org.springframework.security.web.access.WebInvocationPrivilegeEvaluator |
Known Indirect Subclasses |
Allows users to determine whether they have privileges for a given web URI.
Public Methods | |||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Determines whether the user represented by the supplied Authentication object is
allowed to invoke the supplied URI, with the given .
| |||||||||||
Determines whether the user represented by the supplied Authentication object is
allowed to invoke the supplied URI.
|
Determines whether the user represented by the supplied Authentication object is allowed to invoke the supplied URI, with the given .
Note the default implementation of FilterInvocationSecurityMetadataSource disregards the
contextPath
when evaluating which secure object metadata applies to a given
request URI, so generally the contextPath
is unimportant unless you
are using a custom FilterInvocationSecurityMetadataSource
.
contextPath | the context path (may be null). |
---|---|
uri | the URI excluding the context path |
method | the HTTP method (or null, for any method) |
authentication | the Authentication instance whose authorities should be used in evaluation whether access should be granted. |
Determines whether the user represented by the supplied Authentication object is allowed to invoke the supplied URI.
uri | the URI excluding the context path (a default context path setting will be used) |
---|