- java.lang.Object
-
- net.trajano.ms.vertx.beans.DefaultAssertionRequiredPredicate
-
- All Implemented Interfaces:
- Predicate<javax.ws.rs.container.ResourceInfo>, JwtAssertionRequiredPredicate
public class DefaultAssertionRequiredPredicate extends Object implements JwtAssertionRequiredPredicate
Checks if the URI has any JSR-250 annotations that would indicate a secured resource. On a method level if PermitAll is present then it will allow access without any assertion even if RolesAllowed is present on the class level.However, the default is to require the assertion if nothing has been specified.
This will throw an IllegalArgumentException if both
RolesAllowedandPermitAllare present in a class or method.- Author:
- Archimedes Trajano
-
-
Field Summary
Fields Modifier and Type Field and Description private static org.slf4j.LoggerLOG
-
Constructor Summary
Constructors Constructor and Description DefaultAssertionRequiredPredicate()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method and Description booleantest(javax.ws.rs.container.ResourceInfo resourceInfo)The key logic for the test is as follows:
-
-
-
Method Detail
-
test
public boolean test(javax.ws.rs.container.ResourceInfo resourceInfo)
The key logic for the test is as follows:
Let:
a = resourceMethodHasRolesAllowed b = resourceClassHasRolesAllowed c = resourceMethodHasPermitAll d = resourceClassHasPermitAll The rules that need to be applied translate to:
= a || ( b && !c ) || ( !a && !b && !c && !d ) = (a || b || !d) && ( a || !c )
-
-