Package io.dialob.boot.security

Class AbstractApiSecurityConfigurer

java.lang.Object

org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

io.dialob.boot.security.AbstractWebSecurityConfigurer

io.dialob.boot.security.AbstractApiSecurityConfigurer

All Implemented Interfaces:

org.springframework.core.Ordered, org.springframework.security.config.annotation.SecurityConfigurer<javax.servlet.Filter,org.springframework.security.config.annotation.web.builders.WebSecurity>, org.springframework.security.config.annotation.web.WebSecurityConfigurer<org.springframework.security.config.annotation.web.builders.WebSecurity>

Direct Known Subclasses:

ApiServiceSecurityConfigurer, WebApiSecurityConfigurer

public abstract class AbstractApiSecurityConfigurer
extends AbstractWebSecurityConfigurer
implements org.springframework.core.Ordered

Field Summary

Fields

Modifier and Type	Field	Description
static org.springframework.web.cors.CorsConfiguration	ALLOW_SAME_ORIGIN
static org.springframework.web.cors.CorsConfiguration	PERMIT_ALL
static org.springframework.security.web.util.matcher.RequestMatcher	SESSION_EXISTS_MATCHER

Fields inherited from interface org.springframework.core.Ordered

HIGHEST_PRECEDENCE, LOWEST_PRECEDENCE

Constructor Summary

Constructors

Constructor	Description
AbstractApiSecurityConfigurer(String contextPath, TenantAccessEvaluator tenantPermissionEvaluator, AuthenticationStrategy authenticationStrategy)

Method Summary

Modifier and Type	Method	Description
protected org.springframework.security.config.annotation.web.builders.HttpSecurity	configurePermissions(org.springframework.security.config.annotation.web.builders.HttpSecurity http)
protected org.springframework.security.web.util.matcher.RequestMatcher	getTenantRequiredMatcher()

Methods inherited from class io.dialob.boot.security.AbstractWebSecurityConfigurer

configure, configure, configureAuthentication, configureAuthenticationManager, configureCors, configureCsrf, configureFrameOptions, configureLogout, configureMDCPrincipalFilter, configureRequestParameterTenantScopeFilter, getContextPath, getDefaultTenantSupplier, getOrder, getRequestParameterTenantScopeFilter, getTenantPermissionEvaluator, requestMatcher, withOrder

Methods inherited from class org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

authenticationManager, authenticationManagerBean, configure, getApplicationContext, getHttp, init, setApplicationContext, setAuthenticationConfiguration, setContentNegotationStrategy, setObjectPostProcessor, setTrustResolver, userDetailsService, userDetailsServiceBean

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.springframework.core.Ordered

getOrder

Field Detail

PERMIT_ALL

public static final org.springframework.web.cors.CorsConfiguration PERMIT_ALL

ALLOW_SAME_ORIGIN

public static final org.springframework.web.cors.CorsConfiguration ALLOW_SAME_ORIGIN

SESSION_EXISTS_MATCHER

public static final org.springframework.security.web.util.matcher.RequestMatcher SESSION_EXISTS_MATCHER

Constructor Detail

AbstractApiSecurityConfigurer

public AbstractApiSecurityConfigurer(String contextPath,
                                     TenantAccessEvaluator tenantPermissionEvaluator,
                                     @NonNull
                                     AuthenticationStrategy authenticationStrategy)

Method Detail

configurePermissions

protected org.springframework.security.config.annotation.web.builders.HttpSecurity configurePermissions(org.springframework.security.config.annotation.web.builders.HttpSecurity http)
                                                                                                 throws Exception

Specified by:

configurePermissions in class AbstractWebSecurityConfigurer

Throws:

Exception

getTenantRequiredMatcher

@NonNull
protected org.springframework.security.web.util.matcher.RequestMatcher getTenantRequiredMatcher()

Overrides:

getTenantRequiredMatcher in class AbstractWebSecurityConfigurer