public Object decide(Authentication authentication, Object object, Collection<ConfigAttribute> config, Object returnedObject) throws AccessDeniedException { PostInvocationAttribute pia = findPostInvocationAttribute(config); if (pia == null) { return returnedObject; } return postAdvice.after(authentication, (MethodInvocation) object, pia, returnedObject); }
public int vote(Authentication authentication, MethodInvocation method, Collection<ConfigAttribute> attributes) { // Find prefilter and preauth (or combined) attributes // if both null, abstain // else call advice with them PreInvocationAttribute preAttr = findPreInvocationAttribute(attributes); if (preAttr == null) { // No expression based metadata, so abstain return ACCESS_ABSTAIN; } boolean allowed = preAdvice.before(authentication, method, preAttr); return allowed ? ACCESS_GRANTED : ACCESS_DENIED; }
@PreAuthorize("someExpression") @PreFilter(filterTarget = "param", value = "somePreFilterExpression") @PostFilter("somePostFilterExpression") @PostAuthorize("somePostAuthorizeExpression") public List<?> doSomething(List<?> param) { return param; } }
@PreAuthorize("someExpression") public static class ReturnVoidImpl2 implements ReturnVoid { @PreFilter(filterTarget = "param", value = "somePreFilterExpression") public void doSomething(List<?> param) { } }
@PreAuthorize("interfaceMethodAuthzExpression") @PreFilter(filterTarget = "param", value = "interfacePreFilterExpression") public List<?> doSomething(List<?> param); }
@PreFilter(filterTarget = "someList", value = "filterObject == authentication.name or filterObject == 'sam'") @PostFilter("filterObject == 'bob'") public List<?> methodReturningAList(List<?> someList) { return someList; }
@PostFilter("somePostFilterExpression") public List<?> doSomething(List<?> param) { return param; } }
@PreFilter(filterTarget = "param", value = "classMethodPreFilterExpression") public List<?> doSomething(List<?> param) { return param; } }
@PreAuthorize("denyAll") static class DenyAllService { void denyAll() { } } }
@PostFilter("filterObject == 'bob'") public Object[] methodReturningAnArray(Object[] someArray) { return someArray; }
public Object decide(Authentication authentication, Object object, Collection<ConfigAttribute> config, Object returnedObject) throws AccessDeniedException { PostInvocationAttribute pia = findPostInvocationAttribute(config); if (pia == null) { return returnedObject; } return postAdvice.after(authentication, (MethodInvocation) object, pia, returnedObject); }
@PreFilter(filterTarget = "param", value = "somePreFilterExpression") public void doSomething(List<?> param) { } }
@PreAuthorize("someExpression") public static class ReturnVoidImpl1 implements ReturnVoid { public void doSomething(List<?> param) { } }
@PreFilter(filterTarget = "param", value = "somePreFilterExpression") public void doSomething(List<?> param) { } }
@PreAuthorize("hasAuthority('saveUsers')") public <T extends User> T save(T dto) { return dto; } }
@PreAuthorize("interfaceAuthzExpression") public static interface ReturnAnotherList { @PreAuthorize("interfaceMethodAuthzExpression") @PreFilter(filterTarget = "param", value = "interfacePreFilterExpression") public List<?> doSomething(List<?> param); }
@PreAuthorize("#action.attribute == 'A'") public void foo(SecurityConfig action) { } }
@PreAuthorize("hasRole('USER')") public String getMessage() { return "Hello World"; }
@PreAuthorize("hasRole('ROLE_ADMIN')") User findByUsername(String username); }
@PreAuthorize("#x == 'x' and @number.intValue() == 1294 ") public void methodWithBeanNamePropertyAccessExpression(String x) { }