java.lang.Object | ||
↳ | org.springframework.security.access.expression.AbstractSecurityExpressionHandler<T> | |
↳ | org.springframework.security.access.expression.method.DefaultMethodSecurityExpressionHandler |
The standard implementation of MethodSecurityExpressionHandler
.
A single instance should usually be shared amongst the beans that require expression support.
Fields | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
logger |
Public Constructors | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Public Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Uses a MethodSecurityEvaluationContext as the EvaluationContext implementation.
| |||||||||||
Filters the
filterTarget object (which must be either a collection or an array), by evaluating the
supplied expression. | |||||||||||
Used to inform the expression system of the return object for the given evaluation context.
|
Protected Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Implement in order to create a root object of the correct type for the supported invocation type.
|
[Expand]
Inherited Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
From class
org.springframework.security.access.expression.AbstractSecurityExpressionHandler
| |||||||||||
From class
java.lang.Object
| |||||||||||
From interface
org.springframework.context.ApplicationContextAware
| |||||||||||
From interface
org.springframework.security.access.expression.SecurityExpressionHandler
| |||||||||||
From interface
org.springframework.security.access.expression.method.MethodSecurityExpressionHandler
|
Uses a MethodSecurityEvaluationContext as the EvaluationContext implementation.
auth | the current authentication object |
---|---|
mi | the invocation (filter, method, channel) |
StandardEvaluationContext
or potentially a custom subclass if overridden.
Filters the filterTarget
object (which must be either a collection or an array), by evaluating the
supplied expression.
If a Collection
is used, the original instance will be modified to contain the elements for which
the permission expression evaluates to true
. For an array, a new array instance will be returned.
filterTarget | the array or collection to be filtered. |
---|---|
filterExpression | the expression which should be used as the filter condition. If it returns false on evaluation, the object will be removed from the returned collection |
ctx | the current evaluation context (as created through a call to
createEvaluationContext(org.springframework.security.core.Authentication, Object) |
Used to inform the expression system of the return object for the given evaluation context. Only applies to method invocations.
returnObject | the return object value |
---|---|
ctx | the context within which the object should be set (as created through a call to
createEvaluationContext(org.springframework.security.core.Authentication, Object)
|
Implement in order to create a root object of the correct type for the supported invocation type.
authentication | the current authentication object |
---|---|
invocation | the invocation (filter, method, channel) |