本文整理汇总了Java中org.springframework.security.oauth2.provider.expression.OAuth2WebSecurityExpressionHandler类的典型用法代码示例。如果您正苦于以下问题:Java OAuth2WebSecurityExpressionHandler类的具体用法?Java OAuth2WebSecurityExpressionHandler怎么用?Java OAuth2WebSecurityExpressionHandler使用的例子?那么恭喜您, 这里精选的类代码示例或许可以为您提供帮助。
OAuth2WebSecurityExpressionHandler类属于org.springframework.security.oauth2.provider.expression包,在下文中一共展示了OAuth2WebSecurityExpressionHandler类的4个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的Java代码示例。
示例1: configure
import org.springframework.security.oauth2.provider.expression.OAuth2WebSecurityExpressionHandler; //导入依赖的package包/类
@Override
protected void configure(HttpSecurity http) throws Exception {
// @formatter:off
http
.authorizeRequests()
.expressionHandler(new OAuth2WebSecurityExpressionHandler())
.antMatchers("/**").fullyAuthenticated()
.and()
.requestMatchers()
.antMatchers("/photos/**")
.and()
.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.NEVER)
.and()
.exceptionHandling().accessDeniedHandler(new OAuth2AccessDeniedHandler())
.and()
.apply(new OAuth2ResourceServerConfigurer())
.tokenStore(tokenStore);
// @formatter:on
}
示例2: configure
import org.springframework.security.oauth2.provider.expression.OAuth2WebSecurityExpressionHandler; //导入依赖的package包/类
@Override
protected void configure(HttpSecurity http) throws Exception {
// @formatter:off
http
.authorizeRequests()
.expressionHandler(new OAuth2WebSecurityExpressionHandler())
.antMatchers("/photos").access("#oauth2.denyOAuthClient() and hasRole('ROLE_USER') or #oauth2.hasScope('read')")
.antMatchers("/photos/trusted/**").access("#oauth2.denyOAuthClient() and hasRole('ROLE_USER') or #oauth2.hasScope('trust')")
.antMatchers("/photos/user/**").access("#oauth2.denyOAuthClient() and hasRole('ROLE_USER') or #oauth2.hasScope('trust')")
.antMatchers("/photos/**").access("#oauth2.denyOAuthClient() and hasRole('ROLE_USER') or #oauth2.hasScope('read')")
.regexMatchers(HttpMethod.DELETE, "/oauth/users/([^/].*?)/tokens/.*")
.access("#oauth2.clientHasRole('ROLE_CLIENT') and (hasRole('ROLE_USER') or #oauth2.isClient()) and #oauth2.hasScope('write')")
.regexMatchers(HttpMethod.GET, "/oauth/users/.*")
.access("#oauth2.clientHasRole('ROLE_CLIENT') and (hasRole('ROLE_USER') or #oauth2.isClient()) and #oauth2.hasScope('read')")
.regexMatchers(HttpMethod.GET, "/oauth/clients/.*")
.access("#oauth2.clientHasRole('ROLE_CLIENT') and #oauth2.isClient() and #oauth2.hasScope('read')")
.and()
.requestMatchers()
.antMatchers("/photos/**", "/oauth/users/**", "/oauth/clients/**")
.and()
.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.NEVER)
.and()
.exceptionHandling().accessDeniedHandler(new OAuth2AccessDeniedHandler())
.and()
// CSRF protection is awkward for machine clients
.csrf()
.requireCsrfProtectionMatcher(new AntPathRequestMatcher("/oauth/**")).disable()
.apply(new OAuth2ResourceServerConfigurer()).tokenStore(tokenStore)
.resourceId(SPARKLR_RESOURCE_ID);
// @formatter:on
}
示例3: oAuth2WebSecurityExpressionHandler
import org.springframework.security.oauth2.provider.expression.OAuth2WebSecurityExpressionHandler; //导入依赖的package包/类
@Bean
public OAuth2WebSecurityExpressionHandler oAuth2WebSecurityExpressionHandler(ApplicationContext applicationContext){
OAuth2WebSecurityExpressionHandler expressionHandler = new OAuth2WebSecurityExpressionHandler();
expressionHandler.setApplicationContext(applicationContext);
return expressionHandler;
}
示例4: getBeanClass
import org.springframework.security.oauth2.provider.expression.OAuth2WebSecurityExpressionHandler; //导入依赖的package包/类
@Override
protected Class<?> getBeanClass(Element element) {
return OAuth2WebSecurityExpressionHandler.class;
}