|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
public final class ExpressionUrlAuthorizationConfigurer.AuthorizedUrl
Method Summary | |
---|---|
ExpressionUrlAuthorizationConfigurer<H> |
access(String attribute)
Allows specifying that URLs are secured by an arbitrary expression |
ExpressionUrlAuthorizationConfigurer<H> |
anonymous()
Specify that URLs are allowed by anonymous users. |
ExpressionUrlAuthorizationConfigurer<H> |
authenticated()
Specify that URLs are allowed by any authenticated user. |
ExpressionUrlAuthorizationConfigurer<H> |
denyAll()
Specify that URLs are not allowed by anyone. |
ExpressionUrlAuthorizationConfigurer<H> |
fullyAuthenticated()
Specify that URLs are allowed by users who have authenticated and were not "remembered". |
ExpressionUrlAuthorizationConfigurer<H> |
hasAnyAuthority(String... authorities)
Specify that URLs requires any of a number authorities. |
ExpressionUrlAuthorizationConfigurer<H> |
hasAuthority(String authority)
Specify that URLs require a particular authority. |
ExpressionUrlAuthorizationConfigurer<H> |
hasIpAddress(String ipaddressExpression)
Specify that URLs requires a specific IP Address or subnet. |
ExpressionUrlAuthorizationConfigurer<H> |
hasRole(String role)
Shortcut for specifying URLs require a particular role. |
ExpressionUrlAuthorizationConfigurer.AuthorizedUrl |
not()
Negates the following expression. |
ExpressionUrlAuthorizationConfigurer<H> |
permitAll()
Specify that URLs are allowed by anyone. |
ExpressionUrlAuthorizationConfigurer<H> |
rememberMe()
Specify that URLs are allowed by users that have been remembered. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Method Detail |
---|
public ExpressionUrlAuthorizationConfigurer.AuthorizedUrl not()
role
- the role to require (i.e. USER, ADMIN, etc). Note, it should not start with "ROLE_" as
this is automatically inserted.
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> hasRole(String role)
hasAuthority(String)
.
role
- the role to require (i.e. USER, ADMIN, etc). Note, it should not start with "ROLE_" as
this is automatically inserted.
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> hasAuthority(String authority)
authority
- the authority to require (i.e. ROLE_USER, ROLE_ADMIN, etc).
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> hasAnyAuthority(String... authorities)
authorities
- the requests require at least one of the authorities (i.e. "ROLE_USER","ROLE_ADMIN" would
mean either "ROLE_USER" or "ROLE_ADMIN" is required).
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> hasIpAddress(String ipaddressExpression)
ipaddressExpression
- the ipaddress (i.e. 192.168.1.79) or local subnet (i.e. 192.168.0/24)
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> permitAll()
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> anonymous()
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> rememberMe()
ExpressionUrlAuthorizationConfigurer
for further customizationRememberMeConfigurer}
public ExpressionUrlAuthorizationConfigurer<H> denyAll()
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> authenticated()
ExpressionUrlAuthorizationConfigurer
for further customizationpublic ExpressionUrlAuthorizationConfigurer<H> fullyAuthenticated()
ExpressionUrlAuthorizationConfigurer
for further customizationRememberMeConfigurer}
public ExpressionUrlAuthorizationConfigurer<H> access(String attribute)
attribute
- the expression to secure the URLs (i.e. "hasRole('ROLE_USER') and hasRole('ROLE_SUPER')")
ExpressionUrlAuthorizationConfigurer
for further customization
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |