All Classes Interface Summary Class Summary Enum Summary Exception Summary Annotation Types Summary
Class |
Description |
AbstractAccessDecisionManager |
|
AbstractAclVoter |
Provides helper methods for writing domain object ACL voters.
|
AbstractAuthenticationEvent |
Represents an application authentication event.
|
AbstractAuthenticationFailureEvent |
Abstract application event which indicates authentication failure for some reason.
|
AbstractAuthenticationToken |
Base class for Authentication objects.
|
AbstractAuthorizationEvent |
Abstract superclass for all security interception related events.
|
AbstractFallbackMethodSecurityMetadataSource |
Abstract implementation of MethodSecurityMetadataSource that supports both
Spring AOP and AspectJ and performs attribute resolution from: 1.
|
AbstractJaasAuthenticationProvider |
|
AbstractMethodSecurityMetadataSource |
Abstract implementation of MethodSecurityMetadataSource which resolves the
secured object type to a MethodInvocation.
|
AbstractSecurityExpressionHandler<T> |
Base implementation of the facade which isolates Spring Security's requirements for
evaluating security expressions from the implementation of the underlying expression
objects.
|
AbstractSecurityInterceptor |
Abstract class that implements security interception for secure objects.
|
AbstractSessionEvent |
Abstract superclass for all session related events.
|
AbstractUserDetailsAuthenticationProvider |
|
AbstractUserDetailsReactiveAuthenticationManager |
|
AccessDecisionManager |
Makes a final access control (authorization) decision.
|
AccessDecisionVoter<S> |
Indicates a class is responsible for voting on authorization decisions.
|
AccessDeniedException |
Thrown if an Authentication
object does not hold a required authority.
|
AccountExpiredException |
Thrown if an authentication request is rejected because the account has expired.
|
AccountStatusException |
Base class for authentication exceptions which are caused by a particular user account
status (locked, disabled etc).
|
AccountStatusUserDetailsChecker |
|
AffirmativeBased |
Simple concrete implementation of
AccessDecisionManager that grants access if
any AccessDecisionVoter returns an affirmative response.
|
AfterInvocationManager |
Reviews the Object returned from a secure object invocation, being able to
modify the Object or throw an AccessDeniedException .
|
AfterInvocationProvider |
|
AfterInvocationProviderManager |
|
AnnotationMetadataExtractor<A extends java.lang.annotation.Annotation> |
Strategy to process a custom security annotation to extract the relevant
ConfigAttribute s for securing a method.
|
AnnotationParameterNameDiscoverer |
Allows finding parameter names using the value attribute of any number of
Annotation instances.
|
AnonymousAuthenticationProvider |
|
AnonymousAuthenticationToken |
Represents an anonymous Authentication .
|
AspectJCallback |
|
AspectJMethodSecurityInterceptor |
AspectJ JoinPoint security interceptor which wraps the JoinPoint in a
MethodInvocation adapter to make it compatible with security infrastructure
classes which only support MethodInvocation s.
|
Attributes2GrantedAuthoritiesMapper |
Interface to be implemented by classes that can map a list of security attributes (such
as roles or group names) to a collection of Spring Security GrantedAuthority s.
|
AuthenticatedAuthorizationManager<T> |
|
AuthenticatedPrincipal |
|
AuthenticatedReactiveAuthorizationManager<T> |
|
AuthenticatedVoter |
|
Authentication |
|
AuthenticationCredentialsNotFoundEvent |
Indicates a secure object invocation failed because the Authentication
could not be obtained from the SecurityContextHolder .
|
AuthenticationCredentialsNotFoundException |
|
AuthenticationDetailsSource<C,T> |
|
AuthenticationEventPublisher |
|
AuthenticationException |
Abstract superclass for all exceptions related to an Authentication object
being invalid for whatever reason.
|
AuthenticationFailureBadCredentialsEvent |
Application event which indicates authentication failure due to invalid credentials
being presented.
|
AuthenticationFailureCredentialsExpiredEvent |
Application event which indicates authentication failure due to the user's credentials
having expired.
|
AuthenticationFailureDisabledEvent |
Application event which indicates authentication failure due to the user's account
being disabled.
|
AuthenticationFailureExpiredEvent |
Application event which indicates authentication failure due to the user's account
having expired.
|
AuthenticationFailureLockedEvent |
Application event which indicates authentication failure due to the user's account
having been locked.
|
AuthenticationFailureProviderNotFoundEvent |
Application event which indicates authentication failure due to there being no
registered AuthenticationProvider that can process the request.
|
AuthenticationFailureProxyUntrustedEvent |
Application event which indicates authentication failure due to the CAS user's ticket
being generated by an untrusted proxy.
|
AuthenticationFailureServiceExceptionEvent |
Application event which indicates authentication failure due to there being a problem
internal to the AuthenticationManager .
|
AuthenticationManager |
|
AuthenticationManagerResolver<C> |
|
AuthenticationPrincipal |
|
AuthenticationProvider |
Indicates a class can process a specific
Authentication implementation.
|
AuthenticationServiceException |
Thrown if an authentication request could not be processed due to a system problem.
|
AuthenticationSuccessEvent |
Application event which indicates successful authentication.
|
AuthenticationTrustResolver |
Evaluates Authentication tokens
|
AuthenticationTrustResolverImpl |
|
AuthenticationUserDetailsService<T extends Authentication> |
Interface that allows for retrieving a UserDetails object based on an
Authentication object.
|
AuthorityAuthorizationDecision |
|
AuthorityAuthorizationManager<T> |
|
AuthorityGranter |
The AuthorityGranter interface is used to map a given principal to role names.
|
AuthorityReactiveAuthorizationManager<T> |
|
AuthorityUtils |
Utility method for manipulating GrantedAuthority collections etc.
|
AuthorizationDecision |
|
AuthorizationFailureEvent |
Indicates a secure object invocation failed because the principal could not be
authorized for the request.
|
AuthorizationInterceptorsOrder |
Ordering of Spring Security's authorization Advisor s
|
AuthorizationManager<T> |
An Authorization manager which can determine if an Authentication has access to
a specific object.
|
AuthorizationManagerAfterMethodInterceptor |
|
AuthorizationManagerBeforeMethodInterceptor |
|
AuthorizationServiceException |
Thrown if an authorization request could not be processed due to a system problem.
|
AuthorizedEvent |
Event indicating a secure object was invoked successfully.
|
BadCredentialsException |
Thrown if an authentication request is rejected because the credentials are invalid.
|
CachingUserDetailsService |
|
ConfigAttribute |
Stores a security system related configuration attribute.
|
ConsensusBased |
|
CoreJackson2Module |
Jackson module for spring-security-core.
|
CredentialsContainer |
Indicates that the implementing object contains sensitive data, which can be erased
using the eraseCredentials method.
|
CredentialsExpiredException |
Thrown if an authentication request is rejected because the account's credentials have
expired.
|
CurrentSecurityContext |
Annotation that is used to resolve the
SecurityContext as a method argument.
|
CycleInRoleHierarchyException |
Exception that is thrown because of a cycle in the role hierarchy definition
|
DaoAuthenticationProvider |
|
DefaultAuthenticationEventPublisher |
The default strategy for publishing authentication events.
|
DefaultJaasAuthenticationProvider |
Creates a LoginContext using the Configuration provided to it.
|
DefaultLoginExceptionResolver |
This LoginExceptionResolver simply wraps the LoginException with an
AuthenticationServiceException.
|
DefaultMethodSecurityExpressionHandler |
The standard implementation of MethodSecurityExpressionHandler .
|
DefaultSecurityParameterNameDiscoverer |
Spring Security's default ParameterNameDiscoverer which tries a number of
ParameterNameDiscoverer depending on what is found on the classpath.
|
DefaultToken |
The default implementation of Token .
|
DelegatingApplicationListener |
Used for delegating to a number of SmartApplicationListener instances.
|
DelegatingMethodSecurityMetadataSource |
Automatically tries a series of method definition sources, relying on the first source
of metadata that provides a non-null/non-empty response.
|
DelegatingReactiveAuthenticationManager |
|
DelegatingSecurityContextAsyncTaskExecutor |
|
DelegatingSecurityContextCallable<V> |
Wraps a delegate Callable with logic for setting up a SecurityContext
before invoking the delegate Callable and then removing the
SecurityContext after the delegate has completed.
|
DelegatingSecurityContextExecutor |
|
DelegatingSecurityContextExecutorService |
|
DelegatingSecurityContextRunnable |
Wraps a delegate Runnable with logic for setting up a SecurityContext
before invoking the delegate Runnable and then removing the
SecurityContext after the delegate has completed.
|
DelegatingSecurityContextScheduledExecutorService |
|
DelegatingSecurityContextSchedulingTaskExecutor |
|
DelegatingSecurityContextTaskExecutor |
|
DelegatingSecurityContextTaskScheduler |
An implementation of TaskScheduler invoking it whenever the trigger indicates a
next execution time.
|
DenyAllPermissionEvaluator |
A null PermissionEvaluator which denies all access.
|
DisabledException |
Thrown if an authentication request is rejected because the account is disabled.
|
EhCacheBasedUserCache |
Deprecated.
|
ExpressionAttributeAuthorizationDecision |
|
ExpressionBasedAnnotationAttributeFactory |
|
ExpressionBasedPostInvocationAdvice |
|
ExpressionBasedPreInvocationAdvice |
Method pre-invocation handling based on expressions.
|
ExpressionUtils |
|
FieldUtils |
Offers static methods for directly manipulating fields.
|
GrantedAuthoritiesContainer |
Indicates that a object stores GrantedAuthority objects.
|
GrantedAuthoritiesMapper |
Mapping interface which can be injected into the authentication layer to convert the
authorities loaded from storage into those which will be used in the
Authentication object.
|
GrantedAuthority |
|
GroupManager |
Allows management of groups of authorities and their members.
|
InMemoryConfiguration |
An in memory representation of a JAAS configuration.
|
InMemoryResource |
An in memory implementation of Spring's Resource
interface.
|
InMemoryUserDetailsManager |
Non-persistent implementation of UserDetailsManager which is backed by an
in-memory map.
|
InsufficientAuthenticationException |
Thrown if an authentication request is rejected because the credentials are not
sufficiently trusted.
|
InteractiveAuthenticationSuccessEvent |
Indicates an interactive authentication was successful.
|
InterceptorStatusToken |
|
InternalAuthenticationServiceException |
Thrown if an authentication request could not be processed due to a system problem that
occurred internally.
|
JaasAuthenticationCallbackHandler |
The JaasAuthenticationCallbackHandler is similar to the
javax.security.auth.callback.CallbackHandler interface in that it defines a handle
method.
|
JaasAuthenticationEvent |
|
JaasAuthenticationFailedEvent |
Fired when LoginContext.login throws a LoginException, or if any other exception is
thrown during that time.
|
JaasAuthenticationProvider |
|
JaasAuthenticationSuccessEvent |
Fired by the
JaasAuthenticationProvider after successfully logging the user into the LoginContext,
handling all callbacks, and calling all AuthorityGranters.
|
JaasAuthenticationToken |
UsernamePasswordAuthenticationToken extension to carry the Jaas LoginContext that the
user was logged into
|
JaasGrantedAuthority |
GrantedAuthority which, in addition to the assigned role, holds the principal
that an AuthorityGranter used as a reason to grant this authority.
|
JaasNameCallbackHandler |
The most basic Callbacks to be handled when using a LoginContext from JAAS, are the
NameCallback and PasswordCallback.
|
JaasPasswordCallbackHandler |
The most basic Callbacks to be handled when using a LoginContext from JAAS, are the
NameCallback and PasswordCallback.
|
JdbcDaoImpl |
UserDetailsService implementation which retrieves the user details (username,
password, enabled flag, and authorities) from a database using JDBC queries.
|
JdbcUserDetailsManager |
Jdbc user management service, based on the same table structure as its parent class,
JdbcDaoImpl.
|
Jsr250AuthorizationManager |
|
Jsr250MethodSecurityMetadataSource |
Sources method security metadata from major JSR 250 security annotations.
|
Jsr250SecurityConfig |
Security config applicable as a JSR 250 annotation attribute.
|
Jsr250Voter |
Voter on JSR-250 configuration attributes.
|
KeyBasedPersistenceTokenService |
Basic implementation of TokenService that is compatible with clusters and
across machine restarts, without requiring database persistence.
|
ListeningSecurityContextHolderStrategy |
|
LockedException |
Thrown if an authentication request is rejected because the account is locked.
|
LoggerListener |
Outputs interceptor-related application events to Commons Logging.
|
LoggerListener |
Outputs authentication-related application events to Commons Logging.
|
LoginExceptionResolver |
The JaasAuthenticationProvider takes an instance of LoginExceptionResolver to resolve
LoginModule specific exceptions to Spring Security AuthenticationExceptions.
|
LogoutSuccessEvent |
Application event which indicates successful logout
|
MapBasedAttributes2GrantedAuthoritiesMapper |
This class implements the Attributes2GrantedAuthoritiesMapper and
MappableAttributesRetriever interfaces based on the supplied Map.
|
MapBasedMethodSecurityMetadataSource |
Stores a list of ConfigAttributes for a method or class signature.
|
MappableAttributesRetriever |
Interface to be implemented by classes that can retrieve a list of mappable security
attribute strings (for example the list of all available J2EE roles in a web or EJB
application).
|
MapReactiveUserDetailsService |
|
MethodInvocationAdapter |
Decorates a JoinPoint to allow it to be used with method-security infrastructure
classes which support MethodInvocation instances.
|
MethodInvocationPrivilegeEvaluator |
Allows users to determine whether they have "before invocation" privileges for a given
method invocation.
|
MethodInvocationResult |
A context object that contains a MethodInvocation and the result of that
MethodInvocation .
|
MethodInvocationUtils |
Static utility methods for creating MethodInvocation s usable within Spring
Security.
|
MethodSecurityExpressionHandler |
Extended expression-handler facade which adds methods which are specific to securing
method invocations.
|
MethodSecurityExpressionOperations |
Interface which must be implemented if you want to use filtering in method security
expressions.
|
MethodSecurityInterceptor |
Provides security interception of AOP Alliance based method invocations.
|
MethodSecurityMetadataSource |
Interface for SecurityMetadataSource implementations that are designed to
perform lookups keyed on Method s.
|
MethodSecurityMetadataSourceAdvisor |
|
NullAuthoritiesMapper |
|
NullRoleHierarchy |
|
NullUserCache |
Does not perform any caching.
|
P |
Deprecated.
|
P |
|
PermissionCacheOptimizer |
Allows permissions to be pre-cached when using pre or post filtering with expressions
|
PermissionEvaluator |
Strategy used in expression evaluation to determine whether a user has a permission or
permissions for a given domain object.
|
PostAuthorize |
Annotation for specifying a method access-control expression which will be evaluated
after a method has been invoked.
|
PostAuthorizeAuthorizationManager |
|
PostFilter |
Annotation for specifying a method filtering expression which will be evaluated after a
method has been invoked.
|
PostFilterAuthorizationMethodInterceptor |
A MethodInterceptor which filters a returnedObject from the
MethodInvocation by evaluating an expression from the PostFilter
annotation.
|
PostInvocationAdviceProvider |
AfterInvocationProvider which delegates to a
PostInvocationAuthorizationAdvice instance passing it the
PostInvocationAttribute created from @PostAuthorize and @PostFilter
annotations.
|
PostInvocationAttribute |
Marker interface for attributes which are created from combined @PostFilter
and @PostAuthorize annotations.
|
PostInvocationAuthorizationAdvice |
Performs filtering and authorization logic after a method is invoked.
|
PreAuthorize |
Annotation for specifying a method access-control expression which will be evaluated to
decide whether a method invocation is allowed or not.
|
PreAuthorizeAuthorizationManager |
|
PreFilter |
Annotation for specifying a method filtering expression which will be evaluated before
a method has been invoked.
|
PreFilterAuthorizationMethodInterceptor |
A MethodInterceptor which filters a method argument by evaluating an expression
from the PreFilter annotation.
|
PreInvocationAttribute |
Marker interface for attributes which are created from combined @PreFilter
and @PreAuthorize annotations.
|
PreInvocationAuthorizationAdvice |
Performs argument filtering and authorization logic before a method is invoked.
|
PreInvocationAuthorizationAdviceVoter |
Voter which performs the actions using a PreInvocationAuthorizationAdvice
implementation generated from @PreFilter and @PreAuthorize annotations.
|
PrePostAdviceReactiveMethodInterceptor |
A MethodInterceptor that supports PreAuthorize and
PostAuthorize for methods that return Mono or Flux and Kotlin
coroutine functions.
|
PrePostAnnotationSecurityMetadataSource |
MethodSecurityMetadataSource which extracts metadata from the @PreFilter
and @PreAuthorize annotations placed on a method.
|
PrePostInvocationAttributeFactory |
|
ProviderManager |
|
ProviderNotFoundException |
|
PublicInvocationEvent |
Event that is generated whenever a public secure object is invoked.
|
ReactiveAuthenticationManager |
|
ReactiveAuthenticationManagerAdapter |
Adapts an AuthenticationManager to the reactive APIs.
|
ReactiveAuthenticationManagerResolver<C> |
|
ReactiveAuthorizationManager<T> |
A reactive authorization manager which can determine if an Authentication has
access to a specific object.
|
ReactiveSecurityContextHolder |
|
ReactiveUserDetailsPasswordService |
|
ReactiveUserDetailsService |
|
RememberMeAuthenticationProvider |
|
RememberMeAuthenticationToken |
Represents a remembered Authentication .
|
RemoteAuthenticationException |
Deprecated.
|
RemoteAuthenticationManager |
Deprecated.
|
RemoteAuthenticationManagerImpl |
Deprecated.
|
RemoteAuthenticationProvider |
Deprecated.
|
RoleHierarchy |
The simple interface of a role hierarchy.
|
RoleHierarchyAuthoritiesMapper |
|
RoleHierarchyImpl |
This class defines a role hierarchy for use with various access checking components.
|
RoleHierarchyUtils |
|
RoleHierarchyVoter |
Extended RoleVoter which uses a RoleHierarchy definition to determine the roles
allocated to the current user before voting.
|
RoleVoter |
|
RsaKeyConverters |
Used for creating Key converter instances
|
RunAsImplAuthenticationProvider |
|
RunAsManager |
Creates a new temporary Authentication object for the current secure object
invocation only.
|
RunAsManagerImpl |
|
RunAsUserToken |
|
Secured |
Java 5 annotation for describing service layer security attributes.
|
SecuredAnnotationSecurityMetadataSource |
Sources method security metadata from Spring Security's Secured annotation.
|
SecuredAuthorizationManager |
|
SecureRandomFactoryBean |
Creates a SecureRandom instance.
|
SecurityConfig |
|
SecurityContext |
Interface defining the minimum security information associated with the current thread
of execution.
|
SecurityContextChangedEvent |
|
SecurityContextChangedListener |
|
SecurityContextHolder |
|
SecurityContextHolderStrategy |
A strategy for storing security context information against a thread.
|
SecurityContextImpl |
|
SecurityContextLoginModule |
An implementation of LoginModule that uses a Spring Security
SecurityContext to
provide authentication.
|
SecurityExpressionHandler<T> |
Facade which isolates Spring Security's requirements for evaluating security
expressions from the implementation of the underlying expression objects
|
SecurityExpressionOperations |
Standard interface for expression root objects used with expression-based security.
|
SecurityExpressionRoot |
Base root object for use in Spring Security expression evaluations.
|
SecurityJackson2Modules |
This utility class will find all the SecurityModules in classpath.
|
SecurityMetadataSource |
Implemented by classes that store and can identify the ConfigAttribute s that
applies to a given secure object invocation.
|
SessionCreationEvent |
Generic session creation event which indicates that a session (potentially represented
by a security context) has begun.
|
SessionDestroyedEvent |
Generic "session termination" event which indicates that a session (potentially
represented by a security context) has ended.
|
SessionIdChangedEvent |
Generic "session ID changed" event which indicates that a session identifier
(potentially represented by a security context) has changed.
|
SessionInformation |
Represents a record of a session within the Spring Security framework.
|
SessionRegistry |
Maintains a registry of SessionInformation instances.
|
SessionRegistryImpl |
|
Sha512DigestUtils |
Provides SHA512 digest methods.
|
SimpleAttributes2GrantedAuthoritiesMapper |
This class implements the Attributes2GrantedAuthoritiesMapper interface by doing a
one-to-one mapping from roles to Spring Security GrantedAuthorities.
|
SimpleAuthorityMapper |
Simple one-to-one GrantedAuthoritiesMapper which allows for case conversion of
the authority name and the addition of a string prefix (which defaults to ROLE_
).
|
SimpleGrantedAuthority |
|
SimpleGrantedAuthorityMixin |
|
SimpleMappableAttributesRetriever |
This class implements the MappableAttributesRetriever interface by just returning a
list of mappable attributes as previously set using the corresponding setter method.
|
SimpleMethodInvocation |
Represents the AOP Alliance MethodInvocation .
|
SpringCacheBasedUserCache |
Caches UserDetails instances in a Spring defined Cache .
|
SpringSecurityCoreVersion |
Internal class used for checking version compatibility in a deployed application.
|
SpringSecurityMessageSource |
The default MessageSource used by Spring Security.
|
TestingAuthenticationProvider |
|
TestingAuthenticationToken |
An Authentication implementation that is
designed for use whilst unit testing.
|
Token |
|
TokenService |
Provides a mechanism to allocate and rebuild secure, randomised tokens.
|
Transient |
A marker for Authentication s that should never be stored across requests, for
example a bearer token authentication
|
UnanimousBased |
Simple concrete implementation of
AccessDecisionManager that requires all
voters to abstain or grant access.
|
User |
|
User.UserBuilder |
Builds the user to be added.
|
UserAttribute |
|
UserAttributeEditor |
Property editor that creates a UserAttribute from a comma separated list of
values.
|
UserCache |
|
UserDetails |
Provides core user information.
|
UserDetailsByNameServiceWrapper<T extends Authentication> |
This implementation for AuthenticationUserDetailsService wraps a regular Spring
Security UserDetailsService implementation, to retrieve a UserDetails object based on
the user name contained in an Authentication object.
|
UserDetailsChecker |
Called by classes which make use of a UserDetailsService to check the status of
the loaded UserDetails object.
|
UserDetailsManager |
An extension of the UserDetailsService which provides the ability to create new
users and update existing ones.
|
UserDetailsPasswordService |
|
UserDetailsRepositoryReactiveAuthenticationManager |
|
UserDetailsService |
Core interface which loads user-specific data.
|
UsernameNotFoundException |
|
UsernamePasswordAuthenticationToken |
An Authentication implementation that is
designed for simple presentation of a username and password.
|