Rob Winch
f01a13aa52
mkdir -p docs/modules/ROOT/ mkdir -p docs/modules/ROOT/pages/ git checkout antora-2.x docs/antora.yml git checkout antora-2.x docs/modules/ROOT/nav.adoc mv docs/manual/src/docs/asciidoc/images docs/modules/ROOT/ mv docs/manual/src/docs/asciidoc/_includes/* docs/modules/ROOT/pages/ cp ~/code/rwinch/spring-reference/*antora* ~/code/spring-projects/spring-security/ mv docs/modules/ROOT/pages/about docs/modules/ROOT/pages/overview
21 lines
921 B
Plaintext
21 lines
921 B
Plaintext
[[servlet-authorization]]
|
|
= Authorization
|
|
The advanced authorization capabilities within Spring Security represent one of the most compelling reasons for its popularity.
|
|
Irrespective of how you choose to authenticate - whether using a Spring Security-provided mechanism and provider, or integrating with a container or other non-Spring Security authentication authority - you will find the authorization services can be used within your application in a consistent and simple way.
|
|
|
|
In this part we'll explore the different `AbstractSecurityInterceptor` implementations, which were introduced in Part I.
|
|
We then move on to explore how to fine-tune authorization through use of domain access control lists.
|
|
|
|
include::architecture.adoc[leveloffset=+1]
|
|
|
|
include::authorize-requests.adoc[leveloffset=+1]
|
|
|
|
include::expression-based.adoc[]
|
|
|
|
include::secure-objects.adoc[]
|
|
|
|
include::method-security.adoc[]
|
|
|
|
include::acls.adoc[]
|
|
|