Package net.officefloor.web.security

Annotation Interface HttpAccess

@Documented @Retention(RUNTIME) @Target(METHOD) public @interface HttpAccess

Annotation on a ManagedFunction Method to control access.

Should no meta-data be provided on this Annotation, then access is granted if authenticated to any role.

Author:
Daniel Sagenschneider

  • Optional Element Summary

    Optional Elements
    Modifier and Type
    Optional Element
    Description
    String[]
    ifAllRoles
    Provides means to allow access if have ALL roles.
    String[]
    ifRole
    Provides means to allow access if have role in any one of the configured roles.
    String
    withHttpSecurity
    Provides qualifier of which HttpSecurity to use for access control.

  • Element Details

    • withHttpSecurity

      String withHttpSecurity
      Provides qualifier of which HttpSecurity to use for access control.
      Returns:
      Qualifier of which HttpSecurity to use for access control. Leaving blank allows any configured HttpSecurity.
      Default:
      ""

    • ifRole

      String[] ifRole
      Provides means to allow access if have role in any one of the configured roles.
      Returns:
      Multiple roles that must support at least one for access to the ManagedFunction Method.
      Default:
      {}

    • ifAllRoles

      String[] ifAllRoles
      Provides means to allow access if have ALL roles.
      Returns:
      All roles that must be supported for access to the ManagedFunction Method.
      Default:
      {}