| Package | Description |
|---|---|
| org.sklsft.commons.rest.security.aspect | |
| org.sklsft.commons.rest.security.context.impl |
| Constructor and Description |
|---|
AccessControlAspect(SecurityContextProvider securityContextProvider) |
| Modifier and Type | Class and Description |
|---|---|
class |
CryptedAppKeySecurityContextProvider<T,V>
This class provide security context if both applicationkey and token are
required for authentification, famous use case is websites trying to limit
them api by throttling via by applicationkey, the credentials of
applicationkey will be saved in
SecurityContextHolder as for
credentials of token |
class |
PlainAppKeySecurityContextProvider<T,V>
This class provide security context if both applicationkey and token are
required for authentification, famous use case is websites trying to limit
them api by throttling via by applicationkey, the credentials of
applicationkey will be saved in
SecurityContextHolder as for
credentials of token
the main difference between this class and
CryptedAppKeySecurityContextProvider is that the applicationkey is
considered here as plain text not token encrypting data by providing an
implemntation of ApplicationCredentialsRetriever you are free to
handle this key as you want |
class |
WeakSecurityContextProvider<T>
this class is responsible for creating and destroying a security context
given a token this security context will be handled by a ThreadLocal so that
it will be accessible in the hole Thread execution's scope
|
Copyright © 2016. All rights reserved.