public interface AccessDecisionVoter extends Serializable
SecurityViolation
to the given result-set,
if a restriction is detected.
A voter has to be used in combination with
Secured
.
A voter can use every scope which is active. It's recommended to use
ApplicationScoped
for stateless voters and e.g.
RequestScoped
otherwise.Modifier and Type | Method and Description |
---|---|
Set<SecurityViolation> |
checkPermission(AccessDecisionVoterContext accessDecisionVoterContext)
Checks the permission for the given
InvocationContext . |
@DefaultCallback Set<SecurityViolation> checkPermission(AccessDecisionVoterContext accessDecisionVoterContext)
InvocationContext
.
If a violation is detected, it should be added to a set which gets returned by the method.accessDecisionVoterContext
- current access-decision-voter-contextCopyright © 2015 The Apache Software Foundation. All rights reserved.