spring - get method name in Pre/Post-Authorize -

-

I am writing my permission avilator for Spring Security and the name of the name that I am trying to do For example, for example, without the method name in the picture, I have something like: 

  PostAuthorized ("Hapitation (return object, read ')" Event getEvent (int evendId) {...}   
 and  
  display in public boolean (authentication certification, object targetdomain Bjekt, object permission) {if (targetDomainObject inst. Event) {return Display (authentication, Lcshidomen object permission); } Return targetDiman object == zero; }   
 But I need the name of the method "getEvent" which is available in that. I can pass it manually in the entry call, such as:   @PostAuthorize ("Promotion (new com.example.AuthZObject (returnObject, 'getEvent'), 'Read ') ") Event getEvent (int eventId);   
 But is there more automated way to do this?   
 
 @ Ralph is the very right idea here is the first step to implement custom methodology of MethodSecurityExpressionOperations on that method And can use it to evaluate the expression. For example:  
  Public class MyMethodSecurityExpressionRoot enhances ExpressionRoot implementation MethodSecurityExpressionOperations {Private Object Filter Object; Private object return objects; Private object target; Personal method method; Public MyMethodSecurityExpressionRoot (Authentication A) {Super (A); } // Method Allow to set public zero sethead (method i) {this.method = m; } // optionally enter the expression to expose the public method getMethod () {return method; } // Make a method that is in the public boolean for you with transparent form of the name of the // method with check. Vidyaprashan (object target, object intake) {Boolean results = false; // Your calculation method uses member variables // i.e. method.getName () and are given in logic / of course you can appoint any other object if you wish // // return is Promotion (new com .example.AuthZObject (target, method.getName ()), permission);); // You can either argue get results here; } // Apply the interface and provide the public Zero Set Filter Object (object filter object) to {this.filterObject = filterObject; } Public object getFilterObject () {return filterObject; } Public Zero Set Return Object (object return object) {this.returnObject = returnObject; } Public object getReturnObject () {return return object; } Public zero set this (object target) {this.target = target; } Public object getThis () {return target; }}   
 Expand the default default method Security Expand handler and use the custom expression root.  
  Public class MySecurityExpressionHandler DefaultMexicableExpressExpressHandler increases {@Override Secure MethodSecurityExpressionOperations createSecurityExpressionRoot (Authentication Authentication, Method Investment Charge) {MyMethodSecurityExpressionRoot Root = New MyMethodSecurityExpressionRoot (Authentication); Root.setThis (invocation.getThis ()); Root.setPermissionEvaluator (getPermissionEvaluator ()); Root.setTrustResolver (new AuthenticationTrustResolverImpl ()); Root.setRoleHierarchy (getRoleHierarchy ()); root.setMethod (invocation.getMethod ()); Return route; Once you have configured MySecurityExpressionHandler, you should be able to use the following:  
  @PostAuthorize ("hasMethodPermission" (return objects, 'read') ") Event getEvent (event) Event);

Comments

Post a Comment

Popular posts from this blog

Pass DB Connection parameters to a Kettle a.k.a PDI table Input step dynamically from Excel -

-
Image
I have a requirement whenever I run my own kettle, dynamically took database connection parameters from an excel source Every run should go. I have an Excel column names: hostname, username, database, password. I want to pass these connection parameters to my table input stage dynamically whenever it runs the job. This is what I was trying to do. You can get it Connection parameters from the DB reading source (for example Excel or a CSV file in my example) < / Li> Store the parameters in the variable Using the variable in your connection's settings. Setting Variables Create another conversion for (you can not do it in the same conversion Uses): set variables element variable: The element that reads / writes your data creates a new connection and sets the connection parameter using $ {variable name_} Note that you will need to type in the field field in the field $ {password} Also keep in mind that this can be a security problem as the
Read more

multithreading - PhantomJS-Node in a for Loop -

-
I am trying to implement a screen-scraps application that opens a URL in which a parameter changes as it is for a loop: var data = [ '100', '101', '102', '103', '104']; (Var indexA = 0; indexA & lt; data.length; indexA ++) for {Phantom Generation ({'port': freeport}, function (pH) {ph.create page (function (page) {page.open ("http: //...++ data [index B] +" ... " , Status {console.log ("open site:" + data [index B], position); / * OLD * / indexB ++; page evaluation (function () {// page scrape and an object Return}, function {console.log (result.dataRequest); // here is the problem}); / * new and fixed * / indexB ++} first console Logs it: Open Site: 100 Success Opens Site: 101 Success B Ola Site: 102 Success Opening Site: 103 Success Opened Site: 104 Success Which is good. Data is verified in scrap HTML and from index to array Matches. So in page 101 I scrap '101 and retrieve' and pu
Read more

c++ - MATLAB .m file to .mex file using Matlab Compiler -

-
I know that it can speak as a very famous topic, but something that helps me with it Not found This scenario is: I have my functions function, no matter what's inside, it's a generic function that may depend on other toolboxes. Does. Has input and output; I want to generate the same myFun.mex function; : Lib myFun This way I get some new files: libmyfun.c libmyfun.dll Libmyfun.exp libmyfun.exports libmyfun .h libmyfun.lib Reading around and I think that Creating a myfun.cpp that is very famous is included: / * gateway function * / zero max function (ent NLHS, MXARRA * PLS [], int NRHS, CONST M Xeray * PHS []) Here is the Variable Deals * / / * code here * /} I have tried to do this and are called Regular of Max Generation: Max ('- v', 'myfun.cpp') But I get many errors, and I should say that my myfun.cpp copy / Paste Function is where I have a lot of doubts ... especially on input / output management. My q
Read more