Uses of Class
io.helidon.security.integration.webserver.SecurityHandler
Packages that use SecurityHandler
-
Uses of SecurityHandler in io.helidon.security.integration.webserver
Methods in io.helidon.security.integration.webserver that return SecurityHandlerModifier and TypeMethodDescriptionstatic SecurityHandler
WebSecurity.allowAnonymous()
If called, authentication failure will not abort request and will continue as anonymous (defaults to false).SecurityHandler.audit()
Audit this request for any method.static SecurityHandler
WebSecurity.audit()
Whether to audit this request - defaults to false for GET and HEAD methods, true otherwise.SecurityHandler.auditEventType
(String eventType) Override for event-type, defaults to "request".SecurityHandler.auditMessageFormat
(String messageFormat) Override for audit message format, defaults to "%3$s %1$s \"%2$s\" %5$s %6$s requested by %4$s".SecurityHandler.authenticate()
If called, request will go through authentication process - (authentication is disabled by default - it may be enabled as a side effect of other methods, such asrolesAllowed(String...)
.static SecurityHandler
WebSecurity.authenticate()
If called, request will go through authentication process - defaults to false (even if authorize is true).SecurityHandler.authenticationOptional()
If called, authentication failure will not abort request and will continue as anonymous (authentication is not optional by default).SecurityHandler.authenticator
(String explicitAuthenticator) Use a named authenticator (as supported by security - if not defined, default authenticator is used).static SecurityHandler
WebSecurity.authenticator
(String explicitAuthenticator) Use a named authenticator (as supported by security - if not defined, default authenticator is used).SecurityHandler.authorize()
If called, request will go through authorization process - (authorization is disabled by default - it may be enabled as a side effect of other methods, such asrolesAllowed(String...)
.static SecurityHandler
WebSecurity.authorize()
Enable authorization for this route.SecurityHandler.authorizer
(String explicitAuthorizer) Use a named authorizer (as supported by security - if not defined, default authorizer is used, if none defined, all is permitted).static SecurityHandler
WebSecurity.authorizer
(String explicitAuthorizer) Use a named authorizer (as supported by security - if not defined, default authorizer is used, if none defined, all is permitted).SecurityHandler.customObject
(Object object) Register a custom object for security request(s).static SecurityHandler
WebSecurity.enforce()
Return a default instance to create a default enforcement point (or modify the result further).SecurityHandler.queryParam
(String queryParamName, TokenHandler headerHandler) Add a query parameter extraction configuration.SecurityHandler.rolesAllowed
(String... roles) An array of allowed roles for this path - must have a security provider supporting roles (either authentication or authorization provider).static SecurityHandler
WebSecurity.rolesAllowed
(String... roles) An array of allowed roles for this path - must have a security provider supporting roles.static SecurityHandler
WebSecurity.secure()
Secure access using authentication and authorization.SecurityHandler.skipAudit()
Disable auditing of this request.SecurityHandler.skipAuthentication()
If called, request will NOT go through authentication process.SecurityHandler.skipAuthorization()
Skip authorization for this route.Methods in io.helidon.security.integration.webserver with parameters of type SecurityHandlerModifier and TypeMethodDescriptionWebSecurity.securityDefaults
(SecurityHandler defaultHandler) Create a new web security instance using the default handler as base defaults for all handlers used.