List of usage examples for org.springframework.security.web.access.intercept FilterSecurityInterceptor setSecurityMetadataSource
public void setSecurityMetadataSource(FilterInvocationSecurityMetadataSource newSource)
From source file:nu.localhost.tapestry5.springsecurity.services.SecurityModule.java
@Marker(SpringSecurityServices.class) public static HttpServletRequestFilter buildFilterSecurityInterceptor( @SpringSecurityServices final AccessDecisionManager accessDecisionManager, @SpringSecurityServices final AuthenticationManager manager, final Collection<RequestInvocationDefinition> contributions) throws Exception { FilterSecurityInterceptor interceptor = new FilterSecurityInterceptor(); LinkedHashMap<RequestMatcher, Collection<ConfigAttribute>> requestMap = convertCollectionToLinkedHashMap( contributions);//from w ww . j a v a 2 s . com DefaultFilterInvocationSecurityMetadataSource source = new DefaultFilterInvocationSecurityMetadataSource( requestMap); interceptor.setAccessDecisionManager(accessDecisionManager); interceptor.setAlwaysReauthenticate(false); interceptor.setAuthenticationManager(manager); interceptor.setSecurityMetadataSource(source); interceptor.setValidateConfigAttributes(true); interceptor.afterPropertiesSet(); return new HttpServletRequestFilterWrapper(interceptor); }
From source file:ch.astina.hesperid.web.services.SecurityModule.java
/** * Checks if access to the HTTP resource is allowed ( * {@link org.springframework.security.access.intercept.AbstractSecurityInterceptor#beforeInvocation(Object)} * ) and throws {@link org.springframework.security.access.AccessDeniedException} otherwise *//*w w w .j a v a2 s. co m*/ @Marker(SpringSecurityServices.class) public static HttpServletRequestFilter buildFilterSecurityInterceptor( @SpringSecurityServices final AccessDecisionManager accessDecisionManager, @SpringSecurityServices final AuthenticationManager manager, final Collection<RequestInvocationDefinition> contributions) throws Exception { FilterSecurityInterceptor interceptor = new FilterSecurityInterceptor(); LinkedHashMap<RequestKey, Collection<ConfigAttribute>> requestMap = convertCollectionToLinkedHashMap( contributions); DefaultFilterInvocationSecurityMetadataSource source = new DefaultFilterInvocationSecurityMetadataSource( new AntUrlPathMatcher(true), requestMap); interceptor.setAccessDecisionManager(accessDecisionManager); interceptor.setAlwaysReauthenticate(false); interceptor.setAuthenticationManager(manager); interceptor.setSecurityMetadataSource(source); interceptor.setValidateConfigAttributes(true); interceptor.afterPropertiesSet(); return new HttpServletRequestFilterWrapper(interceptor); }
From source file:com.rockagen.gnext.service.spring.security.extension.BasicRefreshMetadataSource.java
/** * Refresh.//from w w w . ja v a 2 s. co m */ public void refresh() { ApplicationContext ctx = WebApplicationContextUtils.getRequiredWebApplicationContext(servletContext); FilterInvocationSecurityMetadataSource fisms = (FilterInvocationSecurityMetadataSource) ctx .getBean("securityMetadataSource"); // Get FilterSecurityInterceptor FilterSecurityInterceptor fsi = (FilterSecurityInterceptor) ctx.getBean("filterSecurityInterceptor"); // Set new SecurityMetadataSource to FilterSecurityInterceptor fsi.setSecurityMetadataSource(fisms); log.info(" SecurityMetadataSource updating ...."); }
From source file:org.lightadmin.core.config.context.LightAdminSecurityConfiguration.java
@Bean @Autowired/*from w w w. j a v a2 s .co m*/ public Filter filterSecurityInterceptor(AuthenticationManager authenticationManager) throws Exception { FilterSecurityInterceptor filter = new FilterSecurityInterceptor(); filter.setAuthenticationManager(authenticationManager); filter.setAccessDecisionManager(new AffirmativeBased(Arrays .<AccessDecisionVoter<? extends Object>>asList((AccessDecisionVoter<Object>) new RoleVoter()))); filter.setSecurityMetadataSource(securityMetadataSource()); filter.afterPropertiesSet(); return filter; }