|
Spring Security Framework | |||||||||
| PREV NEXT | FRAMES NO FRAMES | |||||||||
Authentication.
AccessDecisionManager.AuthByAdapter implementations.AbstractAdapterAuthentication should be
constructed.
AuthenticationManager.Authentication objects.GrantedAuthority[] argument.
MethodDefinitionSource that supports both Spring AOP and AspectJ and
caches configuration attribute resolution from: 1.ContextSource provided.
MethodDefinitionSource.AbstractPreAuthenticatedAuthenticationDetailsSource.buildDetails(Object).AuthenticationProvider that allows subclasses to override and work with UserDetails objects.Authentication object does not hold a required authority.AccessDeniedException with the specified
message.
AccessDeniedException with the specified
message and root cause.
ExceptionTranslationFilter to handle an
AccessDeniedException.AccessDeniedHandler.AccountExpiredException with the specified
message.
AccountExpiredException with the specified
message and root cause.
User.
UserDetails
for a given authentication request.
AccessDecisionManager that grants access if any
AccessDecisionVoter returns an affirmative response.Object returned from a secure object invocation,
being able to modify the Object or throw an AccessDeniedException.AfterInvocationProviderManager decision.AfterInvocationManager.Token.
AuthenticationProvider implementation that validates AnonymousAuthenticationTokens.Authentication.Authentication object in the SecurityContextHolder, and
populates it with one if needed.AspectJAnnotationSecurityInterceptor when it wishes for the
AspectJ processing to continue.AspectJSecurityInterceptor when it wishes for the
AspectJ processing to continue.Authentication
class.AuthenticationProvider implementation that can authenticate an AuthByAdapter.authenticate method that calls the abstract method
doAuthenticatation to do its work.
Authentication object, returning a fully populated
Authentication object (including granted authorities) if successful.
AuthenticationManager.authenticate(Authentication).
X509AuthoritiesPopulator to obtain the user details and authorities for the user identified by the
certificate.
ConfigAttribute.getAttribute() of IS_AUTHENTICATED_FULLY or
IS_AUTHENTICATED_REMEMBERED or IS_AUTHENTICATED_ANONYMOUSLY is present.Authentication could not be obtained from
the SecurityContextHolder.Authentication object in the SecurityContext.AuthenticationCredentialsNotFoundException
with the specified message.
AuthenticationCredentialsNotFoundException
with the specified message and root cause.
Authentication.getDetails() object for
a given web request.AuthenticationDetailsSource.ExceptionTranslationFilter to commence an authentication
scheme.Authentication object being invalid for whatever
reason.AuthenticationException with the specified
message and root cause.
AuthenticationException with the specified
message and no root cause.
AuthenticationProvider that can process the request.AuthenticationManager.Authentication request.SecurityEnforcementFilter to commence
authentication via the AuthenticationProcessingFilter.Authentication implementation.AuthenticationServiceException with the
specified message.
AuthenticationServiceException with the
specified message and root cause.
SimpleHttpInvokerRequestExecutor.Authentication tokensAuthenticationTrustResolver.AuthorizationServiceException with the
specified message.
AuthorizationServiceException with the
specified message and root cause.
SecurityContextHolder does not contain an
Authentication object and Spring Security wishes to provide an implementation with an
opportunity to authenticate the request using remember-me capabilities.
BadCredentialsException with the specified
message.
BadCredentialsException with the specified
message and root cause.
BasicAclEntryHolder.
BasicProcessingFilter and BasicProcessingFilterEntryPoint and
registers them in the application context.SecurityContextHolder.SecurityEnforcementFilter to commence authentication via the BasicProcessingFilter.SpringSecurityContextSource provided.
Authentication object for the current secure object invocation, or
null if replacement not required.
BasicAclEntry associated with the specified
AclObjectIdentity and recipient Object.
ChannelDecisionManager.ChannelProcessor to launch a web channel.Subject (phase two) by adding the Spring Security
Authentication to the Subject's principals.
ConcurrentSessionControllerImpl if an attempt is made to login and the user has already
exceeded their maxmimum allowed sessions.AuthenticationManager to integrate with the
concurrent session handling infrastructure.ConcurrentSessionControllerImpl which prohibits simultaneous logins.ConcurrentSessionFilter,
SessionRegistryImpl and ConcurrentSessionControllerImpl.ConfigAttributes that are associated with a given secure object target - effectively a
CollectionConfigAttributeDefinition from a comma separated list of
values.AccessDecisionManager that uses a consensus-based
approach.ConfigAttribute is contained within this
ConfigAttributeDefinition.
RemoteInvocation that is passed from the client to the server.org.springframework.remoting.rmi.RmiProxyFactoryBean when it
wishes to create a remote invocation.AclObjectIdentity to a String that can be located
in the RDBMS.
FilterInvocation for the specified contextPath and Uri.
FilterInvocation for the specified Uri.
MethodInvocation for specified methodName on the passed object.
MethodInvocation for specified methodName on the passed object,
using the args to locate the method.
MethodInvocation for specified methodName on the passed class.
MethodInvocation for specified methodName on the passed class,
using the args to locate the method.
Authentication object.
CredentialsExpiredException with the specified
message.
CredentialsExpiredException with the specified
message and root cause.
AfterInvocationProvider to the
AfterInvocationProviderManager's list.AuthenticationProvider to the ProviderManager's
list.AuthenticationProvider implementation that retrieves user details
from an UserDetailsService.Object, make an
access control decision or optionally modify the returned Object.
FilterInvocation provides the appropriate level of channel
security based on the requested ConfigAttributeDefinition.
FilterInvocation provides the appropriate level of channel
security based on the requested ConfigAttributeDefinition.
AccessDecisionVoters and grants access
if any AccessDecisionVoter voted affirmatively.
AccessDecisionVoters and upon
completion determines the consensus of granted vs denied responses.
AccessDecisionVoters for each ConfigAttribute and grants access if only grant votes were received.
Throwable instances.
servletPath and
pathInfo, which do not contain path parameters (as defined in
RFC 2396).DefaultSpringSecurityContextSource instead.Token.AclObjectIdentity.
BasicAclEntry associated with the specified AclObjectIdentity and
recipient Object.
String created using
BasePasswordEncoder.mergePasswordAndSalt(String,Object,boolean).
Throwable.
SecurityContextHolder.SecurityEnforcementFilter to commence authentication via the DigestProcessingFilter.DisabledException with the specified message.
DisabledException with the specified message
and root cause.
Authentication object.
SavedRequest.
User objects using a Spring IoC defined EHCACHE.Enumeration around a Java 2 collection Iterator.java.lang.Object documentation for the interface contract.
AccessDeniedException and AuthenticationException thrown within the
filter chain.Throwable.
Filter requests to a list of Spring-managed beans.ObjectDefinitionSource implementations
that are designed to perform lookups keyed on FilterInvocations.FilterInvocationDefinitionSource bean for use with a FilterSecurityInterceptor.FilterInvocations usable within Spring Security.HttpFirewall interface.getDateHeader().
response portion of a Digest authentication header.
AclObjectIdentity for this instance.
BasicAclEntry.
Authentication object
Authentication
object.
AclObjectIdentity.
SessionRegistry.
ConfigAttribute can be represented as a String and that
String is sufficient in precision to be relied upon as a configuration parameter by a RunAsManager, AccessDecisionManager or AccessDecisionManager delegate, this method should
return such a String.
ConfigAttributeDefinition that applies to a given secure object.
null)
Authentication request that caused the event.
AuthenticationManager to indicate the authorities that the principal has been
granted.
GrantedAuthority can be represented as a String and that
String is sufficient in precision to be relied upon for an access control decision by an AccessDecisionManager (or delegate), this method should return such a String.
JaasAuthenticationProvider.setAuthorityGranters(AuthorityGranter[]) method, or null if it none were ever set.
ConfigAttributeDefinitions defined by the implementing class.
ConfigAttributes defined by this
ConfigAttributeDefinition.
SecurityContext.
String
String
filterProcessesUrl for the
implementation.
/j_spring_security_check.
BasicAclEntrys from the cache.
null.
Class that generated this event.
SecurityContextHolderStrategy.
AuthByAdapter
implementation.
BasicAclEntrys.
SecurityContextHolder.
User to obtain the salt.
ServletRequest was received on.
ConcurrentSessionController is returned or the NullConcurrentSessionController if a specific one has not been set.
HttpSession id the authentication request was received from.
sessionId.
UserDetails from the cache.
Authentication (which is a subclass of Principal), or
null if unavailable.
static field-based implementation of SecurityContextHolderStrategy.Authentication object.GrantedAuthority.java.lang.Object documentation for the interface contract.
HttpFirewall bean reference into the FilterChainProxy.SecurityContext with the Authentication obtained from the container's
HttpServletRequest.getUserPrincipal().SecurityContextHolder with information obtained from
the HttpSession.HttpSessionEventPublisher when a HttpSession is destroyed by the containerHttpSessionEventPublisher when a HttpSession is created in the containerInheritableThreadLocal-based implementation of SecurityContextHolderStrategy.Throwables and ThrowableCauseExtractors.
LoginModule.
Resource interface.HttpServletRequest.isSecure() responses.InsufficientAuthenticationException with the
specified message.
InsufficientAuthenticationException with the
specified message and root cause.
AbstractSecurityInterceptor subclasses.InvocationTargetException instances.
MethodInvocation.
JoinPoint.
JoinPoint.
Authentication token represents an anonymous user.
true.
AbstractSecurityInterceptor whether it should present the
authentication token to the AuthenticationManager.
true, indicates that SecurityEnforcementFilter is permitted to store the target
URL and exception information in the HttpSession (the default).
Authentication token represents user that has been remembered
(ie not a user that has been fully authenticated).
GrantedAuthority.getAuthority().
HttpServletRequest.isUserInRole(String)) into GrantedAuthoritys and stores these in the authentication
details object (.JaasAuthenticationProvider.AuthenticationProvider implementation that retrieves user details from a JAAS login configuration.JaasAuthenticationProvider
after successfully logging the user into the LoginContext, handling all callbacks, and calling all
AuthorityGranters.TokenService that is compatible with clusters and across machine restarts,
without requiring database persistence.AuthenticationProvider implementation that authenticates
against an LDAP server.ShaPasswordEncoder which supports Ldap SHA and SSHA (salted-SHA) encodings.LdapUserSearch
and an LdapAuthoritiesPopulator.LockedException with the specified message.
LockedException with the specified message and
root cause.
Subject (phase one) by extracting the Spring Security
Authentication from the current SecurityContext.
Subject.
ConfigAttributeDefinition for the specified
Method which is subject of the method invocation.
ConfigAttributeDefinition for the specified
FilterInvocation.
ConfigAttributeDefinition for a method or class signature.String.
ConfigAttributeDefinitions for a method signature (via the lookupAttributes method)
by delegating to a configured Attributes object.ObjectDefinitionSource implementations
that are designed to perform lookups keyed on Methods.MethodDefinitionSource, used to exclude a MethodSecurityInterceptor from
public (ie non-secure) methods.MethodDefinitionSource.MethodInvocations usable within Spring Security.grantAccess is set to true.NamedEntityObjectIdentity based on the passed
object instance.
the default authentication manager which lazily initializes
the list of AuthenticationProviders.NonceExpiredException with the specified
message.
NonceExpiredException with the specified
message and root cause.
ConcurrentSessionController.NullRememberMeServices that does nothing.RunAsManager that does nothing.ConfigAttributeDefinition that applies to a given secure object
invocation.Filter instances registered in the map of
filter chains.
AclObjectIdentity of a passed domain object instance.
PlaintextPasswordEncoder.encodePassword(String, Object)String.
BasicAclProvider.HttpInvoker extension points to
present the principal and credentials located
in the ContextHolder via BASIC authentication.ContextHolder (which should contain an
Authentication request token)
from one JVM to the remote JVM.MethodInvocations, such as via
Spring AOP.JointPoints, delegating secure
object callbacks to the calling aspect.User objects for the DaoAuthenticationProvider.Authentication object.RememberMeAuthenticationTokens.HttpServletRequest so that it can subsequently be emulated by the
SavedRequestAwareWrapper.HttpServletRequestWrapper.String literal and return associated value.
String literals and return associated values.
LdapAuthenticator which compares the login
password with the value stored in the directory using a remote LDAP "compare" operation.RememberMeServices implementation based on Barry Jaspan's
Improved Persistent Login Cookie
Best Practice.PersistentTokenBasedRememberMeServices to store the persistent
login tokens for a user.PortMapper implementations provide callers with information
about which HTTP ports are associated with which HTTPS ports on the system,
and vice versa.PortMapper that obtains HTTP:HTTPS pairs from the application context.PortMapperImpl
bean.PortResolver determines the port a web request was received
on.PortResolver that obtains the port from ServletRequest.getServerPort().Authentication implementation for pre-authenticated
authentication.Principal compatible Authentication object.AbstractBasicAclEntry's
mask.
MapBasedMethodDefinitionSource.Authentication request through a list of AuthenticationProviders.ProviderManager if no AuthenticationProvider could be found that supports the
presented Authentication object.ProviderNotFoundException with the specified
message.
ProviderNotFoundException with the specified
message and root cause.
JaasAuthenticationFailedEvent.
JaasAuthenticationSuccessEvent.
BasicAclEntrys in the cache.
UserDetails in the cache.
User object.sessionId so its last request time is equal to the present date and time.
ThrowableCauseExtractor for the specified type.
AuthenticationManager when the authentication was successful.
AuthenticationProvider implementation that validates RememberMeAuthenticationTokens.Authentication.Authentication object in the SecurityContext, and populates it
with a remember-me authentication token if a RememberMeServices
implementation so requests.RemoteAuthenticationManager cannot validate the presented authentication request.RemoteAuthenticationException with the
specified message and no root cause.
RemoteAuthenticationManager to validate an authentication request.AclObjectIdentity from the cache.
sessionId.
UrlMatcher.pathMatchesUrl(Object, String).
Authentication object.
UserDetails from an implementation-specific
location, with the option of throwing an AuthenticationException immediately if the presented
credentials are incorrect (this is especially useful if it is necessary to bind to a resource as the user in
order to obtain or generate a UserDetails).
RoleHierarchy definition to determine the
roles allocated to the current user before voting.ConfigAttribute.getAttribute() starts with a prefix
indicating that it is a role.AuthenticationProvider implementation that can authenticate a RunAsUserToken.Authentication object for the current secure
object invocation only.RunAsManager.Authentication implementation that supports RunAsManagerImpl.HttpServletRequest.HttpServletRequest.isSecure() responses.SecureRandom instance.ConfigAttribute as a String.SecurityContext with the current execution thread.Filter which populates the ServletRequest with a new request wrapper.HttpServletRequestWrapper, which uses the
SecurityContext-defined Authentication object for SecurityContextHolderAwareRequestWrapper.isUserInRole(java.lang.String) and HttpServletRequestWrapper.getRemoteUser() responses.SecurityContext.LoginModule that uses a Spring Security SecurityContext to provide authentication.SecurityContextHolder.AbstractProcessingFilter and LogoutFilter.
SessionRegistry implementation if an attempt is made to create new session information
for an existing sessionId.HttpSessionCreatedEvent to the application
appContext.
HttpSessionDestroyedEvent to the application
appContext.
Authentication.getDetails()
implementations that are capable of returning a session ID.SessionInformation instances.SessionRegistry
which also listens for HttpSessionDestroyedEvents
published in the Spring application context.AbstractSecurityInterceptor should
ignore the Authentication.isAuthenticated() property.
Authentication.isAuthenticated() for a full description.
SecurityContext with the current thread of execution.
AclObjectIdentity class that an attempt should be made to construct
if the passed object does not implement AclObjectIdentityAware.
SearchControls instance used in the search.
AbstractUserDetailsAuthenticationProvider throws a
BadCredentialsException if a username is not found or the password is incorrect.
AbstractAuthenticationManager.setClearExtraInformation(boolean)
HttpSession to be invalidated when this LogoutHandler is invoked.
AuthenticationProcessingFilter login
page can be found.
AclProvider objects to be used for ACL determinations.
AuthenticationProvider objects to be used for authentication.
AbstractSecurityInterceptor has a configuration
attribute defined.
BasicAclEntryAfterInvocationCollectionFilteringProvider.setRequirePermission(int[])
BasicAclEntryAfterInvocationProvider.setRequirePermission(int[])
BasicAclEntryVoter.setRequirePermission(int[])
null, the BasicAclProvider.supports(Object) method will only
support the indicates class.
ROLE_ to be overriden.
ROLE_ to be overridden.
SecureRandom
instance.
loginFormUrl instead of a 302 redirect.
ConcurrentSessionController to be used for limiting users' sessions.
AbstractProcessingFilter.
true (the default), indicates the JdbcDaoImpl.getUsersByUsernameQuery() returns a username
in response to a query.
UserMap to reflect the Properties instance passed.
UserMap.
byte[].
byte[].
ShaPasswordEncoder encoder = new ShaPasswordEncoder(256); initializes with SHA-256
BasicAclDao implementations to construct this object
using newInstance().
MethodInvocation.String at the first instance of the delimiter.
Strings, and for each element removes any instances of
removeCharacter, and splits the element based on the delimiter.
SecurityContextHolder.ContextSource which allows binding explicitly as a particular user.SpringSecurityException with the specified
message and root cause.
SpringSecurityException with the specified
message and no root cause.
MessageSource used by Spring Security.String manipulation methods.X509Certificate.getSubjectDN()).Authentication instance returned by the
authentication manager into the secure context.
Authentication instance returned by the authentication manager into the secure
context.
AccessDecisionManager is able to process authorization requests
presented with the passed ConfigAttribute.
AccessDecisionManager implementation is able to provide access
control decisions for the indicated secured object type.
AclProvider can authoritatively return ACL information for the
specified domain object instance.
AfterInvocationProvider is able to participate in a decision
involving the passed ConfigAttribute.
AfterInvocationProvider is able to provide "after invocation"
processing for the indicated secured object type.
AfterInvocationProviders and ensures each can support the presented
class.
AfterInvocationManager is able to process "after invocation"
requests presented with the passed ConfigAttribute.
AfterInvocationManager implementation is able to provide access
control decisions for the indicated secured object type.
ObjectDefinitionSource implementation is able to provide
ConfigAttributeDefinitions for the indicated secure object type.
true if this AuthenticationProvider supports the indicated
Authentication object.
RunAsManager is able to process the passed
ConfigAttribute.
RunAsManager implementation is able to provide run-as replacement for
the indicated secure object type.
ChannelDecisionManager is able to process the passed
ConfigAttribute.
ChannelProcessor is able to process the passed
ConfigAttribute.
AccessDecisionVoters and ensures each can support the presented class.
MethodSecurityInterceptor, because it queries the
presented MethodInvocation.
AccessDecisionVoter is able to vote on the passed
ConfigAttribute.
AccessDecisionVoter implementation is able to provide access control
votes for the indicated secured object type.
GrantedAuthority list that will be assigned to the principal
when they assume the identity of a different principal.GrantedAuthority used by SwitchUserProcessingFilterString as the salt.AbstractProcessingFilter to determine target URL in case of
successful authentication.TargetUrlResolver
Returns a target URL based from the contents of the configured targetUrlParameter if present on
the current request.ThreadLocal-based implementation of SecurityContextHolderStrategy.Throwable instances.ThrowableAnalyzer instance.
Throwable type.TokenService.AccessDecisionManager that requires all voters to
abstain or grant access.UserDetailsService.User with the details required by
DaoAuthenticationProvider.
InMemoryDaoImpl to temporarily store the attributes associated with a user.UserAttribute from a comma separated list of values.User objects.UserDetailsService which provides the ability
to create new users and update existing ones.DaoAuthenticationProvider.HttpSecurityBeanDefinitionParser to inject a UserDetailsService into
the X509Provider, RememberMeServices and OpenIDAuthenticationProvider instances created by
the namespace.RoleHierarchyVoter instead of populating the user Authentication object
with the additional authorities.RoleHierarchyVoter instead.InMemoryDaoImpl to store a list of users and their corresponding granted authorities.UserMap.UserDetailsService implementation cannot locate a User by its username.UsernameNotFoundException with the specified
message.
UsernameNotFoundException, making use of the extraInformation
property of the superclass.
UsernameNotFoundException with the specified
message and root cause.
Authentication implementation that is designed for simple presentation of a
username and password.UsernamePasswordAuthenticationToken, as the AbstractAuthenticationToken.isAuthenticated() will return false.
AuthenticationManager or AuthenticationProvider
implementations that are satisfied with producing a trusted (ie AbstractAuthenticationToken.isAuthenticated() = true)
authentication token.
Token.getKey() was issued by this TokenService and
reconstructs the corresponding Token.
AuthenticationDetailsSource which builds the details object from
an HttpServletRequest object.X509PreAuthenticatedProcessingFilter instance and a
PreAuthenticatedProcessingFilterEntryPoint.
|
Spring Security Framework | |||||||||
| PREV NEXT | FRAMES NO FRAMES | |||||||||