Class AuthorizingInterceptor

  • All Implemented Interfaces:
    org.apache.cxf.interceptor.Interceptor<org.apache.cxf.message.Message>, org.apache.cxf.phase.PhaseInterceptor<org.apache.cxf.message.Message>

    public class AuthorizingInterceptor
    Authorizing interceptor is in charge of testing that current authenticate user have the expected role during method access
    • Field Summary

      • Fields inherited from class

        globalRoles, methodRolesMap, userRolesMap
    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      protected List<String> getExpectedRoles​(Method method)
      Returns a list of expected roles for a given method.
      • Methods inherited from class

        createMethodSig, isUserInRole, setCheckConfiguredRolesOnly, setGlobalRoles, setMethodRolesMap, setUserRolesMap
      • Methods inherited from class

        authorize, getDenyRoles, getTargetMethod, handleMessage, isAllowAnonymousUsers, isMethodProtected, setAllowAnonymousUsers
      • Methods inherited from class org.apache.cxf.phase.AbstractPhaseInterceptor

        addAfter, addAfter, addBefore, addBefore, getAdditionalInterceptors, getAfter, getBefore, getId, getPhase, handleFault, isGET, isRequestor, setAfter, setBefore
    • Method Detail

      • getExpectedRoles

        protected List<String> getExpectedRoles​(Method method)
        Returns a list of expected roles for a given method. This override provide an additional lookup to the default implementation It's now possible resolve role mapping using this syntax: CLASS_NAME.METHOD_NAME
        getExpectedRoles in class
        method - Method
        list, empty if no roles are available