogoutSuccessHandler
for REST based applications, which just returns a 200 OK status with a simple success message. - RestLogoutSuccessHandler() - Constructor for class org.craftercms.security.authentication.impl.RestLogoutSuccessHandler
- ReturnCurrentAuthenticationProcessor - Class in org.craftercms.security.processors.impl
-
RequestSecurityProcessor
that returns the current authentication to the client. - ReturnCurrentAuthenticationProcessor() - Constructor for class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- runIfSecurityEnabled(ProceedingJoinPoint) - Method in class org.craftercms.security.aop.RunIfSecurityEnabledAspect
- RunIfSecurityEnabled - Annotation Type in org.craftercms.security.annotations
-
Annotation used to indicate that a certain method should be executed only if security is enabled.
- RunIfSecurityEnabledAspect - Class in org.craftercms.security.aop
-
Aspect that handles the
RunIfSecurityEnabled
annotation - RunIfSecurityEnabledAspect() - Constructor for class org.craftercms.security.aop.RunIfSecurityEnabledAspect
S
- SavedRequestAwareProcessor - Class in org.craftercms.security.processors.impl
-
Uses
RequestCache
to reconstitute a previously saved request (if there's one). - SavedRequestAwareProcessor() - Constructor for class org.craftercms.security.processors.impl.SavedRequestAwareProcessor
- saveException(HttpServletRequest, AuthenticationException) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- saveException(RequestContext, AccessDeniedException) - Method in class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
- saveRequest(RequestContext) - Method in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
- securityEnabled - Variable in class org.craftercms.security.servlet.filters.RequestSecurityFilter
- SecurityEnabledAware - Interface in org.craftercms.security.utils
-
Interface implemented by objects that need to be notified if security is enabled or not.
- SecurityEnabledAwareProcessor - Class in org.craftercms.security.utils.spring
-
BeanPostProcessor
implementation that passes thesecurityEnabled
property to beans that implement theSecurityEnabledAware
interface. - SecurityEnabledAwareProcessor(boolean) - Constructor for class org.craftercms.security.utils.spring.SecurityEnabledAwareProcessor
- SecurityExceptionProcessor - Class in org.craftercms.security.processors.impl
-
Handles certain security exceptions:
- SecurityExceptionProcessor() - Constructor for class org.craftercms.security.processors.impl.SecurityExceptionProcessor
- securityProcessors - Variable in class org.craftercms.security.servlet.filters.RequestSecurityFilter
- SecurityProviderException - Exception in org.craftercms.security.exception
-
Root class of security provider related exceptions
- SecurityProviderException() - Constructor for exception org.craftercms.security.exception.SecurityProviderException
- SecurityProviderException(String) - Constructor for exception org.craftercms.security.exception.SecurityProviderException
- SecurityProviderException(String, Throwable) - Constructor for exception org.craftercms.security.exception.SecurityProviderException
- SecurityProviderException(Throwable) - Constructor for exception org.craftercms.security.exception.SecurityProviderException
- SecurityUtils - Class in org.craftercms.security.utils
-
Contains security utility methods.
- sendAuthentication(Authentication, RequestContext) - Method in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- sendError(int) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- sendError(int, String) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- sendError(AccessDeniedException, RequestContext) - Method in class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
- sendError(AuthenticationException, RequestContext) - Method in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
- sendError(AuthenticationException, RequestContext) - Method in class org.craftercms.security.authentication.impl.LoginFailureHandlerImpl
- sendErrorMessage(int, Throwable, RequestContext) - Method in class org.craftercms.security.utils.handlers.AbstractRestHandlerBase
- sendMessage(int, String, RequestContext) - Method in class org.craftercms.security.utils.handlers.AbstractRestHandlerBase
- sendObject(int, T, RequestContext) - Method in class org.craftercms.security.utils.handlers.AbstractRestHandlerBase
- sendRedirect(String) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor.AddSecurityCookiesResponseWrapper
- SERIALIZED_LOGIN_SEPARATOR - Static variable in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- serializeLogin(PersistentLogin) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- setAccessDeniedHandler(AccessDeniedHandler) - Method in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
-
Sets the
AccessDeniedHandler
, to handle anyAccessDeniedException
s thrown. - setAlwaysUseDefaultTargetUrl(boolean) - Method in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- setAuthentication(HttpServletRequest, Authentication) - Static method in class org.craftercms.security.utils.SecurityUtils
-
Sets the authentication attribute in the specified request.
- setAuthenticationCache(AuthenticationCache) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- setAuthenticationCache(AuthenticationCache) - Method in class org.craftercms.security.utils.profile.RefreshCurrentAuthenticationOnProfileUpdateAspect
- setAuthenticationManager(AuthenticationManager) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- setAuthenticationManager(AuthenticationManager) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setAuthenticationManager(AuthenticationManager) - Method in class org.craftercms.security.processors.impl.CurrentAuthenticationResolvingProcessor
- setAuthenticationManager(AuthenticationManager) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setAuthenticationManager(AuthenticationManager) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
- setAuthenticationManager(AuthenticationManager) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- setAuthenticationRequiredHandler(AuthenticationRequiredHandler) - Method in class org.craftercms.security.processors.impl.SecurityExceptionProcessor
-
Sets the
AuthenticationRequiredHandler
, to handle anyAuthenticationRequiredException
s thrown. - setAuthenticationService(AuthenticationService) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- setAuthenticationService(AuthenticationService) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- setChainAllTenants(boolean) - Method in class org.craftercms.security.utils.tenant.TenantsResolverChain
- setConnectionFactoryLocator(ConnectionFactoryLocator) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- setConnectSupport(ConnectSupport) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- setCurrentAuthentication(Authentication) - Static method in class org.craftercms.security.utils.SecurityUtils
-
Sets the authentication attribute in the current request.
- setDefaultTargetUrl(String) - Method in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- setDefaultTenantNames(String[]) - Method in class org.craftercms.security.utils.tenant.DefaultTenantsResolver
- setEmailHeaderName(String) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setEncryptor(TextEncryptor) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- setErrorPageUrl(String) - Method in class org.craftercms.security.authorization.impl.AccessDeniedHandlerImpl
-
Sets the error page URL to forward to.
- setLoginFailureHandler(LoginFailureHandler) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setLoginFormUrl(String) - Method in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
-
Sets the URL of the login form page.
- setLoginMethod(String) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setLoginSuccessHandler(LoginSuccessHandler) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setLoginUrl(String) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setLogoutMethod(String) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
- setLogoutSuccessHandler(LogoutSuccessHandler) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
- setLogoutSuccessMessage(String) - Method in class org.craftercms.security.authentication.impl.RestLogoutSuccessHandler
- setLogoutUrl(String) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
- setMellonHeaderPrefix(String) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setPasswordParameter(String) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setPathMatcher(PathMatcher) - Method in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
-
Sets the path matcher to use to match the URLs for restriction checking.
- setProfile(Profile) - Method in class org.craftercms.security.utils.spring.el.AccessRestrictionExpressionRoot
- setProfileLastModifiedCookieManager(CookieManager) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor
- setProfileService(ProfileService) - Method in class org.craftercms.security.authentication.impl.AuthenticationManagerImpl
- setProfileService(ProfileService) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- setProfileService(ProfileService) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setProfileService(ProfileService) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- setRememberMeCookieManager(CookieManager) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- setRememberMeManager(RememberMeManager) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setRememberMeManager(RememberMeManager) - Method in class org.craftercms.security.processors.impl.LogoutProcessor
- setRememberMeManager(RememberMeManager) - Method in class org.craftercms.security.processors.impl.RememberMeAutoLoginProcessor
- setRememberMeParameter(String) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setRequestCache(RequestCache) - Method in class org.craftercms.security.authentication.impl.AuthenticationRequiredHandlerImpl
-
Sets the cache where the current request is saved.
- setRequestCache(RequestCache) - Method in class org.craftercms.security.authentication.impl.LoginSuccessHandlerImpl
- setRequestCache(RequestCache) - Method in class org.craftercms.security.processors.impl.SavedRequestAwareProcessor
- setResolvers(List<TenantsResolver>) - Method in class org.craftercms.security.utils.tenant.TenantsResolverChain
- setResponseWriter(HttpMessageConvertingResponseWriter) - Method in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- setResponseWriter(HttpMessageConvertingResponseWriter) - Method in class org.craftercms.security.utils.handlers.AbstractRestHandlerBase
- setSecurityEnabled(boolean) - Method in class org.craftercms.security.aop.RunIfSecurityEnabledAspect
- setSecurityEnabled(boolean) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Sets if security is enabled or disabled.
- setSecurityEnabled(boolean) - Method in interface org.craftercms.security.utils.SecurityEnabledAware
- setSecurityProcessors(List<RequestSecurityProcessor>) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Sets the chain of
RequestSecurityProcessor
. - setServiceMethod(String) - Method in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- setServiceUrl(String) - Method in class org.craftercms.security.processors.impl.ReturnCurrentAuthenticationProcessor
- setTargetUrl(String) - Method in class org.craftercms.security.authentication.impl.LoginFailureHandlerImpl
- setTargetUrl(String) - Method in class org.craftercms.security.authentication.impl.LogoutSuccessHandlerImpl
- setTenantNameParam(String) - Method in class org.craftercms.security.utils.tenant.ParamTenantsResolver
- setTenantService(TenantService) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setTenantService(TenantService) - Method in class org.craftercms.security.utils.tenant.AllTenantsResolver
- setTenantsResolver(TenantsResolver) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setTenantsResolver(TenantsResolver) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- setTextEncryptor(TextEncryptor) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- setTicketCookieManager(CookieManager) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor
- setTokenExpectedValue(String) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setTokenHeaderName(String) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setUrlRestrictions(Map<String, String>) - Method in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
-
Sets the map of restrictions.
- setUrlsToExclude(String...) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Sets the regular expressions used to match the URLs of requests that should NOT be processed by the security chain.
- setUrlsToInclude(String...) - Method in class org.craftercms.security.servlet.filters.RequestSecurityFilter
-
Sets the regular expressions used to match the URLs of requests that should be processed by the security chain.
- setUsernameHeaderName(String) - Method in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- setUsernameParameter(String) - Method in class org.craftercms.security.processors.impl.LoginProcessor
- start(String, String, HttpServletRequest) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- start(String, String, HttpServletRequest) - Method in interface org.craftercms.security.social.ProviderLoginSupport
-
Starts the OAuth login process.
- start(String, String, HttpServletRequest, MultiValueMap<String, String>) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- start(String, String, HttpServletRequest, MultiValueMap<String, String>) - Method in interface org.craftercms.security.social.ProviderLoginSupport
-
Starts the OAuth login process.
- start(String, String, HttpServletRequest, MultiValueMap<String, String>, ConnectSupport) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- start(String, String, HttpServletRequest, MultiValueMap<String, String>, ConnectSupport) - Method in interface org.craftercms.security.social.ProviderLoginSupport
-
Starts the OAuth login process.
T
- targetUrl - Variable in class org.craftercms.security.authentication.impl.LoginFailureHandlerImpl
- targetUrl - Variable in class org.craftercms.security.authentication.impl.LogoutSuccessHandlerImpl
- TENANT_REQUEST_ATTRIBUTE_NAME - Static variable in class org.craftercms.security.utils.SecurityUtils
- tenantNameParam - Variable in class org.craftercms.security.utils.tenant.ParamTenantsResolver
- tenantService - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- tenantService - Variable in class org.craftercms.security.utils.tenant.AllTenantsResolver
- tenantsResolver - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- tenantsResolver - Variable in class org.craftercms.security.processors.impl.LoginProcessor
- TenantsResolver - Interface in org.craftercms.security.utils.tenant
-
Utility interface that can be implemented to resolve the tenants usable by the application.
- TenantsResolverChain - Class in org.craftercms.security.utils.tenant
-
TenantsResolver
that returns the first tenants resolved by any resolver. - TenantsResolverChain() - Constructor for class org.craftercms.security.utils.tenant.TenantsResolverChain
- TenantUtils - Class in org.craftercms.security.utils.tenant
-
Tenant related utility methods.
- textEncryptor - Variable in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- TICKET_COOKIE_NAME - Static variable in class org.craftercms.security.utils.SecurityUtils
- ticketCookieManager - Variable in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor
- tokenExpectedValue - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- tokenHeaderName - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- toString() - Method in class org.craftercms.security.authentication.impl.DefaultAuthentication
U
- updateProfileConnectionData(String, Connection<?>, Profile) - Method in class org.craftercms.security.social.impl.ProviderLoginSupportImpl
- updateRememberMe(String, RequestContext) - Method in class org.craftercms.security.authentication.impl.RememberMeManagerImpl
- UrlAccessRestrictionCheckingProcessor - Class in org.craftercms.security.processors.impl
-
Processor that checks if the current user has permission to access the current request URL.
- UrlAccessRestrictionCheckingProcessor() - Constructor for class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
-
Default constructor.
- urlRestrictions - Variable in class org.craftercms.security.processors.impl.UrlAccessRestrictionCheckingProcessor
- urlsToExclude - Variable in class org.craftercms.security.servlet.filters.RequestSecurityFilter
- urlsToInclude - Variable in class org.craftercms.security.servlet.filters.RequestSecurityFilter
- usernameHeaderName - Variable in class org.craftercms.security.processors.impl.AuthenticationHeadersLoginProcessor
- usernameParameter - Variable in class org.craftercms.security.processors.impl.LoginProcessor
W
- wrapResponse(RequestContext) - Method in class org.craftercms.security.processors.impl.AddSecurityCookiesProcessor
All Classes All Packages