io.micronaut.security.rules

Class ConfigurationInterceptUrlMapRule

java.lang.Object

io.micronaut.security.rules.AbstractSecurityRule

io.micronaut.security.rules.ConfigurationInterceptUrlMapRule

All Implemented Interfaces:

Ordered, SecurityRule

@Singleton
public class ConfigurationInterceptUrlMapRule
extends AbstractSecurityRule

A security rule implementation backed by the SecurityConfiguration.getInterceptUrlMap().

Since:

1.0

Author:

Sergio del Amo

Field Summary

Fields

Modifier and Type	Field and Description
static Integer	ORDER The order of the rule.

Fields inherited from interface io.micronaut.security.rules.SecurityRule

DENY_ALL, IS_ANONYMOUS, IS_AUTHENTICATED

Fields inherited from interface io.micronaut.core.order.Ordered

HIGHEST_PRECEDENCE, LOWEST_PRECEDENCE

Constructor Summary

Constructors

Constructor and Description
ConfigurationInterceptUrlMapRule(RolesFinder rolesFinder, SecurityConfiguration securityConfiguration)
ConfigurationInterceptUrlMapRule(TokenConfiguration tokenConfiguration, SecurityConfiguration securityConfiguration) Deprecated. use ConfigurationInterceptUrlMapRule( RolesFinder , SecurityConfiguration) instead.

Method Summary

Modifier and Type	Method and Description
SecurityRuleResult	check(HttpRequest request, RouteMatch routeMatch, Map<String,Object> claims) If no configured pattern matches the request, return SecurityRuleResult.UNKNOWN.
int	getOrder()
protected List<InterceptUrlMapPattern>	getPatternList() Provides a list of InterceptUrlMapPattern which will be used to provide SecurityRule.

Methods inherited from class io.micronaut.security.rules.AbstractSecurityRule

compareRoles, getRoles

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

ORDER

public static final Integer ORDER

The order of the rule.

Constructor Detail

ConfigurationInterceptUrlMapRule

@Deprecated
public ConfigurationInterceptUrlMapRule(TokenConfiguration tokenConfiguration,
                                                    SecurityConfiguration securityConfiguration)

Deprecated. use ConfigurationInterceptUrlMapRule( RolesFinder , SecurityConfiguration) instead.

Parameters:

tokenConfiguration - The Token Configuration

securityConfiguration - The Security Configuration

ConfigurationInterceptUrlMapRule

@Inject
public ConfigurationInterceptUrlMapRule(RolesFinder rolesFinder,
                                                SecurityConfiguration securityConfiguration)

Parameters:

rolesFinder - Roles Parser

securityConfiguration - The Security Configuration

Method Detail

getPatternList

protected List<InterceptUrlMapPattern> getPatternList()

Provides a list of InterceptUrlMapPattern which will be used to provide SecurityRule.

Returns:

List of InterceptUrlMapPattern

getOrder

public int getOrder()

Returns:

The order of the object. Defaults to zero (no order).

check

public SecurityRuleResult check(HttpRequest request,
                                @Nullable
                                RouteMatch routeMatch,
                                @Nullable
                                Map<String,Object> claims)

If no configured pattern matches the request, return SecurityRuleResult.UNKNOWN. Reads the rules in order. The first matched rule will be used for determining authorization.

Parameters:

request - The current request

routeMatch - The matched route

claims - The claims from the token. Null if not authenticated

Returns:

The result

See Also:

SecurityRuleResult