Example usage for org.springframework.security.web.access.intercept FilterSecurityInterceptor setValidateConfigAttributes

List of usage examples for org.springframework.security.web.access.intercept FilterSecurityInterceptor setValidateConfigAttributes

  1. HOME
  2. Java
  3. org.springframework
  4. org.springframework.security.web.access.intercept.*
  5. FilterSecurityInterceptor
  6. setValidateConfigAttributes

Introduction

In this page you can find the example usage for org.springframework.security.web.access.intercept FilterSecurityInterceptor setValidateConfigAttributes.

Prototype

public void setValidateConfigAttributes(boolean validateConfigAttributes)

Source Link

Usage

From source file:nu.localhost.tapestry5.springsecurity.services.SecurityModule.java

@Marker(SpringSecurityServices.class)
public static HttpServletRequestFilter buildFilterSecurityInterceptor(
        @SpringSecurityServices final AccessDecisionManager accessDecisionManager,
        @SpringSecurityServices final AuthenticationManager manager,
        final Collection<RequestInvocationDefinition> contributions) throws Exception {

    FilterSecurityInterceptor interceptor = new FilterSecurityInterceptor();
    LinkedHashMap<RequestMatcher, Collection<ConfigAttribute>> requestMap = convertCollectionToLinkedHashMap(
            contributions);/*w w w  .ja va  2 s  .  co  m*/
    DefaultFilterInvocationSecurityMetadataSource source = new DefaultFilterInvocationSecurityMetadataSource(
            requestMap);
    interceptor.setAccessDecisionManager(accessDecisionManager);
    interceptor.setAlwaysReauthenticate(false);
    interceptor.setAuthenticationManager(manager);
    interceptor.setSecurityMetadataSource(source);
    interceptor.setValidateConfigAttributes(true);
    interceptor.afterPropertiesSet();
    return new HttpServletRequestFilterWrapper(interceptor);
}

From source file:ch.astina.hesperid.web.services.SecurityModule.java

/**
 * Checks if access to the HTTP resource is allowed (
 * {@link org.springframework.security.access.intercept.AbstractSecurityInterceptor#beforeInvocation(Object)}
 * ) and throws {@link org.springframework.security.access.AccessDeniedException} otherwise
 *///ww w.  j  ava  2s  . c  o m
@Marker(SpringSecurityServices.class)
public static HttpServletRequestFilter buildFilterSecurityInterceptor(
        @SpringSecurityServices final AccessDecisionManager accessDecisionManager,
        @SpringSecurityServices final AuthenticationManager manager,
        final Collection<RequestInvocationDefinition> contributions) throws Exception {
    FilterSecurityInterceptor interceptor = new FilterSecurityInterceptor();
    LinkedHashMap<RequestKey, Collection<ConfigAttribute>> requestMap = convertCollectionToLinkedHashMap(
            contributions);
    DefaultFilterInvocationSecurityMetadataSource source = new DefaultFilterInvocationSecurityMetadataSource(
            new AntUrlPathMatcher(true), requestMap);
    interceptor.setAccessDecisionManager(accessDecisionManager);
    interceptor.setAlwaysReauthenticate(false);
    interceptor.setAuthenticationManager(manager);
    interceptor.setSecurityMetadataSource(source);
    interceptor.setValidateConfigAttributes(true);
    interceptor.afterPropertiesSet();
    return new HttpServletRequestFilterWrapper(interceptor);
}