Package com.vaadin.flow.spring

Class SpringSecurityAutoConfiguration

java.lang.Object

com.vaadin.flow.spring.SpringSecurityAutoConfiguration

@AutoConfiguration
@ConditionalOnClass(org.springframework.security.config.annotation.web.configuration.WebSecurityCustomizer.class)
@EnableConfigurationProperties(VaadinConfigurationProperties.class)
public class SpringSecurityAutoConfiguration
extends Object

Spring boot auto-configuration class for Flow.

Author:

Vaadin Ltd

Constructor Summary

Constructors

Constructor	Description
SpringSecurityAutoConfiguration()

Method Summary

Modifier and Type	Method	Description
com.vaadin.flow.server.auth.AccessAnnotationChecker	accessAnnotationChecker()	Makes the default access annotation checker available for security configuration.
com.vaadin.flow.server.auth.AccessPathChecker	accessPatchChecker(VaadinConfigurationProperties vaadinProperties, org.springframework.security.web.access.WebInvocationPrivilegeEvaluator evaluator)	Makes the default route path access checker available for security configuration.
com.vaadin.flow.server.auth.AnnotatedViewAccessChecker	annotatedViewAccessChecker(com.vaadin.flow.server.auth.AccessAnnotationChecker accessAnnotationChecker)	Makes the default annotation based view access checker available for security configuration.
com.vaadin.flow.server.auth.NavigationAccessControl	navigationAccessControl(List<com.vaadin.flow.server.auth.NavigationAccessChecker> accessCheckerList, NavigationAccessControlConfigurer configurer)	Makes the default navigation access control available for security configuration.
NavigationAccessControlInitializer	navigationAccessControlInitializer(com.vaadin.flow.server.auth.NavigationAccessControl accessControl)	Makes the default navigation access control initializer available for security configuration.
RequestUtil	requestUtil()	Makes the request util available.
com.vaadin.flow.server.auth.RoutePathAccessChecker	routePathAccessChecker(com.vaadin.flow.server.auth.AccessPathChecker accessPathChecker)	Makes the default route path access checker available for security configuration.
VaadinDefaultRequestCache	vaadinDefaultRequestCache()	Makes the default request cache available for security configuration.
VaadinRolePrefixHolder	vaadinRolePrefixHolder(Optional<org.springframework.security.config.core.GrantedAuthorityDefaults> grantedAuthorityDefaults)	Makes role prefix holder available for security configuration.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SpringSecurityAutoConfiguration

public SpringSecurityAutoConfiguration()

Method Details

vaadinDefaultRequestCache

@Bean
public VaadinDefaultRequestCache vaadinDefaultRequestCache()

Makes the default request cache available for security configuration.

Returns:

the default request cache

navigationAccessControlInitializer

@Bean
public NavigationAccessControlInitializer navigationAccessControlInitializer(com.vaadin.flow.server.auth.NavigationAccessControl accessControl)

Makes the default navigation access control initializer available for security configuration.

Parameters:

accessControl - the navigation access control

Returns:

the default navigation access control initializer

navigationAccessControl

@Bean
public com.vaadin.flow.server.auth.NavigationAccessControl navigationAccessControl(List<com.vaadin.flow.server.auth.NavigationAccessChecker> accessCheckerList,
 NavigationAccessControlConfigurer configurer)

Makes the default navigation access control available for security configuration.

Parameters:

accessCheckerList - the list of navigation access checkers

configurer - the navigation access control configurer

Returns:

the default navigation access control.

annotatedViewAccessChecker

@Bean
public com.vaadin.flow.server.auth.AnnotatedViewAccessChecker annotatedViewAccessChecker(com.vaadin.flow.server.auth.AccessAnnotationChecker accessAnnotationChecker)

Makes the default annotation based view access checker available for security configuration.

Parameters:

accessAnnotationChecker - the AccessAnnotationChecker bean to use

Returns:

the default view access checker

routePathAccessChecker

@Bean
public com.vaadin.flow.server.auth.RoutePathAccessChecker routePathAccessChecker(com.vaadin.flow.server.auth.AccessPathChecker accessPathChecker)

Makes the default route path access checker available for security configuration.

Parameters:

accessPathChecker - the AccessPathChecker bean to use

Returns:

the default route path access checker

accessPatchChecker

@Bean
@ConditionalOnMissingBean
public com.vaadin.flow.server.auth.AccessPathChecker accessPatchChecker(VaadinConfigurationProperties vaadinProperties,
 @Lazy
 org.springframework.security.web.access.WebInvocationPrivilegeEvaluator evaluator)

Makes the default route path access checker available for security configuration.

Parameters:

vaadinProperties - vaadin configuration properties

evaluator - URI privileges evaluator

Returns:

the default route path access checker

accessAnnotationChecker

@Bean
@ConditionalOnMissingBean
public com.vaadin.flow.server.auth.AccessAnnotationChecker accessAnnotationChecker()

Makes the default access annotation checker available for security configuration.

Fusion makes this bean available by default but if Fusion is excluded from the project, we make it available here

Returns:

the default access annotation checker

requestUtil

@Bean
public RequestUtil requestUtil()

Makes the request util available.

Returns:

the request util

vaadinRolePrefixHolder

@Bean
@ConditionalOnMissingBean
public VaadinRolePrefixHolder vaadinRolePrefixHolder(Optional<org.springframework.security.config.core.GrantedAuthorityDefaults> grantedAuthorityDefaults)

Makes role prefix holder available for security configuration.

Parameters:

grantedAuthorityDefaults - Optional granted authority defaults bean for the default role prefix

Returns:

the role prefix holder