org.springframework.security.config.annotation.web.configurers

Class ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry

java.lang.Object

org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry<C>

org.springframework.security.config.annotation.web.configurers.AbstractConfigAttributeRequestMatcherRegistry<T>

org.springframework.security.config.annotation.web.configurers.AbstractInterceptUrlConfigurer.AbstractInterceptUrlRegistry<ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry,ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>

org.springframework.security.config.annotation.web.configurers.ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry

Enclosing class:

ExpressionUrlAuthorizationConfigurer<H extends HttpSecurityBuilder<H>>

public final class ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry
extends AbstractInterceptUrlConfigurer.AbstractInterceptUrlRegistry<ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry,ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>

Method Summary

Modifier and Type	Method and Description
H	and()
protected ExpressionUrlAuthorizationConfigurer.AuthorizedUrl	chainRequestMatchersInternal(java.util.List<org.springframework.security.web.util.matcher.RequestMatcher> requestMatchers) Subclasses should implement this method for returning the object that is chained to the creation of the RequestMatcher instances.
ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry	expressionHandler(org.springframework.security.access.expression.SecurityExpressionHandler<org.springframework.security.web.FilterInvocation> expressionHandler) Allows customization of the SecurityExpressionHandler to be used.
ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl	mvcMatchers(org.springframework.http.HttpMethod method, java.lang.String... mvcPatterns) Maps an MvcRequestMatcher that also specifies a specific HttpMethod to match on.
ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl	mvcMatchers(java.lang.String... patterns) Maps an MvcRequestMatcher that does not care which HttpMethod is used.
ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry	withObjectPostProcessor(ObjectPostProcessor<?> objectPostProcessor) Adds an ObjectPostProcessor for this class.

Methods inherited from class org.springframework.security.config.annotation.web.configurers.AbstractInterceptUrlConfigurer.AbstractInterceptUrlRegistry

accessDecisionManager, filterSecurityInterceptorOncePerRequest

Methods inherited from class org.springframework.security.config.annotation.web.configurers.AbstractConfigAttributeRequestMatcherRegistry

chainRequestMatchers

Methods inherited from class org.springframework.security.config.annotation.web.AbstractRequestMatcherRegistry

antMatchers, antMatchers, antMatchers, anyRequest, createMvcMatchers, getApplicationContext, regexMatchers, regexMatchers, requestMatchers, setApplicationContext

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

mvcMatchers

public ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl mvcMatchers(org.springframework.http.HttpMethod method,
                                                                                 java.lang.String... mvcPatterns)

Description copied from class: AbstractRequestMatcherRegistry

Maps an MvcRequestMatcher that also specifies a specific HttpMethod to match on. This matcher will use the same rules that Spring MVC uses for matching. For example, often times a mapping of the path "/path" will match on "/path", "/path/", "/path.html", etc.

If the current request will not be processed by Spring MVC, a reasonable default using the pattern as a ant pattern will be used.

Specified by:

mvcMatchers in class AbstractRequestMatcherRegistry<ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>

Parameters:

method - the HTTP method to match on

mvcPatterns - the patterns to match on. The rules for matching are defined by Spring MVC

Returns:

the object that is chained after creating the RequestMatcher.

mvcMatchers

public ExpressionUrlAuthorizationConfigurer.MvcMatchersAuthorizedUrl mvcMatchers(java.lang.String... patterns)

Description copied from class: AbstractRequestMatcherRegistry

Maps an MvcRequestMatcher that does not care which HttpMethod is used. This matcher will use the same rules that Spring MVC uses for matching. For example, often times a mapping of the path "/path" will match on "/path", "/path/", "/path.html", etc.

If the current request will not be processed by Spring MVC, a reasonable default using the pattern as a ant pattern will be used.

Specified by:

mvcMatchers in class AbstractRequestMatcherRegistry<ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>

Parameters:

patterns - the patterns to match on. The rules for matching are defined by Spring MVC

Returns:

the object that is chained after creating the RequestMatcher.

chainRequestMatchersInternal

protected ExpressionUrlAuthorizationConfigurer.AuthorizedUrl chainRequestMatchersInternal(java.util.List<org.springframework.security.web.util.matcher.RequestMatcher> requestMatchers)

Description copied from class: AbstractConfigAttributeRequestMatcherRegistry

Subclasses should implement this method for returning the object that is chained to the creation of the RequestMatcher instances.

Specified by:

chainRequestMatchersInternal in class AbstractConfigAttributeRequestMatcherRegistry<ExpressionUrlAuthorizationConfigurer.AuthorizedUrl>

Parameters:

requestMatchers - the RequestMatcher instances that were created

Returns:

the chained Object for the subclass which allows association of something else to the RequestMatcher

expressionHandler

public ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry expressionHandler(org.springframework.security.access.expression.SecurityExpressionHandler<org.springframework.security.web.FilterInvocation> expressionHandler)

Allows customization of the SecurityExpressionHandler to be used. The default is DefaultWebSecurityExpressionHandler

Parameters:

expressionHandler - the SecurityExpressionHandler to be used

Returns:

the ExpressionUrlAuthorizationConfigurer for further customization.

withObjectPostProcessor

public ExpressionUrlAuthorizationConfigurer.ExpressionInterceptUrlRegistry withObjectPostProcessor(ObjectPostProcessor<?> objectPostProcessor)

Adds an ObjectPostProcessor for this class.

Parameters:

objectPostProcessor -

Returns:

the ExpressionUrlAuthorizationConfigurer for further customizations

and

public H and()