public abstract class AbstractAuthorizingInInterceptor extends AbstractPhaseInterceptor<Message>
Constructor and Description |
---|
AbstractAuthorizingInInterceptor() |
AbstractAuthorizingInInterceptor(boolean uniqueId) |
Modifier and Type | Method and Description |
---|---|
protected boolean |
authorize(SecurityContext sc,
Method method) |
protected List<String> |
getDenyRoles(Method method)
Returns a list of roles to be denied for a given method.
|
protected abstract List<String> |
getExpectedRoles(Method method)
Returns a list of expected roles for a given method.
|
protected Method |
getTargetMethod(Message m) |
void |
handleMessage(Message message)
Intercepts a message.
|
boolean |
isAllowAnonymousUsers() |
protected boolean |
isMethodProtected(Method method) |
protected boolean |
isUserInRole(SecurityContext sc,
List<String> roles,
boolean deny) |
void |
setAllowAnonymousUsers(boolean allowAnonymousUsers) |
addAfter, addAfter, addBefore, addBefore, getAdditionalInterceptors, getAfter, getBefore, getId, getPhase, handleFault, isGET, isRequestor, setAfter, setBefore
public AbstractAuthorizingInInterceptor()
public AbstractAuthorizingInInterceptor(boolean uniqueId)
public void handleMessage(Message message) throws Fault
Interceptor
Fault
protected boolean authorize(SecurityContext sc, Method method)
protected boolean isMethodProtected(Method method)
protected boolean isUserInRole(SecurityContext sc, List<String> roles, boolean deny)
protected abstract List<String> getExpectedRoles(Method method)
method
- Methodprotected List<String> getDenyRoles(Method method)
method
- Methodpublic boolean isAllowAnonymousUsers()
public void setAllowAnonymousUsers(boolean allowAnonymousUsers)
Apache CXF