@Configuration public class WebSecurityConfiguration extends Object implements ImportAware, BeanClassLoaderAware
WebSecurity to create the FilterChainProxy that
performs the web based security for Spring Security. It then exports the
necessary beans. Customizations can be made to WebSecurity by
extending WebSecurityConfigurerAdapter and exposing it as a
Configuration or implementing WebSecurityConfigurer and
exposing it as a Configuration. This configuration is imported when
using EnableWebSecurity.EnableWebSecurity,
WebSecurity| Constructor and Description |
|---|
WebSecurityConfiguration() |
| Modifier and Type | Method and Description |
|---|---|
org.springframework.security.config.annotation.web.configuration.AutowiredWebSecurityConfigurersIgnoreParents |
autowiredWebSecurityConfigurersIgnoreParents(ConfigurableListableBeanFactory beanFactory) |
org.springframework.security.web.access.WebInvocationPrivilegeEvaluator |
privilegeEvaluator()
Creates the
WebInvocationPrivilegeEvaluator that is necessary for the JSP tag support. |
void |
setBeanClassLoader(ClassLoader classLoader) |
void |
setFilterChainProxySecurityConfigurer(ObjectPostProcessor<Object> objectPostProcessor,
List<SecurityConfigurer<javax.servlet.Filter,WebSecurity>> webSecurityConfigurers)
Sets the
<SecurityConfigurer<FilterChainProxy, WebSecurityBuilder> instances used to create the web configuration. |
void |
setImportMetadata(AnnotationMetadata importMetadata) |
javax.servlet.Filter |
springSecurityFilterChain()
Creates the Spring Security Filter Chain
|
org.springframework.security.access.expression.SecurityExpressionHandler<org.springframework.security.web.FilterInvocation> |
webSecurityExpressionHandler() |
@Bean @DependsOn(value="springSecurityFilterChain") public org.springframework.security.access.expression.SecurityExpressionHandler<org.springframework.security.web.FilterInvocation> webSecurityExpressionHandler()
@Bean(name="springSecurityFilterChain") public javax.servlet.Filter springSecurityFilterChain() throws Exception
Exception@Bean @DependsOn(value="springSecurityFilterChain") public org.springframework.security.web.access.WebInvocationPrivilegeEvaluator privilegeEvaluator() throws Exception
WebInvocationPrivilegeEvaluator that is necessary for the JSP tag support.WebInvocationPrivilegeEvaluatorException@Autowired(required=false) public void setFilterChainProxySecurityConfigurer(ObjectPostProcessor<Object> objectPostProcessor, @Value(value="#{@autowiredWebSecurityConfigurersIgnoreParents.getWebSecurityConfigurers()}") List<SecurityConfigurer<javax.servlet.Filter,WebSecurity>> webSecurityConfigurers) throws Exception
<SecurityConfigurer<FilterChainProxy, WebSecurityBuilder> instances used to create the web configuration.objectPostProcessor - the ObjectPostProcessor used to create a WebSecurity instancewebSecurityConfigurers - the <SecurityConfigurer<FilterChainProxy, WebSecurityBuilder> instances used to create the web configurationException@Bean public org.springframework.security.config.annotation.web.configuration.AutowiredWebSecurityConfigurersIgnoreParents autowiredWebSecurityConfigurersIgnoreParents(ConfigurableListableBeanFactory beanFactory)
public void setImportMetadata(AnnotationMetadata importMetadata)
setImportMetadata in interface ImportAwarepublic void setBeanClassLoader(ClassLoader classLoader)
setBeanClassLoader in interface BeanClassLoaderAware