Package org.apache.syncope.core.spring.security

Class WebSecurityContext

java.lang.Object

org.apache.syncope.core.spring.security.WebSecurityContext

@EnableWebSecurity
@EnableMethodSecurity(prePostEnabled=true)
@Configuration(proxyBeanMethods=false)
public class WebSecurityContext
extends Object

Constructor Summary

Constructors

Constructor	Description
WebSecurityContext()

Method Summary

Modifier and Type	Method	Description
AccessDeniedHandler	accessDeniedHandler()
HttpFirewall	allowUrlEncodedSlashHttpFirewall()
AuthDataAccessor	authDataAccessor(SecurityProperties securityProperties, EncryptorManager encryptorManager, dev.samstevens.totp.code.CodeVerifier totpCodeVerifier, RealmSearchDAO realmSearchDAO, UserDAO userDAO, GroupDAO groupDAO, AnySearchDAO anySearchDAO, AccessTokenDAO accessTokenDAO, ConfParamOps confParamOps, RoleDAO roleDAO, DelegationDAO delegationDAO, ExternalResourceDAO resourceDAO, ConnectorManager connectorManager, AuditManager auditManager, MappingManager mappingManager, DefaultCredentialChecker credentialChecker, List<JWTSSOProvider> jwtSSOProviders)
SecurityFilterChain	filterChain(HttpSecurity http, UsernamePasswordAuthenticationProvider usernamePasswordAuthenticationProvider, AccessDeniedHandler accessDeniedHandler, AuthDataAccessor dataAccessor, DefaultCredentialChecker defaultCredentialChecker)
UsernamePasswordAuthenticationProvider	usernamePasswordAuthenticationProvider(DomainOps domainOps, AuthDataAccessor dataAccessor, UserProvisioningManager provisioningManager, SecurityProperties securityProperties, EncryptorManager encryptorManager)
WebSecurityCustomizer	webSecurityCustomizer(HttpFirewall allowUrlEncodedSlashHttpFirewall)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

WebSecurityContext

public WebSecurityContext()

Method Details

allowUrlEncodedSlashHttpFirewall

@Bean
public HttpFirewall allowUrlEncodedSlashHttpFirewall()

webSecurityCustomizer

@Bean
public WebSecurityCustomizer webSecurityCustomizer(HttpFirewall allowUrlEncodedSlashHttpFirewall)

filterChain

@Bean
public SecurityFilterChain filterChain(HttpSecurity http,
 UsernamePasswordAuthenticationProvider usernamePasswordAuthenticationProvider,
 AccessDeniedHandler accessDeniedHandler,
 AuthDataAccessor dataAccessor,
 DefaultCredentialChecker defaultCredentialChecker)
                                throws Exception

Throws:

Exception

usernamePasswordAuthenticationProvider

@ConditionalOnMissingBean
@Bean
public UsernamePasswordAuthenticationProvider usernamePasswordAuthenticationProvider(DomainOps domainOps,
 AuthDataAccessor dataAccessor,
 UserProvisioningManager provisioningManager,
 SecurityProperties securityProperties,
 EncryptorManager encryptorManager)

accessDeniedHandler

@Bean
public AccessDeniedHandler accessDeniedHandler()

authDataAccessor

@ConditionalOnMissingBean
@Bean
public AuthDataAccessor authDataAccessor(SecurityProperties securityProperties,
 EncryptorManager encryptorManager,
 dev.samstevens.totp.code.CodeVerifier totpCodeVerifier,
 RealmSearchDAO realmSearchDAO,
 UserDAO userDAO,
 GroupDAO groupDAO,
 AnySearchDAO anySearchDAO,
 AccessTokenDAO accessTokenDAO,
 ConfParamOps confParamOps,
 RoleDAO roleDAO,
 DelegationDAO delegationDAO,
 ExternalResourceDAO resourceDAO,
 ConnectorManager connectorManager,
 AuditManager auditManager,
 MappingManager mappingManager,
 DefaultCredentialChecker credentialChecker,
 List<JWTSSOProvider> jwtSSOProviders)