Class DefaultAuthorizationChecker
java.lang.Object
org.pac4j.core.authorization.checker.DefaultAuthorizationChecker
- All Implemented Interfaces:
AuthorizationChecker
Default way to check the authorizations (with default authorizers).
- Since:
- 1.8.0
- Author:
- Jerome Leleu
-
Field Summary
Modifier and TypeFieldDescriptionprotected static final CsrfAuthorizer
ConstantCSRF_AUTHORIZER
protected static final Authorizer
ConstantIS_ANONYMOUS_AUTHORIZER
protected static final IsAuthenticatedAuthorizer
ConstantIS_AUTHENTICATED_AUTHORIZER
protected static final IsFullyAuthenticatedAuthorizer
ConstantIS_FULLY_AUTHENTICATED_AUTHORIZER
protected static final Authorizer
ConstantIS_REMEMBERED_AUTHORIZER
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionprotected List<Authorizer>
computeAuthorizers
(WebContext context, List<UserProfile> profiles, String authorizersValue, Map<String, Authorizer> authorizersMap, List<Client> clients) computeAuthorizers.protected List<Authorizer>
computeAuthorizersFromNames
(String authorizerNames, Map<String, Authorizer> authorizersMap) computeAuthorizersFromNames.protected List<Authorizer>
computeDefaultAuthorizers
(WebContext context, List<UserProfile> profiles, List<Client> clients, Map<String, Authorizer> authorizersMap) computeDefaultAuthorizers.protected boolean
containsClientType
(Iterable<Client> clients, Class<? extends Client> clazz) containsClientType.boolean
isAuthorized
(WebContext context, SessionStore sessionStore, List<UserProfile> profiles, String authorizersValue, Map<String, Authorizer> authorizersMap, List<Client> clients) Check whether the user is authorized.protected boolean
isAuthorized
(WebContext context, SessionStore sessionStore, List<UserProfile> profiles, Collection<Authorizer> authorizers) isAuthorized.protected Authorizer
retrieveAuthorizer
(String authorizerName, Map<String, Authorizer> authorizersMap) retrieveAuthorizer.
-
Field Details
-
CSRF_AUTHORIZER
ConstantCSRF_AUTHORIZER
-
IS_ANONYMOUS_AUTHORIZER
ConstantIS_ANONYMOUS_AUTHORIZER
-
IS_AUTHENTICATED_AUTHORIZER
ConstantIS_AUTHENTICATED_AUTHORIZER
-
IS_FULLY_AUTHENTICATED_AUTHORIZER
ConstantIS_FULLY_AUTHENTICATED_AUTHORIZER
-
IS_REMEMBERED_AUTHORIZER
ConstantIS_REMEMBERED_AUTHORIZER
-
-
Constructor Details
-
DefaultAuthorizationChecker
public DefaultAuthorizationChecker()
-
-
Method Details
-
isAuthorized
public boolean isAuthorized(WebContext context, SessionStore sessionStore, List<UserProfile> profiles, String authorizersValue, Map<String, Authorizer> authorizersMap, List<Client> clients) Check whether the user is authorized.- Specified by:
isAuthorized
in interfaceAuthorizationChecker
- Parameters:
context
- the web contextsessionStore
- the session storeprofiles
- the profileauthorizersValue
- the authorizersauthorizersMap
- the map of authorizersclients
- the clients- Returns:
- whether the user is authorized.
-
computeAuthorizers
protected List<Authorizer> computeAuthorizers(WebContext context, List<UserProfile> profiles, String authorizersValue, Map<String, Authorizer> authorizersMap, List<Client> clients) computeAuthorizers.
-
computeDefaultAuthorizers
protected List<Authorizer> computeDefaultAuthorizers(WebContext context, List<UserProfile> profiles, List<Client> clients, Map<String, Authorizer> authorizersMap) computeDefaultAuthorizers.
- Parameters:
context
- aWebContext
objectprofiles
- aList
objectclients
- aList
objectauthorizersMap
- aMap
object- Returns:
- a
List
object
-
computeAuthorizersFromNames
protected List<Authorizer> computeAuthorizersFromNames(String authorizerNames, Map<String, Authorizer> authorizersMap) computeAuthorizersFromNames.
-
retrieveAuthorizer
protected Authorizer retrieveAuthorizer(String authorizerName, Map<String, Authorizer> authorizersMap) retrieveAuthorizer.
- Parameters:
authorizerName
- aString
objectauthorizersMap
- aMap
object- Returns:
- a
Authorizer
object
-
containsClientType
containsClientType.
-
isAuthorized
protected boolean isAuthorized(WebContext context, SessionStore sessionStore, List<UserProfile> profiles, Collection<Authorizer> authorizers) isAuthorized.
- Parameters:
context
- aWebContext
objectsessionStore
- aSessionStore
objectprofiles
- aList
objectauthorizers
- aList
object- Returns:
- a boolean
-