Package org.duracloud.security.vote

Class AccessDecisionManagerImpl

java.lang.Object
org.springframework.security.access.vote.AbstractAccessDecisionManager
org.duracloud.security.vote.AccessDecisionManagerImpl
All Implemented Interfaces:
org.springframework.beans.factory.Aware, org.springframework.beans.factory.InitializingBean, org.springframework.context.MessageSourceAware, org.springframework.security.access.AccessDecisionManager
public class AccessDecisionManagerImpl extends org.springframework.security.access.vote.AbstractAccessDecisionManager
This class polls its internal list of AccessDecisionVoters to come to an AuthZ decision for the principal (authentication) and resource.
Author:
Andrew Woods Date: Mar 12, 2010

  • Field Summary

    Fields inherited from class org.springframework.security.access.vote.AbstractAccessDecisionManager

    logger, messages

  • Constructor Summary

    Constructors
    Constructor
    Description
    AccessDecisionManagerImpl(List<org.springframework.security.access.AccessDecisionVoter<? extends Object>> decisionVoters)
     

  • Method Summary

    Modifier and Type
    Method
    Description
    void
    decide(org.springframework.security.core.Authentication authentication, Object resource, Collection<org.springframework.security.access.ConfigAttribute> config)
    This method implements to AccessDecisionManager interface.

    Methods inherited from class org.springframework.security.access.vote.AbstractAccessDecisionManager

    afterPropertiesSet, checkAllowIfAllAbstainDecisions, getDecisionVoters, isAllowIfAllAbstainDecisions, setAllowIfAllAbstainDecisions, setMessageSource, supports, supports, toString

    Methods inherited from class java.lang.Object

    clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

  • Constructor Details

    • AccessDecisionManagerImpl

      public AccessDecisionManagerImpl(List<org.springframework.security.access.AccessDecisionVoter<? extends Object>> decisionVoters)

  • Method Details

    • decide

      public void decide(org.springframework.security.core.Authentication authentication, Object resource, Collection<org.springframework.security.access.ConfigAttribute> config) throws org.springframework.security.access.AccessDeniedException
       This method implements to AccessDecisionManager interface.
 Each voter in the internal list of AccessDecisionVoters is presented with
 all of the configAttributes for the arg resource.
 - If all voters abstain from voting, the decision goes to the default
     setting: allowIfAllAbstainDecisions
 - If no voter denies the AuthZ vote and at least one voter grants, then
   AuthZ is granted.
      Parameters:
      authentication - principal seeking AuthZ
      resource - that is under protection
      config - access-attributes defined on resource
      Throws:
      org.springframework.security.access.AccessDeniedException - if AuthZ denied