org.dspace.app.rest.security (DSpace Server Webapp 7.2.1 API)

Interface Summary
Interface	Description
RestAuthenticationService	Interface for a service that can provide authentication for the REST API
RestPermissionEvaluatorPlugin	Interface to define a permission evaluator plugin.

Class Summary
Class	Description
AdminRestPermissionEvaluatorPlugin	Administrators are always allowed to perform any action on any DSpace object.
AnonymousAdditionalAuthorizationFilter	This is a Filter class that'll fetch special groups from the `AuthenticationService` and set these in the current DSpace Context.
AuthorizeServicePermissionEvaluatorPlugin	DSpaceObjectPermissionEvaluatorPlugin will check persmissions based on the DSpace `AuthorizeService`.
BitstreamMetadataReadPermissionEvaluatorPlugin	Used by `BitstreamRestRepository.findOne(Context, UUID)` to get metadata of private bitstreams even though user can't access actual file
ClaimedTaskRestPermissionEvaluatorPlugin	An authenticated user is allowed to interact with a claimed task only if he own it claim.
CustomLogoutHandler	Custom logout handler to support stateless sessions
DSpace401AuthenticationEntryPoint	Spring security authentication entry point to return a 401 response for unauthorized requests This class is used in the `WebSecurityConfiguration` class.
DSpaceAuthentication	Custom Authentication for use with DSpace
DSpaceCsrfAuthenticationStrategy	Custom SessionAuthenticationStrategy to be used alongside DSpaceCsrfTokenRepository.
DSpaceCsrfTokenRepository	This is a custom Spring Security CsrfTokenRepository which supports cross-domain CSRF protection (allowing the client and backend to be on different domains).
DSpaceObjectAdminPermissionEvaluatorPlugin	`RestPermissionEvaluatorPlugin` class that evaluate admin permission against a generic DSpace Object
DSpacePermissionEvaluator	DSpace permission evaluator.
EPersonRestAuthenticationProvider	This class is responsible for authenticating a user via REST
EPersonRestPermissionEvaluatorPlugin	An authenticated user is allowed to view, update or delete his or her own data.
ExtractorOfAInprogressSubmissionInformations	Methods of this class are used on PreAuthorize annotations to convert input parameters.
GroupRestPermissionEvaluatorPlugin	An authenticated user is allowed to view information on all the groups he or she is a member of (READ permission).
MethodSecurityConfig
OidcLoginFilter	This class will filter openID Connect requests and try and authenticate them.
PoolTaskRestPermissionEvaluatorPlugin	An authenticated user is allowed to interact with a pool task only if it is in his list.
ProcessRestPermissionEvaluatorPlugin	This class will handle calls made to Process endpoints.
ReadAuthorizationPermissionEvaluatorPlugin	`RestPermissionEvaluatorPlugin` class that evaluate READ permissions for an Authorization
ResourcePolicyAdminPermissionEvalutatorPlugin	`RestPermissionEvaluatorPlugin` class that evaluate ADMIN permissions over a Resource Policy
ResourcePolicyRestPermissionEvaluatorPlugin	`RestPermissionEvaluatorPlugin` class that evaluate READ, WRITE and DELETE permissions over a ResourcePolicy
RestObjectPermissionEvaluatorPlugin	Abstract `RestPermissionEvaluatorPlugin` class that contains utility methods to evaluate permissions for a Rest Object.
ShibbolethLoginFilter	This class will filter Shibboleth requests to see if the user has been authenticated via Shibboleth.
StatelessAuthenticationFilter	Custom Spring authentication filter for Stateless authentication, intercepts requests to check for valid authentication.
StatelessLoginFilter	This class will filter /api/authn/login requests to try and authenticate them.
SubmissionCCLicenseRestEvaluatorPlugin
SubmissionCCLicenseUrlRestPermissionEvaluatorPlugin	This class will handle calls made to SubmissionCCLicenseUrlRest endpoints.
UsageReportRestPermissionEvaluatorPlugin	This class will handle Permissions for the `UsageReportRest` object and its calls
VersionHistoryRestPermissionEvaluatorPlugin	This class acts as a PermissionEvaluator to decide whether a given request to a Versioning endpoint is allowed to pass through or not
VersioningSecurityBean	Methods of this class are used on PreAuthorize annotations to check security on versioning endpoint
VersionRestPatchPermissionEvaluatorPlugin	This class evaluate ADMIN permissions to patch operation over a Version.
VersionRestPermissionEvaluatorPlugin	This class acts as a PermissionEvaluator to decide whether a given request to a Versioning endpoint is allowed to pass through or not
WebSecurityConfiguration	Spring Security configuration for DSpace Server Webapp
WebSecurityExpressionEvaluator	This class will contain the logic to allow us to evaluate an expression given through a String.
WorkflowRestPermissionEvaluatorPlugin	An authenticated user is allowed to interact with workflow item only if they belong to a task that she own or could claim.
WorkspaceItemRestPermissionEvaluatorPlugin	`RestPermissionEvaluatorPlugin` class that evaluate READ, WRITE and DELETE permissions over a WorkspaceItem

Enum Summary
Enum Description

DSpaceRestPermission
Enum that lists all available "permissions" an authenticated user can have on a specific REST endpoint.

Package org.dspace.app.rest.security