Package org.springframework.security.access

Examples of org.springframework.security.access.SecurityConfig

226
227
228
229
230
231
232
233
234
235
236
            mapping.setHttpMethods( methodList );
           
            String[] tokens = StringUtils.commaDelimitedListToStringArray(value);

            for (int i = 0; i < tokens.length; i++) {
                mapping.addConfigAttribute( new SecurityConfig(tokens[i].trim()) );
            }
            mappings.add(mapping);
        }  

        // This will call the addSecureUrl in RESTfulPathBasedFilterInvocationDefinitionMap
View Full Code Here
38
39
40
41
42
43
44
45
46
47
48
        for(Menu menu:menus){
          Collection<ConfigAttribute> configAttributes = new ArrayList<ConfigAttribute>();
          List<String> tmp = map.get(menu.getMenu_url());
          if(tmp!=null){
            for(String temp:tmp){
              ConfigAttribute configAttribute = new SecurityConfig(temp);
              configAttributes.add(configAttribute);
            }
            resourceMap.put(menu.getMenu_url(), configAttributes);
          }
        }
View Full Code Here
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
        //指定了哪些url可以由哪些角色来访问
        LinkedHashMap<RequestMatcher, Collection<ConfigAttribute>> requestMap =new LinkedHashMap<>();
       
       
        //普通管理员
        SecurityConfig manager=new SecurityConfig("ROLE_MANAGER");
        //超级管理员
        SecurityConfig superManager=new SecurityConfig("ROLE_SUPERMANAGER");
        //value具有超级管理员 或是 普通管理员权限
        //这里需要注意 文本大写表示的角色标识 要转换为ConfigAttribute的集合
        //在绑定url路径和角色的关系的时候,url路径还分GET和POST两种情况
        Collection<ConfigAttribute> value=new ArrayList<>();
        value.add(manager);
        value.add(superManager);
       
       
//1、处理特殊的url访问规则      
        //urls里面存放了特殊的URL访问规则
        Collection<String> urls=new LinkedHashSet<>();
        //urlFiles为多个文本文件
        String[] urlFiles=PropertyHolder.getProperty("manager.default.url").split(",");
        for(String urlFile : urlFiles){
            //获取url访问规则文本文件的内容
            Collection<String> url=FileUtils.getClassPathTextFileContent(urlFile);
            urls.addAll(url);
        }
        //url为这样的格式:
        //格式1:/**/login.jsp*=ROLE_ANONYMOUS,ROLE_MANAGER,ROLE_SUPERMANAGER
        //格式2:/**/platform/**
        //格式1含义解释:匿名用户、普通管理员、超级管理员都可以访问的路径
        //格式2含义解释:超级管理员 或是 普通管理员都可以访问的路径
        for(String url : urls){
            //格式1:url中指定了只有特定角色才能访问
            if(url.contains("=")){
                String[] attr=url.split("=");
                //真正的url
                url=attr[0];
                //可有多个角色
                String[] roles=attr[1].split(",");
                //把多个角色转换为ConfigAttribute的集合
                Collection<ConfigAttribute> v=new ArrayList<>();
                for(String role : roles){
                    v.add(new SecurityConfig(role));
                }
                //POST
                RequestMatcher key=new AntPathRequestMatcher(url,"POST");
                requestMap.put(key, v);
                //GET
                key=new AntPathRequestMatcher(url,"GET");
                requestMap.put(key, v);
            }
            //格式2:超级管理员 或是 普通管理员都可以访问
            else{
                //POST
                RequestMatcher key=new AntPathRequestMatcher(url,"POST");
                requestMap.put(key, value);
                //GET
                key=new AntPathRequestMatcher(url,"GET");
                requestMap.put(key, value);
            }
        }

       
//2、动态指定系统中模块及命令的url访问规则
        //遍历所有的Command对象
        for(Command command : serviceFacade.query(Command.class).getModels()){
            List<String> paths=ModuleService.getCommandPath(command);
            //命令访问路径到角色名称的映射
            Map<String,String> map=ModuleService.getCommandPathToRole(command);
            for(String path : paths){
                //POST
                RequestMatcher key=new AntPathRequestMatcher(path.toString().toLowerCase()+".action*","POST");
                value=new ArrayList<>();
                //要把路径转换为角色
                //如:命令路径:/**/security/user!query 映射角色:_SECURITY_USER_QUERY
                value.add(new SecurityConfig("ROLE_MANAGER"+map.get(path)));
                value.add(superManager);
                requestMap.put(key, value);
                //GET
                key=new AntPathRequestMatcher(path.toString().toLowerCase()+".action*","GET");
                requestMap.put(key, value);
View Full Code Here
115
116
117
118
119
120
121
122
        return filter;
    }

    private FilterInvocationSecurityMetadataSource securityMetadataSource() {
        LinkedHashMap<RequestMatcher, Collection<ConfigAttribute>> map = newLinkedHashMap();
        map.put(AnyRequestMatcher.INSTANCE, asList((ConfigAttribute) new SecurityConfig(ROLE_ADMIN)));
        return new DefaultFilterInvocationSecurityMetadataSource(map);
    }
View Full Code Here
TOP

Related Classes of org.springframework.security.access.SecurityConfig

  • com.apress.pss.webflow.security.CustomSecurityListener
  • com.gtp.security.MySecurityMetadaSource
  • com.lanyuan.security.MySecurityMetadataSource
  • com.loc.security.MySecurityMetadataSource
  • com.pe.pgn.clubpgn.security.MyInvocationSecurityMetadataSourceService
  • com.pe.pgn.clubpgn.security.MySecureResourceFilter
  • com.wizriver.config.DefinitionSourceFactoryBean
  • jeeves.server.overrides.OverridesMetadataSource
  • nu.localhost.tapestry5.springsecurity.services.internal.SpringSecurityWorker
  • nu.localhost.tapestry5.springsecurity.services.RequestInvocationDefinition
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.