|
spring-security-core | ||||||||
PREV NEXT | FRAMES NO FRAMES |
Authentication
.
AccessDecisionManager
.Authentication
objects.MethodSecurityMetadataSource
that supports both Spring AOP and AspectJ and
performs attribute resolution from: 1.AuthenticationProvider
implementation that retrieves user details from a JAAS login configuration.AuthenticationProvider
that allows subclasses to override and work with UserDetails
objects.Authentication
object does not hold a
required authority.AccessDeniedException
with the specified
message.
AccessDeniedException
with the specified
message and root cause.
AccountExpiredException
with the specified
message.
AccountExpiredException
with the specified
message and root cause.
UserDetails
for a given authentication request.
AccessDecisionManager
that grants access if any
AccessDecisionVoter
returns an affirmative response.Object
returned from a secure object invocation,
being able to modify the Object
or throw an AccessDeniedException
.AfterInvocationProviderManager
decision.AfterInvocationManager
.Token
.
ConfigAttribute
s for
securing a method.AuthenticationProvider
implementation that validates AnonymousAuthenticationToken
s.Authentication
.AspectJMethodSecurityInterceptor
when it wishes for the
AspectJ processing to continue.JoinPoint
security interceptor which wraps the JoinPoint
in a MethodInvocation
adapter to make it compatible with security infrastructure classes which only support MethodInvocation
s.GrantedAuthority
s.Authentication
object, returning a fully populated
Authentication
object (including granted authorities) if successful.
AuthenticationManager.authenticate(Authentication)
.
Authentication
object.
ConfigAttribute.getAttribute()
of IS_AUTHENTICATED_FULLY
or
IS_AUTHENTICATED_REMEMBERED
or IS_AUTHENTICATED_ANONYMOUSLY
is present.AuthenticationManager.authenticate(Authentication)
method.Authentication
could not be obtained from
the SecurityContextHolder
.Authentication
object in the SecurityContext
.AuthenticationCredentialsNotFoundException
with the specified message.
AuthenticationCredentialsNotFoundException
with the specified message and root cause.
Authentication.getDetails()
object for
a given web request.Authentication
object being invalid for whatever
reason.AuthenticationException
with the specified message and root cause.
AuthenticationException
with the specified message and no root cause.
AuthenticationProvider
that can process the request.AuthenticationManager
.Authentication
request.Authentication
implementation.AuthenticationServiceException
with the
specified message.
AuthenticationServiceException
with the
specified message and root cause.
Authentication
tokensAuthenticationTrustResolver
.AuthorizationServiceException
with the
specified message.
AuthorizationServiceException
with the
specified message and root cause.
BadCredentialsException
with the specified
message.
BadCredentialsException
with the specified
message and root cause.
Authentication
object for the current secure object invocation, or
null
if replacement not required.
Subject
(phase two) by adding the Spring Security
Authentication
to the Subject
's principals.
AccessDecisionManager
that uses a
consensus-based approach.MethodInvocation
for specified methodName
on the passed object,
using the args
to locate the method.
StandardEvaluationContext
and SecurityExpressionRoot
objects.
StandardEvaluationContext
.
MethodSecurityEvaluationContext
as the EvaluationContext implementation.
MethodInvocation
for the specified methodName
on the passed class.
MethodInvocation
for specified methodName
on the passed class,
using the args
to locate the method.
DefaultJaasAuthenticationProvider.setConfiguration(Configuration)
.
Authentication
object.
eraseCredentials
method.CredentialsExpiredException
with the specified
message.
CredentialsExpiredException
with the specified
message and root cause.
AuthenticationProvider
implementation that retrieves user details from a UserDetailsService
.Object
, make an
access control decision or optionally modify the returned Object
.
AccessDecisionVoter
s and grants access
if any AccessDecisionVoter
voted affirmatively.
AccessDecisionVoter
s and upon
completion determines the consensus of granted against denied responses.
AccessDecisionVoter
s for each ConfigAttribute
and grants access if only grant (or abstain) votes were received.
MethodSecurityExpressionHandler
.Token
.String
created using
BasePasswordEncoder.mergePasswordAndSalt(String,Object,boolean)
.
DisabledException
with the specified message.
DisabledException
with the specified message
and root cause.
User
objects using a Spring IoC defined EHCACHE.true
if the supplied object is a User
instance with the
same username
value.
credentials
, principal
and details
objects, invoking the
eraseCredentials
method on any which implement CredentialsContainer
.
PrePostInvocationAttributeFactory
which interprets the annotation value as
an expression to be evaluated at runtime.filterTarget
object (which must be either a collection or an array), by evaluating the
supplied expression.
ConfigAttribute
s defined by the implementing class.
SessionRegistry
.
ConfigAttribute
can be represented as a String
and that
String
is sufficient in precision to be relied upon as a configuration parameter by a RunAsManager
, AccessDecisionManager
or AccessDecisionManager
delegate, this method should
return such a String
.
ConfigAttribute
s that apply to a given secure object.
Authentication
request that caused the event.
AuthenticationManager
to indicate the authorities that the principal has been
granted.
GrantedAuthority
can be represented as a String
and that
String
is sufficient in precision to be relied upon for an access control decision by an AccessDecisionManager
(or delegate), this method should return such a String
.
SecurityContext
.
String
String
Class
that generated this event.
SecurityContextHolderStrategy
.
User
to obtain the salt.
SecurityContext
instances which were associated with the destroyed session.
sessionId
.
UserDetails
from the cache.
Authentication
object.Authentication
object.SimpleGrantedAuthority
or implement your own.LoginContext.logout()
for any which contain a JaasAuthenticationToken
.
username
.
LoginModule
.
AppConfigurationEntry
s.
AppConfigurationEntry
s along with a default configuration that
will be used if no mapping is found for the given login context name.
Resource
interface.UserDetailsManager
which is backed by an in-memory map.InsufficientAuthenticationException
with the
specified message.
InsufficientAuthenticationException
with the
specified message and root cause.
AbstractSecurityInterceptor
subclasses.MethodInvocation
.
Authentication
token represents an anonymous user.
AbstractSecurityInterceptor
whether it should present the
authentication token to the AuthenticationManager
.
Authentication
token represents user that has been remembered
(i.e.
JaasAuthenticationProvider
.AuthenticationProvider
implementation that retrieves user details from a JAAS login configuration.JaasAuthenticationProvider
after successfully logging the user into the LoginContext, handling all callbacks, and calling all
AuthorityGranters.GrantedAuthority
which, in addition to the assigned role, holds the principal that an
AuthorityGranter
used as a reason to grant this authority.TokenService
that is compatible with clusters and across machine restarts,
without requiring database persistence.ShaPasswordEncoder
which supports Ldap SHA and SSHA (salted-SHA) encodings.LockedException
with the specified message.
LockedException
with the specified message and
root cause.
Subject
(phase one) by extracting the Spring Security
Authentication
from the current SecurityContext
.
Subject
.
String
.
MethodInvocation
instances.MethodInvocation
s usable within Spring Security.SecurityMetadataSource
implementations
that are designed to perform lookups keyed on Method
s.MethodSecurityMetadataSource
, used to exclude a MethodSecurityInterceptor
from
public (non-secure) methods.PlaintextPasswordEncoder.encodePassword(String, Object)
String
.
AccessDecisionManager
interface.@Secured
annotations.@PreAuthorize
, @PreFilter
,
@PostAuthorize
and @PostFilter
annotations.MethodInvocation
s, such as via Spring AOP.JointPoint
s, delegating secure object callbacks to the calling aspect.SecurityMetadataSource
implementations for securing Java method invocations via different
AOP libraries.@PreAuthorize
, @PreFilter
, @PostAuthorize
and @PostFilter
annotations.AuthenticationProvider
which relies upon a data access object.Authentication
object.GrantedAuthority
interface.GrantedAuthority
s.org.springframework.security.core.session.SessionInformation
SessionInformation
class.UserCache
.org.springframework.security.core.userdetails.UserDetailsService UserDetailsService
.PasswordEncoder
instead which better accommodates best practice of randomly
generated salt that is included with the password.PostInvocationAuthorizationAdvice
instance
passing it the PostInvocationAttribute created from @PostAuthorize and @PostFilter annotations.Authentication
request through a list of AuthenticationProvider
s.ProviderManager
if no AuthenticationProvider
could be found that supports the
presented Authentication
object.ProviderNotFoundException
with the specified
message.
JaasAuthenticationFailedEvent
.
JaasAuthenticationFailedEvent
.
JaasAuthenticationSuccessEvent
.
UserDetails
in the cache.
User
object.sessionId
so its last request time is equal to the present date and time.
AuthenticationProvider
implementation that validates RememberMeAuthenticationToken
s.Authentication
.RemoteAuthenticationManager
cannot validate the presented authentication request.RemoteAuthenticationException
with the
specified message and no root cause.
RemoteAuthenticationManager
to validate an authentication request.sessionId
.
UserDetails
from an implementation-specific
location, with the option of throwing an AuthenticationException
immediately if the presented
credentials are incorrect (this is especially useful if it is necessary to bind to a resource as the user in
order to obtain or generate a UserDetails
).
RoleHierarchy
definition to determine the
roles allocated to the current user before voting.ConfigAttribute.getAttribute()
starts with a prefix
indicating that it is a role.AuthenticationProvider
implementation that can authenticate a RunAsUserToken
.Authentication
object for the current secure
object invocation only.RunAsManager
.Authentication
implementation that supports RunAsManagerImpl
.Secured
annotation.SecureRandom
instance.ConfigAttribute
as a String
.SecurityContext
with the current execution thread.SecurityContext
.LoginModule
that uses a Spring Security SecurityContext
to provide authentication.ConfigAttribute
s that applies to a given secure object
invocation.SessionInformation
instances.SessionRegistry
which listens for SessionDestroyedEvent
s
published in the Spring application context.AbstractSecurityInterceptor
should
ignore the Authentication.isAuthenticated()
property.
Authentication.isAuthenticated()
for a full description.
extraInformation
property is deprecated
SecurityContext
with the current thread of execution.
Authentication
which implements the CredentialsContainer
interface
will have its eraseCredentials
method called before it is returned
from the authenticate()
method.
AbstractUserDetailsAuthenticationProvider
throws a
BadCredentialsException
if a username is not found or the password is incorrect.
AuthorizationFailureEvent
will be published.
Configuration#refresh()
will be made by #configureJaas(Resource)
method.
AbstractSecurityInterceptor
has a configuration
attribute defined.
ROLE_
to be overridden.
ROLE_
to be overridden.
SecureRandom
instance.
true
(the default), indicates the JdbcDaoImpl.getUsersByUsernameQuery()
returns a username
in response to a query.
UserMap
to reflect the Properties
instance passed.
UserMap
.
byte[]
.
byte[]
.
ShaPasswordEncoder encoder = new ShaPasswordEncoder(256);
initializes with SHA-256
GrantedAuthoritiesMapper
which allows for case conversion of the authority name
and the addition of a string prefix (which defaults to ROLE_
).GrantedAuthority
.MethodInvocation
.MessageSource
used by Spring Security.AccessDecisionManager
is able to process authorization requests
presented with the passed ConfigAttribute
.
AccessDecisionManager
implementation is able to provide access
control decisions for the indicated secured object type.
AccessDecisionVoter
is able to vote on the passed ConfigAttribute
.
AccessDecisionVoter
implementation is able to provide access control
votes for the indicated secured object type.
AfterInvocationProvider
is able to participate in a decision
involving the passed ConfigAttribute
.
AfterInvocationProvider
is able to provide "after invocation"
processing for the indicated secured object type.
Jsr250SecurityConfig
.
AfterInvocationManager
is able to process "after invocation"
requests presented with the passed ConfigAttribute
.
AfterInvocationManager
implementation is able to provide access
control decisions for the indicated secured object type.
AfterInvocationProvider
s and ensures each can support the presented
class.
RunAsManager
is able to process the passed
ConfigAttribute
.
RunAsManager
implementation is able to provide run-as replacement for
the indicated secure object type.
SecurityMetadataSource
implementation is able to provide
ConfigAttribute
s for the indicated secure object type.
AccessDecisionVoter
s and ensures each can support the presented class.
MethodSecurityInterceptor
, because it queries the
presented MethodInvocation
.
true
if this AuthenticationProvider
supports the indicated
Authentication
object.
String
as the salt.AuthenticationProvider
implementation for the TestingAuthenticationToken
.Authentication
implementation that is designed for use whilst unit testing.TokenService
.AccessDecisionManager
that requires all
voters to abstain or grant access.UserDetailsService
.true
.
User
with the details required by
DaoAuthenticationProvider
.
InMemoryDaoImpl
to temporarily store the attributes associated with a user.UserAttribute
from a comma separated list of values.UserDetails
objects.UserDetailsService
as the service to delegate to.
UserDetailsService
to check the status of the loaded
UserDetails object.UserDetailsService
which provides the ability
to create new users and update existing ones.RoleHierarchyVoter
or use a RoleHierarchyAuthoritiesMapper
to populate the
Authentication object with the additional authorities.RoleHierarchyVoter
or RoleHierarchyAuthoritiesMapper
instead.UserDetailsService
implementation cannot locate a User
by its username.UsernameNotFoundException
with the specified
message.
UsernameNotFoundException
with the specified message and root cause.
Authentication
implementation that is designed for simple presentation
of a username and password.UsernamePasswordAuthenticationToken
, as the AbstractAuthenticationToken.isAuthenticated()
will return false
.
AuthenticationManager
or AuthenticationProvider
implementations that are satisfied with producing a trusted (i.e.
Token.getKey()
was issued by this TokenService
and
reconstructs the corresponding Token
.
|
spring-security-core | ||||||||
PREV NEXT | FRAMES NO FRAMES |