@groovy.util.logging.Slf4j @groovy.transform.CompileStatic class RestTokenValidationFilter extends GenericFilterBean
This filter starts the token validation flow. It extracts the token from the configured header name, and pass it to the RestAuthenticationProvider. This filter, when applied, is incompatible with traditional browser-based Spring Security Core redirects. Users have to make sure it's applied only to REST endpoint URL's. If the authentication is successful, the result is stored in the security context and the response is generated by the AuthenticationSuccessHandler. Otherwise, an AuthenticationFailureHandler is called.
| Type | Name and description |
|---|---|
java.lang.Boolean |
active |
RestAuthenticationEventPublisher |
authenticationEventPublisher |
AuthenticationFailureHandler |
authenticationFailureHandler |
AuthenticationSuccessHandler |
authenticationSuccessHandler |
java.lang.Boolean |
enableAnonymousAccess |
java.lang.String |
headerName |
SpringSecurityRestFilterRequestMatcher |
requestMatcher |
RestAuthenticationProvider |
restAuthenticationProvider |
TokenReader |
tokenReader |
java.lang.String |
validationEndpointUrl |
| Constructor and description |
|---|
RestTokenValidationFilter() |
| Type Params | Return Type | Name and description |
|---|---|---|
|
void |
doFilter(ServletRequest request, ServletResponse response, FilterChain chain) |