Package | Description |
---|---|
org.springframework.security.access.hierarchicalroles |
Role hierarchy implementation.
|
org.springframework.security.access.intercept |
Abstract level security interception classes which are responsible for enforcing the
configured security constraints for a secure object.
|
org.springframework.security.acls.domain |
Basic implementation of access control lists (ACLs) interfaces.
|
org.springframework.security.authentication |
Core classes and interfaces related to user authentication, which are used throughout Spring Security.
|
org.springframework.security.authentication.jaas |
An authentication provider for JAAS.
|
org.springframework.security.authentication.rcp |
Allows remote clients to authenticate and obtain a populated
Authentication object. |
org.springframework.security.cas.authentication |
An
AuthenticationProvider that can process CAS service tickets and proxy tickets. |
org.springframework.security.core |
Core classes and interfaces related to user authentication and authorization, as well as the maintenance of
a security context.
|
org.springframework.security.core.authority |
The default implementation of the
GrantedAuthority interface. |
org.springframework.security.core.authority.mapping |
Strategies for mapping a list of attributes (such as roles or LDAP groups) to a list of
GrantedAuthority s. |
org.springframework.security.core.userdetails |
The standard interfaces for implementing user data DAOs.
|
org.springframework.security.core.userdetails.jdbc |
Exposes a JDBC-based authentication repository, implementing
org.springframework.security.core.userdetails.UserDetailsService UserDetailsService . |
org.springframework.security.core.userdetails.memory |
Exposes an in-memory authentication repository.
|
org.springframework.security.ldap.authentication |
The LDAP authentication provider package.
|
org.springframework.security.ldap.authentication.ad | |
org.springframework.security.ldap.userdetails |
LDAP-focused
UserDetails implementations which map from a ubset of the data
contained in some of the standard LDAP types (such as InetOrgPerson ). |
org.springframework.security.openid |
Authenticates standard web browser users via OpenID.
|
org.springframework.security.provisioning |
Contains simple user and authority group account provisioning interfaces together with a a
JDBC-based implementation.
|
org.springframework.security.web.authentication |
Authentication processing mechanisms, which respond to the submission of authentication
credentials using various protocols (eg BASIC, CAS, form login etc).
|
org.springframework.security.web.authentication.preauth |
Support for "pre-authenticated" scenarios, where Spring Security assumes the incoming request has already been
authenticated by some externally configured system.
|
org.springframework.security.web.authentication.switchuser |
Provides HTTP-based "switch user" (su) capabilities.
|
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
UserDetailsWrapper.getAuthorities()
Deprecated.
|
Collection<? extends GrantedAuthority> |
RoleHierarchy.getReachableGrantedAuthorities(Collection<? extends GrantedAuthority> authorities)
Returns an array of all reachable authorities.
|
Collection<? extends GrantedAuthority> |
NullRoleHierarchy.getReachableGrantedAuthorities(Collection<? extends GrantedAuthority> authorities) |
Collection<GrantedAuthority> |
RoleHierarchyImpl.getReachableGrantedAuthorities(Collection<? extends GrantedAuthority> authorities) |
Collection<? extends GrantedAuthority> |
RoleHierarchyAuthoritiesMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities) |
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
RoleHierarchy.getReachableGrantedAuthorities(Collection<? extends GrantedAuthority> authorities)
Returns an array of all reachable authorities.
|
Collection<? extends GrantedAuthority> |
NullRoleHierarchy.getReachableGrantedAuthorities(Collection<? extends GrantedAuthority> authorities) |
Collection<GrantedAuthority> |
RoleHierarchyImpl.getReachableGrantedAuthorities(Collection<? extends GrantedAuthority> authorities) |
Collection<? extends GrantedAuthority> |
RoleHierarchyAuthoritiesMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities) |
Constructor and Description |
---|
RunAsUserToken(String key,
Object principal,
Object credentials,
Collection<? extends GrantedAuthority> authorities,
Class<? extends Authentication> originalAuthentication) |
Constructor and Description |
---|
AclAuthorizationStrategyImpl(GrantedAuthority... auths)
Constructor.
|
GrantedAuthoritySid(GrantedAuthority grantedAuthority) |
Modifier and Type | Method and Description |
---|---|
Collection<GrantedAuthority> |
AbstractAuthenticationToken.getAuthorities() |
Constructor and Description |
---|
AbstractAuthenticationToken(Collection<? extends GrantedAuthority> authorities)
Creates a token with the supplied array of authorities.
|
AnonymousAuthenticationToken(String key,
Object principal,
Collection<? extends GrantedAuthority> authorities)
Constructor.
|
RememberMeAuthenticationToken(String key,
Object principal,
Collection<? extends GrantedAuthority> authorities)
Constructor.
|
TestingAuthenticationToken(Object principal,
Object credentials,
List<GrantedAuthority> authorities) |
UsernamePasswordAuthenticationToken(Object principal,
Object credentials,
Collection<? extends GrantedAuthority> authorities)
This constructor should only be used by
AuthenticationManager or AuthenticationProvider
implementations that are satisfied with producing a trusted (i.e. |
Modifier and Type | Class and Description |
---|---|
class |
JaasGrantedAuthority
GrantedAuthority which, in addition to the assigned role, holds the principal that an
AuthorityGranter used as a reason to grant this authority. |
Constructor and Description |
---|
JaasAuthenticationToken(Object principal,
Object credentials,
List<GrantedAuthority> authorities,
LoginContext loginContext) |
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
RemoteAuthenticationManager.attemptAuthentication(String username,
String password)
Attempts to authenticate the remote client using the presented username and password.
|
Collection<? extends GrantedAuthority> |
RemoteAuthenticationManagerImpl.attemptAuthentication(String username,
String password) |
Constructor and Description |
---|
CasAuthenticationToken(String key,
Object principal,
Object credentials,
Collection<? extends GrantedAuthority> authorities,
UserDetails userDetails,
org.jasig.cas.client.validation.Assertion assertion)
Constructor.
|
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
Authentication.getAuthorities()
Set by an
AuthenticationManager to indicate the authorities that the principal has been
granted. |
Modifier and Type | Class and Description |
---|---|
class |
GrantedAuthorityImpl
Deprecated.
Use the final class
SimpleGrantedAuthority or implement your own. |
class |
SimpleGrantedAuthority
Basic concrete implementation of a
GrantedAuthority . |
Modifier and Type | Field and Description |
---|---|
static List<GrantedAuthority> |
AuthorityUtils.NO_AUTHORITIES |
Modifier and Type | Method and Description |
---|---|
static List<GrantedAuthority> |
AuthorityUtils.commaSeparatedStringToAuthorityList(String authorityString)
Creates a array of GrantedAuthority objects from a comma-separated string
representation (e.g.
|
static List<GrantedAuthority> |
AuthorityUtils.createAuthorityList(String... roles) |
List<GrantedAuthority> |
GrantedAuthoritiesContainerImpl.getGrantedAuthorities()
Deprecated.
|
Collection<? extends GrantedAuthority> |
GrantedAuthoritiesContainer.getGrantedAuthorities() |
Modifier and Type | Method and Description |
---|---|
static Set<String> |
AuthorityUtils.authorityListToSet(Collection<? extends GrantedAuthority> userAuthorities)
Converts an array of GrantedAuthority objects to a Set.
|
void |
GrantedAuthoritiesContainerImpl.setGrantedAuthorities(Collection<? extends GrantedAuthority> newAuthorities)
Deprecated.
|
void |
MutableGrantedAuthoritiesContainer.setGrantedAuthorities(Collection<? extends GrantedAuthority> authorities)
Deprecated.
Used to store authorities in the containing object.
|
Modifier and Type | Method and Description |
---|---|
Map<String,Collection<GrantedAuthority>> |
MapBasedAttributes2GrantedAuthoritiesMapper.getAttributes2grantedAuthoritiesMap() |
List<GrantedAuthority> |
SimpleAttributes2GrantedAuthoritiesMapper.getGrantedAuthorities(Collection<String> attributes)
Map the given list of string attributes one-to-one to Spring Security GrantedAuthorities.
|
List<GrantedAuthority> |
MapBasedAttributes2GrantedAuthoritiesMapper.getGrantedAuthorities(Collection<String> attributes)
Map the given array of attributes to Spring Security GrantedAuthorities.
|
Collection<? extends GrantedAuthority> |
Attributes2GrantedAuthoritiesMapper.getGrantedAuthorities(Collection<String> attributes)
Implementations of this method should map the given collection of attributes to a
collection of Spring Security GrantedAuthorities.
|
Collection<? extends GrantedAuthority> |
GrantedAuthoritiesMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities) |
Collection<? extends GrantedAuthority> |
NullAuthoritiesMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities) |
Set<GrantedAuthority> |
SimpleAuthorityMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities)
Creates a mapping of the supplied authorities based on the case-conversion and prefix settings.
|
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
GrantedAuthoritiesMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities) |
Collection<? extends GrantedAuthority> |
NullAuthoritiesMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities) |
Set<GrantedAuthority> |
SimpleAuthorityMapper.mapAuthorities(Collection<? extends GrantedAuthority> authorities)
Creates a mapping of the supplied authorities based on the case-conversion and prefix settings.
|
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
UserDetails.getAuthorities()
Returns the authorities granted to the user.
|
Collection<GrantedAuthority> |
User.getAuthorities() |
Constructor and Description |
---|
User(String username,
String password,
boolean enabled,
boolean accountNonExpired,
boolean credentialsNonExpired,
boolean accountNonLocked,
Collection<? extends GrantedAuthority> authorities)
Construct the
User with the details required by
DaoAuthenticationProvider . |
User(String username,
String password,
Collection<? extends GrantedAuthority> authorities)
Calls the more complex constructor with all boolean arguments set to
true . |
Modifier and Type | Method and Description |
---|---|
protected List<GrantedAuthority> |
JdbcDaoImpl.loadGroupAuthorities(String username)
Loads authorities by executing the SQL from groupAuthoritiesByUsernameQuery.
|
protected List<GrantedAuthority> |
JdbcDaoImpl.loadUserAuthorities(String username)
Loads authorities by executing the SQL from authoritiesByUsernameQuery.
|
Modifier and Type | Method and Description |
---|---|
protected void |
JdbcDaoImpl.addCustomAuthorities(String username,
List<GrantedAuthority> authorities)
Allows subclasses to add their own granted authorities to the list to be returned in the UserDetails.
|
protected UserDetails |
JdbcDaoImpl.createUserDetails(String username,
UserDetails userFromUserQuery,
List<GrantedAuthority> combinedAuthorities)
Can be overridden to customize the creation of the final UserDetailsObject which is
returned by the loadUserByUsername method.
|
Modifier and Type | Method and Description |
---|---|
List<GrantedAuthority> |
UserAttribute.getAuthorities() |
Modifier and Type | Method and Description |
---|---|
void |
UserAttribute.addAuthority(GrantedAuthority newAuthority) |
Modifier and Type | Method and Description |
---|---|
void |
UserAttribute.setAuthorities(List<GrantedAuthority> authorities)
Set all authorities for this user.
|
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
UserDetailsServiceLdapAuthoritiesPopulator.getGrantedAuthorities(org.springframework.ldap.core.DirContextOperations userData,
String username) |
Collection<GrantedAuthority> |
NullLdapAuthoritiesPopulator.getGrantedAuthorities(org.springframework.ldap.core.DirContextOperations userDetails,
String username) |
protected Collection<? extends GrantedAuthority> |
LdapAuthenticationProvider.loadUserAuthorities(org.springframework.ldap.core.DirContextOperations userData,
String username,
String password) |
protected abstract Collection<? extends GrantedAuthority> |
AbstractLdapAuthenticationProvider.loadUserAuthorities(org.springframework.ldap.core.DirContextOperations userData,
String username,
String password) |
Modifier and Type | Method and Description |
---|---|
protected Collection<? extends GrantedAuthority> |
ActiveDirectoryLdapAuthenticationProvider.loadUserAuthorities(org.springframework.ldap.core.DirContextOperations userData,
String username,
String password)
Creates the user authority list from the values of the
memberOf attribute obtained from the user's
Active Directory entry. |
Modifier and Type | Method and Description |
---|---|
protected GrantedAuthority |
LdapUserDetailsMapper.createAuthority(Object role)
Creates a GrantedAuthority from a role attribute.
|
Modifier and Type | Method and Description |
---|---|
protected Set<GrantedAuthority> |
DefaultLdapAuthoritiesPopulator.getAdditionalRoles(org.springframework.ldap.core.DirContextOperations user,
String username)
This method should be overridden if required to obtain any additional
roles for the given user (on top of those obtained from the standard
search implemented by this class).
|
Collection<GrantedAuthority> |
LdapUserDetailsImpl.getAuthorities() |
Collection<GrantedAuthority> |
LdapUserDetailsImpl.Essence.getGrantedAuthorities() |
Collection<GrantedAuthority> |
DefaultLdapAuthoritiesPopulator.getGrantedAuthorities(org.springframework.ldap.core.DirContextOperations user,
String username)
Obtains the authorities for the user who's directory entry is represented by
the supplied LdapUserDetails object.
|
Collection<? extends GrantedAuthority> |
LdapAuthoritiesPopulator.getGrantedAuthorities(org.springframework.ldap.core.DirContextOperations userData,
String username)
Get the list of authorities for the user.
|
Set<GrantedAuthority> |
DefaultLdapAuthoritiesPopulator.getGroupMembershipRoles(String userDn,
String username) |
Modifier and Type | Method and Description |
---|---|
void |
LdapUserDetailsImpl.Essence.addAuthority(GrantedAuthority a)
Adds the authority to the list, unless it is already there, in which case it is ignored
|
Modifier and Type | Method and Description |
---|---|
protected void |
LdapUserDetailsManager.addAuthorities(org.springframework.ldap.core.DistinguishedName userDn,
Collection<? extends GrantedAuthority> authorities) |
UserDetails |
InetOrgPersonContextMapper.mapUserFromContext(org.springframework.ldap.core.DirContextOperations ctx,
String username,
Collection<? extends GrantedAuthority> authorities) |
UserDetails |
LdapUserDetailsMapper.mapUserFromContext(org.springframework.ldap.core.DirContextOperations ctx,
String username,
Collection<? extends GrantedAuthority> authorities) |
UserDetails |
UserDetailsContextMapper.mapUserFromContext(org.springframework.ldap.core.DirContextOperations ctx,
String username,
Collection<? extends GrantedAuthority> authorities)
Creates a fully populated UserDetails object for use by the security framework.
|
UserDetails |
PersonContextMapper.mapUserFromContext(org.springframework.ldap.core.DirContextOperations ctx,
String username,
Collection<? extends GrantedAuthority> authorities) |
protected void |
LdapUserDetailsManager.removeAuthorities(org.springframework.ldap.core.DistinguishedName userDn,
Collection<? extends GrantedAuthority> authorities) |
void |
LdapUserDetailsImpl.Essence.setAuthorities(Collection<? extends GrantedAuthority> authorities) |
Constructor and Description |
---|
OpenIDAuthenticationToken(Object principal,
Collection<? extends GrantedAuthority> authorities,
String identityUrl,
List<OpenIDAttribute> attributes)
Created by the OpenIDAuthenticationProvider on successful authentication.
|
Modifier and Type | Method and Description |
---|---|
List<GrantedAuthority> |
GroupManager.findGroupAuthorities(String groupName)
Obtains the list of authorities which are assigned to a group.
|
List<GrantedAuthority> |
JdbcUserDetailsManager.findGroupAuthorities(String groupName) |
Modifier and Type | Method and Description |
---|---|
void |
GroupManager.addGroupAuthority(String groupName,
GrantedAuthority authority)
Assigns a new authority to a group.
|
void |
JdbcUserDetailsManager.addGroupAuthority(String groupName,
GrantedAuthority authority) |
void |
GroupManager.removeGroupAuthority(String groupName,
GrantedAuthority authority)
Deletes an authority from those assigned to a group
|
void |
JdbcUserDetailsManager.removeGroupAuthority(String groupName,
GrantedAuthority authority) |
Modifier and Type | Method and Description |
---|---|
void |
GroupManager.createGroup(String groupName,
List<GrantedAuthority> authorities)
Creates a new group with the specified list of authorities.
|
void |
JdbcUserDetailsManager.createGroup(String groupName,
List<GrantedAuthority> authorities) |
Modifier and Type | Method and Description |
---|---|
List<GrantedAuthority> |
AnonymousAuthenticationFilter.getAuthorities() |
Constructor and Description |
---|
AnonymousAuthenticationFilter(String key,
Object principal,
List<GrantedAuthority> authorities) |
Modifier and Type | Method and Description |
---|---|
List<GrantedAuthority> |
PreAuthenticatedGrantedAuthoritiesAuthenticationDetails.getGrantedAuthorities()
Deprecated.
|
List<GrantedAuthority> |
PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails.getGrantedAuthorities() |
Modifier and Type | Method and Description |
---|---|
protected UserDetails |
PreAuthenticatedGrantedAuthoritiesUserDetailsService.createuserDetails(Authentication token,
Collection<? extends GrantedAuthority> authorities)
Creates the final UserDetails object.
|
void |
PreAuthenticatedGrantedAuthoritiesAuthenticationDetails.setGrantedAuthorities(Collection<? extends GrantedAuthority> aJ2eeBasedGrantedAuthorities)
Deprecated.
|
Constructor and Description |
---|
PreAuthenticatedAuthenticationToken(Object aPrincipal,
Object aCredentials,
Collection<? extends GrantedAuthority> anAuthorities)
Constructor used for an authentication response.
|
PreAuthenticatedGrantedAuthoritiesWebAuthenticationDetails(javax.servlet.http.HttpServletRequest request,
Collection<? extends GrantedAuthority> authorities) |
Modifier and Type | Class and Description |
---|---|
class |
SwitchUserGrantedAuthority
Custom
GrantedAuthority used by
SwitchUserFilter |
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
SwitchUserAuthorityChanger.modifyGrantedAuthorities(UserDetails targetUser,
Authentication currentAuthentication,
Collection<? extends GrantedAuthority> authoritiesToBeGranted)
Allow subclasses to add or remove authorities that will be granted when in switch user mode.
|
Modifier and Type | Method and Description |
---|---|
Collection<? extends GrantedAuthority> |
SwitchUserAuthorityChanger.modifyGrantedAuthorities(UserDetails targetUser,
Authentication currentAuthentication,
Collection<? extends GrantedAuthority> authoritiesToBeGranted)
Allow subclasses to add or remove authorities that will be granted when in switch user mode.
|
Copyright © 2015. All rights reserved.