當前位置: 首頁>>代碼示例>>Java>>正文


Java AccessDeniedException類代碼示例

本文整理匯總了Java中org.springframework.security.access.AccessDeniedException的典型用法代碼示例。如果您正苦於以下問題:Java AccessDeniedException類的具體用法?Java AccessDeniedException怎麽用?Java AccessDeniedException使用的例子?那麽, 這裏精選的類代碼示例或許可以為您提供幫助。


AccessDeniedException類屬於org.springframework.security.access包,在下文中一共展示了AccessDeniedException類的15個代碼示例,這些例子默認根據受歡迎程度排序。您可以為喜歡或者感覺有用的代碼點讚,您的評價將有助於係統推薦出更棒的Java代碼示例。

示例1: handle

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
public void handle(HttpServletRequest httpServletRequest,
                   HttpServletResponse httpServletResponse,
                   AccessDeniedException e) throws IOException {

    Authentication auth = SecurityContextHolder.getContext().getAuthentication();

    // Log access attempts
    if (auth != null) {
        logger.info("User '" + auth.getName() + "' attempted to access the protected URL: "
                + httpServletRequest.getRequestURI());
    }

    // Direct user to access denied page
    httpServletResponse.sendRedirect(httpServletRequest.getContextPath() + "/403");
}
 
開發者ID:ericywl,項目名稱:InfoSys-1D,代碼行數:17,代碼來源:ProfChoperAccessDeniedHandler.java

示例2: decide

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
public void decide(Authentication authentication, Object object, Collection<ConfigAttribute> configAttributes) throws AccessDeniedException, InsufficientAuthenticationException {
    if(null== configAttributes || configAttributes.size() <=0) {
        return;
    }
    ConfigAttribute c;
    String needRole;
    for(Iterator<ConfigAttribute> iter = configAttributes.iterator(); iter.hasNext(); ) {
        c = iter.next();
        needRole = c.getAttribute();
        for(GrantedAuthority ga : authentication.getAuthorities()) {
            if(needRole.trim().equals(ga.getAuthority())) {
                return;
            }
        }
    }
    throw new AccessDeniedException("no right");
}
 
開發者ID:finefuture,項目名稱:data-migration,代碼行數:19,代碼來源:OwnAccessDecisionManager.java

示例3: handle

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
public void handle(Exception exception, HttpServletResponse response) {
  log.debug("Processing exception {}", exception.getMessage(), exception);
  if (!response.isCommitted()) {
    try {
      response.setContentType(MediaType.APPLICATION_JSON_VALUE);

      if (exception instanceof IoTPException) {
        handleThingsboardException((IoTPException) exception, response);
      } else if (exception instanceof AccessDeniedException) {
        handleAccessDeniedException(response);
      } else if (exception instanceof AuthenticationException) {
        handleAuthenticationException((AuthenticationException) exception, response);
      } else {
        response.setStatus(HttpStatus.INTERNAL_SERVER_ERROR.value());
        mapper.writeValue(response.getWriter(), IoTPErrorResponse.of(exception.getMessage(),
            IoTPErrorCode.GENERAL, HttpStatus.INTERNAL_SERVER_ERROR));
      }
    } catch (IOException e) {
      log.error("Can't handle exception", e);
    }
  }
}
 
開發者ID:osswangxining,項目名稱:iotplatform,代碼行數:23,代碼來源:IoTPErrorResponseHandler.java

示例4: handle

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
public void handle(HttpServletRequest request,
				   HttpServletResponse response,
				   AccessDeniedException accessDeniedException) throws IOException, ServletException {
	logger.error(accessDeniedException, accessDeniedException);
	if (!response.isCommitted()) {
		String accept = request.getHeader("Accept");
		if (accept != null && accept.contains("application/json")) {
			logger.warn("The ajax request access is denied.");
			response.setStatus(HttpServletResponse.SC_FORBIDDEN);
			response.flushBuffer();
		}
		else {
			super.handle(request, response, accessDeniedException);
		}
	}
}
 
開發者ID:melthaw,項目名稱:spring-backend-boilerplate,代碼行數:18,代碼來源:AccessDeniedHandlerMvcImpl.java

示例5: configure

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
protected void configure(HttpSecurity http) throws Exception {
    http.exceptionHandling().accessDeniedHandler(new AccessDeniedHandler() {
        @Override
        public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException accessDeniedException) throws IOException, ServletException {
            accessDeniedException.printStackTrace();
        }
    })
            .and()
            .authorizeRequests()
            .antMatchers("/registration").permitAll()
            .anyRequest().authenticated()
            .and()
            .httpBasic()
            .and()
            .csrf().disable()
    ;
}
 
開發者ID:egch,項目名稱:sushi-bar-BE,代碼行數:19,代碼來源:WebSecurityConfig.java

示例6: handle

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
public void handle(HttpServletRequest httpServletRequest,
                   HttpServletResponse httpServletResponse,
                   AccessDeniedException e) throws IOException, ServletException {

    Authentication auth
            = SecurityContextHolder.getContext().getAuthentication();

    if (auth != null) {
        logger.info("User '" + auth.getName()
                + "' attempted to access the protected URL: "
                + httpServletRequest.getRequestURI());
    }

    httpServletResponse.sendRedirect(httpServletRequest.getContextPath() + "/403");

}
 
開發者ID:reljicd,項目名稱:spring-boot-shopping-cart,代碼行數:18,代碼來源:MyAccessDeniedHandler.java

示例7: decide

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
public void decide(Authentication authentication, Object o, Collection<ConfigAttribute> collection)
        throws AccessDeniedException, InsufficientAuthenticationException {
    if (collection == null) {
        return;
    }
    String needRole;
    //遍曆需要的角色,如果一樣,則通過
    CustomerUserDetail userDetail = (CustomerUserDetail) authentication.getPrincipal();
    List<Role> userRoleList = securityService.getUserRoleList(userDetail.getUsername(), userDetail.getAccountType());
    for (ConfigAttribute configAttribute : collection) {
        needRole = configAttribute.getAttribute();
        for (Role role : userRoleList) {
            if (needRole.equals(role.getRoleCode())) {
                return;
            }
        }
    }
    throw new AccessDeniedException("Cannot Access!");
}
 
開發者ID:DomKing,項目名稱:busi-support,代碼行數:21,代碼來源:CustomerAccessDecisionManager.java

示例8: createCondition

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
/**
 * Create condition with replaced subject variables.
 *
 * <p>SpEL condition translated to SQL condition with replacing #returnObject to returnObject
 * and enriching #subject.* from Subject object (see {@link Subject}).
 *
 * <p>As an option, SpEL could be translated to SQL
 * via {@link SpelExpression} method {@code getAST()}
 * with traversing through {@link SpelNode} nodes and building SQL expression.
 *
 * @param authentication the authentication
 * @param privilegeKey the privilege key
 * @param translator the spel translator
 * @return condition if permitted, or null
 */
public String createCondition(Authentication authentication, Object privilegeKey, SpelTranslator translator) {
    if (!hasPermission(authentication, privilegeKey)) {
        throw new AccessDeniedException("Access is denied");
    }

    String roleKey = getRoleKey(authentication);

    Permission permission = getPermission(roleKey, privilegeKey);

    Subject subject = getSubject(roleKey);

    if (!RoleConstant.SUPER_ADMIN.equals(roleKey)
        && permission != null && permission.getResourceCondition() != null) {
        return translator.translate(permission.getResourceCondition().getExpressionString(), subject);
    }
    return null;
}
 
開發者ID:xm-online,項目名稱:xm-commons,代碼行數:33,代碼來源:PermissionCheckService.java

示例9: checkRole

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
private boolean checkRole(Authentication authentication, Object privilege, boolean logPermission) {
    String roleKey = getRoleKey(authentication);

    if (RoleConstant.SUPER_ADMIN.equals(roleKey)) {
        log(logPermission, Level.INFO,
            "access granted: privilege={}, role=SUPER-ADMIN, userKey={}",
            privilege, getUserKey());
        return true;
    }

    if (!roleService.getRoles(TenantContextUtils.getRequiredTenantKeyValue(tenantContextHolder.getContext()))
        .containsKey(roleKey)) {
        log(logPermission, Level.ERROR,
            "access denied: privilege={}, role={}, userKey={} due to role is missing",
            privilege, roleKey, getUserKey());
        throw new AccessDeniedException("Access is denied");
    }

    return false;
}
 
開發者ID:xm-online,項目名稱:xm-commons,代碼行數:21,代碼來源:PermissionCheckService.java

示例10: processAccessDeniedException

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@ExceptionHandler(AccessDeniedException.class)
@ResponseStatus(HttpStatus.FORBIDDEN)
@ResponseBody
public ErrorVM processAccessDeniedException(AccessDeniedException e) {
    log.debug("Access denied", e);
    return new ErrorVM(ErrorConstants.ERR_ACCESS_DENIED, translate(ErrorConstants.ERR_ACCESS_DENIED));
}
 
開發者ID:xm-online,項目名稱:xm-commons,代碼行數:8,代碼來源:ExceptionTranslator.java

示例11: handleAccessDeniedException

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@ExceptionHandler({ AccessDeniedException.class })
public ResponseEntity<Object> handleAccessDeniedException(final Exception ex, final HttpHeaders headers, final WebRequest request) {
	logger.info(ex.getClass().getName());
	logger.error("error", ex);
	//
	final AitException AitException = new AitException(HttpStatus.UNAUTHORIZED, "Acceso no permitido", "Su perfil no cuenta con los permisos necesarios para acceder al servicio solicitado");
	return handleExceptionInternal(ex, AitException, headers, AitException.getStatus(), request);
}
 
開發者ID:allianzit,項目名稱:ait-platform,代碼行數:9,代碼來源:AitRestExceptionHandler.java

示例12: checkPermissionAnyAuthority

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
public void checkPermissionAnyAuthority(UserContext user, Object targetObject, Right right, Qualifiable... filter) throws AccessDeniedException {
	if (user == null)
		throw new AccessDeniedException(MSG.noAuthentication(right == null ? "NULL" : right.toString()));
	AccessDeniedException ret = null;
	authorities: for (UserAuthority authority: user.getAuthorities()) {
		for (Qualifiable q: filter)
			if (!authority.hasQualifier(q)) continue authorities;
		try {
			checkPermission(new UserContextWrapper(user, authority), targetObject, right);
			return;
		} catch (AccessDeniedException e) {
			if (ret == null) ret = e;
		}
	}
	throw (ret != null ? ret : new AccessDeniedException(MSG.noMatchingAuthority(right.toString())));
}
 
開發者ID:Jenner4S,項目名稱:unitimes,代碼行數:18,代碼來源:UniTimePermissionCheck.java

示例13: deleteBranch

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@RequestMapping(value = "/apps/{appId}/envs/{env}/clusters/{clusterName}/namespaces/{namespaceName}/branches/{branchName}", method = RequestMethod.DELETE)
public void deleteBranch(@PathVariable String appId,
                         @PathVariable String env,
                         @PathVariable String clusterName,
                         @PathVariable String namespaceName,
                         @PathVariable String branchName) {

  boolean canDelete = permissionValidator.hasReleaseNamespacePermission(appId, namespaceName) ||
                      (permissionValidator.hasModifyNamespacePermission(appId, namespaceName) &&
                       releaseService.loadLatestRelease(appId, Env.valueOf(env), branchName, namespaceName) == null);


  if (!canDelete) {
    throw new AccessDeniedException("Forbidden operation. "
                                    + "Caused by: 1.you don't have release permission "
                                    + "or 2. you don't have modification permission "
                                    + "or 3. you have modification permission but branch has been released");
  }

  namespaceBranchService.deleteBranch(appId, Env.valueOf(env), clusterName, namespaceName, branchName);

}
 
開發者ID:dewey-its,項目名稱:apollo-custom,代碼行數:23,代碼來源:NamespaceBranchController.java

示例14: checkError

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
protected void checkError(HttpServletRequest request, HttpServletResponse response, Throwable t) throws IOException {
	if (t instanceof NoSuchBeanDefinitionException) {
		sLog.info("Service " + getReference(request) + " not known.");
		sendError(request, response, HttpServletResponse.SC_BAD_REQUEST, t);
	} else if (t instanceof IllegalArgumentException) {
		sLog.info(t.getMessage());
		sendError(request, response, HttpServletResponse.SC_BAD_REQUEST, t);
	} else if (t instanceof PageAccessException || t instanceof AccessDeniedException) {
		sLog.info(t.getMessage());
		if (!getSessionContext().isAuthenticated() || getSessionContext().getUser() instanceof AnonymousUserContext) {
			response.setHeader("WWW-Authenticate", "Basic");
			sendError(request, response, HttpServletResponse.SC_UNAUTHORIZED, t);
		} else {
			sendError(request, response, HttpServletResponse.SC_FORBIDDEN, t);	
		}
	} else {
		sLog.warn(t.getMessage(), t);
		sendError(request, response, HttpServletResponse.SC_INTERNAL_SERVER_ERROR, t);
	}
}
 
開發者ID:Jenner4S,項目名稱:unitimes,代碼行數:21,代碼來源:ApiServlet.java

示例15: decide

import org.springframework.security.access.AccessDeniedException; //導入依賴的package包/類
@Override
public void decide(Authentication authentication, Object object, Collection<ConfigAttribute> configAttributes) throws AccessDeniedException, InsufficientAuthenticationException {
    if (configAttributes == null) {
        return;
    }

    for (ConfigAttribute ca : configAttributes) {
        String needRole = ca.getAttribute();
        //ga 為用戶所被賦予的權限。 needRole 為訪問相應的資源應該具有的權限。
        for (GrantedAuthority ga : authentication.getAuthorities()) {
            if (needRole.trim().equals(ga.getAuthority().trim())) {
                return;
            }
        }
    }

    throw new AccessDeniedException("沒有權限進行操作!");
}
 
開發者ID:jeikerxiao,項目名稱:SpringBootStudy,代碼行數:19,代碼來源:DemoAccessDecisionManager.java


注:本文中的org.springframework.security.access.AccessDeniedException類示例由純淨天空整理自Github/MSDocs等開源代碼及文檔管理平台,相關代碼片段篩選自各路編程大神貢獻的開源項目,源碼版權歸原作者所有,傳播和使用請參考對應項目的License;未經允許,請勿轉載。