public class MethodSecurityMetadataSourceAdvisor extends AbstractPointcutAdvisor implements BeanFactoryAware
MethodSecurityMetadataSource, used to exclude a MethodSecurityInterceptor from
public (non-secure) methods.
Because the AOP framework caches advice calculations, this is normally faster than just letting the
MethodSecurityInterceptor run and find out itself that it has no work to do.
This class also allows the use of Spring's DefaultAdvisorAutoProxyCreator, which makes
configuration easier than setup a ProxyFactoryBean for each object requiring security. Note that
autoproxying is not supported for BeanFactory implementations, as post-processing is automatic only for application
contexts.
Based on Spring's TransactionAttributeSourceAdvisor.
HIGHEST_PRECEDENCE, LOWEST_PRECEDENCE| Constructor and Description |
|---|
MethodSecurityMetadataSourceAdvisor(String adviceBeanName,
MethodSecurityMetadataSource attributeSource,
String attributeSourceBeanName)
Alternative constructor for situations where we want the advisor decoupled from the advice.
|
| Modifier and Type | Method and Description |
|---|---|
org.aopalliance.aop.Advice |
getAdvice() |
Pointcut |
getPointcut() |
void |
setBeanFactory(BeanFactory beanFactory) |
equals, getOrder, hashCode, isPerInstance, setOrderpublic MethodSecurityMetadataSourceAdvisor(String adviceBeanName, MethodSecurityMetadataSource attributeSource, String attributeSourceBeanName)
adviceBeanName - name of the MethodSecurityInterceptor beanattributeSource - the SecurityMetadataSource (should be the same as the one used on the interceptor)attributeSourceBeanName - the bean name of the attributeSource (required for serialization)public Pointcut getPointcut()
getPointcut in interface PointcutAdvisorpublic org.aopalliance.aop.Advice getAdvice()
public void setBeanFactory(BeanFactory beanFactory) throws BeansException
setBeanFactory in interface BeanFactoryAwareBeansException