类 ServletSecurityAuthorizationManager
java.lang.Object
cn.herodotus.stirrup.oauth2.authorization.servlet.ServletSecurityAuthorizationManager
- 所有已实现的接口:
org.springframework.security.authorization.AuthorizationManager<org.springframework.security.web.access.intercept.RequestAuthorizationContext>
public class ServletSecurityAuthorizationManager
extends Object
implements org.springframework.security.authorization.AuthorizationManager<org.springframework.security.web.access.intercept.RequestAuthorizationContext>
Description: Spring Security 6 授权管理器
Spring Security 6 授权管理
1. 由原来的 AccessDecisionManager 和 AccessDecisionVoter,变更为使用 AuthorizationManager
2. 原来的 SecurityMetadataSource 已经不再使用。其实想要自己扩展,基本逻辑还是一致。只不过给使用者更大的扩展度和灵活度。
3. 原来的 FilterSecurityInterceptor,已经不再使用。改为使用 AuthorizationFilter
- 作者:
- : gengwei.zheng
- Date:
- : 2022/11/8 14:57
-
构造器概要
构造器构造器说明ServletSecurityAuthorizationManager(SecurityAttributeStorage securityAttributeStorage, ServletOAuth2ResourceMatcherConfigurer servletOAuth2ResourceMatcherConfigurer) -
方法概要
从类继承的方法 java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait从接口继承的方法 org.springframework.security.authorization.AuthorizationManager
verify
-
构造器详细资料
-
ServletSecurityAuthorizationManager
public ServletSecurityAuthorizationManager(SecurityAttributeStorage securityAttributeStorage, ServletOAuth2ResourceMatcherConfigurer servletOAuth2ResourceMatcherConfigurer)
-
-
方法详细资料
-
check
public org.springframework.security.authorization.AuthorizationDecision check(Supplier<org.springframework.security.core.Authentication> authentication, org.springframework.security.web.access.intercept.RequestAuthorizationContext object) - 指定者:
check在接口中org.springframework.security.authorization.AuthorizationManager<org.springframework.security.web.access.intercept.RequestAuthorizationContext>
-