-
AuthorizationManager
-
isUserInRole(String, Account, ServletInfo, HttpServletRequest, Deployment): boolean
-
canAccessResource(List<SingleConstraintMatch>, Account, ServletInfo, HttpServletRequest, Deployment): boolean
-
transportGuarantee(TransportGuaranteeType, TransportGuaranteeType, HttpServletRequest): TransportGuaranteeType
-
/*
* JBoss, Home of Professional Open Source.
* Copyright 2014 Red Hat, Inc., and individual contributors
* as indicated by the @author tags.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package io.undertow.servlet.api;
import io.undertow.security.idm.Account;
import javax.servlet.http.HttpServletRequest;
import java.util.List;
Authorization manager. The servlet implementation delegates all authorization checks to this interface.
Author: Stuart Douglas
/**
* Authorization manager. The servlet implementation delegates all authorization checks to this interface.
*
* @author Stuart Douglas
*/
public interface AuthorizationManager {
Tests if a user is in a given role
Params: - roleName – The role name
- account – The user account
- servletInfo – The servlet info for the target servlet
- request – The servlet request
- deployment – The deployment
Returns: true if the user is in the role
/**
* Tests if a user is in a given role
* @param roleName The role name
* @param account The user account
* @param servletInfo The servlet info for the target servlet
* @param request The servlet request
* @param deployment The deployment
* @return true if the user is in the role
*/
boolean isUserInRole(String roleName, final Account account, final ServletInfo servletInfo, final HttpServletRequest request, Deployment deployment);
Tests if a user can access a given resource
Params: - mappedConstraints – The constraints
- account – The users account
- servletInfo – The servlet info for the target servlet
- request – The servlet request
- deployment – The deployment
Returns: true if the user can access the resource
/**
* Tests if a user can access a given resource
*
* @param mappedConstraints The constraints
* @param account The users account
* @param servletInfo The servlet info for the target servlet
* @param request The servlet request
* @param deployment The deployment
* @return true if the user can access the resource
*/
boolean canAccessResource(List<SingleConstraintMatch> mappedConstraints, final Account account, final ServletInfo servletInfo, final HttpServletRequest request, Deployment deployment);
Determines the transport guarantee type
Params: - currentConnectionGuarantee – The current connections transport guarantee type
- configuredRequiredGuarantee – The transport guarantee type specified in the deployment descriptor/annotations
- request – The request
Returns: The transport guarantee type
/**
* Determines the transport guarantee type
*
* @param currentConnectionGuarantee The current connections transport guarantee type
* @param configuredRequiredGuarantee The transport guarantee type specified in the deployment descriptor/annotations
* @param request The request
* @return The transport guarantee type
*/
TransportGuaranteeType transportGuarantee(TransportGuaranteeType currentConnectionGuarantee, TransportGuaranteeType configuredRequiredGuarantee, final HttpServletRequest request);
}