Class InsecureChannelProcessor
java.lang.Object
org.springframework.security.web.access.channel.InsecureChannelProcessor
- All Implemented Interfaces:
org.springframework.beans.factory.InitializingBean
,ChannelProcessor
public class InsecureChannelProcessor
extends Object
implements org.springframework.beans.factory.InitializingBean, ChannelProcessor
Ensures channel security is inactive by review of
HttpServletRequest.isSecure()
responses.
The class responds to one case-sensitive keyword, getInsecureKeyword()
. If this
keyword is detected, HttpServletRequest.isSecure()
is used to determine
the channel security offered. If channel security is present, the configured
ChannelEntryPoint
is called. By default the entry point is
RetryWithHttpEntryPoint
.
The default insecureKeyword
is REQUIRES_INSECURE_CHANNEL
.
-
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionvoid
void
decide
(FilterInvocation invocation, Collection<org.springframework.security.access.ConfigAttribute> config) Decided whether the presentedFilterInvocation
provides the appropriate level of channel security based on the requested list of ConfigAttributes.void
setEntryPoint
(ChannelEntryPoint entryPoint) void
setInsecureKeyword
(String secureKeyword) boolean
supports
(org.springframework.security.access.ConfigAttribute attribute) Indicates whether thisChannelProcessor
is able to process the passedConfigAttribute
.
-
Constructor Details
-
InsecureChannelProcessor
public InsecureChannelProcessor()
-
-
Method Details
-
afterPropertiesSet
public void afterPropertiesSet()- Specified by:
afterPropertiesSet
in interfaceorg.springframework.beans.factory.InitializingBean
-
decide
public void decide(FilterInvocation invocation, Collection<org.springframework.security.access.ConfigAttribute> config) throws IOException, jakarta.servlet.ServletException Description copied from interface:ChannelProcessor
Decided whether the presentedFilterInvocation
provides the appropriate level of channel security based on the requested list of ConfigAttributes.- Specified by:
decide
in interfaceChannelProcessor
- Throws:
IOException
jakarta.servlet.ServletException
-
getEntryPoint
-
getInsecureKeyword
-
setEntryPoint
-
setInsecureKeyword
-
supports
public boolean supports(org.springframework.security.access.ConfigAttribute attribute) Description copied from interface:ChannelProcessor
Indicates whether thisChannelProcessor
is able to process the passedConfigAttribute
.This allows the
ChannelProcessingFilter
to check every configuration attribute can be consumed by the configuredChannelDecisionManager
.- Specified by:
supports
in interfaceChannelProcessor
- Parameters:
attribute
- a configuration attribute that has been configured against the ChannelProcessingFilter.- Returns:
- true if this
ChannelProcessor
can support the passed configuration attribute
-