Examples of org.springframework.security.access.ConfigAttribute

• org.springframework.security.access.ConfigAttribute
  Stores a security system related configuration attribute.

  When an {@link org.springframework.security.access.intercept.AbstractSecurityInterceptor}is set up, a list of configuration attributes is defined for secure object patterns. These configuration attributes have special meaning to a {@link RunAsManager}, {@link AccessDecisionManager} or AccessDecisionManager delegate.

  Stored at runtime with other ConfigAttributes for the same secure object target. @author Ben Alex

    int result = ACCESS_ABSTAIN;

    if (authentication.getDetails() instanceof OAuthAuthenticationDetails) {
      OAuthAuthenticationDetails details = (OAuthAuthenticationDetails) authentication.getDetails();
      for (Object configAttribute : configAttributes) {
        ConfigAttribute attribute = (ConfigAttribute) configAttribute;

        if (ConsumerSecurityConfig.PERMIT_ALL_ATTRIBUTE.equals(attribute)) {
          return ACCESS_GRANTED;
        }
        else if (ConsumerSecurityConfig.DENY_ALL_ATTRIBUTE.equals(attribute)) {

    public void decide(FilterInvocation invocation, Collection<ConfigAttribute> config) throws IOException, ServletException {

        Iterator<ConfigAttribute> attrs = config.iterator();

        while (attrs.hasNext()) {
            ConfigAttribute attribute = attrs.next();
            if (ANY_CHANNEL.equals(attribute.getAttribute())) {
                return;
            }
        }

        for (ChannelProcessor processor : channelProcessors) {

    Iterator iter = attributes.iterator();
    Collection<? extends GrantedAuthority> authorities = authentication
        .getAuthorities();

    while (iter.hasNext()) {
      ConfigAttribute attribute = (ConfigAttribute) iter.next();

      if (this.supports(attribute)) {
        result = ACCESS_DENIED;

        FilterInvocation filterInvocation = (FilterInvocation) object;

        return;
      }

      for(Map.Entry<String, String> entry : interceptUrl.entrySet()) {
        Collection<ConfigAttribute> atts = new ArrayList<ConfigAttribute>();
            ConfigAttribute ca = null;
            if(entry.getValue()==null) {
              continue;
            }
            for(String configAttribute : entry.getValue().split(",")) {
              ca = new SecurityConfig(configAttribute);

            log.debug(object.toString()); // object is a URL.

          Iterator<ConfigAttribute> ite = configAttributes.iterator();
          while (ite.hasNext()) {

            ConfigAttribute ca = ite.next();
            String needRole = ((SecurityConfig) ca).getAttribute();

            for (GrantedAuthority ga : authentication.getAuthorities()) {
              if (needRole.equals(ga.getAuthority())) { // ga is user's role.

    if(attributes==null){
      return;
    }
    Iterator<ConfigAttribute> iterator = attributes.iterator();
    while(iterator.hasNext()){
      ConfigAttribute configAttribute = iterator.next();
      String needPermission = configAttribute.getAttribute();
      System.out.println("needPermission is "+needPermission);
      for(GrantedAuthority ga:authentication.getAuthorities()){
        if(needPermission.equals(ga.getAuthority())){
          return;
        }

        for(Menu menu:menus){
          Collection<ConfigAttribute> configAttributes = new ArrayList<ConfigAttribute>();
          List<String> tmp = map.get(menu.getMenu_url());
          if(tmp!=null){
            for(String temp:tmp){
              ConfigAttribute configAttribute = new SecurityConfig(temp);
              configAttributes.add(configAttribute);
            }
            resourceMap.put(menu.getMenu_url(), configAttributes);
          }
        }