|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.springframework.security.config.annotation.SecurityConfigurerAdapter<DefaultSecurityFilterChain,B> org.springframework.security.config.annotation.web.configurers.ExceptionHandlingConfigurer<H>
public final class ExceptionHandlingConfigurer<H extends HttpSecurityBuilder<H>>
Adds exception handling for Spring Security related exceptions to an application. All properties have reasonable
defaults, so no additional configuration is required other than applying this
SecurityConfigurer
.
RequestCache
, is provided a RequestCache
shared object is used to replay
the request after authentication is successfulAuthenticationEntryPoint
- see authenticationEntryPoint(AuthenticationEntryPoint)
Constructor Summary | |
---|---|
ExceptionHandlingConfigurer()
Creates a new instance |
Method Summary | |
---|---|
ExceptionHandlingConfigurer<H> |
accessDeniedHandler(AccessDeniedHandler accessDeniedHandler)
Specifies the AccessDeniedHandler to be used |
ExceptionHandlingConfigurer<H> |
accessDeniedPage(String accessDeniedUrl)
Shortcut to specify the AccessDeniedHandler to be used is a specific error page |
ExceptionHandlingConfigurer<H> |
authenticationEntryPoint(AuthenticationEntryPoint authenticationEntryPoint)
Sets the AuthenticationEntryPoint to be used. |
void |
configure(H http)
Configure the SecurityBuilder by setting the necessary properties
on the SecurityBuilder . |
ExceptionHandlingConfigurer<H> |
defaultAuthenticationEntryPointFor(AuthenticationEntryPoint entryPoint,
RequestMatcher preferredMatcher)
Sets a default AuthenticationEntryPoint to be used which prefers
being invoked for the provided RequestMatcher . |
B |
disable()
Disables the AbstractHttpConfigurer by removing it. |
T |
withObjectPostProcessor(ObjectPostProcessor<?> objectPostProcessor)
|
Methods inherited from class org.springframework.security.config.annotation.SecurityConfigurerAdapter |
---|
addObjectPostProcessor, and, getBuilder, init, postProcess, setBuilder |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public ExceptionHandlingConfigurer()
HttpSecurity.exceptionHandling()
Method Detail |
---|
public ExceptionHandlingConfigurer<H> accessDeniedPage(String accessDeniedUrl)
AccessDeniedHandler
to be used is a specific error page
accessDeniedUrl
- the URL to the access denied page (i.e. /errors/401)
ExceptionHandlingConfigurer
for further customizationAccessDeniedHandlerImpl
,
#accessDeniedHandler(org.springframework.security.web.access.AccessDeniedHandler)}
public ExceptionHandlingConfigurer<H> accessDeniedHandler(AccessDeniedHandler accessDeniedHandler)
AccessDeniedHandler
to be used
accessDeniedHandler
- the AccessDeniedHandler
to be used
ExceptionHandlingConfigurer
for further customizationpublic ExceptionHandlingConfigurer<H> authenticationEntryPoint(AuthenticationEntryPoint authenticationEntryPoint)
AuthenticationEntryPoint
to be used.
If no authenticationEntryPoint(AuthenticationEntryPoint)
is
specified, then
defaultAuthenticationEntryPointFor(AuthenticationEntryPoint, RequestMatcher)
will be used. The first AuthenticationEntryPoint
will be used as
the default is no matches were found.
If that is not provided defaults to Http403ForbiddenEntryPoint
.
authenticationEntryPoint
- the AuthenticationEntryPoint
to use
ExceptionHandlingConfigurer
for further
customizationspublic ExceptionHandlingConfigurer<H> defaultAuthenticationEntryPointFor(AuthenticationEntryPoint entryPoint, RequestMatcher preferredMatcher)
AuthenticationEntryPoint
to be used which prefers
being invoked for the provided RequestMatcher
. If only a single
default AuthenticationEntryPoint
is specified, it will be what is
used for the default AuthenticationEntryPoint
. If multiple
default AuthenticationEntryPoint
instances are configured, then a
DelegatingAuthenticationEntryPoint
will be used.
entryPoint
- the AuthenticationEntryPoint
to usepreferredMatcher
- the RequestMatcher
for this default
AuthenticationEntryPoint
ExceptionHandlingConfigurer
for further
customizationspublic void configure(H http) throws Exception
SecurityConfigurer
SecurityBuilder
by setting the necessary properties
on the SecurityBuilder
.
configure
in interface SecurityConfigurer<DefaultSecurityFilterChain,H extends HttpSecurityBuilder<H>>
configure
in class SecurityConfigurerAdapter<DefaultSecurityFilterChain,H extends HttpSecurityBuilder<H>>
Exception
public B disable()
AbstractHttpConfigurer
by removing it. After doing
so a fresh version of the configuration can be applied.
HttpSecurityBuilder
for additional customizationspublic T withObjectPostProcessor(ObjectPostProcessor<?> objectPostProcessor)
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |