Package org.springframework.security.config.web.server

Class ServerHttpSecurity.AuthorizeExchangeSpec.Access

java.lang.Object

org.springframework.security.config.web.server.ServerHttpSecurity.AuthorizeExchangeSpec.Access

Enclosing class:

ServerHttpSecurity.AuthorizeExchangeSpec

public final class ServerHttpSecurity.AuthorizeExchangeSpec.Access
extends Object

Configures the access for a particular set of exchanges.

Constructor Summary

Constructors

Constructor	Description
Access()

Method Summary

Modifier and Type	Method	Description
ServerHttpSecurity.AuthorizeExchangeSpec	access(ReactiveAuthorizationManager<AuthorizationContext> manager)	Allows plugging in a custom authorization strategy
ServerHttpSecurity.AuthorizeExchangeSpec	authenticated()	Require an authenticated user
ServerHttpSecurity.AuthorizeExchangeSpec	denyAll()	Deny access for everyone
ServerHttpSecurity.AuthorizeExchangeSpec	hasAnyAuthority(String... authorities)	Require any authority
ServerHttpSecurity.AuthorizeExchangeSpec	hasAnyRole(String... roles)	Require any specific role.
ServerHttpSecurity.AuthorizeExchangeSpec	hasAuthority(String authority)	Require a specific authority.
ServerHttpSecurity.AuthorizeExchangeSpec	hasIpAddress(String ipAddress)	Require a specific IP address or range using an IP/Netmask (e.g.
ServerHttpSecurity.AuthorizeExchangeSpec	hasRole(String role)	Require a specific role.
ServerHttpSecurity.AuthorizeExchangeSpec	permitAll()	Allow access for anyone

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

Access

public Access()

Method Details

permitAll

public ServerHttpSecurity.AuthorizeExchangeSpec permitAll()

Allow access for anyone

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

denyAll

public ServerHttpSecurity.AuthorizeExchangeSpec denyAll()

Deny access for everyone

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

hasRole

public ServerHttpSecurity.AuthorizeExchangeSpec hasRole(String role)

Require a specific role. This is a shorcut for hasAuthority(String)

Parameters:

role - the role (i.e. "USER" would require "ROLE_USER")

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

hasAnyRole

public ServerHttpSecurity.AuthorizeExchangeSpec hasAnyRole(String... roles)

Require any specific role. This is a shortcut for hasAnyAuthority(String...)

Parameters:

roles - the roles (i.e. "USER" would require "ROLE_USER")

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

hasAuthority

public ServerHttpSecurity.AuthorizeExchangeSpec hasAuthority(String authority)

Require a specific authority.

Parameters:

authority - the authority to require (i.e. "USER" would require authority of "USER").

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

hasAnyAuthority

public ServerHttpSecurity.AuthorizeExchangeSpec hasAnyAuthority(String... authorities)

Require any authority

Parameters:

authorities - the authorities to require (i.e. "USER" would require authority of "USER").

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

authenticated

public ServerHttpSecurity.AuthorizeExchangeSpec authenticated()

Require an authenticated user

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

hasIpAddress

public ServerHttpSecurity.AuthorizeExchangeSpec hasIpAddress(String ipAddress)

Require a specific IP address or range using an IP/Netmask (e.g. 192.168.1.0/24).

Parameters:

ipAddress - the address or range of addresses from which the request must come.

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure

Since:

5.7

access

public ServerHttpSecurity.AuthorizeExchangeSpec access(ReactiveAuthorizationManager<AuthorizationContext> manager)

Allows plugging in a custom authorization strategy

Parameters:

manager - the authorization manager to use

Returns:

the ServerHttpSecurity.AuthorizeExchangeSpec to configure