Examples with ExpressionBasedPreInvocationAdvice org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice used on opensource projects

Example 1 with ExpressionBasedPreInvocationAdvice

use of org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice in project spring-security by spring-projects.

the class PrePostSecured method setUp.

@Before
public final void setUp() throws Exception {
    MockitoAnnotations.initMocks(this);
    interceptor = new AspectJMethodSecurityInterceptor();
    AccessDecisionVoter[] voters = new AccessDecisionVoter[] { new RoleVoter(), new PreInvocationAuthorizationAdviceVoter(new ExpressionBasedPreInvocationAdvice()) };
    adm = new AffirmativeBased(Arrays.<AccessDecisionVoter<? extends Object>>asList(voters));
    interceptor.setAccessDecisionManager(adm);
    interceptor.setAuthenticationManager(authman);
    interceptor.setSecurityMetadataSource(new SecuredAnnotationSecurityMetadataSource());
    AnnotationSecurityAspect secAspect = AnnotationSecurityAspect.aspectOf();
    secAspect.setSecurityInterceptor(interceptor);
}

Example 2 with ExpressionBasedPreInvocationAdvice

use of org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice in project spring-security by spring-projects.

the class AnnotationSecurityAspectTests method setUp.

@BeforeEach
public final void setUp() {
    MockitoAnnotations.initMocks(this);
    this.interceptor = new AspectJMethodSecurityInterceptor();
    AccessDecisionVoter[] voters = new AccessDecisionVoter[] { new RoleVoter(), new PreInvocationAuthorizationAdviceVoter(new ExpressionBasedPreInvocationAdvice()) };
    this.adm = new AffirmativeBased(Arrays.<AccessDecisionVoter<? extends Object>>asList(voters));
    this.interceptor.setAccessDecisionManager(this.adm);
    this.interceptor.setAuthenticationManager(this.authman);
    this.interceptor.setSecurityMetadataSource(new SecuredAnnotationSecurityMetadataSource());
    AnnotationSecurityAspect secAspect = AnnotationSecurityAspect.aspectOf();
    secAspect.setSecurityInterceptor(this.interceptor);
}

Example 3 with ExpressionBasedPreInvocationAdvice

use of org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice in project spring-security by spring-projects.

the class GlobalMethodSecurityConfiguration method preInvocationAuthorizationAdvice.

/**
 * Creates the {@link PreInvocationAuthorizationAdvice} to be used. The default is
 * {@link ExpressionBasedPreInvocationAdvice}.
 * @return the {@link PreInvocationAuthorizationAdvice}
 */
@Bean
public PreInvocationAuthorizationAdvice preInvocationAuthorizationAdvice() {
    ExpressionBasedPreInvocationAdvice preInvocationAdvice = new ExpressionBasedPreInvocationAdvice();
    preInvocationAdvice.setExpressionHandler(getExpressionHandler());
    return preInvocationAdvice;
}

Example 4 with ExpressionBasedPreInvocationAdvice

use of org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice in project spring-security by spring-projects.

the class ReactiveMethodSecurityConfiguration method securityMethodInterceptor.

@Bean
PrePostAdviceReactiveMethodInterceptor securityMethodInterceptor(AbstractMethodSecurityMetadataSource source, MethodSecurityExpressionHandler handler) {
    ExpressionBasedPostInvocationAdvice postAdvice = new ExpressionBasedPostInvocationAdvice(handler);
    ExpressionBasedPreInvocationAdvice preAdvice = new ExpressionBasedPreInvocationAdvice();
    preAdvice.setExpressionHandler(handler);
    return new PrePostAdviceReactiveMethodInterceptor(source, preAdvice, postAdvice);
}

Example 5 with ExpressionBasedPreInvocationAdvice

use of org.springframework.security.access.expression.method.ExpressionBasedPreInvocationAdvice in project spring-security by spring-projects.

the class GlobalMethodSecurityConfiguration method accessDecisionManager.

/**
 * Allows subclasses to provide a custom {@link AccessDecisionManager}. The default is
 * a {@link AffirmativeBased} with the following voters:
 *
 * <ul>
 * <li>{@link PreInvocationAuthorizationAdviceVoter}</li>
 * <li>{@link RoleVoter}</li>
 * <li>{@link AuthenticatedVoter}</li>
 * </ul>
 * @return the {@link AccessDecisionManager} to use
 */
protected AccessDecisionManager accessDecisionManager() {
    List<AccessDecisionVoter<?>> decisionVoters = new ArrayList<>();
    if (prePostEnabled()) {
        ExpressionBasedPreInvocationAdvice expressionAdvice = new ExpressionBasedPreInvocationAdvice();
        expressionAdvice.setExpressionHandler(getExpressionHandler());
        decisionVoters.add(new PreInvocationAuthorizationAdviceVoter(expressionAdvice));
    }
    if (jsr250Enabled()) {
        decisionVoters.add(new Jsr250Voter());
    }
    RoleVoter roleVoter = new RoleVoter();
    GrantedAuthorityDefaults grantedAuthorityDefaults = getSingleBeanOrNull(GrantedAuthorityDefaults.class);
    if (grantedAuthorityDefaults != null) {
        roleVoter.setRolePrefix(grantedAuthorityDefaults.getRolePrefix());
    }
    decisionVoters.add(roleVoter);
    decisionVoters.add(new AuthenticatedVoter());
    return new AffirmativeBased(decisionVoters);
}