JSecurity
A B C D E F G H I J K L M N O P Q R S T U V W X

A

AbstractAuthenticationStrategy - Class in org.jsecurity.authc.pam
Abstract base implementation for JSecurity's concrete ModularAuthenticationStrategy implementations.
AbstractAuthenticationStrategy() - Constructor for class org.jsecurity.authc.pam.AbstractAuthenticationStrategy
 
AbstractAuthenticator - Class in org.jsecurity.authc
Superclass for almost all Authenticator implementations that performs the common work around authentication attempts.
AbstractAuthenticator() - Constructor for class org.jsecurity.authc.AbstractAuthenticator
Default no-argument constructor.
AbstractHash - Class in org.jsecurity.crypto.hash
Provides a base for all JSecurity Hash algorithms with support for salts and multiple hash iterations.
AbstractHash() - Constructor for class org.jsecurity.crypto.hash.AbstractHash
Creates an new instance without any of its properties set (no hashing is performed).
AbstractHash(Object) - Constructor for class org.jsecurity.crypto.hash.AbstractHash
Creates a hash of the specified source with no salt using a single hash iteration.
AbstractHash(Object, Object) - Constructor for class org.jsecurity.crypto.hash.AbstractHash
Creates a hash of the specified source using the given salt using a single hash iteration.
AbstractHash(Object, Object, int) - Constructor for class org.jsecurity.crypto.hash.AbstractHash
Creates a hash of the specified source using the given salt a total of hashIterations times.
AbstractLdapRealm - Class in org.jsecurity.realm.ldap
A Realm that authenticates with an LDAP server to build the Subject for a user.
AbstractLdapRealm() - Constructor for class org.jsecurity.realm.ldap.AbstractLdapRealm
 
AbstractRememberMeManager - Class in org.jsecurity.subject
Abstract implementation of the RememberMeManager interface that handles serialization and encryption of the remembered user identity.
AbstractRememberMeManager() - Constructor for class org.jsecurity.subject.AbstractRememberMeManager
 
AbstractResource - Class in org.jsecurity.io
//TODO - complete JavaDoc
AbstractResource() - Constructor for class org.jsecurity.io.AbstractResource
 
AbstractResource(String) - Constructor for class org.jsecurity.io.AbstractResource
 
AbstractResource(InputStream) - Constructor for class org.jsecurity.io.AbstractResource
 
AbstractSessionManager - Class in org.jsecurity.session.mgt
TODO - complete JavaDoc
AbstractSessionManager() - Constructor for class org.jsecurity.session.mgt.AbstractSessionManager
 
AbstractValidatingSessionManager - Class in org.jsecurity.session.mgt
Default business-tier implementation of the ValidatingSessionManager interface.
AbstractValidatingSessionManager() - Constructor for class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
AbstractWebAttribute<T> - Class in org.jsecurity.web.attr
Convenient superclass for implementations of the WebAttribute interface.
AbstractWebAttribute() - Constructor for class org.jsecurity.web.attr.AbstractWebAttribute
 
AbstractWebAttribute(String) - Constructor for class org.jsecurity.web.attr.AbstractWebAttribute
 
AbstractWebAttribute(String, boolean) - Constructor for class org.jsecurity.web.attr.AbstractWebAttribute
 
AbstractWebAttribute(String, Class<? extends PropertyEditor>) - Constructor for class org.jsecurity.web.attr.AbstractWebAttribute
 
AbstractWebAttribute(String, boolean, Class<? extends PropertyEditor>) - Constructor for class org.jsecurity.web.attr.AbstractWebAttribute
 
AccessControlFilter - Class in org.jsecurity.web.filter
Superclass for any filter that controls access to a resource and may redirect the user to the login page if they are not authenticated.
AccessControlFilter() - Constructor for class org.jsecurity.web.filter.AccessControlFilter
 
Account - Interface in org.jsecurity.authc
An Account is a convenience interface that extends both AuthenticationInfo and AuthorizationInfo and represents authentication and authorization for a single account in a single Realm.
accountAndRoleCachesCreated() - Method in class org.jsecurity.realm.SimpleAccountRealm
 
accountAndRoleCachesCreated() - Method in class org.jsecurity.realm.text.TextConfigurationRealm
 
AccountException - Exception in org.jsecurity.authc
Exception thrown due to a problem with the account under which an authentication attempt is being executed.
AccountException() - Constructor for exception org.jsecurity.authc.AccountException
Creates a new AccountException.
AccountException(String) - Constructor for exception org.jsecurity.authc.AccountException
Constructs a new AccountException.
AccountException(Throwable) - Constructor for exception org.jsecurity.authc.AccountException
Constructs a new AccountException.
AccountException(String, Throwable) - Constructor for exception org.jsecurity.authc.AccountException
Constructs a new AccountException.
accountExists(String) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
ACTIVE_SESSION_CACHE_NAME - Static variable in class org.jsecurity.session.mgt.eis.CachingSessionDAO
The default active sessions cache name, equal to jsecurity-activeSessionCache.
ActiveDirectoryRealm - Class in org.jsecurity.realm.activedirectory
An Realm that authenticates with an active directory LDAP server to determine the roles for a particular user.
ActiveDirectoryRealm() - Constructor for class org.jsecurity.realm.activedirectory.ActiveDirectoryRealm
 
add(AuthenticationListener) - Method in class org.jsecurity.authc.AbstractAuthenticator
 
add(AuthenticationListener) - Method in interface org.jsecurity.authc.AuthenticationListenerRegistrar
Registeres a single listener that wishes to be notified during the authentication process.
add(SimpleRole) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
add(Permission) - Method in class org.jsecurity.authz.SimpleRole
 
add(AuthenticationListener) - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
 
add(SessionListener) - Method in class org.jsecurity.mgt.SessionsSecurityManager
Asserts the internal delegate SessionManager instance supports session listener registration and then adds the listener to the delegate instance.
add(SimpleAccount) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
add(SimpleRole) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
add(SessionListener) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
add(SessionListener) - Method in interface org.jsecurity.session.SessionListenerRegistrar
Registeres a single listener that wishes to be notified during Session lifecycles.
add(Object, String) - Method in interface org.jsecurity.subject.MutablePrincipalCollection
Adds the given principal to this collection.
add(Object, String) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
addAccount(String, String) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
addAccount(String, String, String...) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
addAll(Collection<SimpleRole>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
addAll(Collection<Permission>) - Method in class org.jsecurity.authz.SimpleRole
 
addAll(Collection, String) - Method in interface org.jsecurity.subject.MutablePrincipalCollection
Adds all of the principals in the given collection to this collection.
addAll(PrincipalCollection) - Method in interface org.jsecurity.subject.MutablePrincipalCollection
Adds all of the principals from the given principal collection to this collection.
addAll(Collection, String) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
addAll(PrincipalCollection) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
addObjectPermission(Permission) - Method in class org.jsecurity.authc.SimpleAccount
Assigns an object-based permission directly to this Account (not any of its realms).
addObjectPermission(Permission) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Adds (assigns) a permission to those directly associated with the account.
addObjectPermissions(Collection<Permission>) - Method in class org.jsecurity.authc.SimpleAccount
Assigns one or more object-based permissions directly to this Account (not any of its realms).
addObjectPermissions(Collection<Permission>) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Adds (assigns) multiple permissions to those associated directly with the account.
addPrivateRole(PrincipalCollection, Collection<Permission>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
addRole(String) - Method in class org.jsecurity.authc.SimpleAccount
Adds a role to this Account's set of assigned roles.
addRole(Collection<String>) - Method in class org.jsecurity.authc.SimpleAccount
Adds one or more roles to this Account's set of assigned roles.
addRole(String) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Adds (assigns) a role to those associated with the account.
addRole(String) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
addRole(String) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
addRoles(Collection<String>) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Adds (assigns) multiple roles to those associated with the account.
addRoles(Set<String>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
addStringPermission(String) - Method in class org.jsecurity.authc.SimpleAccount
Assigns a String-based permission directly to this Account (not to any of its realms).
addStringPermission(String) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Adds (assigns) a permission to those directly associated with the account.
addStringPermissions(Collection<String>) - Method in class org.jsecurity.authc.SimpleAccount
Assigns one or more string-based permissions directly to this Account (not to any of its realms).
addStringPermissions(Collection<String>) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Adds (assigns) multiple permissions to those associated directly with the account.
AdviceFilter - Class in org.jsecurity.web.servlet
A Servlet Filter that enables AOP-style advice for a SerlvetRequest via preHandle, postHandle, and afterCompletion hooks.
AdviceFilter() - Constructor for class org.jsecurity.web.servlet.AdviceFilter
 
afterAllAttempts(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.authc.pam.AbstractAuthenticationStrategy
Simply returns the aggregate argument without modification.
afterAllAttempts(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.authc.pam.AtLeastOneSuccessfulModularAuthenticationStrategy
Ensures that the aggregate method argument is not null and aggregate.
afterAllAttempts(AuthenticationToken, AuthenticationInfo) - Method in interface org.jsecurity.authc.pam.ModularAuthenticationStrategy
Method invoked by the ModularAuthenticator signifying that all of its configured Realms have been consulted for account data, allowing post-proccessing after all realms have completed.
afterAttempt(Realm, AuthenticationToken, AuthenticationInfo, AuthenticationInfo, Throwable) - Method in class org.jsecurity.authc.pam.AbstractAuthenticationStrategy
Base implementation that will aggregate the specified singleRealmInfo into the aggregateInfo and then returns the aggregate.
afterAttempt(Realm, AuthenticationToken, AuthenticationInfo, AuthenticationInfo, Throwable) - Method in class org.jsecurity.authc.pam.AllSuccessfulModularAuthenticationStrategy
Merges the specified info into the aggregate argument and returns it (just as the parent implementation does), but additionally ensures the following: if the Throwable argument is not null, re-throws it to immediately cancel the authentication process, since this strategy requires all realms to authenticate successfully.
afterAttempt(Realm, AuthenticationToken, AuthenticationInfo, AuthenticationInfo, Throwable) - Method in interface org.jsecurity.authc.pam.ModularAuthenticationStrategy
Method invoked by the ModularAuthenticator just after the given realm has been consulted for authentication, allowing post-authentication-attempt logic for that realm only.
afterAuthorizationCacheSet() - Method in class org.jsecurity.realm.AuthorizingRealm
 
afterAuthorizationCacheSet() - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
afterAuthorizationCacheSet() - Method in class org.jsecurity.realm.SimpleAccountRealm
 
afterBound(String, Object) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
afterCacheManagerSet() - Method in class org.jsecurity.mgt.CachingSecurityManager
Template callback to notify subclasses that a CacheManager has been set and is available for use via the getCacheManager() method.
afterCacheManagerSet() - Method in class org.jsecurity.mgt.RealmSecurityManager
Simply calls applyCacheManagerToRealms() to allow the newly set CacheManager to be propagated to the internal collection of Realm that would need to use it.
afterCacheManagerSet() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Calls super.afterCacheManagerSet() and then immediately calls applyCacheManagerToSessionManager() to ensure the CacheManager is applied to the SessionManager as necessary.
afterCacheManagerSet() - Method in class org.jsecurity.realm.AuthorizingRealm
 
afterCacheManagerSet() - Method in class org.jsecurity.realm.CachingRealm
 
afterCompletion(ServletRequest, ServletResponse, Exception) - Method in class org.jsecurity.web.servlet.AdviceFilter
Called in all cases in a finally block even if preHandle returns false or if an exception is thrown during filter chain processing.
afterPropertiesSet() - Method in class org.jsecurity.spring.security.interceptor.AuthorizationAttributeSourceAdvisor
 
afterRoleCacheSet() - Method in class org.jsecurity.realm.SimpleAccountRealm
 
afterRoleCacheSet() - Method in class org.jsecurity.realm.text.PropertiesRealm
 
afterSecurityManagerSet(Map<String, Map<String, String>>) - Method in class org.jsecurity.config.IniConfiguration
 
afterSecurityManagerSet(Map<String, Map<String, String>>) - Method in class org.jsecurity.web.config.IniWebConfiguration
This implementation: First builds the filter instances by processing the [filters] section Builds a collection filter chains according to the definitions in the [urls] section Initializes the filter instances in the order in which they were defined
afterSessionValidationEnabled() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
afterUnbound(String, Object) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
ALGORITHM_NAME - Static variable in class org.jsecurity.crypto.hash.Md2Hash
 
ALGORITHM_NAME - Static variable in class org.jsecurity.crypto.hash.Md5Hash
 
ALGORITHM_NAME - Static variable in class org.jsecurity.crypto.hash.Sha1Hash
 
ALGORITHM_NAME - Static variable in class org.jsecurity.crypto.hash.Sha256Hash
 
ALGORITHM_NAME - Static variable in class org.jsecurity.crypto.hash.Sha384Hash
 
ALGORITHM_NAME - Static variable in class org.jsecurity.crypto.hash.Sha512Hash
 
AllowAllCredentialsMatcher - Class in org.jsecurity.authc.credential
A credentials matcher that always returns true when matching credentials no matter what arguments are passed in.
AllowAllCredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.AllowAllCredentialsMatcher
 
AllPermission - Class in org.jsecurity.authz.permission
An all AllPermission instance is one that always implies any other permission; that is, its implies method always returns true.
AllPermission() - Constructor for class org.jsecurity.authz.permission.AllPermission
 
AllSuccessfulModularAuthenticationStrategy - Class in org.jsecurity.authc.pam
ModularAuthenticationStrategy implementation that requires all configured realms to successfully process the submitted AuthenticationToken during the log-in attempt.
AllSuccessfulModularAuthenticationStrategy() - Constructor for class org.jsecurity.authc.pam.AllSuccessfulModularAuthenticationStrategy
 
ALREADY_FILTERED_SUFFIX - Static variable in class org.jsecurity.web.servlet.OncePerRequestFilter
Suffix that gets appended to the filter name for the "already filtered" request attribute.
annotationClass - Variable in class org.jsecurity.aop.AnnotationHandler
The type of annotation this handler will process.
AnnotationHandler - Class in org.jsecurity.aop
Base support class for implementations that reads and processes JSR-175 annotations.
AnnotationHandler(Class<? extends Annotation>) - Constructor for class org.jsecurity.aop.AnnotationHandler
Constructs an AnnotationHandler who processes annotations of the specified type.
AnnotationMethodInterceptor - Class in org.jsecurity.aop
MethodInterceptor that inspects a specific annotation on the method invocation before continuing its execution.
AnnotationMethodInterceptor(AnnotationHandler) - Constructor for class org.jsecurity.aop.AnnotationMethodInterceptor
Constructs an AnnotationMethodInterceptor with the AnnotationHandler that will be used to process annotations of a corresponding type.
AnnotationsAuthorizingMethodInterceptor - Class in org.jsecurity.authz.aop
An AnnotationsAuthorizingMethodInterceptor is a MethodInterceptor that asserts a given method is authorized to execute based on one or more configured AuthorizingAnnotationMethodInterceptors.
AnnotationsAuthorizingMethodInterceptor() - Constructor for class org.jsecurity.authz.aop.AnnotationsAuthorizingMethodInterceptor
Default no-argument constructor that defaults the methodInterceptors attribute to contain two interceptors by default - the RoleAnnotationMethodInterceptor and the PermissionAnnotationMethodInterceptor to support role and permission annotations.
AnonymousFilter - Class in org.jsecurity.web.filter.authc
Filter that allows access to a path immeidately without performing security checks of any kind.
AnonymousFilter() - Constructor for class org.jsecurity.web.filter.authc.AnonymousFilter
 
AntPathMatcher - Class in org.jsecurity.util
PathMatcher implementation for Ant-style path patterns.
AntPathMatcher() - Constructor for class org.jsecurity.util.AntPathMatcher
 
AopAllianceAnnotationsAuthorizingMethodInterceptor - Class in org.jsecurity.spring.security.interceptor
Allows JSecurity Annotations to work in any AOP Alliance specific implementation environment (for example, Spring).
AopAllianceAnnotationsAuthorizingMethodInterceptor() - Constructor for class org.jsecurity.spring.security.interceptor.AopAllianceAnnotationsAuthorizingMethodInterceptor
 
appendQueryProperties(StringBuffer, Map, String) - Method in class org.jsecurity.web.RedirectView
Append query properties to the redirect URL.
appliedPaths - Variable in class org.jsecurity.web.filter.PathMatchingFilter
A collection of path-to-config entries where the key is a path which this filter should process and the value is the (possibly null) configuration element specific to this Filter for that specific path.
applyCacheManagerToRealms() - Method in class org.jsecurity.mgt.RealmSecurityManager
Sets the internal CacheManager on any internal configured Realms that implement the CacheManagerAware interface.
applyCacheManagerToSessionManager() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Ensures the internal delegate SessionManager is injected with the newly set CacheManager so it may use it for its internal caching needs.
applyEmbeddedConfig(WebConfiguration) - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
applyFilterConfig(WebConfiguration) - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
applyGlobalProperty(Map, String, String) - Method in class org.jsecurity.config.ReflectionBuilder
 
applyInitParams() - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
applyProperty(String, String, Map) - Method in class org.jsecurity.config.ReflectionBuilder
 
applyProperty(Object, String, String) - Method in class org.jsecurity.config.ReflectionBuilder
 
applySingleProperty(Map, String, String, String) - Method in class org.jsecurity.config.ReflectionBuilder
 
applyUrlConfig(WebConfiguration) - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
asList() - Method in interface org.jsecurity.subject.PrincipalCollection
Returns a single Subject's principals retrieved from all configured Realms as a List, or an empty List if there are not any principals.
asList() - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
asList(E...) - Static method in class org.jsecurity.util.CollectionUtils
 
assertAuthorized(MethodInvocation) - Method in class org.jsecurity.authz.aop.AnnotationsAuthorizingMethodInterceptor
Iterates over the internal methodInterceptors collection, and for each one, ensures that if the interceptor supports the invocation, that the interceptor asserts that the invocation is authorized to proceed.
assertAuthorized(Annotation) - Method in class org.jsecurity.authz.aop.AuthenticatedAnnotationHandler
Ensures that the calling Subject is authenticated, and if not, throws an UnauthenticatedException indicating the method is not allowed to be executed.
assertAuthorized(Annotation) - Method in class org.jsecurity.authz.aop.AuthorizingAnnotationHandler
Ensures the calling Subject is authorized to execute based on the directive(s) found in the given annotation.
assertAuthorized(MethodInvocation) - Method in class org.jsecurity.authz.aop.AuthorizingAnnotationMethodInterceptor
Ensures the calling Subject is authorized to execute the specified MethodInvocation.
assertAuthorized(MethodInvocation) - Method in class org.jsecurity.authz.aop.AuthorizingMethodInterceptor
Asserts that the specified MethodInvocation is allowed to continue by performing any necessary authorization (access control) checks first.
assertAuthorized(Annotation) - Method in class org.jsecurity.authz.aop.GuestAnnotationHandler
Ensures that the calling Subject is NOT a user, that is, they do not have an identity before continuing.
assertAuthorized(Annotation) - Method in class org.jsecurity.authz.aop.PermissionAnnotationHandler
Ensures that the calling Subject has the Annotation's specified permissions, and if not, throws an AuthorizingException indicating access is denied.
assertAuthorized(Annotation) - Method in class org.jsecurity.authz.aop.RoleAnnotationHandler
Ensures that the calling Subject has the Annotation's specified roles, and if not, throws an AuthorizingException indicating that access is denied.
assertAuthorized(Annotation) - Method in class org.jsecurity.authz.aop.UserAnnotationHandler
Ensures that the calling Subject is a user, that is, they are either authenticated or remembered via remember me services before allowing access, and if not, throws an AuthorizingException indicating access is not allowed.
assertAuthzCheckPossible() - Method in class org.jsecurity.subject.DelegatingSubject
 
assertCookieAttribute() - Method in class org.jsecurity.web.WebRememberMeManager
 
assertFilter(String, Object) - Method in class org.jsecurity.web.config.IniWebConfiguration
 
assertFilters(Map<String, ?>) - Method in class org.jsecurity.web.config.IniWebConfiguration
 
assertRealmsConfigured() - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Used by the internal ModularRealmAuthenticator.doAuthenticate(org.jsecurity.authc.AuthenticationToken) implementation to ensure that the realms property has been set.
assertRealmsConfigured() - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Used by the Authorizer implementation methods to ensure that the realms has been set.
asSet() - Method in interface org.jsecurity.subject.PrincipalCollection
Returns a single Subject's principals retrieved from all configured Realms as a Set, or an empty Set if there are not any principals.
asSet() - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
asSet(E...) - Static method in class org.jsecurity.util.CollectionUtils
 
assignSessionId(Session, Serializable) - Method in class org.jsecurity.session.mgt.eis.MemorySessionDAO
 
AtLeastOneSuccessfulModularAuthenticationStrategy - Class in org.jsecurity.authc.pam
ModularAuthenticationStrategy implementation that requires at least one configured realm to successfully process the submitted AuthenticationToken during the log-in attempt.
AtLeastOneSuccessfulModularAuthenticationStrategy() - Constructor for class org.jsecurity.authc.pam.AtLeastOneSuccessfulModularAuthenticationStrategy
 
authenticate(AuthenticationToken) - Method in class org.jsecurity.authc.AbstractAuthenticator
Implementation of the Authenticator interface that functions in the following manner: Calls template doAuthenticate method for subclass execution of the actual authentication behavior.
authenticate(AuthenticationToken) - Method in interface org.jsecurity.authc.Authenticator
Authenticates a user based on the submitted authenticationToken.
authenticate(AuthenticationToken) - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Delegates to the wrapped Authenticator for authentication.
AUTHENTICATE_HEADER - Static variable in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
HTTP Authentication header, equal to WWW-Authenticate
authenticated - Variable in class org.jsecurity.subject.DelegatingSubject
 
AUTHENTICATED_SESSION_KEY - Static variable in class org.jsecurity.web.DefaultWebSecurityManager
The key that is used to store whether or not the user is authenticated in the session.
AuthenticatedAnnotationHandler - Class in org.jsecurity.authz.aop
Handles RequiresAuthentication annotations and ensures the calling subject is authenticated before allowing access.
AuthenticatedAnnotationHandler() - Constructor for class org.jsecurity.authz.aop.AuthenticatedAnnotationHandler
Default no-argument constructor that ensures this handler to process RequiresAuthentication annotations.
AuthenticatedAnnotationMethodInterceptor - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresAuthenticated annotation is declared, and if so, ensures the calling Subject.
AuthenticatedAnnotationMethodInterceptor() - Constructor for class org.jsecurity.authz.aop.AuthenticatedAnnotationMethodInterceptor
Default no-argument constructor that ensures this interceptor looks for RequiresAuthentication annotations in a method declaration.
AuthenticatedTag - Class in org.jsecurity.web.tags
JSP tag that renders the tag body only if the current user has executed a successful authentication attempt during their current session.
AuthenticatedTag() - Constructor for class org.jsecurity.web.tags.AuthenticatedTag
 
AuthenticatingFilter - Class in org.jsecurity.web.filter.authc
An AuthenticationFilter that is capable of automatically performing an authentication attempt based on the incoming request.
AuthenticatingFilter() - Constructor for class org.jsecurity.web.filter.authc.AuthenticatingFilter
 
AuthenticatingRealm - Class in org.jsecurity.realm
A top-level abstract implementation of the Realm interface that only implements authentication support (log-in) operations and leaves authorization (access control) behavior to subclasses.
AuthenticatingRealm() - Constructor for class org.jsecurity.realm.AuthenticatingRealm
 
AuthenticatingRealm(CacheManager) - Constructor for class org.jsecurity.realm.AuthenticatingRealm
 
AuthenticatingRealm(CredentialsMatcher) - Constructor for class org.jsecurity.realm.AuthenticatingRealm
 
AuthenticatingRealm(CacheManager, CredentialsMatcher) - Constructor for class org.jsecurity.realm.AuthenticatingRealm
 
AuthenticatingSecurityManager - Class in org.jsecurity.mgt
JSecurity support of a SecurityManager class hierarchy that delegates all authentication operations to a wrapped Authenticator instance.
AuthenticatingSecurityManager() - Constructor for class org.jsecurity.mgt.AuthenticatingSecurityManager
Default no-arg constructor that initializes its internal authenticator instance to be a ModularRealmAuthenticator.
authentication - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
AuthenticationException - Exception in org.jsecurity.authc
General exception thrown due to an error during the Authentication process.
AuthenticationException() - Constructor for exception org.jsecurity.authc.AuthenticationException
Creates a new AuthenticationException.
AuthenticationException(String) - Constructor for exception org.jsecurity.authc.AuthenticationException
Constructs a new AuthenticationException.
AuthenticationException(Throwable) - Constructor for exception org.jsecurity.authc.AuthenticationException
Constructs a new AuthenticationException.
AuthenticationException(String, Throwable) - Constructor for exception org.jsecurity.authc.AuthenticationException
Constructs a new AuthenticationException.
AuthenticationFilter - Class in org.jsecurity.web.filter.authc
Base class for all Filters that require the current user to be authenticated.
AuthenticationFilter() - Constructor for class org.jsecurity.web.filter.authc.AuthenticationFilter
 
AuthenticationInfo - Interface in org.jsecurity.authc
AuthenticationInfo represents a Subject's (aka user's) stored account information relevant to the authentication/log-in process only.
AuthenticationListener - Interface in org.jsecurity.authc
An AuthenticationListener listens for notifications while Subjects authenticate with the system.
AuthenticationListenerRegistrar - Interface in org.jsecurity.authc
An AuthenticationListenerRegistrar is a component that is capable of registering interested AuthenticationListeners that wish to be notified during the authentication process.
authenticationQuery - Variable in class org.jsecurity.realm.jdbc.JdbcRealm
 
AuthenticationToken - Interface in org.jsecurity.authc
An AuthenticationToken is a consolidation of an account's principals and supporting credentials submitted by a user during an authentication attempt.
Authenticator - Interface in org.jsecurity.authc
An Authenticator is responsible for authenticating accounts in an application.
AUTHORIZATION_HEADER - Static variable in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
HTTP Authorization header, equal to Authorization
AuthorizationAttributeSourceAdvisor - Class in org.jsecurity.spring.security.interceptor
TODO - complete JavaDoc
AuthorizationAttributeSourceAdvisor() - Constructor for class org.jsecurity.spring.security.interceptor.AuthorizationAttributeSourceAdvisor
Create a new AuthorizationAttributeSourceAdvisor.
AuthorizationException - Exception in org.jsecurity.authz
Exception thrown if there is a problem during authorization (access control check).
AuthorizationException() - Constructor for exception org.jsecurity.authz.AuthorizationException
Creates a new AuthorizationException.
AuthorizationException(String) - Constructor for exception org.jsecurity.authz.AuthorizationException
Constructs a new AuthorizationException.
AuthorizationException(Throwable) - Constructor for exception org.jsecurity.authz.AuthorizationException
Constructs a new AuthorizationException.
AuthorizationException(String, Throwable) - Constructor for exception org.jsecurity.authz.AuthorizationException
Constructs a new AuthorizationException.
AuthorizationFilter - Class in org.jsecurity.web.filter.authz
Superclass for authorization-related filters.
AuthorizationFilter() - Constructor for class org.jsecurity.web.filter.authz.AuthorizationFilter
 
AuthorizationInfo - Interface in org.jsecurity.authz
AuthorizationInfo represents a single Subject's stored authorization data (roles, permissions, etc) used during authorization (access control) checks only.
Authorizer - Interface in org.jsecurity.authz
An Authorizer performs authorization (access control) operations for any given Subject (aka 'application user').
authorizer - Variable in class org.jsecurity.mgt.AuthorizingSecurityManager
The wrapped instance to which all of this SecurityManager authorization calls are delegated.
AuthorizingAccount - Interface in org.jsecurity.authz
Deprecated.  
AuthorizingAnnotationHandler - Class in org.jsecurity.authz.aop
An AnnotationHandler that executes authorization (access control) behavior based on directive(s) found in a JSR-175 Annotation.
AuthorizingAnnotationHandler(Class<? extends Annotation>) - Constructor for class org.jsecurity.authz.aop.AuthorizingAnnotationHandler
Constructs an AuthorizingAnnotationHandler who processes annotations of the specified type.
AuthorizingAnnotationMethodInterceptor - Class in org.jsecurity.authz.aop
An AnnotationMethodInterceptor that asserts the calling code is authorized to execute the method before allowing the invocation to continue by inspecting code annotations to perform an access control check.
AuthorizingAnnotationMethodInterceptor(AuthorizingAnnotationHandler) - Constructor for class org.jsecurity.authz.aop.AuthorizingAnnotationMethodInterceptor
Constructor that ensures the internal handler is set which will be used to perform the authorization assertion checks when a supported annotation is encountered.
AuthorizingMethodInterceptor - Class in org.jsecurity.authz.aop
Basic abstract class to support intercepting methods that perform authorization (access control) checks.
AuthorizingMethodInterceptor() - Constructor for class org.jsecurity.authz.aop.AuthorizingMethodInterceptor
 
AuthorizingRealm - Class in org.jsecurity.realm
An AuthorizingRealm extends the AuthenticatingRealm's capabilities by adding Authorization (access control) support.
AuthorizingRealm() - Constructor for class org.jsecurity.realm.AuthorizingRealm
 
AuthorizingRealm(CacheManager) - Constructor for class org.jsecurity.realm.AuthorizingRealm
 
AuthorizingRealm(CredentialsMatcher) - Constructor for class org.jsecurity.realm.AuthorizingRealm
 
AuthorizingRealm(CacheManager, CredentialsMatcher) - Constructor for class org.jsecurity.realm.AuthorizingRealm
 
AuthorizingSecurityManager - Class in org.jsecurity.mgt
JSecurity support of a SecurityManager class hierarchy that delegates all authorization (access control) operations to a wrapped Authorizer instance.
AuthorizingSecurityManager() - Constructor for class org.jsecurity.mgt.AuthorizingSecurityManager
Default no-arg constructor.

B

Base64 - Class in org.jsecurity.codec
Provides Base64 encoding and decoding as defined by RFC 2045.
Base64() - Constructor for class org.jsecurity.codec.Base64
 
BasicHttpAuthenticationFilter - Class in org.jsecurity.web.filter.authc
Requires the requesting user to be authenticated for the request to continue, and if they're not, forces the user to login via the HTTP Basic protocol-specific challenge.
BasicHttpAuthenticationFilter() - Constructor for class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
 
beforeAllAttempts(Collection<? extends Realm>, AuthenticationToken) - Method in class org.jsecurity.authc.pam.AbstractAuthenticationStrategy
Simply returns new SimpleAuthenticationInfo();, which supports aggregating account data across realms.
beforeAllAttempts(Collection<? extends Realm>, AuthenticationToken) - Method in class org.jsecurity.authc.pam.FirstSuccessfulAuthenticationStrategy
Returns null immediately, relying on this class's merge implementation to return only the first info object it encounters, ignoring all subsequent ones.
beforeAllAttempts(Collection<? extends Realm>, AuthenticationToken) - Method in interface org.jsecurity.authc.pam.ModularAuthenticationStrategy
Method invoked by the ModularAuthenticator signifying that the authentication process is about to begin for the specified token - called before any Realm is actually invoked.
beforeAttempt(Realm, AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.authc.pam.AbstractAuthenticationStrategy
Simply returns the aggregate method argument, without modification.
beforeAttempt(Realm, AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.authc.pam.AllSuccessfulModularAuthenticationStrategy
Because all realms in this strategy must complete successfully, this implementation ensures that the given Realm supports the given token argument.
beforeAttempt(Realm, AuthenticationToken, AuthenticationInfo) - Method in interface org.jsecurity.authc.pam.ModularAuthenticationStrategy
Method invoked by the ModularAuthenticator just prior to the realm being consulted for account data, allowing pre-authentication-attempt logic for that realm only.
beforeAuthenticatorDestroyed() - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Template hook to allow subclass cleanup when the SecurityManager is being shut down.
beforeAuthenticatorDestroyed() - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Implementation of parent class's template hook for destruction/cleanup logic.
beforeAuthorizerDestroyed() - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Template hook for subclasses to implement destruction/cleanup logic.
beforeAuthorizerDestroyed() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Calls beforeSessionManagerDestroyed() to allow subclass clean up and then immediatley calls destroySessionManager() to clean up the internal delegate instance.
beforeCacheManagerDestroyed() - Method in class org.jsecurity.mgt.CachingSecurityManager
Template hook for subclasses to perform cleanup behavior during shutdown.
beforeCacheManagerDestroyed() - Method in class org.jsecurity.mgt.RealmSecurityManager
First calls beforeRealmsDestroyed() to allow subclasses to clean up first, then calls destroyRealms() to clean up the internal Realms collection.
beforeInvalidNotification(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
Returns the session instance to use to pass to registered SessionListeners for notification that the session has been invalidated (stopped or expired).
beforeLogout(PrincipalCollection) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
beforeRealmsDestroyed() - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Lifecycle cleanup method that first calls beforeAuthenticatorDestroyed() to allow subclass cleanup and then calls destroyAuthenticator() to actually clean up the internal delegate instance.
beforeRealmsDestroyed() - Method in class org.jsecurity.mgt.RealmSecurityManager
Template hook for subclasses to perform clean up logic during shut-down.
beforeSessionManagerDestroyed() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Template hook for subclasses that wish to perform clean up behavior during shutdown.
beforeSessionValidationDisabled() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
bind(String, Object) - Method in class org.jsecurity.jndi.JndiTemplate
Bind the given object to the current JNDI context, using the given name.
bind(Subject) - Method in class org.jsecurity.mgt.DefaultSecurityManager
Binds a Subject instance created after authentication to the application for later use.
bind(SecurityManager) - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies binding the application's SecurityManager instance to the ThreadContext.
bind(Subject) - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies binding a Subject to the ThreadContext.
bind(InetAddress) - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies binding an InetAddress to the ThreadContext.
bind(Subject) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
bind(Subject, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
bind(String, String, Object) - Method in class org.jsecurity.web.servlet.ServletContextSupport
 
bind(ServletRequest) - Static method in class org.jsecurity.web.WebUtils
Convenience method that simplifies binding a ServletRequest to the current thread (via the ThreadContext).
bind(ServletResponse) - Static method in class org.jsecurity.web.WebUtils
Convenience method that simplifies binding a ServletResponse to the thread via the ThreadContext.
bindInetAddressToThread(ServletRequest) - Static method in class org.jsecurity.web.WebUtils
 
BlowfishCipher - Class in org.jsecurity.crypto
JSecurity's default symmetric block Cipher using the Blowfish algorithm.
BlowfishCipher() - Constructor for class org.jsecurity.crypto.BlowfishCipher
Default no argument constructor that uses an internal default key to use during encryption and decryption.
buildAuthenticationInfo(String, char[]) - Method in class org.jsecurity.realm.activedirectory.ActiveDirectoryRealm
 
buildAuthenticationInfo(String, char[]) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
 
buildAuthorizationInfo(Set<String>) - Method in class org.jsecurity.realm.activedirectory.ActiveDirectoryRealm
 
buildObjects(Map<String, String>) - Method in class org.jsecurity.config.ReflectionBuilder
 
byType(Class<T>) - Method in interface org.jsecurity.subject.PrincipalCollection
Returns all principals assignable from the specified type, or an empty Collection if no principals of that type are contained.
byType(Class<T>) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 

C

Cache - Interface in org.jsecurity.cache
A Cache efficiently stores temporary objects primarily to improve an application's performance.
cache(Session, Serializable, Cache) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Caches the specified session in the given cache under the key of sessionId.
CacheException - Exception in org.jsecurity.cache
Root class of all JSecurity exceptions related to caching operations.
CacheException() - Constructor for exception org.jsecurity.cache.CacheException
Creates a new CacheException.
CacheException(String) - Constructor for exception org.jsecurity.cache.CacheException
Creates a new CacheException.
CacheException(Throwable) - Constructor for exception org.jsecurity.cache.CacheException
Creates a new CacheException.
CacheException(String, Throwable) - Constructor for exception org.jsecurity.cache.CacheException
Creates a new CacheException.
CacheManager - Interface in org.jsecurity.cache
A CacheManager provides and maintains the lifecycles of Cache instances.
cacheManager - Variable in class org.jsecurity.mgt.CachingSecurityManager
The CacheManager to use to perform caching operations to enhance performance.
CacheManagerAware - Interface in org.jsecurity.cache
Interface implemented by components that utilize a CacheManager and wish that CacheManager to be supplied if one is available.
cacheValidSession(Session, Serializable) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Caches the specified session under the key sessionId.
CachingRealm - Class in org.jsecurity.realm
A very basic abstract extension point for the Realm interface that provides logging and caching support.
CachingRealm() - Constructor for class org.jsecurity.realm.CachingRealm
 
CachingRealm(CacheManager) - Constructor for class org.jsecurity.realm.CachingRealm
 
CachingSecurityManager - Class in org.jsecurity.mgt
A very basic extension point for the SecurityManager interface that merely provides logging and caching support.
CachingSecurityManager() - Constructor for class org.jsecurity.mgt.CachingSecurityManager
Default no-arg constructor that will automatically attempt to initialize a default cacheManager
CachingSessionDAO - Class in org.jsecurity.session.mgt.eis
An CachingSessionDAO is a SessionDAO that provides a transparent caching layer between the components that use it and the underlying EIS (Enterprise Information System) for enhanced performance.
CachingSessionDAO() - Constructor for class org.jsecurity.session.mgt.eis.CachingSessionDAO
Default no-arg constructor.
chains - Variable in class org.jsecurity.web.config.IniWebConfiguration
 
charsetName - Variable in class org.jsecurity.io.TextResource
 
checkPermission(PrincipalCollection, String) - Method in interface org.jsecurity.authz.Authorizer
Ensures the corresponding Subject/user implies the specified permission String.
checkPermission(PrincipalCollection, Permission) - Method in interface org.jsecurity.authz.Authorizer
Ensures a subject/user Permission.implies(Permission) implies} the specified Permission.
checkPermission(Permission) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
checkPermission(PrincipalCollection, String) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
If !
checkPermission(PrincipalCollection, Permission) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
If !
checkPermission(Permission) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
checkPermission(PrincipalCollection, String) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
checkPermission(PrincipalCollection, Permission) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
checkPermission(PrincipalCollection, String) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkPermission(PrincipalCollection, Permission) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkPermission(Permission, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkPermission(String) - Method in class org.jsecurity.subject.DelegatingSubject
 
checkPermission(Permission) - Method in class org.jsecurity.subject.DelegatingSubject
 
checkPermission(String) - Method in interface org.jsecurity.subject.Subject
Ensures this Subject implies the specified permission String.
checkPermission(Permission) - Method in interface org.jsecurity.subject.Subject
Ensures this Subject implies the specified Permission.
checkPermissions(PrincipalCollection, String...) - Method in interface org.jsecurity.authz.Authorizer
Ensures the corresponding Subject/user implies all of the specified permission strings.
checkPermissions(PrincipalCollection, Collection<Permission>) - Method in interface org.jsecurity.authz.Authorizer
Ensures the corresponding Subject/user implies all of the specified permission strings.
checkPermissions(Collection<Permission>) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
checkPermissions(PrincipalCollection, String...) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
If !
checkPermissions(PrincipalCollection, Collection<Permission>) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
If !
checkPermissions(Collection<Permission>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
checkPermissions(PrincipalCollection, String...) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
checkPermissions(PrincipalCollection, Collection<Permission>) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
checkPermissions(PrincipalCollection, String...) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkPermissions(PrincipalCollection, Collection<Permission>) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkPermissions(Collection<Permission>, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkPermissions(String...) - Method in class org.jsecurity.subject.DelegatingSubject
 
checkPermissions(Collection<Permission>) - Method in class org.jsecurity.subject.DelegatingSubject
 
checkPermissions(String...) - Method in interface org.jsecurity.subject.Subject
Ensures this Subject implies all of the specified permission strings.
checkPermissions(Collection<Permission>) - Method in interface org.jsecurity.subject.Subject
Ensures this Subject implies all of the specified permission strings.
checkRequestParams - Variable in class org.jsecurity.web.attr.AbstractWebAttribute
 
checkRequestParamsFirst - Variable in class org.jsecurity.web.attr.AbstractWebAttribute
 
checkRole(PrincipalCollection, String) - Method in interface org.jsecurity.authz.Authorizer
Asserts the corresponding Subject/user has the specified role by returning quietly if they do or throwing an AuthorizationException if they do not.
checkRole(String) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
checkRole(PrincipalCollection, String) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
If !
checkRole(String) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
checkRole(PrincipalCollection, String) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
checkRole(PrincipalCollection, String) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkRole(String, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkRole(String) - Method in class org.jsecurity.subject.DelegatingSubject
 
checkRole(String) - Method in interface org.jsecurity.subject.Subject
Asserts this Subject has the specified role by returning quietly if they do or throwing an AuthorizationException if they do not.
checkRoles(PrincipalCollection, Collection<String>) - Method in interface org.jsecurity.authz.Authorizer
Asserts the corresponding Subject/user has all of the specified roles by returning quietly if they do or throwing an AuthorizationException if they do not.
checkRoles(Collection<String>) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
checkRoles(PrincipalCollection, Collection<String>) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Calls checkRole for each role specified.
checkRoles(Collection<String>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
checkRoles(PrincipalCollection, Collection<String>) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
checkRoles(PrincipalCollection, Collection<String>) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkRoles(Collection<String>, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
checkRoles(Collection<String>) - Method in class org.jsecurity.subject.DelegatingSubject
 
checkRoles(Collection<String>) - Method in interface org.jsecurity.subject.Subject
Asserts this Subject has all of the specified roles by returning quietly if they do or throwing an AuthorizationException if they do not.
CHUNK_SEPARATOR - Static variable in class org.jsecurity.codec.Base64
Chunk separator per RFC 2045 section 2.1.
CHUNK_SIZE - Static variable in class org.jsecurity.codec.Base64
Chunk size per RFC 2045 section 6.8.
Cipher - Interface in org.jsecurity.crypto
A Cipher is an algorithm used in cryptography that converts an original input source using a Key to an uninterpretable format.
CLASSPATH_PREFIX - Static variable in class org.jsecurity.io.ResourceUtils
Resource path prefix that specifies to load from a classpath location, value is classpath:
ClassUtils - Class in org.jsecurity.util
Utility method library used to conveniently interact with Classes, such as acquiring them from the application ClassLoaders and instantiating Objects from them.
ClassUtils() - Constructor for class org.jsecurity.util.ClassUtils
 
clean(String) - Static method in class org.jsecurity.util.StringUtils
Returns a 'cleaned' representation of the specified argument.
cleanup(ServletRequest, ServletResponse, Exception) - Method in class org.jsecurity.web.servlet.AdviceFilter
Executes cleanup logic in the finally code block in the doFilterInternal implementation.
clear() - Method in class org.jsecurity.authc.UsernamePasswordToken
Clears out (nulls) the username, password, rememberMe, and inetAddress.
clear() - Method in interface org.jsecurity.cache.Cache
Clear all entries from the cache.
clear() - Method in class org.jsecurity.cache.ehcache.EhCache
Removes all elements in the cache, but leaves the cache in a useable state.
clear() - Method in class org.jsecurity.cache.HashtableCache
 
clear() - Method in interface org.jsecurity.subject.MutablePrincipalCollection
Removes all Principals in this collection.
clear() - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
clear() - Static method in class org.jsecurity.util.ThreadContext
Removes all values bound to this ThreadContext, which includes any Subject, Session, or InetAddress that may be bound by these respective objects' conveninece methods, as well as all values bound by your application code.
clearCachedAuthorizationInfo(PrincipalCollection) - Method in class org.jsecurity.realm.AuthorizingRealm
Clears out the AuthorizationInfo cache entry for the specified account.
close(InputStream) - Static method in class org.jsecurity.io.ResourceUtils
 
closeConnection(Connection) - Static method in class org.jsecurity.util.JdbcUtils
Close the given JDBC Connection and ignore any thrown exception.
closeContext(LdapContext) - Static method in class org.jsecurity.realm.ldap.LdapUtils
Closes an LDAP context, logging any errors, but not throwing an exception if there is a failure.
closeResultSet(ResultSet) - Static method in class org.jsecurity.util.JdbcUtils
Close the given JDBC ResultSet and ignore any thrown exception.
closeStatement(Statement) - Static method in class org.jsecurity.util.JdbcUtils
Close the given JDBC Statement and ignore any thrown exception.
CodecException - Exception in org.jsecurity.codec
Root exception related to issues during encoding or decoding.
CodecException() - Constructor for exception org.jsecurity.codec.CodecException
Creates a new CodecException.
CodecException(String) - Constructor for exception org.jsecurity.codec.CodecException
Creates a new CodecException.
CodecException(Throwable) - Constructor for exception org.jsecurity.codec.CodecException
Creates a new CodecException.
CodecException(String, Throwable) - Constructor for exception org.jsecurity.codec.CodecException
Creates a new CodecException.
CodecSupport - Class in org.jsecurity.codec
Base abstract class that provides useful encoding and decoding operations, especially for character data.
CodecSupport() - Constructor for class org.jsecurity.codec.CodecSupport
 
CollectionUtils - Class in org.jsecurity.util
Static helper class for use dealing with Arrays.
CollectionUtils() - Constructor for class org.jsecurity.util.CollectionUtils
 
COMMENT_POUND - Static variable in class org.jsecurity.io.IniResource
 
COMMENT_SEMICOLON - Static variable in class org.jsecurity.io.IniResource
 
computeListCapacity(int) - Static method in class org.jsecurity.util.CollectionUtils
 
ConcurrentAccessException - Exception in org.jsecurity.authc
Thrown when an authentication attempt has been received for an account that has already been authenticated (i.e. logged-in), and the system is configured to prevent such concurrent access.
ConcurrentAccessException() - Constructor for exception org.jsecurity.authc.ConcurrentAccessException
Creates a new ConcurrentAccessException.
ConcurrentAccessException(String) - Constructor for exception org.jsecurity.authc.ConcurrentAccessException
Constructs a new ConcurrentAccessException.
ConcurrentAccessException(Throwable) - Constructor for exception org.jsecurity.authc.ConcurrentAccessException
Constructs a new ConcurrentAccessException.
ConcurrentAccessException(String, Throwable) - Constructor for exception org.jsecurity.authc.ConcurrentAccessException
Constructs a new ConcurrentAccessException.
config - Variable in class org.jsecurity.web.servlet.JSecurityFilter
 
CONFIG_CLASS_NAME_INIT_PARAM_NAME - Static variable in class org.jsecurity.web.servlet.JSecurityFilter
 
CONFIG_INIT_PARAM_NAME - Static variable in class org.jsecurity.web.servlet.JSecurityFilter
 
CONFIG_URL_INIT_PARAM_NAME - Static variable in class org.jsecurity.web.servlet.JSecurityFilter
 
configClassName - Variable in class org.jsecurity.web.servlet.JSecurityFilter
 
Configuration - Interface in org.jsecurity.config
A Configuration is responsible for 'wiring' together all the JSecurity components for an application, such as the SecurityManager, and any of its dependencies.
configuration - Variable in class org.jsecurity.web.servlet.JSecurityFilter
 
ConfigurationException - Exception in org.jsecurity.config
Root exception indicating there was a problem parsing or processing the JSecurity configuration.
ConfigurationException() - Constructor for exception org.jsecurity.config.ConfigurationException
Creates a new ConfigurationException.
ConfigurationException(String) - Constructor for exception org.jsecurity.config.ConfigurationException
Constructs a new ConfigurationException.
ConfigurationException(Throwable) - Constructor for exception org.jsecurity.config.ConfigurationException
Constructs a new ConfigurationException.
ConfigurationException(String, Throwable) - Constructor for exception org.jsecurity.config.ConfigurationException
Constructs a new ConfigurationException.
configure() - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
configUrl - Variable in class org.jsecurity.config.IniConfiguration
 
configUrl - Variable in class org.jsecurity.web.servlet.JSecurityFilter
 
CONTAINER_PREFIX - Static variable in class org.jsecurity.jndi.JndiLocator
JNDI prefix used in a J2EE container
containsKey(Object) - Static method in class org.jsecurity.util.ThreadContext
Returns true if a value for the key is bound to the current thread, false otherwise.
contextFactoryClassName - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
continueInvocation(Object) - Method in class org.jsecurity.spring.security.interceptor.AopAllianceAnnotationsAuthorizingMethodInterceptor
Simply casts the method argument to an org.aopalliance.intercept.MethodInvocation and then calls methodInvocation.
convertJndiName(String) - Method in class org.jsecurity.jndi.JndiLocator
Convert the given JNDI name into the actual JNDI name to use.
COOKIE_SESSION_ID_SOURCE - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
CookieAttribute<T> - Class in org.jsecurity.web.attr
A CookieAttribute stores an object as a Cookie for access on later requests.
CookieAttribute() - Constructor for class org.jsecurity.web.attr.CookieAttribute
 
CookieAttribute(String) - Constructor for class org.jsecurity.web.attr.CookieAttribute
Constructs a CookieAttribute using a Cookie with the specified name using the request context's path and with a maxAge of -1, indicating the Cookie will persist until browser shutdown.
CookieAttribute(String, String) - Constructor for class org.jsecurity.web.attr.CookieAttribute
Constructs a CookieAttribute using a Cookie with the specified name and path.
CookieAttribute(String, int) - Constructor for class org.jsecurity.web.attr.CookieAttribute
Constructs a CookieAttribute using a Cookie with the specified name and maxAge.
CookieAttribute(String, String, int) - Constructor for class org.jsecurity.web.attr.CookieAttribute
Constructs a CookieAttribute using a Cookie with the specified name, path, and maxAge.
CookieAttribute(String, String, int, Class<? extends PropertyEditor>) - Constructor for class org.jsecurity.web.attr.CookieAttribute
Constructs a CookieAttribute using a Cookie with the specified name, path, and maxAge, utilizing the specified PropertyEditor to perform value/string conversion on the object stored as a cookie.
create(Session) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
create(Session) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Creates the session by delegating EIS creation to subclasses via the CachingSessionDAO.doCreate(org.jsecurity.session.Session) method, and then caches the session.
create(Session) - Method in interface org.jsecurity.session.mgt.eis.SessionDAO
Inserts a new Session record into the underling EIS (e.g.
createActiveSessionsCache() - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Creates a cache instance used to store active sessions.
createAuthorizer() - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Creates a new Authorizer instance to be used by this AuthorizingSecurityManager instance.
createCacheManager() - Method in class org.jsecurity.mgt.CachingSecurityManager
Creates a CacheManager instance to be used by this SecurityManager and potentially any of its children components.
createChain(List<Filter>, FilterChain) - Method in class org.jsecurity.web.config.IniWebConfiguration
Creates a new FilterChain based on the specified configured url filter chain and original chain.
createChains(Map<String, String>, Map<String, Filter>) - Method in class org.jsecurity.web.config.IniWebConfiguration
 
createDefaultFilters() - Method in class org.jsecurity.web.config.IniWebConfiguration
 
createDefaultRealm() - Method in class org.jsecurity.mgt.RealmSecurityManager
Creates a default Realm implementation to use in lazy-initialization use cases.
createDefaultSecurityManager() - Method in class org.jsecurity.config.IniConfiguration
 
createDefaultSecurityManager() - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
createDefaultSecurityManagerFromRealms(ApplicationContext, Map<String, Map<String, String>>) - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
createInitialContext() - Method in class org.jsecurity.jndi.JndiTemplate
Create a new JNDI initial context.
createMethodInvocation(Object) - Method in class org.jsecurity.spring.security.interceptor.AopAllianceAnnotationsAuthorizingMethodInterceptor
Creates a MethodInvocation that wraps an org.aopalliance.intercept.MethodInvocation instance, enabling JSecurity Annotations in AOP Alliance environments (Spring, etc).
createNewInstance(Map, String, String) - Method in class org.jsecurity.config.ReflectionBuilder
 
createPrivateRole(PrincipalCollection) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
createRemoteInvocation(MethodInvocation) - Method in class org.jsecurity.spring.remoting.SecureRemoteInvocationFactory
Creates a RemoteInvocation with the current session ID as an attribute.
createSecurityManager(Map<String, Map<String, String>>) - Method in class org.jsecurity.config.IniConfiguration
 
createSecurityManager(Map<String, Map<String, String>>) - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
createSecurityManagerForSection(Map<String, String>) - Method in class org.jsecurity.config.IniConfiguration
 
createSession(InetAddress) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
createSession(InetAddress) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
createSession(InetAddress) - Method in class org.jsecurity.web.session.ServletContainerSessionManager
 
createSession(HttpSession, InetAddress) - Method in class org.jsecurity.web.session.ServletContainerSessionManager
 
createSessionManager() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Constructs a new SessionManager instance to be used as the internal delegate for this security manager.
createSessionValidationScheduler() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
createSubject() - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
createSubject(PrincipalCollection) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
createSubject(PrincipalCollection, Session) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
createSubject(PrincipalCollection, Session, boolean) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
createSubject(PrincipalCollection, Session, boolean, InetAddress) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
createSubject(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.mgt.DefaultSecurityManager
Creates a Subject instance for the user represented by the given method arguments.
createSubject() - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
createSubject(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
createSubject(Session, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
createSubject(PrincipalCollection, boolean, Session, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
createToken(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
 
createToken(String, String, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
 
createToken(String, String, boolean, InetAddress) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
 
createToken(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Creates an AuthenticationToken for use during login attempt with the provided credentials in the http header.
createToken(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
credentials - Variable in class org.jsecurity.authc.SimpleAuthenticationInfo
The credentials verifying the account principals.
CredentialsException - Exception in org.jsecurity.authc
Exception thrown due to a problem with the credential(s) submitted for an account during the authentication process.
CredentialsException() - Constructor for exception org.jsecurity.authc.CredentialsException
Creates a new CredentialsException.
CredentialsException(String) - Constructor for exception org.jsecurity.authc.CredentialsException
Constructs a new CredentialsException.
CredentialsException(Throwable) - Constructor for exception org.jsecurity.authc.CredentialsException
Constructs a new CredentialsException.
CredentialsException(String, Throwable) - Constructor for exception org.jsecurity.authc.CredentialsException
Constructs a new CredentialsException.
CredentialsMatcher - Interface in org.jsecurity.authc.credential
Interface implemented by classes that can determine if an AuthenticationToken's provided credentials matches a corresponding account's credentials stored in the system.
crypt(Cipher, byte[]) - Method in class org.jsecurity.crypto.BlowfishCipher
Calls the doFinal(bytes) method, propagating any exception that might arise in an IllegalStateException
crypt(byte[], int, byte[]) - Method in class org.jsecurity.crypto.BlowfishCipher
Calls the BlowfishCipher.init(javax.crypto.Cipher, int, java.security.Key) and then BlowfishCipher.crypt(javax.crypto.Cipher, byte[]).
currentRequest - Variable in class org.jsecurity.web.servlet.JSecurityHttpSession
 

D

dataSource - Variable in class org.jsecurity.realm.jdbc.JdbcRealm
 
decode(String) - Static method in class org.jsecurity.codec.Base64
Converts the specified UTF-8 Base64 encoded String and decodes it to a raw Base64 decoded byte array.
decode(byte[]) - Static method in class org.jsecurity.codec.Base64
Decodes Base64 data into octects
decode(byte[]) - Static method in class org.jsecurity.codec.Hex
Converts an array of character bytes representing hexidecimal values into an array of bytes of those same values.
decode(String) - Static method in class org.jsecurity.codec.Hex
Converts the specified Hex-encoded String into a raw byte array.
decode(char[]) - Static method in class org.jsecurity.codec.Hex
Converts an array of characters representing hexidecimal values into an array of bytes of those same values.
decodeRequestString(HttpServletRequest, String) - Static method in class org.jsecurity.web.WebUtils
Decode the given source string with a URLDecoder.
decodeToString(String) - Static method in class org.jsecurity.codec.Base64
Converts the specified UTF-8 Base64 encoded String and decodes it to a resultant UTF-8 encoded string.
decodeToString(byte[]) - Static method in class org.jsecurity.codec.Base64
Decodes the specified Base64 encoded byte array and returns the decoded result as a UTF-8 encoded.
decrypt(byte[], byte[]) - Method in class org.jsecurity.crypto.BlowfishCipher
Decrypts the specified already-encrypted byte array.
decrypt(byte[], byte[]) - Method in interface org.jsecurity.crypto.Cipher
Decrypts encrypted data via the specified Cipher key and returns the original (pre-encrypted) data.
decrypt(byte[]) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
DEFAULT_ACTIVE_SESSIONS_CACHE_MAX_ELEM_IN_MEM - Static variable in class org.jsecurity.cache.ehcache.EhCacheManager
The default maximum number of active sessions in cache memory, equal to 20,000.
DEFAULT_ACTIVE_SESSIONS_CACHE_NAME - Static variable in class org.jsecurity.cache.ehcache.EhCacheManager
The default name for the active sessions cache, equal to CachingSessionDAO.ACTIVE_SESSION_CACHE_NAME.
DEFAULT_ACTIVE_SESSIONS_DISK_EXPIRY_THREAD_INTERVAL_SECONDS - Static variable in class org.jsecurity.cache.ehcache.EhCacheManager
The default time the active sessions disk expiration thread will run, equal to 600 (10 minutes).
DEFAULT_AUTHENTICATION_QUERY - Static variable in class org.jsecurity.realm.jdbc.JdbcRealm
The default query used to retrieve account data for the user.
DEFAULT_CASE_SENSITIVE - Static variable in class org.jsecurity.authz.permission.WildcardPermission
 
DEFAULT_CHARACTER_ENCODING - Static variable in class org.jsecurity.web.WebUtils
Default character encoding to use when request.getCharacterEncoding returns null, according to the Servlet spec.
DEFAULT_DELIMITER_CHAR - Static variable in class org.jsecurity.util.StringUtils
Constant representing the default delimiter character (comma), equal to ','
DEFAULT_ENCODING_SCHEME - Static variable in class org.jsecurity.web.RedirectView
The default encoding scheme: UTF-8
DEFAULT_ERROR_KEY_ATTRIBUTE_NAME - Static variable in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
DEFAULT_GLOBAL_SESSION_TIMEOUT - Static variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
Default main session timeout value (30 * 60 * 1000 milliseconds = 30 minutes).
DEFAULT_INI_RESOURCE_PATH - Static variable in class org.jsecurity.config.IniConfiguration
 
DEFAULT_LOGIN_URL - Static variable in class org.jsecurity.web.filter.AccessControlFilter
Simple default login URL equal to /login.jsp, which can be overridden by calling the setLoginUrl method.
DEFAULT_MAX_AGE - Static variable in class org.jsecurity.web.attr.CookieAttribute
-1, indicating the cookie should expire when the browser closes.
DEFAULT_NAME - Static variable in class org.jsecurity.web.attr.AbstractWebAttribute
 
DEFAULT_PASSWORD_PARAM - Static variable in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
DEFAULT_PATH - Static variable in class org.jsecurity.web.attr.CookieAttribute
null, indicating the cookie should be set on the request context root.
DEFAULT_PATH_SEPARATOR - Static variable in class org.jsecurity.util.AntPathMatcher
Default path separator: "/"
DEFAULT_PERMISSIONS_QUERY - Static variable in class org.jsecurity.realm.jdbc.JdbcRealm
The default query used to retrieve permissions that apply to a particular role.
DEFAULT_QUOTE_CHAR - Static variable in class org.jsecurity.util.StringUtils
Constant representing the default quote character (double quote), equal to '"'
DEFAULT_REMEMBER_ME_COOKIE_NAME - Static variable in class org.jsecurity.web.WebRememberMeManager
The default name of the underlying rememberMe cookie which is rememberMe.
DEFAULT_REMEMBER_ME_PARAM - Static variable in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
DEFAULT_SECURE - Static variable in class org.jsecurity.web.attr.CookieAttribute
Default value is false.
DEFAULT_SECURITY_MANAGER_BEAN_ID - Static variable in class org.jsecurity.spring.SpringIniWebConfiguration
 
DEFAULT_SESSION_ID_NAME - Static variable in class org.jsecurity.web.servlet.JSecurityHttpSession
 
DEFAULT_SESSION_VALIDATION_INTERVAL - Static variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
The default interval at which sessions will be validated (1 hour); This can be overridden by calling AbstractValidatingSessionManager.setSessionValidationInterval(long)
DEFAULT_SESSION_VALIDATION_INTERVAL - Static variable in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
The default interval at which sessions will be validated (1 hour); This can be overridden by calling QuartzSessionValidationScheduler.setSessionValidationInterval(long)
DEFAULT_SUCCESS_URL - Static variable in class org.jsecurity.web.filter.authc.AuthenticationFilter
 
DEFAULT_USER_ROLES_QUERY - Static variable in class org.jsecurity.realm.jdbc.JdbcRealm
The default query used to retrieve the roles that apply to a user.
DEFAULT_USERNAME_PARAM - Static variable in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
DefaultLdapContextFactory - Class in org.jsecurity.realm.ldap
Default implementation of LdapContextFactory that can be configured or extended to customize the way LdapContext objects are retrieved.
DefaultLdapContextFactory() - Constructor for class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
DefaultSecurityManager - Class in org.jsecurity.mgt
The JSecurity framework's default concrete implementation of the SecurityManager interface, based around a collection of Realms.
DefaultSecurityManager() - Constructor for class org.jsecurity.mgt.DefaultSecurityManager
Default no-arg constructor.
DefaultSecurityManager(Realm) - Constructor for class org.jsecurity.mgt.DefaultSecurityManager
Supporting constructor for a single-realm application.
DefaultSecurityManager(Collection<Realm>) - Constructor for class org.jsecurity.mgt.DefaultSecurityManager
Supporting constructor for multiple realms.
DefaultSerializer - Class in org.jsecurity.io
Serializer implementation that uses the default JVM serialization mechanism (Object Input/Output Streams).
DefaultSerializer() - Constructor for class org.jsecurity.io.DefaultSerializer
 
DefaultSessionManager - Class in org.jsecurity.session.mgt
Default business-tier implementation of the ValidatingSessionManager interface.
DefaultSessionManager() - Constructor for class org.jsecurity.session.mgt.DefaultSessionManager
 
DefaultWebSecurityManager - Class in org.jsecurity.web
SecurityManager implementation that should be used in web-based applications or any application that requires HTTP connectivity (SOAP, http remoting, etc).
DefaultWebSecurityManager() - Constructor for class org.jsecurity.web.DefaultWebSecurityManager
 
DefaultWebSecurityManager(Realm) - Constructor for class org.jsecurity.web.DefaultWebSecurityManager
 
DefaultWebSecurityManager(Collection<Realm>) - Constructor for class org.jsecurity.web.DefaultWebSecurityManager
 
DefaultWebSessionManager - Class in org.jsecurity.web.session
Web-application capable SessionManager implementation.
DefaultWebSessionManager() - Constructor for class org.jsecurity.web.session.DefaultWebSessionManager
 
DelegatingSession - Class in org.jsecurity.session.mgt
A DelegatingSession is a client-tier representation of a server side Session.
DelegatingSession() - Constructor for class org.jsecurity.session.mgt.DelegatingSession
 
DelegatingSession(SessionManager, Serializable) - Constructor for class org.jsecurity.session.mgt.DelegatingSession
 
DelegatingSubject - Class in org.jsecurity.subject
Implementation of the Subject interface that delegates method calls to an underlying SecurityManager instance for security checks.
DelegatingSubject(SecurityManager) - Constructor for class org.jsecurity.subject.DelegatingSubject
 
DelegatingSubject(PrincipalCollection, boolean, InetAddress, Session, SecurityManager) - Constructor for class org.jsecurity.subject.DelegatingSubject
 
delete(Session) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Removes the specified session from any cache and then permanently deletes the session from the EIS by delegating to CachingSessionDAO.doDelete(org.jsecurity.session.Session).
delete(Session) - Method in interface org.jsecurity.session.mgt.eis.SessionDAO
Deletes the associated EIS record of the specified session.
deserialize(byte[]) - Method in class org.jsecurity.io.DefaultSerializer
 
deserialize(byte[]) - Method in interface org.jsecurity.io.Serializer
Converts the specified raw byte[] array back into an original Object form.
deserialize(byte[]) - Method in class org.jsecurity.io.XmlSerializer
Deserializes the specified serialized source back into an Object by using a ByteArrayInputStream to wrap the argument and then decode this stream via an XMLDecoder, where the readObject call results in the original Object to return.
deserialize(byte[]) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
destroy() - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Shuts-down the wrapped Ehcache CacheManager only if implicitly created.
destroy() - Method in class org.jsecurity.mgt.CachingSecurityManager
First calls beforeCacheManagerDestroyed() to allow subclasses to clean up first, then calls destroyCacheManager() to clean up the internal CacheManager.
destroy() - Method in class org.jsecurity.realm.text.PropertiesRealm
 
destroy() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
destroy() - Method in interface org.jsecurity.util.Destroyable
Called when this object is being destroyed, allowing any necessary cleanup of internal resources.
destroy(Object) - Static method in class org.jsecurity.util.LifecycleUtils
 
destroy(Destroyable) - Static method in class org.jsecurity.util.LifecycleUtils
 
destroy(Collection) - Static method in class org.jsecurity.util.LifecycleUtils
Calls destroy for each object in the collection.
destroy() - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
destroy() - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Default no-op implementation that can be overridden by subclasses for custom cleanup behavior.
Destroyable - Interface in org.jsecurity.util
JSecurity container-agnostic interface that indicates that this object requires a callback during destruction.
destroyAuthenticator() - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Cleans up ('destroys') the internal delegate Authenticator instance.
destroyAuthorizer() - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Cleanup method that destroys/cleans up the wrapped Authorizer instance.
destroyCacheManager() - Method in class org.jsecurity.mgt.CachingSecurityManager
Cleans up the internal CacheManager instance during shutdown.
destroyRealms() - Method in class org.jsecurity.mgt.RealmSecurityManager
Cleans up ('destroys') the internal collection of Realms by calling LifecycleUtils.destroy(getRealms()).
destroySessionManager() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Cleans up ('destroys') the internal delegate SessionManager by calling LifecycleUtils.destroy(getSessionManager()).
determineEncoding(HttpServletRequest) - Static method in class org.jsecurity.web.WebUtils
Determine the encoding for the given request.
DisabledAccountException - Exception in org.jsecurity.authc
Thrown when attempting to authenticate and the corresponding account has been disabled for some reason.
DisabledAccountException() - Constructor for exception org.jsecurity.authc.DisabledAccountException
Creates a new DisabledAccountException.
DisabledAccountException(String) - Constructor for exception org.jsecurity.authc.DisabledAccountException
Constructs a new DisabledAccountException.
DisabledAccountException(Throwable) - Constructor for exception org.jsecurity.authc.DisabledAccountException
Constructs a new DisabledAccountException.
DisabledAccountException(String, Throwable) - Constructor for exception org.jsecurity.authc.DisabledAccountException
Constructs a new DisabledAccountException.
disableSessionValidation() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
disableSessionValidation() - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
disableSessionValidation() - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
 
disableSessionValidation() - Method in interface org.jsecurity.session.mgt.SessionValidationScheduler
Disables the session validation job.
discardNonBase64(byte[]) - Static method in class org.jsecurity.codec.Base64
Discards any characters outside of the base64 alphabet, per the requirements on page 25 of RFC 2045 - "Any characters outside of the base64 alphabet are to be ignored in base64 encoded data."
discardWhitespace(byte[]) - Static method in class org.jsecurity.codec.Base64
Discards any whitespace from a base-64 encoded block.
doAuthenticate(AuthenticationToken) - Method in class org.jsecurity.authc.AbstractAuthenticator
Template design pattern hook for subclasses to implement specific authentication behavior.
doAuthenticate(AuthenticationToken) - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Attempts to authenticate the given token by iterating over the internal collection of Realms.
doCreate(Session) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Subclass hook to actually persist the given Session instance to the underlying EIS.
doCreate(Session) - Method in class org.jsecurity.session.mgt.eis.MemorySessionDAO
 
doCreateSession(InetAddress) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
doCreateSession(InetAddress) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
doCredentialsMatch(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.authc.credential.AllowAllCredentialsMatcher
Returns true always no matter what the method arguments are.
doCredentialsMatch(AuthenticationToken, AuthenticationInfo) - Method in interface org.jsecurity.authc.credential.CredentialsMatcher
Returns true if the provided token credentials match the stored account credentials, false otherwise.
doCredentialsMatch(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.authc.credential.SimpleCredentialsMatcher
This implementation acquires the token's credentials (via getCredentials(token)) and then the account's credentials (via getCredentials(account)) and then passes both of them to the equals(tokenCredentials, accountCredentials) method for equality comparison.
doDelete(Session) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Subclass implementation hook to permanently delete the given Session from the underlying EIS.
doDelete(Session) - Method in class org.jsecurity.session.mgt.eis.MemorySessionDAO
 
doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
This doFilter implementation stores a request attribute for "already filtered", proceeding without filtering again if the attribute is already there.
doFilter(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.servlet.ProxiedFilterChain
 
doFilterInternal(ServletRequest, ServletResponse, FilterChain) - Method in class org.jsecurity.web.servlet.AdviceFilter
Actually implements the chain execution logic, utilizing pre, post, and after advice hooks.
doFilterInternal(ServletRequest, ServletResponse, FilterChain) - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
doFilterInternal(ServletRequest, ServletResponse, FilterChain) - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Same contract as for doFilter, but guaranteed to be just invoked once per request.
doGetAuthenticationInfo(AuthenticationToken) - Method in class org.jsecurity.realm.AuthenticatingRealm
Retrieves authentication data from an implementation-specific datasource (RDBMS, LDAP, etc) for the given authentication token.
doGetAuthenticationInfo(AuthenticationToken) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
 
doGetAuthenticationInfo(AuthenticationToken) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
doGetAuthenticationInfo(AuthenticationToken) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
doGetAuthorizationInfo(PrincipalCollection) - Method in class org.jsecurity.realm.AuthorizingRealm
Retrieves the AuthorizationInfo for the given principals from the underlying data store.
doGetAuthorizationInfo(PrincipalCollection) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
This implementation of the interface expects the principals collection to return a String username keyed off of this realm's name
doGetAuthorizationInfo(PrincipalCollection) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
doGetAuthorizationInfo(PrincipalCollection) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
doGetSession(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
doGetSession(Serializable) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
doGetSession(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
doGetSession(Serializable) - Method in class org.jsecurity.web.session.ServletContainerSessionManager
 
doInContext(Context) - Method in interface org.jsecurity.jndi.JndiCallback
Do something with the given JNDI context.
doLoad(InputStream) - Method in class org.jsecurity.io.AbstractResource
 
doLoad(InputStream) - Method in class org.jsecurity.io.TextResource
 
doLoad(BufferedReader) - Method in class org.jsecurity.io.TextResource
 
doMatch(String, String, boolean) - Method in class org.jsecurity.util.AntPathMatcher
Actually match the given path against the given pattern.
doMultiRealmAuthentication(Collection<Realm>, AuthenticationToken) - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Performs the multi-realm authentication attempt by calling back to a ModularAuthenticationStrategy object as each realm is consulted for AuthenticationInfo for the specified token.
doReadSession(Serializable) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Subclass implmentation hook to actually retrieve the Session object from the underlying EIS.
doReadSession(Serializable) - Method in class org.jsecurity.session.mgt.eis.MemorySessionDAO
 
doSingleRealmAuthentication(Realm, AuthenticationToken) - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Performs the authentication attempt by interacting with the single configured realm, which is significantly simpler than performing multi-realm logic.
doStartTag() - Method in class org.jsecurity.web.tags.SecureTag
 
doUpdate(Session) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Subclass implementation hook to actually persist the Session's state to the underlying EIS.
doUpdate(Session) - Method in class org.jsecurity.session.mgt.eis.MemorySessionDAO
 

E

EhCache - Class in org.jsecurity.cache.ehcache
JSecurity Cache implementation that wraps an Ehcache instance.
EhCache(Cache) - Constructor for class org.jsecurity.cache.ehcache.EhCache
Constructs a new EhCache instance with the given cache.
EhCacheManager - Class in org.jsecurity.cache.ehcache
JSecurity CacheManager implementation utilizing the Ehcache framework for all cache functionality.
EhCacheManager() - Constructor for class org.jsecurity.cache.ehcache.EhCacheManager
Default no argument constructor
EMPTY_STRING - Static variable in class org.jsecurity.util.StringUtils
Constant representing the empty string, equal to ""
emptyCollection(Class<E>) - Static method in class org.jsecurity.util.CollectionUtils
Simple method that just returns Collections.EMPTY_SET.
enableSessionValidation() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
enableSessionValidation() - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
enableSessionValidation() - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
Starts session validation by creating a Quartz simple trigger, linking it to the QuartzSessionValidationJob, and scheduling it with the Quartz scheduler.
enableSessionValidation() - Method in interface org.jsecurity.session.mgt.SessionValidationScheduler
Enables the session validation job.
enableSessionValidationIfNecessary() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
encode(byte[]) - Static method in class org.jsecurity.codec.Base64
Encodes a byte[] containing binary data, into a byte[] containing characters in the Base64 alphabet.
encode(byte[], boolean) - Static method in class org.jsecurity.codec.Base64
Encodes binary data using the base64 algorithm, optionally chunking the output into 76 character blocks.
encode(byte[]) - Static method in class org.jsecurity.codec.Hex
Converts an array of bytes into an array of characters representing the hexidecimal values of each byte in order.
encodeChunked(byte[]) - Static method in class org.jsecurity.codec.Base64
Encodes binary data using the base64 algorithm and chunks the encoded output into 76 character blocks
encodeRedirectURL(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
Encode the session identifier associated with this response into the specified redirect URL, if necessary.
encodeRedirectUrl(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
 
encodeToString(byte[]) - Static method in class org.jsecurity.codec.Base64
Base64 encodes the specified byte array and then encodes it as a String using JSecurity's preferred character encoding (UTF-8).
encodeToString(byte[]) - Static method in class org.jsecurity.codec.Hex
Encodes the specifed byte array to a character array and then returns that character array as a String.
encodeURL(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
Encode the session identifier associated with this response into the specified URL, if necessary.
encodeUrl(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
 
encrypt(byte[], byte[]) - Method in class org.jsecurity.crypto.BlowfishCipher
Encrypts the specified raw byte array.
encrypt(byte[], byte[]) - Method in interface org.jsecurity.crypto.Cipher
Encrypts data via the specified Cipher key.
encrypt(byte[]) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
ensureAuthorizer() - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Ensures that this instance's Authorizer has been set, and if not, lazily creates one via the createAuthorizer() method and then immediately sets it via the setAuthorizer method.
ensureCacheManager() - Method in class org.jsecurity.mgt.CachingSecurityManager
Simple lazy-initialization method that checks to see if a cacheManager has been set, and if not, attempts to create one and uses that to set the class attribute.
ensureCookieSessionIdStore() - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
ensureRealms() - Method in class org.jsecurity.mgt.RealmSecurityManager
Ensures at least one realm exists, and if not calls createDefaultRealm() and sets it on this instance via the setRealm method.
ensureRequestParamSessionIdStore() - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
ensureSecurityManager(Configuration) - Method in class org.jsecurity.web.servlet.JSecurityFilter
Retrieves the security manager for the given configuration.
ensureSessionManager() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Ensures that the internal delegate SessionManager exists, and if not, calls createSessionManager and sets the resulting instance via the setSessionManager method.
ensureUncached(Serializable) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Ensures that there is no cache entry already in place for a session with id of sessionId.
equals(Object, Object) - Method in class org.jsecurity.authc.credential.SimpleCredentialsMatcher
Returns true if the tokenCredentials argument is logically equal to the accountCredentials argument.
equals(Object) - Method in class org.jsecurity.authc.SimpleAccount
Returns true if the specified object is also a SimpleAccount and its principals are equal to this object's principals, false otherwise.
equals(Object) - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
Returns true if the Object argument is an instanceof SimpleAuthenticationInfo and its principals are equal to this instance's principals, false otherwise.
equals(Object) - Method in class org.jsecurity.authz.SimpleRole
 
equals(Object) - Method in class org.jsecurity.crypto.hash.AbstractHash
Returns true if the specified object is a Hash and its byte array is identical to this Hash's byte array, false otherwise.
equals(Object) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
ExcessiveAttemptsException - Exception in org.jsecurity.authc
Thrown when a system is configured to only allow a certain number of authentication attempts over a period of time and the current session has failed to authenticate successfully within that number.
ExcessiveAttemptsException() - Constructor for exception org.jsecurity.authc.ExcessiveAttemptsException
Creates a new ExcessiveAttemptsException.
ExcessiveAttemptsException(String) - Constructor for exception org.jsecurity.authc.ExcessiveAttemptsException
Constructs a new ExcessiveAttemptsException.
ExcessiveAttemptsException(Throwable) - Constructor for exception org.jsecurity.authc.ExcessiveAttemptsException
Constructs a new ExcessiveAttemptsException.
ExcessiveAttemptsException(String, Throwable) - Constructor for exception org.jsecurity.authc.ExcessiveAttemptsException
Constructs a new ExcessiveAttemptsException.
execute(JndiCallback) - Method in class org.jsecurity.jndi.JndiTemplate
Execute the given JNDI context callback implementation.
execute(JobExecutionContext) - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationJob
Called when the job is executed by quartz.
executeChain(ServletRequest, ServletResponse, FilterChain) - Method in class org.jsecurity.web.servlet.AdviceFilter
Actually executes the specified filter chain by calling chain.doFilter(request,response);.
executeLogin(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
 
ExecutorServiceSessionValidationScheduler - Class in org.jsecurity.session.mgt
SessionValidationScheduler implementation that uses a ScheduledExecutorService to call ValidatingSessionManager.validateSessions() every interval milliseconds.
ExecutorServiceSessionValidationScheduler() - Constructor for class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
ExecutorServiceSessionValidationScheduler(ValidatingSessionManager) - Constructor for class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
expire() - Method in class org.jsecurity.session.mgt.SimpleSession
 
EXPIRED_SESSION_KEY - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
Key that may be used to alert that the request's referenced JSecurity Session has expired prior to request processing.
ExpiredCredentialsException - Exception in org.jsecurity.authc
Thrown during the authentication process when the system determines the submitted credential(s) has expired and will not allow login.
ExpiredCredentialsException() - Constructor for exception org.jsecurity.authc.ExpiredCredentialsException
Creates a new ExpiredCredentialsException.
ExpiredCredentialsException(String) - Constructor for exception org.jsecurity.authc.ExpiredCredentialsException
Constructs a new ExpiredCredentialsException.
ExpiredCredentialsException(Throwable) - Constructor for exception org.jsecurity.authc.ExpiredCredentialsException
Constructs a new ExpiredCredentialsException.
ExpiredCredentialsException(String, Throwable) - Constructor for exception org.jsecurity.authc.ExpiredCredentialsException
Constructs a new ExpiredCredentialsException.
ExpiredSessionException - Exception in org.jsecurity.session
A special case of a StoppedSessionException.
ExpiredSessionException() - Constructor for exception org.jsecurity.session.ExpiredSessionException
Creates a new ExpiredSessionException.
ExpiredSessionException(String) - Constructor for exception org.jsecurity.session.ExpiredSessionException
Constructs a new ExpiredSessionException.
ExpiredSessionException(Throwable) - Constructor for exception org.jsecurity.session.ExpiredSessionException
Constructs a new ExpiredSessionException.
ExpiredSessionException(String, Throwable) - Constructor for exception org.jsecurity.session.ExpiredSessionException
Constructs a new ExpiredSessionException.
ExpiredSessionException(Serializable) - Constructor for exception org.jsecurity.session.ExpiredSessionException
Constructs a new ExpiredSessionException.
ExpiredSessionException(String, Serializable) - Constructor for exception org.jsecurity.session.ExpiredSessionException
Constructs a new ExpiredSessionException.
ExpiredSessionException(String, Throwable, Serializable) - Constructor for exception org.jsecurity.session.ExpiredSessionException
Constructs a new ExpiredSessionException.
extractPathWithinPattern(String, String) - Method in class org.jsecurity.util.AntPathMatcher
Given a pattern and a full path, determine the pattern-mapped part.

F

FILE_PREFIX - Static variable in class org.jsecurity.io.ResourceUtils
Resource path prefix that specifies to load from a file location, value is file:
fileLastModified - Variable in class org.jsecurity.realm.text.PropertiesRealm
 
filterConfig - Variable in class org.jsecurity.web.config.IniWebConfiguration
 
filterConfig - Variable in class org.jsecurity.web.servlet.OncePerRequestFilter
FilterConfig provided by the Servlet container at startup.
FILTERS - Static variable in class org.jsecurity.web.config.IniWebConfiguration
 
FirstSuccessfulAuthenticationStrategy - Class in org.jsecurity.authc.pam
ModularAuthenticationStrategy implementation that only accepts the account data from the first successfully consulted Realm and ignores all subsequent realms.
FirstSuccessfulAuthenticationStrategy() - Constructor for class org.jsecurity.authc.pam.FirstSuccessfulAuthenticationStrategy
 
forgetIdentity() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
forgetIdentity(AuthenticationToken, AuthenticationException) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
forgetIdentity(AuthenticationToken) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
forgetIdentity() - Method in class org.jsecurity.web.WebRememberMeManager
 
FormAuthenticationFilter - Class in org.jsecurity.web.filter.authc
Requires the requesting user to be authenticated for the request to continue, and if they are not, forces the user to login via by redirecting them to the loginUrl you configure.
FormAuthenticationFilter() - Constructor for class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
forName(String) - Static method in class org.jsecurity.util.ClassUtils
Attempts to load the specified class name from the current thread's context class loader, then the current ClassLoader (ClassUtils.class.getClassLoader()), then the system/application ClassLoader (ClassLoader.getSystemClassLoader(), in that order.
FORWARD_CONTEXT_PATH_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
FORWARD_PATH_INFO_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
FORWARD_QUERY_STRING_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
FORWARD_REQUEST_URI_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
Standard Servlet 2.4+ spec request attributes for forward URI and paths.
FORWARD_SERVLET_PATH_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
fromBase64String(String) - Static method in class org.jsecurity.crypto.hash.Md2Hash
 
fromBase64String(String) - Static method in class org.jsecurity.crypto.hash.Md5Hash
 
fromBase64String(String) - Static method in class org.jsecurity.crypto.hash.Sha1Hash
 
fromBase64String(String) - Static method in class org.jsecurity.crypto.hash.Sha256Hash
 
fromBase64String(String) - Static method in class org.jsecurity.crypto.hash.Sha384Hash
 
fromBase64String(String) - Static method in class org.jsecurity.crypto.hash.Sha512Hash
 
fromHexString(String) - Static method in class org.jsecurity.crypto.hash.Md2Hash
 
fromHexString(String) - Static method in class org.jsecurity.crypto.hash.Md5Hash
 
fromHexString(String) - Static method in class org.jsecurity.crypto.hash.Sha1Hash
 
fromHexString(String) - Static method in class org.jsecurity.crypto.hash.Sha256Hash
 
fromHexString(String) - Static method in class org.jsecurity.crypto.hash.Sha384Hash
 
fromHexString(String) - Static method in class org.jsecurity.crypto.hash.Sha512Hash
 
fromRealm(String) - Method in interface org.jsecurity.subject.PrincipalCollection
Returns a single Subject's principals retrieved from the specified Realm only as a Collection, or an empty Collection if there are not any principals from that realm.
fromRealm(String) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
fromStringValue(String) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 

G

generateNewKey() - Static method in class org.jsecurity.crypto.BlowfishCipher
Generates a new Key suitable for this Cipher by calling generateNewKey(128) (uses a 128 bit size by default).
generateNewKey(int) - Static method in class org.jsecurity.crypto.BlowfishCipher
Generates a new Key of the specified size suitable for this Cipher (based on the ALGORITHM using the JDK KeyGenerator.
generateNewSessionId() - Method in class org.jsecurity.session.mgt.eis.MemorySessionDAO
 
get(Object) - Method in interface org.jsecurity.cache.Cache
Returns the Cached value stored under the specified key or null if there is no Cache entry for that key.
get(Object) - Method in class org.jsecurity.cache.ehcache.EhCache
Gets a value of an element which matches the given key.
get(Object) - Method in class org.jsecurity.cache.HashtableCache
 
get(Object) - Static method in class org.jsecurity.util.ThreadContext
Returns the object for the specified key that is bound to the current thread.
GET_METHOD - Static variable in class org.jsecurity.web.filter.AccessControlFilter
Constant representing the HTTP 'GET' request method, equal to GET.
getActiveSessions() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
getActiveSessions() - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
getActiveSessions() - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Returns all active sessions in the system.
getActiveSessions() - Method in interface org.jsecurity.session.mgt.eis.SessionDAO
Returns all sessions in the EIS that are considered active, meaning all sessions that haven't been stopped/expired.
getActiveSessionsCache() - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Returns the cache instance to use for storing active sessions.
getActiveSessionsCacheLazy() - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Returns the active sessions cache, but if that cache instance is null, first lazily creates the cache instance via the CachingSessionDAO.createActiveSessionsCache() method and then returns the instance.
getActiveSessionsCacheName() - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Returns the name of the actives sessions cache to be returned by the CacheManager.
getAlgorithmName() - Method in class org.jsecurity.crypto.hash.AbstractHash
Implemented by subclasses, this specifies the name of the MessageDigest algorithm to use when performing the hash.
getAlgorithmName() - Method in class org.jsecurity.crypto.hash.Md2Hash
 
getAlgorithmName() - Method in class org.jsecurity.crypto.hash.Md5Hash
 
getAlgorithmName() - Method in class org.jsecurity.crypto.hash.Sha1Hash
 
getAlgorithmName() - Method in class org.jsecurity.crypto.hash.Sha256Hash
 
getAlgorithmName() - Method in class org.jsecurity.crypto.hash.Sha384Hash
 
getAlgorithmName() - Method in class org.jsecurity.crypto.hash.Sha512Hash
 
getAllAttributeValues(Attribute) - Static method in class org.jsecurity.realm.ldap.LdapUtils
Helper method used to retrieve all attribute values from a particular context attribute.
getAlreadyFilteredAttributeName() - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Return name of the request attribute that identifies that a request has already been filtered.
getAndClearSavedRequest(ServletRequest) - Static method in class org.jsecurity.web.WebUtils
 
getAnnotation(MethodInvocation) - Method in class org.jsecurity.aop.AnnotationMethodInterceptor
Returns the Annotation that this interceptor will process for the specified method invocation.
getAnnotationClass() - Method in class org.jsecurity.aop.AnnotationHandler
Returns the type of annotation this handler inspects and processes.
getAnnotationValue(Annotation) - Method in class org.jsecurity.authz.aop.PermissionAnnotationHandler
Returns the annotation value, from which the Permission will be constructed.
getApplicationName() - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Returns the name to use in the ServletResponse's WWW-Authenticate header.
getArguments() - Method in interface org.jsecurity.aop.MethodInvocation
Returns the (possibly null) arguments to be supplied to the method invocation.
getAttribute(Serializable, Object) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
getAttribute(Object) - Method in class org.jsecurity.session.mgt.DelegatingSession
 
getAttribute(Serializable, Object) - Method in interface org.jsecurity.session.mgt.SessionManager
Returns the object bound to the specified session identified by the specified key.
getAttribute(Object) - Method in class org.jsecurity.session.mgt.SimpleSession
 
getAttribute(Object) - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
getAttribute(Object) - Method in interface org.jsecurity.session.Session
Returns the object bound to this session identified by the specified key.
getAttribute(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getAttribute(String) - Method in class org.jsecurity.web.servlet.ServletContextSupport
 
getAttribute(Object) - Method in class org.jsecurity.web.session.WebSession
 
getAttributeKeys(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
getAttributeKeys() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
getAttributeKeys(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Returns the keys of all the attributes stored under the session identified by sessionId.
getAttributeKeys() - Method in class org.jsecurity.session.mgt.SimpleSession
 
getAttributeKeys() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
getAttributeKeys() - Method in interface org.jsecurity.session.Session
Returns the keys of all the attributes stored under this session.
getAttributeKeys() - Method in class org.jsecurity.web.session.WebSession
 
getAttributeNames() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getAttributes() - Method in class org.jsecurity.session.mgt.SimpleSession
 
getAuthcScheme() - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Returns the HTTP WWW-Authenticate header scheme that this filter will use when sending the HTTP Basic challenge response.
getAuthenticationInfo(AuthenticationToken) - Method in class org.jsecurity.realm.AuthenticatingRealm
 
getAuthenticationInfo(AuthenticationToken) - Method in interface org.jsecurity.realm.Realm
Returns an account's authentication-specific information for the specified token, or null if no account could be found based on the token.
getAuthenticationTokenClass() - Method in class org.jsecurity.realm.AuthenticatingRealm
Returns the authenticationToken class supported by this realm.
getAuthenticator() - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Returns the delegate Authenticator instance that this SecurityManager uses to perform all authentication operations.
getAuthorizationCache() - Method in class org.jsecurity.realm.AuthorizingRealm
 
getAuthorizationCacheKey(PrincipalCollection) - Method in class org.jsecurity.realm.AuthorizingRealm
 
getAuthorizationCacheKey(PrincipalCollection) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
getAuthorizationCacheName() - Method in class org.jsecurity.realm.AuthorizingRealm
 
getAuthorizationInfo(PrincipalCollection) - Method in class org.jsecurity.realm.AuthorizingRealm
Returns an account's authorization-specific information for the specified principals, or null if no account could be found.
getAuthorizer() - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Returns the underlying wrapped Authorizer instance to which this SecurityManager implementation delegates all of its authorization calls.
getAuthzHeader(ServletRequest) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Returns the AUTHORIZATION_HEADER from the specified ServletRequest.
getAuthzScheme() - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Returns the HTTP Authorization header value that this filter will respond to as indicating a login request.
getBytes() - Method in class org.jsecurity.crypto.hash.AbstractHash
 
getBytes() - Method in interface org.jsecurity.crypto.hash.Hash
Returns this Hash's byte array, that is, the hashed value of the original input source.
getCache(String) - Method in interface org.jsecurity.cache.CacheManager
Acquires the cache with the specified name.
getCache(String) - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Loads an existing EhCache from the cache manager, or starts a new cache if one is not found.
getCache(String) - Method in class org.jsecurity.cache.HashtableCacheManager
Builds a new HashtableCache with the given name.
getCachedSession(Serializable) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Returns the cached session with the corresponding sessionId or null if there is no session cached under that id (or if there is no Cache).
getCachedSession(Serializable, Cache) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Returns the Session with the specified id from the specified cache.
getCacheManager() - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Returns the wrapped Ehcache CacheManager instance.
getCacheManager() - Method in class org.jsecurity.mgt.CachingSecurityManager
Returns the CacheManager used by this SecurityManager.
getCacheManager() - Method in class org.jsecurity.realm.CachingRealm
Returns the CacheManager used for data caching to reduce EIS round trips, or null if caching is disabled.
getCacheManager() - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Returns the CacheManager used by the implementation that creates the activeSessions Cache.
getCacheManagerConfigFile() - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Returns the resource location of the config file used to initialize a new EhCache CacheManager instance.
getCacheManagerConfigFileInputStream() - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Acquires the InputStream for the ehcache configuration file using ResourceUtils.getInputStreamForPath with the path returned from getCacheManagerConfigFile().
getChain(ServletRequest, ServletResponse, FilterChain) - Method in class org.jsecurity.web.config.IniWebConfiguration
 
getChain(String, FilterChain) - Method in class org.jsecurity.web.config.IniWebConfiguration
Returns the FilterChain to use for the specified application path, or null if the original FilterChain should be used.
getChain(ServletRequest, ServletResponse, FilterChain) - Method in interface org.jsecurity.web.config.WebConfiguration
Returns the filter chain that should be executed for the given request, or null if the original chain should be used.
getCharsetName() - Method in class org.jsecurity.io.TextResource
 
getCipher() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getCipherKey() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getCleanParam(ServletRequest, String) - Static method in class org.jsecurity.web.WebUtils
Convenience method that returns a request parameter value, first running it through StringUtils.clean(String).
getConfig() - Method in class org.jsecurity.config.TextConfiguration
 
getConfiguration() - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
getConfigUrl() - Method in class org.jsecurity.config.IniConfiguration
 
getConstructor(Class, Class...) - Static method in class org.jsecurity.util.ClassUtils
 
getContext() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
 
getContextInitParam(String) - Method in class org.jsecurity.web.servlet.ServletContextSupport
 
getContextPath(HttpServletRequest) - Static method in class org.jsecurity.web.WebUtils
Return the context path for the given request, detecting an include request URL if called within a RequestDispatcher include.
getCookieMaxAge() - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will get the underyling rememberMe cookie's max age.
getCookieName() - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will get the underyling rememberMe cookie's name.
getCookiePath() - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will get the underyling rememberMe cookie's path.
getCreationTime() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getCredentials() - Method in interface org.jsecurity.authc.AuthenticationInfo
Returns the credentials associated with the corresponding Subject.
getCredentials() - Method in interface org.jsecurity.authc.AuthenticationToken
Returns the credentials submitted by the user during the authentication process that verifies the submitted account identity.
getCredentials(AuthenticationToken) - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
As this is a HashedCredentialMatcher, this method overrides the parent method by returning a hashed value of the submitted token's credentials.
getCredentials(AuthenticationInfo) - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Returns a Hash instance representing the already-hashed AuthenticationInfo credentials stored in the system.
getCredentials(AuthenticationToken) - Method in class org.jsecurity.authc.credential.SimpleCredentialsMatcher
Returns the token's credentials.
getCredentials(AuthenticationInfo) - Method in class org.jsecurity.authc.credential.SimpleCredentialsMatcher
Returns the account's credentials.
getCredentials() - Method in class org.jsecurity.authc.SimpleAccount
Simply returns this.authcInfo.getCredentials.
getCredentials() - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
 
getCredentials() - Method in class org.jsecurity.authc.UsernamePasswordToken
Returns the password char array.
getCredentialsMatcher() - Method in class org.jsecurity.realm.AuthenticatingRealm
Returns the CredentialsMatcher used during an authentication attempt to verify submitted credentials with those stored in the system.
getDecryptionCipherKey() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getDefaultValue() - Method in class org.jsecurity.web.tags.PrincipalTag
 
getDigest(String) - Method in class org.jsecurity.crypto.hash.AbstractHash
Returns the JDK MessageDigest instance to use for executing the hash.
getDiskStoreSize() - Method in class org.jsecurity.cache.ehcache.EhCache
Returns the size (in bytes) that this EhCache's disk store is consuming or -1 if that number is unknown or cannot be calculated.
getEditorClass() - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
getEncryptionCipherKey() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getEnvironment() - Method in class org.jsecurity.jndi.JndiTemplate
Return the environment for the JNDI InitialContext, or null if none should be used.
getFailureKeyAttribute() - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
getFilterConfig() - Method in class org.jsecurity.web.config.IniWebConfiguration
Returns the FilterConfig provided by the Servlet container at webapp startup.
getFilterConfig() - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Returns the servlet container specified FilterConfig instance provided at startup.
getFilters(Map<String, String>) - Method in class org.jsecurity.web.config.IniWebConfiguration
 
getFromRequestParam(ServletRequest) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
getGlobalSessionTimeout() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
Returns the time in milliseconds that any session may remain idle before expiring.
getHandler() - Method in class org.jsecurity.aop.AnnotationMethodInterceptor
 
getHashIterations() - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Returns the number of times a submitted AuthenticationToken's credentials will be hashed before comparing to the credentials stored in the system.
getHostAddress() - Method in exception org.jsecurity.authz.HostUnauthorizedException
Returns the host address associated with this exception.
getHostAddress(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
getHostAddress() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
getHostAddress(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Returns the IP address of the host where the session was started, if known.
getHostAddress() - Method in class org.jsecurity.session.mgt.SimpleSession
 
getHostAddress() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
getHostAddress() - Method in interface org.jsecurity.session.Session
Returns the InetAddress of the host that originated this session, or null if the host address is unknown.
getHostAddress() - Method in class org.jsecurity.web.session.WebSession
 
getId(String) - Method in class org.jsecurity.config.ReflectionBuilder
 
getId() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
getId() - Method in class org.jsecurity.session.mgt.SimpleSession
 
getId() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
getId() - Method in interface org.jsecurity.session.Session
Returns the unique identifier assigned by the system upon session creation.
getId() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getId() - Method in class org.jsecurity.web.session.WebSession
 
getIdentityAttribute() - Method in class org.jsecurity.web.WebRememberMeManager
 
getIdentityToRemember(AuthenticationInfo) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getInetAddress() - Method in interface org.jsecurity.authc.InetAuthenticationToken
Returns the InetAddress from where the authentication attempt is occurring.
getInetAddress() - Method in class org.jsecurity.authc.UsernamePasswordToken
Returns the inetAddress from where the authentication attempt occurs.
getInetAddress(RemoteInvocation, Object) - Method in class org.jsecurity.spring.remoting.SecureRemoteInvocationExecutor
 
getInetAddress() - Method in class org.jsecurity.subject.DelegatingSubject
Returns the InetAddress associated with the client who created/is interacting with this Subject.
getInetAddress() - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies retrieval of a thread-bound InetAddress.
getInetAddress(ServletRequest) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
Returns the InetAddress associated with the current subject.
getInetAddress(ServletRequest) - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
getInetAddress(ServletRequest) - Static method in class org.jsecurity.web.WebUtils
Returns the InetAddress associated with the current request, or null if the address cannot be resolved/determined.
getInputStreamForPath(String) - Static method in class org.jsecurity.io.ResourceUtils
Returns the InputStream for the resource represented by the specified path.
getInterval() - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
getJndiEnvironment() - Method in class org.jsecurity.jndi.JndiLocator
Return the JNDI environment to use for JNDI lookups.
getJndiNames() - Method in class org.jsecurity.realm.jndi.JndiRealmFactory
Returns the JNDI names that will be used to look up Realm(s) from JNDI.
getJndiTemplate() - Method in class org.jsecurity.jndi.JndiLocator
Return the JNDI template to use for JNDI lookups.
getKey() - Method in class org.jsecurity.crypto.BlowfishCipher
Returns the default Key to use for symmetric encryption and decryption if one is not specified during encryption/decryption.
getKeyNames() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getLastAccessedTime() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getLastAccessTime(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
getLastAccessTime() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
getLastAccessTime(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Returns the time the Session identified by the specified sessionId last interacted with the system.
getLastAccessTime() - Method in class org.jsecurity.session.mgt.SimpleSession
 
getLastAccessTime() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
getLastAccessTime() - Method in interface org.jsecurity.session.Session
Returns the last time the user associated with the session interacted with the system.
getLastAccessTime() - Method in class org.jsecurity.web.session.WebSession
 
getLdapContext(String, String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
getLdapContext(String, String) - Method in interface org.jsecurity.realm.ldap.LdapContextFactory
Creates (or retrieves from a pool) a LdapContext connection bound using the username and password specified.
getLocalHost() - Static method in class org.jsecurity.subject.DelegatingSubject
 
getLoginUrl() - Method in class org.jsecurity.web.filter.AccessControlFilter
Returns the login URL used to authenticate a user.
getMajorVersion() - Static method in class org.jsecurity.util.JavaEnvironment
Get the major version code.
getMaxAge() - Method in class org.jsecurity.web.attr.CookieAttribute
Returns the Cookie's maxAge setting.
getMaxInactiveInterval() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getMemoryStoreSize() - Method in class org.jsecurity.cache.ehcache.EhCache
Returns the size (in bytes) that this EhCache's memory store is using (RAM), or -1 if that number is unknown or cannot be calculated.
getMemoryUsage() - Method in class org.jsecurity.cache.ehcache.EhCache
Returns the size (in bytes) that this EhCache is using in memory (RAM), or -1 if that number is unknown or cannot be calculated.
getMethod() - Method in interface org.jsecurity.aop.MethodInvocation
Returns the actual Method to be invoked.
getMethod() - Method in class org.jsecurity.web.SavedRequest
 
getMethodInterceptors() - Method in class org.jsecurity.authz.aop.AnnotationsAuthorizingMethodInterceptor
Returns the method interceptors to execute for the annotated method.
getModularAuthenticationStrategy() - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Returns the ModularAuthenticationStrategy utilized by this modular authenticator during a multi-realm log-in attempt.
getName() - Method in class org.jsecurity.authz.SimpleRole
 
getName() - Method in class org.jsecurity.realm.CachingRealm
 
getName() - Method in interface org.jsecurity.realm.Realm
Returns the (application-unique) name assigned to this Realm.
getName(String, String) - Method in class org.jsecurity.realm.text.PropertiesRealm
 
getName() - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
getName() - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Returns the name of this filter.
getName() - Method in class org.jsecurity.web.tags.PermissionTag
 
getName() - Method in class org.jsecurity.web.tags.RoleTag
 
getObjectPermissions() - Method in class org.jsecurity.authc.SimpleAccount
Returns all object-based permissions assigned directly to this Account (not any of its realms).
getObjectPermissions() - Method in interface org.jsecurity.authz.AuthorizationInfo
Returns all type-safe Permissions assigned to the corresponding Subject.
getObjectPermissions() - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
 
getObjects() - Method in class org.jsecurity.config.ReflectionBuilder
 
getOrCreateSecurityManager(ApplicationContext, Map<String, Map<String, String>>) - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
getParts() - Method in class org.jsecurity.authz.permission.WildcardPermission
 
getPassword() - Method in class org.jsecurity.authc.UsernamePasswordToken
Returns the password submitted during an authentication attempt as a character array.
getPassword(ServletRequest) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
getPasswordParam() - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
getPath() - Method in class org.jsecurity.web.attr.CookieAttribute
Returns the Cookie's path setting.
getPathInputStream(String) - Method in class org.jsecurity.io.AbstractResource
 
getPathMatcher() - Method in class org.jsecurity.web.config.IniWebConfiguration
Returns the PatternMatcher used when determining if an incoming request's path matches a configured filter chain path in the [urls] section.
getPathWithinApplication(ServletRequest) - Method in class org.jsecurity.web.config.IniWebConfiguration
Merely returns WebUtils.
getPathWithinApplication(ServletRequest) - Method in class org.jsecurity.web.filter.PathMatchingFilter
Returns the context path within the application based on the specified request.
getPathWithinApplication(HttpServletRequest) - Static method in class org.jsecurity.web.WebUtils
Return the path within the web application for the given request.
getPermissionResolver() - Method in class org.jsecurity.realm.AuthorizingRealm
 
getPermissions() - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
getPermissions() - Method in class org.jsecurity.authz.SimpleRole
 
getPermissions(Connection, String, Collection<String>) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
 
getPermissionString() - Method in exception org.jsecurity.authz.permission.InvalidPermissionStringException
Returns the permission string that was invalid and caused this exception to be thrown.
getPrincipal() - Method in interface org.jsecurity.authc.AuthenticationToken
Returns the account identity submitted during the authentication process.
getPrincipal() - Method in class org.jsecurity.authc.UsernamePasswordToken
Simply returns getUsername().
getPrincipal() - Method in class org.jsecurity.subject.DelegatingSubject
 
getPrincipal() - Method in interface org.jsecurity.subject.Subject
Returns this Subject's uniquely-identifying principal, or null if this Subject doesn't yet have account data associated with it (for example, if they haven't logged in).
getPrincipals() - Method in interface org.jsecurity.authc.AuthenticationInfo
Returns all principals associated with the corresponding Subject.
getPrincipals() - Method in class org.jsecurity.authc.SimpleAccount
Returns the principals, aka the identifying attributes (username, user id, first name, last name, etc) of this Account.
getPrincipals() - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
 
getPrincipals(RemoteInvocation, Object, Session) - Method in class org.jsecurity.spring.remoting.SecureRemoteInvocationExecutor
 
getPrincipals() - Method in class org.jsecurity.subject.DelegatingSubject
 
getPrincipals() - Method in interface org.jsecurity.subject.Subject
Returns all of this Subject's principals (identifying attributes) in the form of a PrincipalCollection.
getPrincipals(Session) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
getPrincipals(Session, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
getPrincipalsAndCredentials(String, ServletRequest) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Returns the username obtained from the authorizationHeader.
getPrincipalsAndCredentials(String, String) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Returns the username and password pair based on the specified encoded String obtained from the request's authorization header.
getPrincipalsLazy(String) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
getPrivateRoleName(PrincipalCollection) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
getProperty() - Method in class org.jsecurity.web.tags.PrincipalTag
 
getQueryString() - Method in class org.jsecurity.web.SavedRequest
 
getRealmNames() - Method in interface org.jsecurity.subject.PrincipalCollection
Returns the realm names that this collection has principals for.
getRealmNames() - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
getRealms() - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Returns the realm(s) used by this Authenticator during an authentication attempt.
getRealms() - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns the realms wrapped by this Authorizer which are consulted during an authorization check.
getRealms() - Method in class org.jsecurity.mgt.RealmSecurityManager
Returns the Realms managed by this SecurityManager instance.
getRealms() - Method in class org.jsecurity.realm.jndi.JndiRealmFactory
Performs the JNDI lookups for each specified JNDI name and returns all discovered Realms in an ordered collection.
getRealms() - Method in interface org.jsecurity.realm.RealmFactory
Returns a collection of Realm instances that will be used to construct the application's SecurityManager instance.
getReferencedObject(String) - Method in class org.jsecurity.config.ReflectionBuilder
 
getRememberedIdentity() - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
getRememberedPrincipals() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getRememberedPrincipals() - Method in interface org.jsecurity.subject.RememberMeManager
 
getRememberMeManager() - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
getRememberMeParam() - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
getRemoteUser() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
getRequest() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
 
getRequestedSessionId() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
getRequestURI() - Method in class org.jsecurity.web.SavedRequest
 
getRequestUri(HttpServletRequest) - Static method in class org.jsecurity.web.WebUtils
Return the request URI for the given request, detecting an include request URL if called within a RequestDispatcher include.
getRequestUrl() - Method in class org.jsecurity.web.SavedRequest
 
getRequiredServletRequest() - Static method in class org.jsecurity.web.WebUtils
Convenience method that simplifies retrieval of a required thread-bound ServletRequest.
getRequiredServletResponse() - Static method in class org.jsecurity.web.WebUtils
Convenience method that simplifies retrieval of a required thread-bound ServletResponse.
getResourceAsStream(String) - Static method in class org.jsecurity.util.ClassUtils
Returns the specified resource by checking the current thread's context class loader, then the current ClassLoader (ClassUtils.class.getClassLoader()), then the system/application ClassLoader (ClassLoader.getSystemClassLoader(), in that order, using getResourceAsStream(name).
getResources() - Static method in class org.jsecurity.util.ThreadContext
Returns the ThreadLocal Map.
getRole(String) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
getRole(String) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
getRoleDefinitions() - Method in class org.jsecurity.realm.text.TextConfigurationRealm
 
getRolename(String) - Method in class org.jsecurity.realm.text.PropertiesRealm
 
getRolenames() - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
getRoleNamesForGroups(Collection<String>) - Method in class org.jsecurity.realm.activedirectory.ActiveDirectoryRealm
This method is called by the default implementation to translate Active Directory group names to role names.
getRoleNamesForUser(Connection, String) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
 
getRoles() - Method in class org.jsecurity.authc.SimpleAccount
Returns this.authzInfo.getRoles();
getRoles() - Method in interface org.jsecurity.authz.AuthorizationInfo
Returns the names of all roles assigned to a corresponding Subject.
getRoles() - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
 
getSalt(AuthenticationToken) - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Returns a salt value used to hash the token's credentials.
getSavedRequest(ServletRequest) - Static method in class org.jsecurity.web.WebUtils
 
getScheduler() - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
 
getSectionName(String) - Static method in class org.jsecurity.io.IniResource
 
getSections() - Method in class org.jsecurity.io.IniResource
 
getSecurityManager() - Method in class org.jsecurity.config.ResourceConfiguration
 
getSecurityManager() - Method in interface org.jsecurity.mgt.SecurityManagerFactory
Returns a fully configured and initialized SecurityManager.
getSecurityManager() - Static method in class org.jsecurity.SecurityUtils
Returns the VM (static) singleton SecurityManager.
getSecurityManager() - Method in class org.jsecurity.spring.security.interceptor.AuthorizationAttributeSourceAdvisor
 
getSecurityManager() - Method in class org.jsecurity.subject.DelegatingSubject
 
getSecurityManager() - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies retrieval of the application's SecurityManager instance from the current thread.
getSecurityManager() - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
getSecurityManagerBeanName() - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
getSecurityManagerByType(ApplicationContext) - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
getSerializedRememberedIdentity() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getSerializedRememberedIdentity() - Method in class org.jsecurity.web.WebRememberMeManager
 
getSerializer() - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
getServletContext() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getServletContext() - Method in class org.jsecurity.web.servlet.ServletContextSupport
 
getSession(Serializable) - Method in class org.jsecurity.mgt.SessionsSecurityManager
 
getSession(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
getSession(Serializable) - Method in interface org.jsecurity.session.SessionFactory
Acquires a handle to the session identified by the specified sessionId.
getSession() - Method in class org.jsecurity.subject.DelegatingSubject
 
getSession(boolean) - Method in class org.jsecurity.subject.DelegatingSubject
 
getSession() - Method in interface org.jsecurity.subject.Subject
Returns the application Session associated with this Subject.
getSession(boolean) - Method in interface org.jsecurity.subject.Subject
Returns the application Session associated with this Subject.
getSession(boolean) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
getSession() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
getSession() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getSession(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
Returns the Session associated with the specified request if it is valid or null if a Session doesn't exist or it was invalid.
getSession(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.session.ServletContainerSessionManager
 
getSession(ServletRequest, ServletResponse) - Method in interface org.jsecurity.web.session.WebSessionManager
Returns the current Session associated with the specified request pair, or null if there is no session associated with the request.
getSessionContext() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getSessionDAO() - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
getSessionId() - Method in exception org.jsecurity.session.SessionException
Returns the session id of the associated Session.
getSessionIdCookieAttribute() - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
getSessionIdRequestParamAttribute() - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
getSessionManager() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Returns this security manager's internal delegate SessionManager.
getSessionManager() - Method in class org.jsecurity.session.mgt.DelegatingSession
Returns the SessionManager used by this handle to invoke all session-related methods.
getSessionManager() - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
getSessionMode() - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
getSessionValidationInterval() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
getSessionValidationScheduler() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
getSimpleRoles() - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
getStartTimestamp(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
getStartTimestamp() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
getStartTimestamp(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Returns the time the Session identified by the specified sessionId was started in the system.
getStartTimestamp() - Method in class org.jsecurity.session.mgt.SimpleSession
 
getStartTimestamp() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
getStartTimestamp() - Method in interface org.jsecurity.session.Session
Returns the time the session was started; that is, the time the system created the instance.
getStartTimestamp() - Method in class org.jsecurity.web.session.WebSession
 
getStopTimestamp() - Method in class org.jsecurity.session.mgt.SimpleSession
Returns the time the session was stopped, or null if the session is still active.
getStringPermissions() - Method in class org.jsecurity.authc.SimpleAccount
Returns all String-based permissions assigned to this Account.
getStringPermissions() - Method in interface org.jsecurity.authz.AuthorizationInfo
Returns all string-based permissions assigned to the corresponding Subject.
getStringPermissions() - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
 
getSubject() - Method in class org.jsecurity.aop.AnnotationHandler
Returns the Subject associated with the currently-executing code.
getSubject() - Method in class org.jsecurity.aop.MethodInterceptorSupport
Returns the Subject associated with the currently-executing code.
getSubject(boolean) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
getSubject() - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
getSubject() - Method in interface org.jsecurity.mgt.SecurityManager
Returns the Subject instance representing the currently executing user.
getSubject() - Static method in class org.jsecurity.SecurityUtils
Returns the currently accessible Subject available to the calling code depending on runtime environment.
getSubject() - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies retrieval of a thread-bound Subject.
getSubject(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.AccessControlFilter
Convenience method that acquires the Subject associated with the request.
getSubject() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
getSubject() - Method in class org.jsecurity.web.tags.SecureTag
 
getSubjectPrincipal() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
getSuccessUrl() - Method in class org.jsecurity.web.filter.authc.AuthenticationFilter
 
getSystemLdapContext() - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
getSystemLdapContext() - Method in interface org.jsecurity.realm.ldap.LdapContextFactory
Creates (or retrieves from a pool) a LdapContext connection bound using the system account, or anonymously if no system account is configured.
getTimeout(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
getTimeout(Session) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
Subclass template hook in case per-session timeout is not based on Session.getTimeout().
getTimeout() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
getTimeout(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Returns the time in milliseconds that the specified session may remain idle before expiring.
getTimeout() - Method in class org.jsecurity.session.mgt.SimpleSession
 
getTimeout() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
getTimeout() - Method in interface org.jsecurity.session.Session
Returns the time in milliseconds that the session session may remain idle before expiring.
getTimeout() - Method in class org.jsecurity.web.session.WebSession
 
getType() - Method in class org.jsecurity.web.tags.PrincipalTag
 
getUnauthorizedUrl() - Method in class org.jsecurity.web.filter.authz.AuthorizationFilter
 
getUrl() - Method in class org.jsecurity.web.RedirectView
 
getUser(String) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
getUserDefinitions() - Method in class org.jsecurity.realm.text.TextConfigurationRealm
 
getUsername() - Method in class org.jsecurity.authc.UsernamePasswordToken
Returns the username submitted during an authentication attempt.
getUsername(String) - Method in class org.jsecurity.realm.text.PropertiesRealm
 
getUsername(ServletRequest) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
getUsernameParam() - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
getUserPrincipal() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
getValue(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getValueNames() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
getVersion() - Static method in class org.jsecurity.util.JavaEnvironment
Return the full Java version string, as returned by System.getProperty("java.version").
globalSessionTimeout - Variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
GuestAnnotationHandler - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresGuest annotation is declared, and if so, ensures the calling Subject does not have an identity before invoking the method.
GuestAnnotationHandler() - Constructor for class org.jsecurity.authz.aop.GuestAnnotationHandler
Default no-argument constructor that ensures this interceptor looks for RequiresGuest annotations in a method declaration.
GuestAnnotationMethodInterceptor - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresGuest annotation is declared, and if so, ensures the calling Subject does not have an identity before invoking the method.
GuestAnnotationMethodInterceptor() - Constructor for class org.jsecurity.authz.aop.GuestAnnotationMethodInterceptor
Default no-argument constructor that ensures this interceptor looks for RequiresGuest annotations in a method declaration.
GuestTag - Class in org.jsecurity.web.tags
JSP tag that renders the tag body if the current user is not known to the system, either because they haven't logged in yet, or because they have no 'RememberMe' identity.
GuestTag() - Constructor for class org.jsecurity.web.tags.GuestTag
 

H

handleInvalidSession(ServletRequest, ServletResponse, InvalidSessionException) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
hasAllRoles(PrincipalCollection, Collection<String>) - Method in interface org.jsecurity.authz.Authorizer
Returns true if the corresponding Subject/user has all of the specified roles, false otherwise.
hasAllRoles(Collection<String>) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
hasAllRoles(PrincipalCollection, Collection<String>) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true iff any of the configured realms' Authorizer.hasRole(org.jsecurity.subject.PrincipalCollection, String) call returns true for all roles specified, false otherwise.
hasAllRoles(Collection<String>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
hasAllRoles(PrincipalCollection, Collection<String>) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
hasAllRoles(PrincipalCollection, Collection<String>) - Method in class org.jsecurity.realm.AuthorizingRealm
 
hasAllRoles(Collection<String>) - Method in class org.jsecurity.subject.DelegatingSubject
 
hasAllRoles(Collection<String>) - Method in interface org.jsecurity.subject.Subject
Returns true if this Subject has all of the specified roles, false otherwise.
HasAnyRolesTag - Class in org.jsecurity.web.tags
Displays body content if the current user has any of the roles specified.
HasAnyRolesTag() - Constructor for class org.jsecurity.web.tags.HasAnyRolesTag
 
hash(byte[]) - Method in class org.jsecurity.crypto.hash.AbstractHash
Hashes the specified byte array without a salt for a single iteration.
hash(byte[], byte[]) - Method in class org.jsecurity.crypto.hash.AbstractHash
Hashes the specified byte array using the given salt for a single iteration.
hash(byte[], byte[], int) - Method in class org.jsecurity.crypto.hash.AbstractHash
Hashes the specified byte array using the given salt for the specified number of iterations.
Hash - Interface in org.jsecurity.crypto.hash
A Cryptoraphic Hash represents a one-way conversion algorithm that transforms an input source to an underlying byte array.
hashCode() - Method in class org.jsecurity.authc.SimpleAccount
If the principals are not null, returns principals.hashCode(), otherwise returns 0 (zero).
hashCode() - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
Returns the hashcode of the internal principals instance.
hashCode() - Method in class org.jsecurity.authz.SimpleRole
 
hashCode() - Method in class org.jsecurity.crypto.hash.AbstractHash
Simply returns toHex().hashCode();
hashCode() - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
HashedCredentialsMatcher - Class in org.jsecurity.authc.credential
A HashedCredentialMatcher provides support for hashing of supplied AuthenticationToken credentials before being compared to those in the AuthenticationInfo from the data store.
HashedCredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.HashedCredentialsMatcher
 
hashProvidedCredentials(Object, Object, int) - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Hashes the provided credentials a total of hashIterations times, using the given salt.
hashProvidedCredentials(Object, Object, int) - Method in class org.jsecurity.authc.credential.Md2CredentialsMatcher
This implementation merely returns new Md2Hash(credentials,salt,hashIterations).
hashProvidedCredentials(Object, Object, int) - Method in class org.jsecurity.authc.credential.Md5CredentialsMatcher
This implementation merely returns new Md5Hash(credentials,salt,hashIterations).
hashProvidedCredentials(Object, Object, int) - Method in class org.jsecurity.authc.credential.Sha1CredentialsMatcher
This implementation merely returns new Sha1Hash(credentials,salt,hashIterations).
hashProvidedCredentials(Object, Object, int) - Method in class org.jsecurity.authc.credential.Sha256CredentialsMatcher
This implementation merely returns new Sha256Hash(credentials,salt,hashIterations).
hashProvidedCredentials(Object, Object, int) - Method in class org.jsecurity.authc.credential.Sha384CredentialsMatcher
This implementation merely returns new Sha384Hash(credentials,salt,hashIterations).
hashProvidedCredentials(Object, Object, int) - Method in class org.jsecurity.authc.credential.Sha512CredentialsMatcher
This implementation merely returns new Sha512Hash(credentials,salt,hashIterations).
HashtableCache - Class in org.jsecurity.cache
An implementation of the JSecurity Cache interface that uses a Hashtable to store cached objects.
HashtableCache(String) - Constructor for class org.jsecurity.cache.HashtableCache
Creates a new cache with the given name.
HashtableCacheManager - Class in org.jsecurity.cache
A CacheManager that returns HashtableCache caches.
HashtableCacheManager() - Constructor for class org.jsecurity.cache.HashtableCacheManager
 
hasLength(String) - Static method in class org.jsecurity.util.StringUtils
Check that the given String is neither null nor of length 0.
HasPermissionTag - Class in org.jsecurity.web.tags
 
HasPermissionTag() - Constructor for class org.jsecurity.web.tags.HasPermissionTag
 
hasPrincipals() - Method in class org.jsecurity.subject.DelegatingSubject
 
hasResourcePrefix(String) - Static method in class org.jsecurity.io.ResourceUtils
Returns true if the resource path is not null and starts with one of the recognized resource prefixes (CLASSPATH_PREFIX, URL_PREFIX, or FILE_PREFIX), false otherwise.
hasRole(PrincipalCollection, String) - Method in interface org.jsecurity.authz.Authorizer
Returns true if the corresponding Subject/user has the specified role, false otherwise.
hasRole(String) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
hasRole(PrincipalCollection, String) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true if any of the configured realms' Authorizer.hasRole(org.jsecurity.subject.PrincipalCollection, String) call returns true, false otherwise.
hasRole(String) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
hasRole(PrincipalCollection, String) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
hasRole(PrincipalCollection, String) - Method in class org.jsecurity.realm.AuthorizingRealm
 
hasRole(String, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
hasRole(String) - Method in class org.jsecurity.subject.DelegatingSubject
 
hasRole(String) - Method in interface org.jsecurity.subject.Subject
Returns true if this Subject has the specified role, false otherwise.
hasRoles(PrincipalCollection, List<String>) - Method in interface org.jsecurity.authz.Authorizer
Checks if the corresponding Subject/user has the specified roles, returning a boolean array indicating which roles are associated with the given subject.
hasRoles(List<String>) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
hasRoles(PrincipalCollection, List<String>) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Calls ModularRealmAuthorizer.hasRole(org.jsecurity.subject.PrincipalCollection, String) for each role name in the specified collection and places the return value from each call at the respective location in the returned array.
hasRoles(List<String>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
hasRoles(PrincipalCollection, List<String>) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
hasRoles(PrincipalCollection, List<String>) - Method in class org.jsecurity.realm.AuthorizingRealm
 
hasRoles(List<String>, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
hasRoles(List<String>) - Method in class org.jsecurity.subject.DelegatingSubject
 
hasRoles(List<String>) - Method in interface org.jsecurity.subject.Subject
Checks if this Subject has the specified roles, returning a boolean array indicating which roles are associated.
HasRoleTag - Class in org.jsecurity.web.tags
 
HasRoleTag() - Constructor for class org.jsecurity.web.tags.HasRoleTag
 
hasText(String) - Static method in class org.jsecurity.util.StringUtils
Check whether the given String has actual text.
HEADER_PREFIX - Static variable in class org.jsecurity.io.IniResource
 
HEADER_SUFFIX - Static variable in class org.jsecurity.io.IniResource
 
Hex - Class in org.jsecurity.codec
Hex encoder and decoder.
Hex() - Constructor for class org.jsecurity.codec.Hex
 
HostUnauthorizedException - Exception in org.jsecurity.authz
Thrown when a particular client (that is, host address) has not been enabled to access the system or if the client has been enabled access but is not permitted to perform a particluar operation or access a particular resource.
HostUnauthorizedException() - Constructor for exception org.jsecurity.authz.HostUnauthorizedException
Creates a new HostUnauthorizedException.
HostUnauthorizedException(String) - Constructor for exception org.jsecurity.authz.HostUnauthorizedException
Constructs a new HostUnauthorizedException.
HostUnauthorizedException(Throwable) - Constructor for exception org.jsecurity.authz.HostUnauthorizedException
Constructs a new HostUnauthorizedException.
HostUnauthorizedException(String, Throwable) - Constructor for exception org.jsecurity.authz.HostUnauthorizedException
Constructs a new HostUnauthorizedException.
HostUnauthorizedException(InetAddress) - Constructor for exception org.jsecurity.authz.HostUnauthorizedException
Constructs a new HostUnauthorizedException associated with the given host address.
HTTP_SESSION_MODE - Static variable in class org.jsecurity.web.DefaultWebSecurityManager
 
httpSessions - Variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 

I

identityAttribute - Variable in class org.jsecurity.web.WebRememberMeManager
 
ignoreResourceNotFound - Variable in class org.jsecurity.config.IniConfiguration
 
ImmutableProxiedSession - Class in org.jsecurity.session.mgt
Implementation of the Session interface that proxies another Session, but does not allow any 'write' operations to the underlying session.
ImmutableProxiedSession(Session) - Constructor for class org.jsecurity.session.mgt.ImmutableProxiedSession
Constructs a new instance of this class proxying the specified Session.
implies(Permission) - Method in class org.jsecurity.authz.permission.AllPermission
Always returns true, indicating any Subject granted this permission can do anything.
implies(Permission) - Method in interface org.jsecurity.authz.Permission
Returns true if this current instance implies all the functionality and/or resource access described by the specified Permission argument, false otherwise.
implies(Permission) - Method in class org.jsecurity.authz.permission.WildcardPermission
 
INCLUDE_CONTEXT_PATH_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
INCLUDE_PATH_INFO_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
INCLUDE_QUERY_STRING_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
INCLUDE_REQUEST_URI_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
Standard Servlet 2.3+ spec request attributes for include URI and paths.
INCLUDE_SERVLET_PATH_ATTRIBUTE - Static variable in class org.jsecurity.web.WebUtils
 
IncorrectCredentialsException - Exception in org.jsecurity.authc
Thrown when attempting to authenticate with credential(s) that do not match the actual credentials associated with the account principal.
IncorrectCredentialsException() - Constructor for exception org.jsecurity.authc.IncorrectCredentialsException
Creates a new IncorrectCredentialsException.
IncorrectCredentialsException(String) - Constructor for exception org.jsecurity.authc.IncorrectCredentialsException
Constructs a new IncorrectCredentialsException.
IncorrectCredentialsException(Throwable) - Constructor for exception org.jsecurity.authc.IncorrectCredentialsException
Constructs a new IncorrectCredentialsException.
IncorrectCredentialsException(String, Throwable) - Constructor for exception org.jsecurity.authc.IncorrectCredentialsException
Constructs a new IncorrectCredentialsException.
INDEFINITE - Static variable in class org.jsecurity.web.attr.CookieAttribute
This is the same value as Integer.MAX_VALUE, and while Tomcat does fine with cookie max age with this value, Jetty apparently has problems with it.
INET_ADDRESS_KEY - Static variable in class org.jsecurity.util.ThreadContext
 
inetAddress - Variable in class org.jsecurity.subject.DelegatingSubject
 
InetAuthenticationToken - Interface in org.jsecurity.authc
Authentication token that also preserves the IP from where the authentication attempt is taking place.
IniConfiguration - Class in org.jsecurity.config
A Configuration based on the .ini format.
IniConfiguration() - Constructor for class org.jsecurity.config.IniConfiguration
 
IniConfiguration(String) - Constructor for class org.jsecurity.config.IniConfiguration
 
IniConfiguration(String, String) - Constructor for class org.jsecurity.config.IniConfiguration
 
iniResource - Variable in class org.jsecurity.config.IniConfiguration
 
IniResource - Class in org.jsecurity.io
//TODO - complete JavaDoc
IniResource() - Constructor for class org.jsecurity.io.IniResource
 
IniResource(String) - Constructor for class org.jsecurity.io.IniResource
 
IniResource(String, String) - Constructor for class org.jsecurity.io.IniResource
 
IniResource(InputStream) - Constructor for class org.jsecurity.io.IniResource
 
IniResource(Reader) - Constructor for class org.jsecurity.io.IniResource
 
IniResource(Scanner) - Constructor for class org.jsecurity.io.IniResource
 
init() - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Initializes this instance.
init() - Method in class org.jsecurity.config.IniConfiguration
 
init() - Method in class org.jsecurity.config.TextConfiguration
 
init(Cipher, int, Key) - Method in class org.jsecurity.crypto.BlowfishCipher
Initializes the JDK Cipher with the specified mode and key.
init() - Method in class org.jsecurity.realm.AuthorizingRealm
Initializes this realm and potentially enables a cache, depending on configuration.
init() - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
init() - Method in interface org.jsecurity.util.Initializable
Initializes this object.
init(Object) - Static method in class org.jsecurity.util.LifecycleUtils
 
init(Initializable) - Static method in class org.jsecurity.util.LifecycleUtils
 
init(Collection) - Static method in class org.jsecurity.util.LifecycleUtils
 
init(FilterConfig) - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Sets the filter's filterConfig and then immediately calls onFilterConfigSet() to trigger any processing a subclass might wish to perform.
initAuthorizationCache() - Method in class org.jsecurity.realm.AuthorizingRealm
 
initFilter(Filter) - Method in class org.jsecurity.web.config.IniWebConfiguration
Initializes the filter by calling filter.init( getFilterConfig() );.
initFilters(Map<String, List<Filter>>) - Method in class org.jsecurity.web.config.IniWebConfiguration
 
Initializable - Interface in org.jsecurity.util
JSecurity container-agnostic interface that indicates that this object requires initialization.
initRoleCache() - Method in class org.jsecurity.realm.SimpleAccountRealm
 
IniWebConfiguration - Class in org.jsecurity.web.config
A WebConfiguration that supports configuration via the .ini format.
IniWebConfiguration() - Constructor for class org.jsecurity.web.config.IniWebConfiguration
 
instantiate(Constructor, Object...) - Static method in class org.jsecurity.util.ClassUtils
 
InstantiationException - Exception in org.jsecurity.util
Runtime exception thrown by the framework when unable to instantiate a Class via reflection.
InstantiationException() - Constructor for exception org.jsecurity.util.InstantiationException
Creates a new InstantiationException.
InstantiationException(String) - Constructor for exception org.jsecurity.util.InstantiationException
Constructs a new InstantiationException.
InstantiationException(Throwable) - Constructor for exception org.jsecurity.util.InstantiationException
Constructs a new InstantiationException.
InstantiationException(String, Throwable) - Constructor for exception org.jsecurity.util.InstantiationException
Constructs a new InstantiationException.
invalidate() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
InvalidPermissionStringException - Exception in org.jsecurity.authz.permission
Thrown by PermissionResolver.resolvePermission(String) when the String being parsed is not valid for that resolver.
InvalidPermissionStringException(String, String) - Constructor for exception org.jsecurity.authz.permission.InvalidPermissionStringException
Constructs a new exception with the given message and permission string.
InvalidSessionException - Exception in org.jsecurity.session
Exception thrown when attempting to interact with the system under an established session when that session is considered invalid.
InvalidSessionException() - Constructor for exception org.jsecurity.session.InvalidSessionException
Creates a new InvalidSessionException.
InvalidSessionException(String) - Constructor for exception org.jsecurity.session.InvalidSessionException
Constructs a new InvalidSessionException.
InvalidSessionException(Throwable) - Constructor for exception org.jsecurity.session.InvalidSessionException
Constructs a new InvalidSessionException.
InvalidSessionException(String, Throwable) - Constructor for exception org.jsecurity.session.InvalidSessionException
Constructs a new InvalidSessionException.
InvalidSessionException(Serializable) - Constructor for exception org.jsecurity.session.InvalidSessionException
Constructs a new InvalidSessionException.
InvalidSessionException(String, Serializable) - Constructor for exception org.jsecurity.session.InvalidSessionException
Constructs a new InvalidSessionException.
InvalidSessionException(String, Throwable, Serializable) - Constructor for exception org.jsecurity.session.InvalidSessionException
Constructs a new InvalidSessionException.
InvalidSubjectException - Exception in org.jsecurity.subject
Exception thrown when a Subject is accessed that has been invalidated.
InvalidSubjectException() - Constructor for exception org.jsecurity.subject.InvalidSubjectException
Creates a new InvalidSubjectException.
InvalidSubjectException(String) - Constructor for exception org.jsecurity.subject.InvalidSubjectException
Constructs a new InvalidSubjectException.
InvalidSubjectException(Throwable) - Constructor for exception org.jsecurity.subject.InvalidSubjectException
Constructs a new InvalidSubjectException.
InvalidSubjectException(String, Throwable) - Constructor for exception org.jsecurity.subject.InvalidSubjectException
Constructs a new InvalidSubjectException.
invoke(MethodInvocation) - Method in interface org.jsecurity.aop.MethodInterceptor
Invokes the specified MethodInvocation, allowing implementations to perform pre/post/finally surrounding the actual invocation.
invoke(MethodInvocation) - Method in class org.jsecurity.authz.aop.AuthorizingAnnotationMethodInterceptor
Ensures the methodInvocation is allowed to execute first before proceeding by calling the assertAuthorized method first.
invoke(MethodInvocation) - Method in class org.jsecurity.authz.aop.AuthorizingMethodInterceptor
Invokes the specified method (methodInvocation.
invoke(RemoteInvocation, Object) - Method in class org.jsecurity.spring.remoting.SecureRemoteInvocationExecutor
 
invoke(MethodInvocation) - Method in class org.jsecurity.spring.security.interceptor.AopAllianceAnnotationsAuthorizingMethodInterceptor
Creates a JSecurity MethodInvocation instance and then immediately calls super.invoke.
isAccessAllowed(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.AccessControlFilter
Returns true if the request is allowed to proceed through the filter normally, or false if the request should be handled by the onAccessDenied(request,response) method instead.
isAccessAllowed(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.authc.AuthenticationFilter
Determines whether the current subject is authenticated.
isAccessAllowed(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.authc.UserFilter
Returns true if the request is a loginRequest or if the current subject is not null, false otherwise.
isAccessAllowed(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.authz.PermissionsAuthorizationFilter
 
isAccessAllowed(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.authz.RolesAuthorizationFilter
 
isAtLeastVersion14() - Static method in class org.jsecurity.util.JavaEnvironment
Convenience method to determine if the current JVM is at least Java 1.4.
isAtLeastVersion15() - Static method in class org.jsecurity.util.JavaEnvironment
Convenience method to determine if the current JVM is at least Java 1.5 (Java 5).
isAuthenticated(RemoteInvocation, Object, Session, PrincipalCollection) - Method in class org.jsecurity.spring.remoting.SecureRemoteInvocationExecutor
 
isAuthenticated() - Method in class org.jsecurity.subject.DelegatingSubject
 
isAuthenticated() - Method in interface org.jsecurity.subject.Subject
Returns true if this Subject/user has proven their identity during their current session by providing valid credentials matching those known to the system, false otherwise.
isAuthenticated(Session) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
isAuthenticated(Session, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
isAvailable(String) - Static method in class org.jsecurity.util.ClassUtils
 
isBase64(byte[]) - Static method in class org.jsecurity.codec.Base64
Tests a given byte array to see if it contains only valid characters within the Base64 alphabet.
isCheckRequestParams() - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
isCheckRequestParamsFirst() - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
isCookieSecure() - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will get the underyling rememberMe cookie's 'secure' status.
isCredentialsExpired() - Method in class org.jsecurity.authc.SimpleAccount
Returns whether or not the Account's credentials are expired.
isEmpty() - Method in interface org.jsecurity.subject.PrincipalCollection
Returns true if this collection is empty, false otherwise.
isEmpty() - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
isEnabled() - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
isEnabled() - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
 
isEnabled() - Method in interface org.jsecurity.session.mgt.SessionValidationScheduler
Returns true if this Scheduler is enabled and ready to begin validation at the appropriate time, false otherwise.
isEncodeable(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
Return true if the specified URL should be encoded with a session identifier.
isExpired() - Method in class org.jsecurity.session.mgt.SimpleSession
Returns true if this session has expired, false otherwise.
isHashSalted() - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Returns true if a submitted AuthenticationToken's credentials should be salted when hashing, false if it should not be salted.
isHttpSessionMode() - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
isHttpSessions() - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
isHttpSessions() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
isLocked() - Method in class org.jsecurity.authc.SimpleAccount
Returns true if this Account is locked and thus cannot be used to login, false otherwise.
isLoginAttempt(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Determines whether the incoming request is an attempt to log in.
isLoginAttempt(String) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Default implementation that returns true if the specified authzHeader starts with the same (case-insensitive) characters specified by the authzScheme, false otherwise.
isLoginRequest(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.AccessControlFilter
Returns true if the incoming request is a login request, false otherwise.
isLoginSubmission(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
This default implementation merely returns true if the request is an HTTP POST, false otherwise.
isMutable() - Method in class org.jsecurity.web.attr.AbstractWebAttribute
Returns true if the value stored can be changed once it has been set, false if it cannot.
isNew() - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
isPattern(String) - Method in class org.jsecurity.util.AntPathMatcher
 
isPermitted(PrincipalCollection, String) - Method in interface org.jsecurity.authz.Authorizer
Returns true if the corresponding subject/user is permitted to perform an action or access a resource summarized by the specified permission string.
isPermitted(PrincipalCollection, Permission) - Method in interface org.jsecurity.authz.Authorizer
Returns true if the corresponding subject/user is permitted to perform an action or access a resource summarized by the specified permission.
isPermitted(PrincipalCollection, String...) - Method in interface org.jsecurity.authz.Authorizer
Checks if the corresponding Subject implies the given permission strings and returns a boolean array indicating which permissions are implied.
isPermitted(PrincipalCollection, List<Permission>) - Method in interface org.jsecurity.authz.Authorizer
Checks if the corresponding Subject/user implies the given Permissions and returns a boolean array indicating which permissions are implied.
isPermitted(Permission) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
isPermitted(List<Permission>) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
isPermitted(PrincipalCollection, String) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true if any of the configured realms' Authorizer.isPermitted(org.jsecurity.subject.PrincipalCollection, String) returns true, false otherwise.
isPermitted(PrincipalCollection, Permission) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true if any of the configured realms' Authorizer.isPermitted(org.jsecurity.subject.PrincipalCollection, Permission) call returns true, false otherwise.
isPermitted(PrincipalCollection, String...) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true if any of the configured realms' Authorizer.isPermitted(org.jsecurity.subject.PrincipalCollection, String[]) call returns true, false otherwise.
isPermitted(PrincipalCollection, List<Permission>) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true if any of the configured realms' Authorizer.isPermitted(org.jsecurity.subject.PrincipalCollection, List) call returns true, false otherwise.
isPermitted(Permission) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
isPermitted(List<Permission>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
isPermitted(Permission) - Method in class org.jsecurity.authz.SimpleRole
 
isPermitted(PrincipalCollection, String) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
isPermitted(PrincipalCollection, Permission) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
isPermitted(PrincipalCollection, String...) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
isPermitted(PrincipalCollection, List<Permission>) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
isPermitted(PrincipalCollection, String) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermitted(PrincipalCollection, Permission) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermitted(PrincipalCollection, String...) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermitted(PrincipalCollection, List<Permission>) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermitted(List<Permission>, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermitted(String) - Method in class org.jsecurity.subject.DelegatingSubject
 
isPermitted(Permission) - Method in class org.jsecurity.subject.DelegatingSubject
 
isPermitted(String...) - Method in class org.jsecurity.subject.DelegatingSubject
 
isPermitted(List<Permission>) - Method in class org.jsecurity.subject.DelegatingSubject
 
isPermitted(String) - Method in interface org.jsecurity.subject.Subject
Returns true if this Subject is permitted to perform an action or access a resource summarized by the specified permission string.
isPermitted(Permission) - Method in interface org.jsecurity.subject.Subject
Returns true if this Subject is permitted to perform an action or access a resource summarized by the specified permission.
isPermitted(String...) - Method in interface org.jsecurity.subject.Subject
Checks if this Subject implies the given permission strings and returns a boolean array indicating which permissions are implied.
isPermitted(List<Permission>) - Method in interface org.jsecurity.subject.Subject
Checks if this Subject implies the given Permissions and returns a boolean array indicating which permissions are implied.
isPermitted(String) - Method in class org.jsecurity.web.tags.PermissionTag
 
isPermittedAll(PrincipalCollection, String...) - Method in interface org.jsecurity.authz.Authorizer
Returns true if the corresponding Subject/user implies all of the specified permission strings, false otherwise.
isPermittedAll(PrincipalCollection, Collection<Permission>) - Method in interface org.jsecurity.authz.Authorizer
Returns true if the corresponding Subject/user implies all of the specified permissions, false otherwise.
isPermittedAll(Collection<Permission>) - Method in interface org.jsecurity.authz.AuthorizingAccount
Deprecated.  
isPermittedAll(PrincipalCollection, String...) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true if any of the configured realms' Authorizer.isPermitted(org.jsecurity.subject.PrincipalCollection, String) call returns true for all of the specified string permissions, false otherwise.
isPermittedAll(PrincipalCollection, Collection<Permission>) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Returns true if any of the configured realms' Authorizer.isPermitted(org.jsecurity.subject.PrincipalCollection, Permission) call returns true for all of the specified Permissions, false otherwise.
isPermittedAll(Collection<Permission>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
isPermittedAll(PrincipalCollection, String...) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
isPermittedAll(PrincipalCollection, Collection<Permission>) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
 
isPermittedAll(PrincipalCollection, String...) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermittedAll(PrincipalCollection, Collection<Permission>) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermittedAll(Collection<Permission>, AuthorizationInfo) - Method in class org.jsecurity.realm.AuthorizingRealm
 
isPermittedAll(String...) - Method in class org.jsecurity.subject.DelegatingSubject
 
isPermittedAll(Collection<Permission>) - Method in class org.jsecurity.subject.DelegatingSubject
 
isPermittedAll(String...) - Method in interface org.jsecurity.subject.Subject
Returns true if this Subject implies all of the specified permission strings, false otherwise.
isPermittedAll(Collection<Permission>) - Method in interface org.jsecurity.subject.Subject
Returns true if this Subject implies all of the specified permissions, false otherwise.
isReference(String) - Method in class org.jsecurity.config.ReflectionBuilder
 
isRememberMe() - Method in interface org.jsecurity.authc.RememberMeAuthenticationToken
Returns true if the submitting user wishes their identity (principal(s)) to be remembered across sessions, false otherwise.
isRememberMe() - Method in class org.jsecurity.authc.UsernamePasswordToken
Returns true if the submitting user wishes their identity (principal(s)) to be remembered across sessions, false otherwise.
isRememberMe(AuthenticationToken) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
isRememberMe(ServletRequest) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
Returns true if "rememberMe" should be enabled for the login attempt associated with the current request, false otherwise.
isRememberMe(ServletRequest) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
isRequestedSessionIdFromCookie() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
isRequestedSessionIdFromURL() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
isRequestedSessionIdFromUrl() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
isRequestedSessionIdValid() - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
isResourceRef() - Method in class org.jsecurity.jndi.JndiLocator
Return whether the lookup occurs in a J2EE container.
isRolename(String) - Method in class org.jsecurity.realm.text.PropertiesRealm
 
isSchemeChar(char) - Static method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
Determine if the character is allowed in the scheme of a URI.
isSectionHeader(String) - Static method in class org.jsecurity.io.IniResource
 
isSecure() - Method in class org.jsecurity.web.attr.CookieAttribute
 
isSessionValidationSchedulerEnabled() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
isStopped() - Method in class org.jsecurity.session.mgt.SimpleSession
 
isStoredCredentialsHexEncoded() - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Returns true if the system's stored credential hash is Hex encoded, false if it is Base64 encoded.
issueRedirect(ServletRequest, ServletResponse, String, Map, boolean, boolean) - Static method in class org.jsecurity.web.WebUtils
Redirects the current request to a new URL based on the given parameters.
issueRedirect(ServletRequest, ServletResponse, String) - Static method in class org.jsecurity.web.WebUtils
Redirects the current request to a new URL based on the given parameters and default values for unspecified parameters.
issueRedirect(ServletRequest, ServletResponse, String, Map) - Static method in class org.jsecurity.web.WebUtils
Redirects the current request to a new URL based on the given parameters and default values for unspecified parameters.
issueRedirect(ServletRequest, ServletResponse, String, Map, boolean) - Static method in class org.jsecurity.web.WebUtils
Redirects the current request to a new URL based on the given parameters and default values for unspecified parameters.
issueSuccessRedirect(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.AuthenticationFilter
 
isTimedOut() - Method in class org.jsecurity.session.mgt.SimpleSession
Determines if this session is expired.
isTrue(ServletRequest, String) - Static method in class org.jsecurity.web.WebUtils
Checks to see if a request param is considered true using a loose matching strategy for general values that indicate that something is true or enabled, etc.
isUserInRole(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
isUsername(String) - Method in class org.jsecurity.realm.text.PropertiesRealm
 
isValid(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
isValid(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Returns true if the session is valid (it exists and is not stopped nor expired), false otherwise.
isValid() - Method in class org.jsecurity.session.mgt.SimpleSession
 
isValid() - Method in interface org.jsecurity.session.mgt.ValidatingSession
 
isValidateRequestOrigin() - Method in class org.jsecurity.web.session.DefaultWebSessionManager
If set to true, this implementation will ensure that any HttpRequest attempting to join a session (i.e. via getSession must have the same IP Address of the HttpRequest that started the session.
iterator() - Method in class org.jsecurity.subject.SimplePrincipalCollection
 

J

JAVA_13 - Static variable in class org.jsecurity.util.JavaEnvironment
Constant identifying the 1.3.x JVM (JDK 1.3).
JAVA_14 - Static variable in class org.jsecurity.util.JavaEnvironment
Constant identifying the 1.4.x JVM (J2SE 1.4).
JAVA_15 - Static variable in class org.jsecurity.util.JavaEnvironment
Constant identifying the 1.5 JVM (Java 5).
JAVA_16 - Static variable in class org.jsecurity.util.JavaEnvironment
Constant identifying the 1.6 JVM (Java 6).
JAVA_17 - Static variable in class org.jsecurity.util.JavaEnvironment
Constant identifying the 1.7 JVM.
JavaEnvironment - Class in org.jsecurity.util
Internal helper class used to find the Java/JDK version that JSecurity is operating within, to allow for automatically adapting to the present platform's capabilities.
JavaEnvironment() - Constructor for class org.jsecurity.util.JavaEnvironment
 
JdbcRealm - Class in org.jsecurity.realm.jdbc
Realm that allows authentication and authorization via JDBC calls.
JdbcRealm() - Constructor for class org.jsecurity.realm.jdbc.JdbcRealm
 
JdbcUtils - Class in org.jsecurity.util
A set of static helper methods for managing JDBC API objects.
JndiCallback - Interface in org.jsecurity.jndi
Callback interface to be implemented by classes that need to perform an operation (such as a lookup) in a JNDI context.
JndiLocator - Class in org.jsecurity.jndi
Convenient superclass for JNDI accessors, providing "jndiTemplate" and "jndiEnvironment" bean properties.
JndiLocator() - Constructor for class org.jsecurity.jndi.JndiLocator
 
jndiNames - Variable in class org.jsecurity.realm.jndi.JndiRealmFactory
 
JndiRealmFactory - Class in org.jsecurity.realm.jndi
Looks up one or more Realm instances from JNDI using specified jndiNames.
JndiRealmFactory() - Constructor for class org.jsecurity.realm.jndi.JndiRealmFactory
 
JndiTemplate - Class in org.jsecurity.jndi
Helper class that simplifies JNDI operations.
JndiTemplate() - Constructor for class org.jsecurity.jndi.JndiTemplate
Create a new JndiTemplate instance.
JndiTemplate(Properties) - Constructor for class org.jsecurity.jndi.JndiTemplate
Create a new JndiTemplate instance, using the given environment.
JSECURITY_SESSION_MODE - Static variable in class org.jsecurity.web.DefaultWebSecurityManager
 
JSecurityException - Exception in org.jsecurity
Root exception for all JSecurity runtime exceptions.
JSecurityException() - Constructor for exception org.jsecurity.JSecurityException
Creates a new JSecurityException.
JSecurityException(String) - Constructor for exception org.jsecurity.JSecurityException
Constructs a new JSecurityException.
JSecurityException(Throwable) - Constructor for exception org.jsecurity.JSecurityException
Constructs a new JSecurityException.
JSecurityException(String, Throwable) - Constructor for exception org.jsecurity.JSecurityException
Constructs a new JSecurityException.
JSecurityFilter - Class in org.jsecurity.web.servlet
Main ServletFilter that configures and enables all JSecurity functions within a web application.
JSecurityFilter() - Constructor for class org.jsecurity.web.servlet.JSecurityFilter
 
JSecurityHttpServletRequest - Class in org.jsecurity.web.servlet
TODO class JavaDoc
JSecurityHttpServletRequest(HttpServletRequest, ServletContext, boolean) - Constructor for class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
JSecurityHttpServletResponse - Class in org.jsecurity.web.servlet
HttpServletResponse implementation to support URL Encoding of JSecurity Session IDs.
JSecurityHttpServletResponse(HttpServletResponse, ServletContext, JSecurityHttpServletRequest) - Constructor for class org.jsecurity.web.servlet.JSecurityHttpServletResponse
 
JSecurityHttpSession - Class in org.jsecurity.web.servlet
Wrapper class that uses a JSecurity session under the hood for all session operations instead of the Servlet Container's session mechanism.
JSecurityHttpSession(Session, HttpServletRequest, ServletContext) - Constructor for class org.jsecurity.web.servlet.JSecurityHttpSession
 

K

keys() - Method in interface org.jsecurity.cache.Cache
Returns a view of all the keys for entries contained in this cache.
keys() - Method in class org.jsecurity.cache.ehcache.EhCache
 
keys() - Method in class org.jsecurity.cache.HashtableCache
 

L

LacksPermissionTag - Class in org.jsecurity.web.tags
 
LacksPermissionTag() - Constructor for class org.jsecurity.web.tags.LacksPermissionTag
 
LacksRoleTag - Class in org.jsecurity.web.tags
 
LacksRoleTag() - Constructor for class org.jsecurity.web.tags.LacksRoleTag
 
LdapContextFactory - Interface in org.jsecurity.realm.ldap
Interface that encapsulates the creation of LdapContext objects that are used by subclasses of AbstractLdapRealm to query for AuthenticationInfo security data (roles, permissions, etc) of particular Subjects (users).
LdapUtils - Class in org.jsecurity.realm.ldap
Utility class providing static methods to make working with LDAP easier.
LifecycleBeanPostProcessor - Class in org.jsecurity.spring
Bean post processor for Spring that automatically calls the init() and/or destroy() methods on JSecurity objects that implement the Initializable or Destroyable interfaces, respectfully.
LifecycleBeanPostProcessor() - Constructor for class org.jsecurity.spring.LifecycleBeanPostProcessor
 
LifecycleUtils - Class in org.jsecurity.util
TODO - complete JavaDoc
LifecycleUtils() - Constructor for class org.jsecurity.util.LifecycleUtils
 
listeners - Variable in class org.jsecurity.session.mgt.AbstractSessionManager
 
load(Reader) - Method in class org.jsecurity.config.IniConfiguration
 
load(Scanner) - Method in class org.jsecurity.config.IniConfiguration
 
load(String) - Method in class org.jsecurity.config.IniConfiguration
 
load(InputStream) - Method in class org.jsecurity.config.IniConfiguration
 
load(String) - Method in class org.jsecurity.config.ResourceConfiguration
 
load(InputStream) - Method in class org.jsecurity.config.ResourceConfiguration
 
load(Reader) - Method in class org.jsecurity.config.TextConfiguration
 
load(Scanner) - Method in class org.jsecurity.config.TextConfiguration
 
load(String) - Method in class org.jsecurity.io.AbstractResource
 
load(InputStream) - Method in class org.jsecurity.io.AbstractResource
 
load(Scanner) - Method in class org.jsecurity.io.IniResource
 
load(String) - Method in class org.jsecurity.io.TextResource
 
load(Reader) - Method in class org.jsecurity.io.TextResource
 
load(Scanner) - Method in class org.jsecurity.io.TextResource
 
loadTextConfig(String) - Method in class org.jsecurity.config.TextConfiguration
Loads the configuration specified by the 'config' argument by creating a StringReader and using it to load the config.
LockedAccountException - Exception in org.jsecurity.authc
A special kind of DisabledAccountException, this exception is thrown when attempting to authenticate and the corresponding account has been disabled explicitly due to being locked.
LockedAccountException() - Constructor for exception org.jsecurity.authc.LockedAccountException
Creates a new LockedAccountException.
LockedAccountException(String) - Constructor for exception org.jsecurity.authc.LockedAccountException
Constructs a new LockedAccountException.
LockedAccountException(Throwable) - Constructor for exception org.jsecurity.authc.LockedAccountException
Constructs a new LockedAccountException.
LockedAccountException(String, Throwable) - Constructor for exception org.jsecurity.authc.LockedAccountException
Constructs a new LockedAccountException.
login(AuthenticationToken) - Method in class org.jsecurity.mgt.DefaultSecurityManager
First authenticates the AuthenticationToken argument, and if successful, constructs a Subject instance representing the authenticated account's identity.
login(AuthenticationToken) - Method in interface org.jsecurity.mgt.SecurityManager
Logs in a user, returning a Subject instance if the authentication is successful or throwing an AuthenticationException if it is not.
login(AuthenticationToken) - Method in class org.jsecurity.subject.DelegatingSubject
 
login(AuthenticationToken) - Method in interface org.jsecurity.subject.Subject
Performs a login attempt for this Subject/user.
logout(PrincipalCollection) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
logout(PrincipalCollection) - Method in interface org.jsecurity.mgt.SecurityManager
Logs out the specified Subject from the system.
logout() - Method in class org.jsecurity.subject.DelegatingSubject
 
logout() - Method in interface org.jsecurity.subject.Subject
Logs out this Subject and invalidates and/or removes any associated entities (such as a Session and authorization data.
LogoutAware - Interface in org.jsecurity.authc
An SPI interface allowing cleanup logic to be executed during logout of a previously authenticated Subject/user.
lookup(String) - Method in class org.jsecurity.jndi.JndiLocator
Perform an actual JNDI lookup for the given name via the JndiTemplate.
lookup(String, Class) - Method in class org.jsecurity.jndi.JndiLocator
Perform an actual JNDI lookup for the given name via the JndiTemplate.
lookup(String) - Method in class org.jsecurity.jndi.JndiTemplate
Look up the object with the given name in the current JNDI context.
lookup(String, Class) - Method in class org.jsecurity.jndi.JndiTemplate
Look up the object with the given name in the current JNDI context.

M

MAIN - Static variable in class org.jsecurity.config.IniConfiguration
 
main(String[]) - Static method in class org.jsecurity.crypto.BlowfishCipher
Simple test main method to ensure functionality is correct.
manager - Variable in class org.jsecurity.cache.ehcache.EhCacheManager
The EhCache cache manager used by this implementation to create caches.
match(String, String) - Method in class org.jsecurity.util.AntPathMatcher
 
matches(Method, Class) - Method in class org.jsecurity.spring.security.interceptor.AuthorizationAttributeSourceAdvisor
Returns true if the method has any JSecurity annotations, false otherwise.
matches(String, String) - Method in class org.jsecurity.util.AntPathMatcher
 
matches(String, String) - Method in interface org.jsecurity.util.PatternMatcher
Returns true if the given source matches the specified pattern, false otherwise.
matchStart(String, String) - Method in class org.jsecurity.util.AntPathMatcher
 
Md2CredentialsMatcher - Class in org.jsecurity.authc.credential
HashedCredentialsMatcher implementation that expects the stored AuthenticationInfo credentials to be MD2 hashed.
Md2CredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.Md2CredentialsMatcher
 
Md2Hash - Class in org.jsecurity.crypto.hash
Generates an MD2 Hash (RFC 1319) from a given input source with an optional salt and hash iterations.
Md2Hash() - Constructor for class org.jsecurity.crypto.hash.Md2Hash
 
Md2Hash(Object) - Constructor for class org.jsecurity.crypto.hash.Md2Hash
 
Md2Hash(Object, Object) - Constructor for class org.jsecurity.crypto.hash.Md2Hash
 
Md2Hash(Object, Object, int) - Constructor for class org.jsecurity.crypto.hash.Md2Hash
 
Md5CredentialsMatcher - Class in org.jsecurity.authc.credential
HashedCredentialsMatcher implementation that expects the stored AuthenticationInfo credentials to be MD5 hashed.
Md5CredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.Md5CredentialsMatcher
 
Md5Hash - Class in org.jsecurity.crypto.hash
Generates an MD5 Hash (RFC 1321) from a given input source with an optional salt and hash iterations.
Md5Hash() - Constructor for class org.jsecurity.crypto.hash.Md5Hash
 
Md5Hash(Object) - Constructor for class org.jsecurity.crypto.hash.Md5Hash
 
Md5Hash(Object, Object) - Constructor for class org.jsecurity.crypto.hash.Md5Hash
 
Md5Hash(Object, Object, int) - Constructor for class org.jsecurity.crypto.hash.Md5Hash
 
MemorySessionDAO - Class in org.jsecurity.session.mgt.eis
Simple memory-based implementation of the SessionDAO that relies on its configured CacheManager for Session caching and in-memory persistence.
MemorySessionDAO() - Constructor for class org.jsecurity.session.mgt.eis.MemorySessionDAO
 
MergableAuthenticationInfo - Interface in org.jsecurity.authc
An extension of the AuthenticationInfo interface to be implemented by classes that support merging with other AuthenticationInfo instances.
merge(AuthenticationInfo) - Method in interface org.jsecurity.authc.MergableAuthenticationInfo
Merges the given AuthenticationInfo into this instance.
merge(AuthenticationInfo, AuthenticationInfo) - Method in class org.jsecurity.authc.pam.AbstractAuthenticationStrategy
Merges the specified info argument into the aggregate argument and then returns an aggregate for continued use throughout the login process.
merge(AuthenticationInfo, AuthenticationInfo) - Method in class org.jsecurity.authc.pam.FirstSuccessfulAuthenticationStrategy
Returns the specified aggregate instance if is non null and valid (that is, has principals and they are not empty) immediately, or, if it is null or not valid, the info argument is returned instead.
merge(AuthenticationInfo) - Method in class org.jsecurity.authc.SimpleAccount
Merges the specified AuthenticationInfo into this Account.
merge(AuthenticationInfo) - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
Takes the specified info argument and adds its principals and credentials into this instance.
merge(Account) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
merge(SimpleRole) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
MethodInterceptor - Interface in org.jsecurity.aop
A MethodInterceptor intercepts a MethodInvocation to perform before or after logic (aka 'advice').
methodInterceptors - Variable in class org.jsecurity.authz.aop.AnnotationsAuthorizingMethodInterceptor
The method interceptors to execute for the annotated method.
MethodInterceptorSupport - Class in org.jsecurity.aop
This class is an abstraction of AOP method interceptor behavior specific to JSecurity that leaves AOP implementation specifics to be handled by subclass implementations.
MethodInterceptorSupport() - Constructor for class org.jsecurity.aop.MethodInterceptorSupport
Default no-argument constructor for subclasses.
MethodInvocation - Interface in org.jsecurity.aop
3rd-party API independent representation of a method invocation.
MILLIS_PER_HOUR - Static variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
MILLIS_PER_HOUR - Static variable in class org.jsecurity.session.mgt.SimpleSession
 
MILLIS_PER_MINUTE - Static variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
MILLIS_PER_MINUTE - Static variable in class org.jsecurity.session.mgt.SimpleSession
 
MILLIS_PER_SECOND - Static variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
MILLIS_PER_SECOND - Static variable in class org.jsecurity.session.mgt.SimpleSession
 
ModularAuthenticationStrategy - Interface in org.jsecurity.authc.pam
A ModularAuthenticationStrategy implementation assists the ModularRealmAuthenticator during the log-in process in a pluggable realm (PAM) environment.
ModularRealmAuthenticator - Class in org.jsecurity.authc.pam
A ModularRealmAuthenticator delgates account lookups to a pluggable (modular) collection of Realms.
ModularRealmAuthenticator() - Constructor for class org.jsecurity.authc.pam.ModularRealmAuthenticator
Default no-argument constructor which enables a AllSuccessfulModularAuthenticationStrategy by default.
ModularRealmAuthenticator(Realm) - Constructor for class org.jsecurity.authc.pam.ModularRealmAuthenticator
Constructor which initializes this Authenticator with a single realm to use during an authentiation attempt.
ModularRealmAuthenticator(List<Realm>) - Constructor for class org.jsecurity.authc.pam.ModularRealmAuthenticator
Constructor which initializes this Authenticator with multiple realms that will be consulted during an authentication attempt, effectively enabling PAM (Pluggable Authentication Module) behavior according to the configured ModularAuthenticationStrategy.
ModularRealmAuthorizer - Class in org.jsecurity.authz
A ModularRealmAuthorizer is an Authorizer implementation that consults one or more configured Realms during an authorization operation.
ModularRealmAuthorizer() - Constructor for class org.jsecurity.authz.ModularRealmAuthorizer
Default no-argument constructor, does nothing.
ModularRealmAuthorizer(Collection<Realm>) - Constructor for class org.jsecurity.authz.ModularRealmAuthorizer
Constructor that accepts the Realms to consult during an authorization check.
mutable - Variable in class org.jsecurity.web.attr.AbstractWebAttribute
 
MutablePrincipalCollection - Interface in org.jsecurity.subject
A PrincipalCollection that allows modification.

N

name - Variable in class org.jsecurity.authz.SimpleRole
 
name - Variable in class org.jsecurity.web.attr.AbstractWebAttribute
 
Nameable - Interface in org.jsecurity.util
Interface implemented by components that can be named, such as via configuration, and wish to have that name set once it has been configured.
newCipherInstance() - Method in class org.jsecurity.crypto.BlowfishCipher
Returns a new Cipher instance to use for encryption/decryption operations, based on the TRANSFORMATION_STRING constant.
newHashInstance() - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Returns a new, uninitialized instance, without its byte array set.
newHashInstance() - Method in class org.jsecurity.authc.credential.Md2CredentialsMatcher
Creates a new uninitialized Md2Hash instance, without it's byte array set.
newHashInstance() - Method in class org.jsecurity.authc.credential.Md5CredentialsMatcher
Creates a new uninitialized Md5Hash instance, without it's byte array set.
newHashInstance() - Method in class org.jsecurity.authc.credential.Sha1CredentialsMatcher
Creates a new uninitialized Sha1Hash instance, without it's byte array set.
newHashInstance() - Method in class org.jsecurity.authc.credential.Sha256CredentialsMatcher
Creates a new uninitialized Sha256Hash instance, without it's byte array set.
newHashInstance() - Method in class org.jsecurity.authc.credential.Sha384CredentialsMatcher
Creates a new uninitialized Sha384Hash instance, without it's byte array set.
newHashInstance() - Method in class org.jsecurity.authc.credential.Sha512CredentialsMatcher
Creates a new uninitialized Sha512Hash instance, without it's byte array set.
newInstance(String) - Static method in class org.jsecurity.util.ClassUtils
 
newInstance(String, Object...) - Static method in class org.jsecurity.util.ClassUtils
 
newInstance(Class) - Static method in class org.jsecurity.util.ClassUtils
 
newInstance(Class, Object...) - Static method in class org.jsecurity.util.ClassUtils
 
newSecurityManagerInstance() - Method in class org.jsecurity.config.IniConfiguration
 
newSecurityManagerInstance() - Method in class org.jsecurity.web.config.IniWebConfiguration
Creates a new, uninitialized SecurityManager instance that will be used to build up the JSecurity environment for the web application.
newSessionInstance(InetAddress) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
newSessionManagerInstance() - Method in class org.jsecurity.mgt.SessionsSecurityManager
Merely instantiates (but does not initalize) the default SessionManager implementation.
newSessionManagerInstance() - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
NotAuthenticatedTag - Class in org.jsecurity.web.tags
JSP tag that renders the tag body only if the current user has not executed a successful authentication attempt during their current session.
NotAuthenticatedTag() - Constructor for class org.jsecurity.web.tags.NotAuthenticatedTag
 
notifyExpiration(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
notifyFailure(AuthenticationToken, AuthenticationException) - Method in class org.jsecurity.authc.AbstractAuthenticator
Notifies any registered AuthenticationListeners that authentication failed for the specified token which resulted in the specified ae exception.
notifyLogout(PrincipalCollection) - Method in class org.jsecurity.authc.AbstractAuthenticator
Notifies any registered AuthenticationListeners that a Subject has logged-out.
notifyStart(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
notifyStop(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
notifySuccess(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.authc.AbstractAuthenticator
Notifies any registered AuthenticationListeners that authentication was successful for the specified token which resulted in the specified info.

O

objectPermissions - Variable in class org.jsecurity.authz.SimpleAuthorizationInfo
Collection of all object-based permissions associaed with the account.
objects - Variable in class org.jsecurity.config.ReflectionBuilder
 
objectToBytes(Object) - Method in class org.jsecurity.codec.CodecSupport
Default implementation throws a CodecException immediately since it can't infer how to convert the Object to a byte array.
objectToString(Object) - Method in class org.jsecurity.codec.CodecSupport
Default implementation merely returns objectArgument.toString().
onAccessDenied(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.AccessControlFilter
Processes requests where the subject was denied access as determined by the isAccessAllowed method.
onAccessDenied(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Processes unauthenticated requests.
onAccessDenied(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
onAccessDenied(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.PassThruAuthenticationFilter
 
onAccessDenied(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.UserFilter
This default implementation simply calls saveRequestAndRedirectToLogin and then immediately returns false, thereby preventing the chain from continuing so the redirect may execute.
onAccessDenied(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authz.AuthorizationFilter
 
OncePerRequestFilter - Class in org.jsecurity.web.servlet
Filter base class that guarantees to be just executed once per request, on any servlet container.
OncePerRequestFilter() - Constructor for class org.jsecurity.web.servlet.OncePerRequestFilter
 
onChange(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
onChange(Session) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
onDoStartTag() - Method in class org.jsecurity.web.tags.AuthenticatedTag
 
onDoStartTag() - Method in class org.jsecurity.web.tags.GuestTag
 
onDoStartTag() - Method in class org.jsecurity.web.tags.NotAuthenticatedTag
 
onDoStartTag() - Method in class org.jsecurity.web.tags.PermissionTag
 
onDoStartTag() - Method in class org.jsecurity.web.tags.PrincipalTag
 
onDoStartTag() - Method in class org.jsecurity.web.tags.RoleTag
 
onDoStartTag() - Method in class org.jsecurity.web.tags.SecureTag
 
onDoStartTag() - Method in class org.jsecurity.web.tags.UserTag
 
ONE_YEAR - Static variable in class org.jsecurity.web.attr.CookieAttribute
The number of seconds in one year (= 60 * 60 * 24 * 365).
oneByType(Class<T>) - Method in interface org.jsecurity.subject.PrincipalCollection
Returns a single principal assignable from the specified type, or null if there are none of the specified type.
oneByType(Class<T>) - Method in class org.jsecurity.subject.SimplePrincipalCollection
 
onExpiration(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
onExpiration(Session) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
onExpiration(Session) - Method in interface org.jsecurity.session.SessionListener
Notification callback that occurs when the corresponding Session has expired.
onFailedLogin(AuthenticationToken, AuthenticationException) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
onFailedLogin(AuthenticationToken, AuthenticationException) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
onFailedLogin(AuthenticationToken, AuthenticationException) - Method in interface org.jsecurity.subject.RememberMeManager
 
onFailure(AuthenticationToken, AuthenticationException) - Method in interface org.jsecurity.authc.AuthenticationListener
Callback triggered when an authentication attempt for a Subject has failed.
onFilterConfigSet() - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
onFilterConfigSet() - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
onFilterConfigSet() - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Template method to be overridden by subclasses to perform initialization logic at startup.
onLoginFailure(AuthenticationToken, AuthenticationException, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
 
onLoginFailure(AuthenticationToken, AuthenticationException, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
onLoginSuccess(AuthenticationToken, Subject, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.AuthenticatingFilter
 
onLoginSuccess(AuthenticationToken, Subject, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
onLogout(PrincipalCollection) - Method in class org.jsecurity.authc.AbstractAuthenticator
This implementation merely calls notifyLogout to allow any registered listeners to react to the logout.
onLogout(PrincipalCollection) - Method in interface org.jsecurity.authc.AuthenticationListener
Callback triggered when a Subject logs out of the system.
onLogout(PrincipalCollection) - Method in interface org.jsecurity.authc.LogoutAware
Callback triggered when a Subject logs out of the system.
onLogout(PrincipalCollection) - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
First calls super.onLogout(principals) to ensure a logout notification is issued, and for each wrapped Realm that implements the LogoutAware interface, calls ((LogoutAware)realm).onLogout(principals) to allow each realm the opportunity to perform logout/cleanup operations during an user-logout.
onLogout(PrincipalCollection) - Method in class org.jsecurity.realm.AuthenticatingRealm
Default implementation that does nothing (no-op) and exists as a convenience mechanism in case subclasses wish to override it to implement realm-specific logout logic for the given user account logging out.
onLogout(PrincipalCollection) - Method in class org.jsecurity.realm.AuthorizingRealm
If authorization caching is enabled, this will remove the AuthorizationInfo from the cache.
onLogout(PrincipalCollection) - Method in class org.jsecurity.realm.text.TextConfigurationRealm
 
onLogout(PrincipalCollection) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
onLogout(PrincipalCollection) - Method in interface org.jsecurity.subject.RememberMeManager
 
onPreHandle(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.AccessControlFilter
Returns true if isAccessAllowed, otherwise returns the result of onAccessDenied.
onPreHandle(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.authc.AnonymousFilter
Always returns true allowing unchecked access to the underlying path or resource.
onPreHandle(ServletRequest, ServletResponse, Object) - Method in class org.jsecurity.web.filter.PathMatchingFilter
Default implementation always returns true.
onRememberedPrincipalFailure(Exception) - Method in class org.jsecurity.subject.AbstractRememberMeManager
Called when an exception is thrown while trying to retrieve principals.
onRetrieveValue(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
onRetrieveValue(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.CookieAttribute
 
onRetrieveValue(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.RequestParamAttribute
 
onStart(Session) - Method in interface org.jsecurity.session.SessionListener
Notification callback that occurs when the corresponding Session has started.
onStop(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
onStop(Session) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
onStop(Session) - Method in interface org.jsecurity.session.SessionListener
Notification callback that occurs when the corresponding Session has stopped.
onStop(Session) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
onStoreValue(T, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
onStoreValue(T, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.CookieAttribute
 
onStoreValue(T, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.RequestParamAttribute
 
onSuccess(AuthenticationToken, AuthenticationInfo) - Method in interface org.jsecurity.authc.AuthenticationListener
Callback triggered when an authentication attempt for a Subject has succeeded.
onSuccessfulLogin(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
onSuccessfulLogin(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
onSuccessfulLogin(AuthenticationToken, AuthenticationInfo) - Method in interface org.jsecurity.subject.RememberMeManager
 
org.jsecurity - package org.jsecurity
This package primarily exists as a root classpath distinction, but it does contain two core classes widely used by applications, SecurityUtils and JSecurityException.
org.jsecurity.aop - package org.jsecurity.aop
Components used to support the framework's AOP/interception support classes.
org.jsecurity.authc - package org.jsecurity.authc
Core interfaces and exceptions concerning Authentication (the act of logging-in).
org.jsecurity.authc.credential - package org.jsecurity.authc.credential
Support for validating credentials (such as passwords or X509 certificates) during authentication via the CredentialsMatcher interface and its supporting implementations.
org.jsecurity.authc.pam - package org.jsecurity.authc.pam
Support for PAM, or Pluggable Authentication Modules, which is the capability to authenticate a user against multiple configurable (pluggable) modules (JSecurity calls these Realms).
org.jsecurity.authz - package org.jsecurity.authz
Core interfaces and exceptions supporting Authorization (access control).
org.jsecurity.authz.annotation - package org.jsecurity.authz.annotation
Annotations used to restrict which classes, instances, or methods may be accessed or invoked depending on the caller's access abilities or authentication state.
org.jsecurity.authz.aop - package org.jsecurity.authz.aop
Contains AOP implementation support classes specifically used for authorization operations, particularly supporting AOP Method Interceptors and JSR-175 metadata Annotations.
org.jsecurity.authz.permission - package org.jsecurity.authz.permission
Support and default implementations for JSecurity's Permission interface.
org.jsecurity.cache - package org.jsecurity.cache
Caching support used to enhance performance for any security operation.
org.jsecurity.cache.ehcache - package org.jsecurity.cache.ehcache
Ehcache-based implementations of JSecurity's cache interfaces.
org.jsecurity.codec - package org.jsecurity.codec
Components for encoding and decoding of data across multiple formats, especially useful in JSecurity's cryptography and web functionality.
org.jsecurity.config - package org.jsecurity.config
Components that support configuring JSecurity in any application.
org.jsecurity.crypto - package org.jsecurity.crypto
Cryptography Cipher and Hashing components that greatly simplify the JDK's cryptography concepts and add additional convenient behavior.
org.jsecurity.crypto.hash - package org.jsecurity.crypto.hash
Cryptographic Hashing components that greatly simplify one-way data hashing in an application.
org.jsecurity.io - package org.jsecurity.io
Support for reading and writing (input/output) raw data from multiple resource locations.
org.jsecurity.jndi - package org.jsecurity.jndi
Enables accessing objects located in JNDI that might be useful when configuring a JSecurity-enabled application.
org.jsecurity.mgt - package org.jsecurity.mgt
Provides the master SecurityManager interface and a default implementation hierarchy for managing all aspects of JSecurity's functionality in an application.
org.jsecurity.realm - package org.jsecurity.realm
Components and sub-packages used in supporting the core Realm interface.
org.jsecurity.realm.activedirectory - package org.jsecurity.realm.activedirectory
Realms that acquire security data from a Microsoft Active Directory.
org.jsecurity.realm.jdbc - package org.jsecurity.realm.jdbc
Realms that acquire security data from an RDBMS (Relational Database Management System) using the JDBC API.
org.jsecurity.realm.jndi - package org.jsecurity.realm.jndi
Support for acquiring Realms from JNDI, particularly useful for configuring JSecurity in JEE or EJB environments.
org.jsecurity.realm.ldap - package org.jsecurity.realm.ldap
Realms that acquire security data from an LDAP (Lightweight Directory Access Protocol) server utilizing LDAP/Naming APIs.
org.jsecurity.realm.text - package org.jsecurity.realm.text
Realms that acquire security data from text-based data sources such as Files or text streams.
org.jsecurity.session - package org.jsecurity.session
Components related to managing sessions, the time-based data contexts in which a Subject interacts with an application.
org.jsecurity.session.mgt - package org.jsecurity.session.mgt
SessionManager components supporting enterprise session management.
org.jsecurity.session.mgt.eis - package org.jsecurity.session.mgt.eis
EIS (Enterprise Information System)-tier components that can perform CRUD operations for sessions using any EIS API.
org.jsecurity.session.mgt.quartz - package org.jsecurity.session.mgt.quartz
Quartz-based implementations of components that help SessionManager implementations maintain sessions (timed expiration, orphan cleanup, etc).
org.jsecurity.spring - package org.jsecurity.spring
Spring Application Framework support for enabling JSecurity in spring applications.
org.jsecurity.spring.remoting - package org.jsecurity.spring.remoting
Support to enable Spring-based remote method invocations to carry a JSecurity session ID as part of the invocation payload, allowing remote clients to perform security operations.
org.jsecurity.spring.security.interceptor - package org.jsecurity.spring.security.interceptor
Spring AOP support for enabling JSecurity annotations in Spring-configured applications.
org.jsecurity.subject - package org.jsecurity.subject
Components supporting the Subject interface, the most important concept in JSecurity's API.
org.jsecurity.util - package org.jsecurity.util
Your run-of-the-mill 'util' pacakge for components and logic widely used across the framework that can't find their home into a proper OO hierarchy (or, most likely for things used across many hierarchies).
org.jsecurity.web - package org.jsecurity.web
Framework support for any web-enabled application.
org.jsecurity.web.attr - package org.jsecurity.web.attr
Supporting implementation of JSecurity's concept of a WebAttribute, a component that can save and recall an object beyond transient requests.
org.jsecurity.web.config - package org.jsecurity.web.config
Web-specific implementation extensions to the org.jsecurity.config components.
org.jsecurity.web.filter - package org.jsecurity.web.filter
Base package supporting all Servlet Filter implementations used to control access to web pages and URL resources.
org.jsecurity.web.filter.authc - package org.jsecurity.web.filter.authc
Servlet Filter implementations specific to controlling access based on a subject's authentication status, or those that can execute authentications (log-ins) directly.
org.jsecurity.web.filter.authz - package org.jsecurity.web.filter.authz
Servlet Filter implementations that perform authorization (access control) checks based on the Subject's abilities (for example, role or permission checks).
org.jsecurity.web.servlet - package org.jsecurity.web.servlet
Support implementations that depend heavily on the javax.servlet.
org.jsecurity.web.session - package org.jsecurity.web.session
Components supporting Session management in web-enabled applications.
org.jsecurity.web.tags - package org.jsecurity.web.tags
Provides the JSecurity JSP Tag Library implementations.

P

PART_DIVIDER_TOKEN - Static variable in class org.jsecurity.authz.permission.WildcardPermission
 
PassThruAuthenticationFilter - Class in org.jsecurity.web.filter.authc
An authentication filter that redirects the user to the login page when they are trying to access a protected resource.
PassThruAuthenticationFilter() - Constructor for class org.jsecurity.web.filter.authc.PassThruAuthenticationFilter
 
PathConfigProcessor - Interface in org.jsecurity.web.filter
A PathConfigProcessor processes configuration entries on a per path (per url) basis.
pathMatcher - Variable in class org.jsecurity.web.config.IniWebConfiguration
 
pathMatcher - Variable in class org.jsecurity.web.filter.PathMatchingFilter
PatternMatcher used in determining which paths to react to for a given request.
pathMatches(String, String) - Method in class org.jsecurity.web.config.IniWebConfiguration
Returns true if an incoming request's path (the path argument) matches a configured filter chain path in the [urls] section (the pattern argument), false otherwise.
PathMatchingFilter - Class in org.jsecurity.web.filter
Base class for Filters that will process only specified paths and allow all others to pass through.
PathMatchingFilter() - Constructor for class org.jsecurity.web.filter.PathMatchingFilter
 
pathsMatch(String, ServletRequest) - Method in class org.jsecurity.web.filter.PathMatchingFilter
Returns true if the incoming request matches the specified path pattern, false otherwise.
pathsMatch(String, String) - Method in class org.jsecurity.web.filter.PathMatchingFilter
Returns true if the path matches the specified pattern string, false otherwise.
PatternMatcher - Interface in org.jsecurity.util
Interface for components that can match source strings against a specified pattern string.
Permission - Interface in org.jsecurity.authz
A Permission represents the ability to perform an action or access a resource.
PermissionAnnotationHandler - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresPermissions annotation is declared, and if so, performs a permission check to see if the calling Subject is allowed continued access.
PermissionAnnotationHandler() - Constructor for class org.jsecurity.authz.aop.PermissionAnnotationHandler
Default no-argument constructor that ensures this handler looks for RequiresPermissions annotations.
PermissionAnnotationMethodInterceptor - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresPermissions annotation is declared, and if so, performs a permission check to see if the calling Subject is allowed to call the method.
PermissionAnnotationMethodInterceptor() - Constructor for class org.jsecurity.authz.aop.PermissionAnnotationMethodInterceptor
Default no-argument constructor that ensures this interceptor looks for RequiresPermissions annotations in a method declaration.
PermissionResolver - Interface in org.jsecurity.authz.permission
A PermisisonResolver resolves a String value and converts it into a Permission instance.
PermissionResolverAware - Interface in org.jsecurity.authz.permission
Interface implemented by a component that wishes to use any application-configured PermissionResolver that might already exist instead of potentially creating one itself.
permissions - Variable in class org.jsecurity.authz.SimpleRole
 
PermissionsAuthorizationFilter - Class in org.jsecurity.web.filter.authz
Filter that allows access if the current user has the permissions specified by the mapped value, or denies access if the user does not have all of the permissions specified.
PermissionsAuthorizationFilter() - Constructor for class org.jsecurity.web.filter.authz.PermissionsAuthorizationFilter
 
permissionsLookupEnabled - Variable in class org.jsecurity.realm.jdbc.JdbcRealm
 
permissionsQuery - Variable in class org.jsecurity.realm.jdbc.JdbcRealm
 
PermissionTag - Class in org.jsecurity.web.tags
 
PermissionTag() - Constructor for class org.jsecurity.web.tags.PermissionTag
 
PermissionUtils - Class in org.jsecurity.util
TODO - comlete JavaDoc
PermissionUtils() - Constructor for class org.jsecurity.util.PermissionUtils
 
POST_METHOD - Static variable in class org.jsecurity.web.filter.AccessControlFilter
Constant representing the HTTP 'POST' request method, equal to POST.
postHandle(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.servlet.AdviceFilter
Allows 'post' advice logic to be called, but only if no exception occurs during filter chain execution.
postProcessAfterInitialization(Object, String) - Method in class org.jsecurity.spring.LifecycleBeanPostProcessor
Does nothing - merely returns the object argument immediately.
postProcessBeforeDestruction(Object, String) - Method in class org.jsecurity.spring.LifecycleBeanPostProcessor
Calls the destroy() methods on the bean if it implements Destroyable
postProcessBeforeInitialization(Object, String) - Method in class org.jsecurity.spring.LifecycleBeanPostProcessor
Calls the init() methods on the bean if it implements Initializable
PREFERRED_ENCODING - Static variable in class org.jsecurity.codec.CodecSupport
JSecurity's default preferred Character encoding, equal to UTF-8.
preHandle(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.PathMatchingFilter
Implementation that handles path-matching behavior before a request is evaluated.
preHandle(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.servlet.AdviceFilter
Returns true if the filter chain should be allowed to continue, false otherwise.
PrincipalCollection - Interface in org.jsecurity.subject
A collection of all principals associated with a corresponding Subject.
principals - Variable in class org.jsecurity.authc.SimpleAuthenticationInfo
The principals identifying the account associated with this AuthenticationInfo instance.
principals - Variable in class org.jsecurity.subject.DelegatingSubject
 
PRINCIPALS_SESSION_KEY - Static variable in class org.jsecurity.web.DefaultWebSecurityManager
The key that is used to store subject principals in the session.
principalSuffix - Variable in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
principalSuffix - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
PrincipalTag - Class in org.jsecurity.web.tags
Tag used to print out the String value of a user's default principal, or a specific principal as specified by the tag's attributes.
PrincipalTag() - Constructor for class org.jsecurity.web.tags.PrincipalTag
 
proceed() - Method in interface org.jsecurity.aop.MethodInvocation
Continues the method invocation chain, or if the last in the chain, the method itself.
process(IniResource) - Method in class org.jsecurity.config.IniConfiguration
 
processDefinitions() - Method in class org.jsecurity.realm.text.TextConfigurationRealm
 
processIni(Map<String, Map<String, String>>) - Method in class org.jsecurity.config.IniConfiguration
 
processPathConfig(String, String) - Method in interface org.jsecurity.web.filter.PathConfigProcessor
 
processPathConfig(String, String) - Method in class org.jsecurity.web.filter.PathMatchingFilter
Splits any comma-delmited values that might be found in the config argument and sets the resulting String[] array on the appliedPaths internal Map.
processRoleDefinitions() - Method in class org.jsecurity.realm.text.TextConfigurationRealm
 
processUserDefinitions() - Method in class org.jsecurity.realm.text.TextConfigurationRealm
 
PropertiesRealm - Class in org.jsecurity.realm.text
A subclass of SimpleAccountRealm that defers all logic to the parent class, but just enables Properties based configuration in addition to the parent class's String configuration.
PropertiesRealm() - Constructor for class org.jsecurity.realm.text.PropertiesRealm
 
PropertiesRealm(CacheManager) - Constructor for class org.jsecurity.realm.text.PropertiesRealm
 
ProxiedFilterChain - Class in org.jsecurity.web.servlet
 
ProxiedFilterChain(FilterChain, List<Filter>) - Constructor for class org.jsecurity.web.servlet.ProxiedFilterChain
 
ProxiedSession - Class in org.jsecurity.session
Simple Session implementation that immediately delegates all corresponding calls to an underlying proxied session instance.
ProxiedSession(Session) - Constructor for class org.jsecurity.session.ProxiedSession
Constructs an instance that proxies the specified target.
proxy - Variable in class org.jsecurity.session.ProxiedSession
The proxied instance
put(Object, Object) - Method in interface org.jsecurity.cache.Cache
Adds a Cache entry.
put(Object, Object) - Method in class org.jsecurity.cache.ehcache.EhCache
Puts an object into the cache.
put(Object, Object) - Method in class org.jsecurity.cache.HashtableCache
 
put(Object, Object) - Static method in class org.jsecurity.util.ThreadContext
Binds value for the given key to the current thread.
putValue(String, Object) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 

Q

QuartzSessionValidationJob - Class in org.jsecurity.session.mgt.quartz
A quartz job that basically just calls the ValidatingSessionManager.validateSessions() method on a configured session manager.
QuartzSessionValidationJob() - Constructor for class org.jsecurity.session.mgt.quartz.QuartzSessionValidationJob
 
QuartzSessionValidationScheduler - Class in org.jsecurity.session.mgt.quartz
An implementation of the SessionValidationScheduler that uses Quartz to schedule a job to call ValidatingSessionManager.validateSessions() on a regular basis.
QuartzSessionValidationScheduler() - Constructor for class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
Default constructor.
QuartzSessionValidationScheduler(ValidatingSessionManager) - Constructor for class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
Constructor that specifies the session manager that should be used for validating sessions.
queryForAuthenticationInfo(AuthenticationToken, LdapContextFactory) - Method in class org.jsecurity.realm.activedirectory.ActiveDirectoryRealm
Builds an AuthenticationInfo object by querying the active directory LDAP context for the specified username.
queryForAuthenticationInfo(AuthenticationToken, LdapContextFactory) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Abstract method that should be implemented by subclasses to builds an AuthenticationInfo object by querying the LDAP context for the specified username.
queryForAuthorizationInfo(PrincipalCollection, LdapContextFactory) - Method in class org.jsecurity.realm.activedirectory.ActiveDirectoryRealm
Builds an AuthorizationInfo object by querying the active directory LDAP context for the groups that a user is a member of.
queryForAuthorizationInfo(PrincipalCollection, LdapContextFactory) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Abstract method that should be implemented by subclasses to builds an AuthorizationInfo object by querying the LDAP context for the specified principal.
queryProperties(Map) - Method in class org.jsecurity.web.RedirectView
Determine name-value pairs for query strings, which will be stringified, URL-encoded and formatted by appendQueryProperties.

R

readSession(Serializable) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Retrieves the Session object from the underlying EIS identified by sessionId.
readSession(Serializable) - Method in interface org.jsecurity.session.mgt.eis.SessionDAO
Retrieves the session from the EIS uniquely identified by the specified sessionId.
Realm - Interface in org.jsecurity.realm
A Realm is a security component that can access application-specific security entities such as users, roles, and permissions to determine authentication and authorization operations.
RealmFactory - Interface in org.jsecurity.realm
Enables JSecurity end-users to configure and initialize one or more Realm instances in any manner desired.
realms - Variable in class org.jsecurity.authz.ModularRealmAuthorizer
The realms to consult during any authorization check.
realms - Variable in class org.jsecurity.mgt.RealmSecurityManager
Internal collection of Realms used for all authentication and authorization operations.
RealmSecurityManager - Class in org.jsecurity.mgt
JSecurity support of a SecurityManager class hierarchy based around a collection of Realms.
RealmSecurityManager() - Constructor for class org.jsecurity.mgt.RealmSecurityManager
Default no-arg constructor.
rebind(String, Object) - Method in class org.jsecurity.jndi.JndiTemplate
Rebind the given object to the current JNDI context, using the given name.
redirectToLogin(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.AccessControlFilter
Convenience method for subclasses that merely acquires the getLoginUrl and redirects the request to that url.
RedirectView - Class in org.jsecurity.web
View that redirects to an absolute, context relative, or current request relative URL, exposing all model attributes as HTTP query parameters.
RedirectView() - Constructor for class org.jsecurity.web.RedirectView
Constructor for use as a bean.
RedirectView(String) - Constructor for class org.jsecurity.web.RedirectView
Create a new RedirectView with the given URL.
RedirectView(String, boolean) - Constructor for class org.jsecurity.web.RedirectView
Create a new RedirectView with the given URL.
RedirectView(String, boolean, boolean) - Constructor for class org.jsecurity.web.RedirectView
Create a new RedirectView with the given URL.
REFERENCED_SESSION_ID - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
REFERENCED_SESSION_ID_IS_VALID - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
REFERENCED_SESSION_ID_SOURCE - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
REFERENCED_SESSION_IS_NEW - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
referral - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
ReflectionBuilder - Class in org.jsecurity.config
Object builder that uses reflection and Apache Commons BeanUtils to build objects given a map of "property values".
ReflectionBuilder() - Constructor for class org.jsecurity.config.ReflectionBuilder
 
ReflectionBuilder(Map) - Constructor for class org.jsecurity.config.ReflectionBuilder
 
reloadIntervalSeconds - Variable in class org.jsecurity.realm.text.PropertiesRealm
 
rememberIdentity(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
rememberIdentity(AuthenticationInfo) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
rememberIdentity(PrincipalCollection) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
RememberMeAuthenticationToken - Interface in org.jsecurity.authc
An AuthenticationToken that indicates if the user wishes their identity to be remembered across sessions.
rememberMeFailedLogin(AuthenticationToken, AuthenticationException) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
rememberMeLogout(PrincipalCollection) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
rememberMeManager - Variable in class org.jsecurity.mgt.DefaultSecurityManager
 
RememberMeManager - Interface in org.jsecurity.subject
A RememberMeManager is responsible for remembering a Subject's identity across that Subject's sessions with the application.
rememberMeSuccessfulLogin(AuthenticationToken, AuthenticationInfo) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
rememberSerializedIdentity(byte[]) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
rememberSerializedIdentity(byte[]) - Method in class org.jsecurity.web.WebRememberMeManager
 
remove(AuthenticationListener) - Method in class org.jsecurity.authc.AbstractAuthenticator
 
remove(AuthenticationListener) - Method in interface org.jsecurity.authc.AuthenticationListenerRegistrar
Removes a single listener that no longer wishes to be notified during the authentication process.
remove(Object) - Method in interface org.jsecurity.cache.Cache
Remove the cache entry corresponding to the specified key.
remove(Object) - Method in class org.jsecurity.cache.ehcache.EhCache
Removes the element which matches the key.
remove(Object) - Method in class org.jsecurity.cache.HashtableCache
 
remove(AuthenticationListener) - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
 
remove(SessionListener) - Method in class org.jsecurity.mgt.SessionsSecurityManager
Removes the specified listener from receiving session events from the internal delegate SessionManager instance.
remove(SessionListener) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
remove(SessionListener) - Method in interface org.jsecurity.session.SessionListenerRegistrar
Removes a single listener that no longer wishes to be notified during Session lifecycles.
remove(Object) - Static method in class org.jsecurity.util.ThreadContext
Unbinds the value for the given key from the current thread.
removeAttribute(Serializable, Object) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
removeAttribute(Object) - Method in class org.jsecurity.session.mgt.DelegatingSession
 
removeAttribute(Object) - Method in class org.jsecurity.session.mgt.ImmutableProxiedSession
Immediately throws an InvalidSessionException in all cases because this proxy is immutable.
removeAttribute(Serializable, Object) - Method in interface org.jsecurity.session.mgt.SessionManager
Removes (unbinds) the object bound to this session under the specified key name.
removeAttribute(Object) - Method in class org.jsecurity.session.mgt.SimpleSession
 
removeAttribute(Object) - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
removeAttribute(Object) - Method in interface org.jsecurity.session.Session
Removes (unbinds) the object bound to this session under the specified key name.
removeAttribute(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
removeAttribute(String) - Method in class org.jsecurity.web.servlet.ServletContextSupport
 
removeAttribute(Object) - Method in class org.jsecurity.web.session.WebSession
 
removeValue(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.CookieAttribute
 
removeValue(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.RequestParamAttribute
 
removeValue(ServletRequest, ServletResponse) - Method in interface org.jsecurity.web.attr.WebAttribute
 
removeValue(String) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
renderMergedOutputModel(Map, HttpServletRequest, HttpServletResponse) - Method in class org.jsecurity.web.RedirectView
Convert model to request parameters and redirect to the given URL.
RequestParamAttribute<T> - Class in org.jsecurity.web.attr
 
RequestParamAttribute() - Constructor for class org.jsecurity.web.attr.RequestParamAttribute
 
RequestParamAttribute(String) - Constructor for class org.jsecurity.web.attr.RequestParamAttribute
 
RequiresAuthentication - Annotation Type in org.jsecurity.authz.annotation
Requires the current Subject to have been authenticated during their current session for the annotated class/instance/method to be accessed or invoked.
RequiresGuest - Annotation Type in org.jsecurity.authz.annotation
Requires the current Subject to be a "guest", that is, they are not authenticated or remembered from a previous session for the annotated class/instance/method to be accessed or invoked.
RequiresPermissions - Annotation Type in org.jsecurity.authz.annotation
Requires the current executor's Subject to imply a particular permission in order to execute the annotated method.
RequiresRoles - Annotation Type in org.jsecurity.authz.annotation
Requires the currently executing Subject to have one or more specified roles in order to execute the annotated method.
RequiresUser - Annotation Type in org.jsecurity.authz.annotation
Requires the current Subject to be an application user for the annotated class/instance/method to be accessed or invoked.
resolveDelimitedPermissions(String, PermissionResolver) - Static method in class org.jsecurity.util.PermissionUtils
 
resolvePermission(String) - Method in interface org.jsecurity.authz.permission.PermissionResolver
Resolves a Permission based on the given String representation.
resolvePermission(String) - Method in class org.jsecurity.authz.permission.WildcardPermissionResolver
Returns a new WildcardPermission instance constructed based on the specified permissionString.
resolvePermissions(Collection<String>, PermissionResolver) - Static method in class org.jsecurity.util.PermissionUtils
 
ResourceConfiguration - Class in org.jsecurity.config
//TODO - complete JavaDoc
ResourceConfiguration() - Constructor for class org.jsecurity.config.ResourceConfiguration
 
ResourceException - Exception in org.jsecurity.io
Root exception when a problem occurs acquiring or processing a resource.
ResourceException() - Constructor for exception org.jsecurity.io.ResourceException
Creates a new ResourceException.
ResourceException(String) - Constructor for exception org.jsecurity.io.ResourceException
Constructs a new ResourceException.
ResourceException(Throwable) - Constructor for exception org.jsecurity.io.ResourceException
Constructs a new ResourceException.
ResourceException(String, Throwable) - Constructor for exception org.jsecurity.io.ResourceException
Constructs a new ResourceException.
resourceExists(String) - Static method in class org.jsecurity.io.ResourceUtils
Returns true if the resource at the specified path exists, false otherwise.
resourcePath - Variable in class org.jsecurity.realm.text.PropertiesRealm
 
resources - Static variable in class org.jsecurity.util.ThreadContext
 
ResourceUtils - Class in org.jsecurity.io
Static helper methods for loading resources.
retrieveSession(Serializable) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
retrieveSession(Serializable) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
retrieveSession(Serializable) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
retrieveSessionId(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
retrieveValue(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
retrieveValue(ServletRequest, ServletResponse) - Method in interface org.jsecurity.web.attr.WebAttribute
 
RoleAnnotationHandler - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresRoles annotation is declared, and if so, performs a role check to see if the calling Subject is allowed to proceed.
RoleAnnotationHandler() - Constructor for class org.jsecurity.authz.aop.RoleAnnotationHandler
Default no-argument constructor that ensures this handler looks for RequiresRoles annotations.
RoleAnnotationMethodInterceptor - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresRoles annotation is declared, and if so, performs a role check to see if the calling Subject is allowed to invoke the method.
RoleAnnotationMethodInterceptor() - Constructor for class org.jsecurity.authz.aop.RoleAnnotationMethodInterceptor
Default no-argument constructor that ensures this interceptor looks for RequiresRoles annotations in a method declaration.
roleExists(String) - Method in class org.jsecurity.realm.SimpleAccountRealm
 
roles - Variable in class org.jsecurity.authz.SimpleAuthorizationInfo
The internal roles collection.
roles - Variable in class org.jsecurity.realm.SimpleAccountRealm
 
RolesAuthorizationFilter - Class in org.jsecurity.web.filter.authz
Filter that allows access if the current user has the roles specified by the mapped value, or denies access if the user does not have all of the roles specified.
RolesAuthorizationFilter() - Constructor for class org.jsecurity.web.filter.authz.RolesAuthorizationFilter
 
RoleTag - Class in org.jsecurity.web.tags
 
RoleTag() - Constructor for class org.jsecurity.web.tags.RoleTag
 
run() - Method in class org.jsecurity.realm.text.PropertiesRealm
 
run() - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 

S

SAVED_REQUEST_KEY - Static variable in class org.jsecurity.web.WebUtils
Session key used to save a request and later restore it, for example when redirecting to a requested page after login, equal to jsecuritySavedRequest.
SavedRequest - Class in org.jsecurity.web
Maintains request data for a request that was redirected, so that after authentication the user can be redirected to the originally requested page.
SavedRequest(HttpServletRequest) - Constructor for class org.jsecurity.web.SavedRequest
Constructs a new instance from the given HTTP request.
saveRequest(ServletRequest) - Method in class org.jsecurity.web.filter.AccessControlFilter
Convenience method merely delegates to WebUtils.saveRequest(request) to save the request state for reuse later.
saveRequest(ServletRequest) - Static method in class org.jsecurity.web.WebUtils
 
saveRequestAndRedirectToLogin(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.AccessControlFilter
Convenience method for subclasses to use when a login redirect is required.
scheduler - Variable in class org.jsecurity.realm.text.PropertiesRealm
 
searchBase - Variable in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
searchBase - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
sections - Variable in class org.jsecurity.io.IniResource
 
SecureRemoteInvocationExecutor - Class in org.jsecurity.spring.remoting
An implementation of the Spring RemoteInvocationExecutor that binds the correct Session and Subject to the remote invocation thread during a remote execution.
SecureRemoteInvocationExecutor() - Constructor for class org.jsecurity.spring.remoting.SecureRemoteInvocationExecutor
 
SecureRemoteInvocationFactory - Class in org.jsecurity.spring.remoting
A RemoteInvocationFactory that passes the session ID to the server via a RemoteInvocation attribute.
SecureRemoteInvocationFactory() - Constructor for class org.jsecurity.spring.remoting.SecureRemoteInvocationFactory
 
SecureTag - Class in org.jsecurity.web.tags
 
SecureTag() - Constructor for class org.jsecurity.web.tags.SecureTag
 
SECURITY_MANAGER_BEAN_NAME_PARAM_NAME - Static variable in class org.jsecurity.spring.SpringIniWebConfiguration
 
SECURITY_MANAGER_CONTEXT_KEY - Static variable in class org.jsecurity.web.servlet.JSecurityFilter
 
SECURITY_MANAGER_KEY - Static variable in class org.jsecurity.util.ThreadContext
 
securityManager - Variable in class org.jsecurity.config.ResourceConfiguration
 
SecurityManager - Interface in org.jsecurity.mgt
A SecurityManager executes all security operations for all Subjects (aka users) across a single application.
securityManager - Variable in class org.jsecurity.spring.security.interceptor.AuthorizationAttributeSourceAdvisor
 
securityManager - Variable in class org.jsecurity.subject.DelegatingSubject
 
securityManager - Variable in class org.jsecurity.web.servlet.JSecurityFilter
 
securityManagerBeanName - Variable in class org.jsecurity.spring.SpringIniWebConfiguration
 
SecurityManagerFactory - Interface in org.jsecurity.mgt
Allows implementations to create and return an application's SecurityManager instance in any manner necessary.
SecurityUtils - Class in org.jsecurity
Accesses the currently accessible Subject for the calling code depending on runtime environment.
SecurityUtils() - Constructor for class org.jsecurity.SecurityUtils
 
sendChallenge(ServletRequest, ServletResponse) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Builds the challenge for authorization by setting a HTTP 401 (Unauthorized) status as well as the response's AUTHENTICATE_HEADER.
sendRedirect(HttpServletRequest, HttpServletResponse, String, boolean) - Method in class org.jsecurity.web.RedirectView
Send a redirect back to the HTTP client
SerializationException - Exception in org.jsecurity.io
Root exception for problems either serializing or de-serializing data.
SerializationException() - Constructor for exception org.jsecurity.io.SerializationException
Creates a new SerializationException.
SerializationException(String) - Constructor for exception org.jsecurity.io.SerializationException
Constructs a new SerializationException.
SerializationException(Throwable) - Constructor for exception org.jsecurity.io.SerializationException
Constructs a new SerializationException.
SerializationException(String, Throwable) - Constructor for exception org.jsecurity.io.SerializationException
Constructs a new SerializationException.
serialize(Object) - Method in class org.jsecurity.io.DefaultSerializer
 
serialize(Object) - Method in interface org.jsecurity.io.Serializer
Converts the specified Object into a byte[] array.
serialize(Object) - Method in class org.jsecurity.io.XmlSerializer
Serializes the specified source into a byte[] array by using the XMLEncoder to encode the object out to a ByteArrayOutputStream, where the resulting byte[] array is returned.
serialize(PrincipalCollection) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
Serializer - Interface in org.jsecurity.io
A Serializer converts objects to raw binary data and vice versa, enabling persistent storage of objects to files, HTTP cookies, or other mechanism.
SERVLET_REQUEST_KEY - Static variable in class org.jsecurity.web.WebUtils
 
SERVLET_RESPONSE_KEY - Static variable in class org.jsecurity.web.WebUtils
 
ServletContainerSessionManager - Class in org.jsecurity.web.session
SessionManager implementation providing Session implementations that are merely wrappers for the Servlet container's HttpSession.
ServletContainerSessionManager() - Constructor for class org.jsecurity.web.session.ServletContainerSessionManager
 
servletContext - Variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
servletContext - Variable in class org.jsecurity.web.servlet.JSecurityHttpSession
 
ServletContextSupport - Class in org.jsecurity.web.servlet
TODO - class javadoc
ServletContextSupport() - Constructor for class org.jsecurity.web.servlet.ServletContextSupport
 
Session - Interface in org.jsecurity.session
A Session is a stateful data context associated with a single Subject (user, 3rd party process, etc) who interacts with a software system over a period of time.
session - Variable in class org.jsecurity.subject.DelegatingSubject
 
session - Variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
session - Variable in class org.jsecurity.web.servlet.JSecurityHttpSession
 
SESSION_ID_KEY - Static variable in class org.jsecurity.spring.remoting.SecureRemoteInvocationFactory
 
SESSION_ID_NAME - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
SESSION_MANAGER_KEY - Static variable in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationJob
Key used to store the session manager in the job data map for this job.
SESSION_MODE_PROPERTY_NAME - Static variable in class org.jsecurity.config.IniConfiguration
 
sessionDAO - Variable in class org.jsecurity.session.mgt.DefaultSessionManager
 
SessionDAO - Interface in org.jsecurity.session.mgt.eis
Data Access Object design pattern specification to enable Session access to an EIS (Enterprise Information System).
SessionException - Exception in org.jsecurity.session
General security exception attributed to problems during interaction with the system during a session.
SessionException() - Constructor for exception org.jsecurity.session.SessionException
Creates a new SessionException.
SessionException(String) - Constructor for exception org.jsecurity.session.SessionException
Constructs a new SessionException.
SessionException(Throwable) - Constructor for exception org.jsecurity.session.SessionException
Constructs a new SessionException.
SessionException(String, Throwable) - Constructor for exception org.jsecurity.session.SessionException
Constructs a new SessionException.
SessionException(Serializable) - Constructor for exception org.jsecurity.session.SessionException
Constructs a new SessionException.
SessionException(String, Serializable) - Constructor for exception org.jsecurity.session.SessionException
Constructs a new SessionException.
SessionException(String, Throwable, Serializable) - Constructor for exception org.jsecurity.session.SessionException
Constructs a new InvalidSessionException.
SessionFactory - Interface in org.jsecurity.session
A SessionFactory is responsible for starting new Sessions and acquiring existing Sessions.
sessionIdCookieAttribute - Variable in class org.jsecurity.web.session.DefaultWebSessionManager
 
sessionIdRequestParamAttribute - Variable in class org.jsecurity.web.session.DefaultWebSessionManager
 
SessionListener - Interface in org.jsecurity.session
Interface to be implemented by components that wish to be notified of events that occur during a Session's lifecycle.
SessionListenerRegistrar - Interface in org.jsecurity.session
A SessionListenerRegistrar is a component that is capable of registering interested SessionListeners that wish to be notified during Session lifecycle events.
sessionManager - Variable in class org.jsecurity.mgt.SessionsSecurityManager
The internal delegate SessionManager used by this security manager that manages all the application's Sessions.
sessionManager - Variable in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
SessionManager - Interface in org.jsecurity.session.mgt
A SessionManager manages the creation, maintenance, and clean-up of all application Sessions.
SessionsSecurityManager - Class in org.jsecurity.mgt
JSecurity support of a SecurityManager class hierarchy that delegates all session operations to a wrapped SessionManager instance.
SessionsSecurityManager() - Constructor for class org.jsecurity.mgt.SessionsSecurityManager
Default no-arg constructor, internally creates a suitable default SessionManager delegate instance via the ensureSessionManager() method.
sessionValidationInterval - Variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
sessionValidationScheduler - Variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
Scheduler used to validate sessions on a regular basis.
SessionValidationScheduler - Interface in org.jsecurity.session.mgt
Interface that should be implemented by classes that can control validating sessions on a regular basis.
sessionValidationSchedulerEnabled - Variable in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
setActiveSessionsCache(Cache) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Sets the cache instance to use for storing active sessions.
setActiveSessionsCacheName(String) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Sets the name of the active sessions cache to be returned by the CacheManager.
setAdditionalEnvironment(Map<String, String>) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
These entries are added to the environment map before initializing the LDAP context.
setAnnotationClass(Class<? extends Annotation>) - Method in class org.jsecurity.aop.AnnotationHandler
Sets the type of annotation this handler will inspect and process.
setApplicationName(String) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Sets the name to use in the ServletResponse's WWW-Authenticate header.
setAttribute(Serializable, Object, Object) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
setAttribute(Object, Object) - Method in class org.jsecurity.session.mgt.DelegatingSession
 
setAttribute(Object, Object) - Method in class org.jsecurity.session.mgt.ImmutableProxiedSession
Immediately throws an InvalidSessionException in all cases because this proxy is immutable.
setAttribute(Serializable, Object, Object) - Method in interface org.jsecurity.session.mgt.SessionManager
Binds the specified value to the specified session uniquely identified by the specifed key name.
setAttribute(Object, Object) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setAttribute(Object, Object) - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
setAttribute(Object, Object) - Method in interface org.jsecurity.session.Session
Binds the specified value to this session, uniquely identified by the specifed key name.
setAttribute(String, Object) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
setAttribute(String, Object) - Method in class org.jsecurity.web.servlet.ServletContextSupport
 
setAttribute(Object, Object) - Method in class org.jsecurity.web.session.WebSession
 
setAttributes(Map<Object, Object>) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setAuthcScheme(String) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Sets the HTTP WWW-Authenticate header scheme that this filter will use when sending the HTTP Basic challenge response.
setAuthentication(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
Sets the type of LDAP authentication to perform when connecting to the LDAP server.
setAuthenticationListeners(Collection<AuthenticationListener>) - Method in class org.jsecurity.authc.AbstractAuthenticator
 
setAuthenticationListeners(Collection<AuthenticationListener>) - Method in interface org.jsecurity.authc.AuthenticationListenerRegistrar
Sets the AuthenticationListener(s) that wish to be notified during the authentication process.
setAuthenticationListeners(Collection<AuthenticationListener>) - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
This is a convenience method that allows registration of AuthenticationListeners with the underlying delegate Authenticator instance.
setAuthenticationQuery(String) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
Overrides the default query used to retrieve a user's password during authentication.
setAuthenticationTokenClass(Class<? extends AuthenticationToken>) - Method in class org.jsecurity.realm.AuthenticatingRealm
Sets the authenticationToken class supported by this realm.
setAuthenticator(Authenticator) - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Sets the delegate Authenticator instance that this SecurityManager uses to perform all authentication operations.
setAuthorizationCache(Cache) - Method in class org.jsecurity.realm.AuthorizingRealm
 
setAuthorizationCacheName(String) - Method in class org.jsecurity.realm.AuthorizingRealm
 
setAuthorizer(Authorizer) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Sets the underlying Authorizer instance to which this SecurityManager implementation will delegate all of its authorization calls.
setAuthzScheme(String) - Method in class org.jsecurity.web.filter.authc.BasicHttpAuthenticationFilter
Sets the HTTP Authorization header value that this filter will respond to as indicating a login request.
setBytes(byte[]) - Method in class org.jsecurity.crypto.hash.AbstractHash
Sets the raw bytes stored by this hash instance.
setCacheManager(CacheManager) - Method in interface org.jsecurity.cache.CacheManagerAware
Sets the available CacheManager instance on this component.
setCacheManager(CacheManager) - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Sets the wrapped Ehcache CacheManager instance.
setCacheManager(CacheManager) - Method in class org.jsecurity.mgt.CachingSecurityManager
Sets the CacheManager used by this SecurityManager and potentially any of its children components.
setCacheManager(CacheManager) - Method in class org.jsecurity.realm.CachingRealm
Sets the CacheManager to be used for data caching to reduce EIS round trips.
setCacheManager(CacheManager) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
setCacheManager(CacheManager) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Sets the cacheManager to use for constructing the session cache.
setCacheManagerConfigFile(String) - Method in class org.jsecurity.cache.ehcache.EhCacheManager
Sets the resource location of the config file used to initialize the wrapped EhCache CacheManager instance.
setCharsetName(String) - Method in class org.jsecurity.io.TextResource
 
setCheckRequestParams(boolean) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
setCheckRequestParamsFirst(boolean) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
setCipher(Cipher) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setCipherKey(byte[]) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setCipherKeyBase64(String) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setCipherKeyHex(String) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setConfig(String) - Method in class org.jsecurity.config.TextConfiguration
 
setConfiguration(WebConfiguration) - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
setConfigUrl(String) - Method in class org.jsecurity.config.IniConfiguration
 
setContext(ServletContext) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
 
setContextFactoryClassName(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
The context factory to use.
setContextRelative(boolean) - Method in class org.jsecurity.web.RedirectView
Set whether to interpret a given URL that starts with a slash ("/") as relative to the current ServletContext, i.e. as relative to the web application root.
setCookieMaxAge(int) - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will get the underyling rememberMe cookie's max age.
setCookieName(String) - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will set the underyling rememberMe cookie's name.
setCookiePath(String) - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will set the underyling rememberMe cookie's path.
setCookieSecure(boolean) - Method in class org.jsecurity.web.WebRememberMeManager
Passthrough JavaBeans property that will set the underyling rememberMe cookie's 'secure' status.
setCredentials(Object) - Method in class org.jsecurity.authc.SimpleAccount
Sets this Account's credentials that verify one or more of the Account's principals, such as a password or private key.
setCredentials(Object) - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
Sets the credentials that verify the principals/identity of the associated Realm account.
setCredentialsExpired(boolean) - Method in class org.jsecurity.authc.SimpleAccount
Sets whether or not the Account's credentials are expired.
setCredentialsMatcher(CredentialsMatcher) - Method in class org.jsecurity.realm.AuthenticatingRealm
Sets the CrendialsMatcher used during an authentication attempt to verify submitted credentials with those stored in the system.
setDataSource(DataSource) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
Sets the datasource that should be used to retrieve connections used by this realm.
setDecryptionCipherKey(byte[]) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setDecryptionCipherKeyBase64(String) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setDecryptionCipherKeyHex(String) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setDefaultValue(String) - Method in class org.jsecurity.web.tags.PrincipalTag
 
setEditorClass(Class<? extends PropertyEditor>) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
If set, an instance of this class will be used to convert a the object value to a string value (and vice versa) when reading and populating values in HttpServletRequests, Cookies or HttpSessions.
setEncodingScheme(String) - Method in class org.jsecurity.web.RedirectView
Set the encoding scheme for this view.
setEncryptionCipherKey(byte[]) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setEncryptionCipherKeyBase64(String) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setEncryptionCipherKeyHex(String) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setEnvironment(Properties) - Method in class org.jsecurity.jndi.JndiTemplate
Set the environment for the JNDI InitialContext.
setExpired(boolean) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setFailureAttribute(ServletRequest, AuthenticationException) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
setFailureKeyAttribute(String) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
 
setFilterConfig(FilterConfig) - Method in class org.jsecurity.web.config.IniWebConfiguration
Sets the FilterConfig provided by the Servlet container at webapp startup.
setFilterConfig(FilterConfig) - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Sets the FilterConfig and the ServletContext as attributes of this class for use by subclasses.
setGlobalSessionTimeout(int) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
Sets the time in milliseconds that any session may remain idle before expiring.
setGroupRolesMap(Map<String, String>) - Method in class org.jsecurity.realm.activedirectory.ActiveDirectoryRealm
 
setHandler(AnnotationHandler) - Method in class org.jsecurity.aop.AnnotationMethodInterceptor
 
setHashIterations(int) - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Sets the number of times a submitted AuthenticationToken's credentials will be hashed before comparing to the credentials stored in the system.
setHashSalted(boolean) - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Sets whether or not to salt a submitted AuthenticationToken's credentials when hashing.
setHostAddress(InetAddress) - Method in exception org.jsecurity.authz.HostUnauthorizedException
Sets the host address associated with this exception.
setHostAddress(InetAddress) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setHostAddress(InetAddress) - Method in class org.jsecurity.web.session.WebSession
 
setHttp10Compatible(boolean) - Method in class org.jsecurity.web.RedirectView
Set whether to stay compatible with HTTP 1.0 clients.
setId(Serializable) - Method in class org.jsecurity.session.mgt.DelegatingSession
Sets the sessionId used by this handle for all future SessionManager method invocations.
setId(Serializable) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setIdentityAttribute(WebAttribute<String>) - Method in class org.jsecurity.web.WebRememberMeManager
 
setInetAddress(InetAddress) - Method in class org.jsecurity.authc.UsernamePasswordToken
Sets the inetAddress from where the authentication attempt occurs.
setInterval(long) - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
setJndiEnvironment(Properties) - Method in class org.jsecurity.jndi.JndiLocator
Set the JNDI environment to use for JNDI lookups.
setJndiNames(Collection<String>) - Method in class org.jsecurity.realm.jndi.JndiRealmFactory
Sets the JNDI names that will be used to look up Realm(s) from JNDI.
setJndiNames(String) - Method in class org.jsecurity.realm.jndi.JndiRealmFactory
Specifies a comma-delimited list of JNDI names to lookup, each one corresponding to a jndi-bound Realm.
setJndiTemplate(JndiTemplate) - Method in class org.jsecurity.jndi.JndiLocator
Set the JNDI template to use for JNDI lookups.
setKey(Key) - Method in class org.jsecurity.crypto.BlowfishCipher
Sets the internal default Key to use for symmetric encryption and decryption if one is not specified during encryption/decryption.
setLastAccessTime(Date) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setLdapContextFactory(LdapContextFactory) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Configures the LdapContextFactory implementation that is used to create LDAP connections for authentication and authorization.
setLocked(boolean) - Method in class org.jsecurity.authc.SimpleAccount
Sets whether or not the account is locked and can be used to login.
setLoginUrl(String) - Method in class org.jsecurity.web.filter.AccessControlFilter
Sets the login URL used to authenticate a user.
setMaxAge(int) - Method in class org.jsecurity.web.attr.CookieAttribute
Sets the Cookie's maxAge setting.
setMaxInactiveInterval(int) - Method in class org.jsecurity.web.servlet.JSecurityHttpSession
 
setMethodInterceptors(Collection<AuthorizingAnnotationMethodInterceptor>) - Method in class org.jsecurity.authz.aop.AnnotationsAuthorizingMethodInterceptor
Sets the method interceptors to execute for the annotated method.
setModularAuthenticationStrategy(ModularAuthenticationStrategy) - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Allows overriding the default ModularAuthenticationStrategy utilized during multi-realm log-in attempts.
setModularAuthenticationStrategy(ModularAuthenticationStrategy) - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Sets the ModularAuthenticationStrategy to use in multi-realm environments.
setMutable(boolean) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
setName(String) - Method in class org.jsecurity.authz.SimpleRole
 
setName(String) - Method in class org.jsecurity.realm.CachingRealm
 
setName(String) - Method in interface org.jsecurity.util.Nameable
Sets the (preferably application unique) name for this component.
setName(String) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
setName(String) - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Sets the filter's name.
setName(String) - Method in class org.jsecurity.web.tags.PermissionTag
 
setName(String) - Method in class org.jsecurity.web.tags.RoleTag
 
setObjectPermissions(Set<Permission>) - Method in class org.jsecurity.authc.SimpleAccount
Sets all object-based permissions assigned directly to this Account (not any of its realms).
setObjectPermissions(Set<Permission>) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Sets the object-based permissions assigned directly to the account.
setObjects(Map) - Method in class org.jsecurity.config.ReflectionBuilder
 
setPassword(char[]) - Method in class org.jsecurity.authc.UsernamePasswordToken
Sets the password for submission during an authentication attempt.
setPasswordParam(String) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
Sets the request parameter name to look for when acquiring the password.
setPath(String) - Method in class org.jsecurity.web.attr.CookieAttribute
Sets the Cookie's path setting.
setPathMatcher(PatternMatcher) - Method in class org.jsecurity.web.config.IniWebConfiguration
Sets the PatternMatcher used when determining if an incoming request's path matches a configured filter chain path in the [urls] section.
setPathSeparator(String) - Method in class org.jsecurity.util.AntPathMatcher
Set the path separator to use for pattern parsing.
setPermissionResolver(PermissionResolver) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Sets the specified PermissionResolver on any of the wrapped realms that implement the PermissionResolverAware interface.
setPermissionResolver(PermissionResolver) - Method in interface org.jsecurity.authz.permission.PermissionResolverAware
Sets the specified PermissionResolver on this instance.
setPermissionResolver(PermissionResolver) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
Sets the PermissionResolver instance that will be passed on to the underlying default wrapped Authorizer.
setPermissionResolver(PermissionResolver) - Method in class org.jsecurity.realm.AuthorizingRealm
 
setPermissions(Set<Permission>) - Method in class org.jsecurity.authz.SimpleRole
 
setPermissionsLookupEnabled(boolean) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
Enables lookup of permissions during authorization.
setPermissionsQuery(String) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
Overrides the default query used to retrieve a user's permissions during authorization.
setPrincipals(PrincipalCollection) - Method in class org.jsecurity.authc.SimpleAccount
Sets the principals, aka the identifying attributes (username, user id, first name, last name, etc) of this Account.
setPrincipals(PrincipalCollection) - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
Sets the identifying principal(s) represented by this instance.
setPrincipalSuffix(String) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Used when initializing the default LdapContextFactory.
setPrincipalSuffix(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
A suffix appended to the username.
setProperty(String) - Method in class org.jsecurity.web.tags.PrincipalTag
 
setRealm(Realm) - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Convenience setter for single-realm environments (fairly common).
setRealm(Realm) - Method in class org.jsecurity.mgt.RealmSecurityManager
Convenience method for applications using a single realm that merely wraps the realm in a list and then invokes the RealmSecurityManager.setRealms(java.util.Collection) method.
setRealms(Collection<Realm>) - Method in class org.jsecurity.authc.pam.ModularRealmAuthenticator
Sets all realms used by this Authenticator, providing PAM (Pluggable Authentication Module) configuration.
setRealms(Collection<Realm>) - Method in class org.jsecurity.authz.ModularRealmAuthorizer
Sets the realms wrapped by this Authorizer which are consulted during an authorization check.
setRealms(Collection<Realm>) - Method in class org.jsecurity.mgt.AuthenticatingSecurityManager
Immediately calls super.setRealms and then additionally passes on those realms to the internal delegate Authenticator instance so that it may use them during authentication attempts.
setRealms(Collection<Realm>) - Method in class org.jsecurity.mgt.AuthorizingSecurityManager
First calls super.realms and then sets these same Realm objects on this instance's Authorizer.
setRealms(Collection<Realm>) - Method in class org.jsecurity.mgt.RealmSecurityManager
Sets the realms managed by this SecurityManager instance.
setReferral(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
Sets the LDAP referral property.
setReloadIntervalSeconds(int) - Method in class org.jsecurity.realm.text.PropertiesRealm
Sets the interval in seconds at which the property file will be checked for changes and reloaded.
setRememberMe(boolean) - Method in class org.jsecurity.authc.UsernamePasswordToken
Sets if the submitting user wishes their identity (pricipal(s)) to be remembered across sessions.
setRememberMeCipher(Cipher) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeCipherKey(byte[]) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeCipherKeyBase64(String) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeCipherKeyHex(String) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeCookieMaxAge(Integer) - Method in class org.jsecurity.web.DefaultWebSecurityManager
Sets the maximum age allowed for the remember me cookie.
setRememberMeCookiePath(String) - Method in class org.jsecurity.web.DefaultWebSecurityManager
Sets the path used to store the remember me cookie.
setRememberMeDecryptionCipherKey(byte[]) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeDecryptionCipherKeyBase64(String) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeDecryptionCipherKeyHex(String) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeEncryptionCipherKey(byte[]) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeEncryptionCipherKeyBase64(String) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeEncryptionCipherKeyHex(String) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeManager(RememberMeManager) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
setRememberMeParam(String) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
Sets the request parameter name to look for when acquiring the rememberMe boolean value.
setRequest(JSecurityHttpServletRequest) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
 
setResourcePath(String) - Method in class org.jsecurity.realm.text.PropertiesRealm
Sets the path of the properties file to load user, role, and permission information from.
setResourceRef(boolean) - Method in class org.jsecurity.jndi.JndiLocator
Set whether the lookup occurs in a J2EE container, i.e. if the prefix "java:comp/env/" needs to be added if the JNDI name doesn't already contain it.
setRoleDefinitions(String) - Method in class org.jsecurity.realm.text.TextConfigurationRealm
Sets a newline (\n) delimited String that defines role-to-permission definitions.
setRoles(Set<String>) - Method in class org.jsecurity.authc.SimpleAccount
Sets the Account's assigned roles.
setRoles(Set<String>) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Sets the roles assigned to the account.
setScheduler(Scheduler) - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
 
setSearchBase(String) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Used when initializing the default LdapContextFactory.
setSearchBase(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
The search base for the search to perform in the LDAP server.
setSections(Map<String, Map<String, String>>) - Method in class org.jsecurity.io.IniResource
 
setSecure(boolean) - Method in class org.jsecurity.web.attr.CookieAttribute
 
setSecurityManager(SecurityManager) - Method in class org.jsecurity.config.ResourceConfiguration
 
setSecurityManager(SecurityManager) - Static method in class org.jsecurity.SecurityUtils
Sets a VM (static) singleton SecurityManager, specifically for transparent use in the getSubject() implementation.
setSecurityManager(SecurityManager) - Method in class org.jsecurity.spring.remoting.SecureRemoteInvocationExecutor
 
setSecurityManager(SecurityManager) - Method in class org.jsecurity.spring.security.interceptor.AuthorizationAttributeSourceAdvisor
 
setSecurityManager(SecurityManager) - Method in class org.jsecurity.web.servlet.JSecurityFilter
 
setSecurityManagerBeanName(String) - Method in class org.jsecurity.spring.SpringIniWebConfiguration
 
setSerializer(Serializer) - Method in class org.jsecurity.subject.AbstractRememberMeManager
 
setServletContext(ServletContext) - Method in class org.jsecurity.web.servlet.ServletContextSupport
 
setSessionDAO(SessionDAO) - Method in class org.jsecurity.session.mgt.DefaultSessionManager
 
setSessionId(Serializable) - Method in exception org.jsecurity.session.SessionException
Sets the session id of the Session associated with this exception.
setSessionIdCookieAttribute(CookieAttribute<Serializable>) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
setSessionIdCookieMaxAge(int) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
setSessionIdCookieMaxAge(int) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
setSessionIdCookieName(String) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
setSessionIdCookieName(String) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
setSessionIdCookiePath(String) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
setSessionIdCookiePath(String) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
setSessionIdCookieSecure(boolean) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
setSessionIdCookieSecure(boolean) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
setSessionIdRequestParamAttribute(RequestParamAttribute<Serializable>) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
setSessionListeners(Collection<SessionListener>) - Method in class org.jsecurity.mgt.SessionsSecurityManager
This is a convenience method that allows registration of SessionListeners with the underlying delegate SessionManager at startup.
setSessionListeners(Collection<SessionListener>) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
setSessionListeners(Collection<SessionListener>) - Method in interface org.jsecurity.session.SessionListenerRegistrar
Sets the SessionListener(s) that wish to be notified during Session lifecycles.
setSessionManager(SessionManager) - Method in class org.jsecurity.mgt.SessionsSecurityManager
Sets the underlying delegate SessionManager instance that will be used to support this implementation's SessionManager method calls.
setSessionManager(SessionManager) - Method in class org.jsecurity.session.mgt.DelegatingSession
Sets the SessionManager to which this DelegatingSession will delegate its method calls.
setSessionManager(ValidatingSessionManager) - Method in class org.jsecurity.session.mgt.ExecutorServiceSessionValidationScheduler
 
setSessionManager(ValidatingSessionManager) - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
 
setSessionMode(String) - Method in class org.jsecurity.web.DefaultWebSecurityManager
 
setSessionValidationInterval(long) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
If using the underlying default SessionValidationScheduler (that is, the setSessionValidationScheduler method is never called) , this method allows one to specify how frequently session should be validated (to check for orphans).
setSessionValidationInterval(long) - Method in class org.jsecurity.session.mgt.quartz.QuartzSessionValidationScheduler
Specifies how frequently (in milliseconds) this Scheduler will call the ValidatingSessionManager#validateSessions() method.
setSessionValidationScheduler(SessionValidationScheduler) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
setSessionValidationSchedulerEnabled(boolean) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
setSimpleRoles(Set<SimpleRole>) - Method in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
setStartTimestamp(Date) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setStopTimestamp(Date) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setStoredCredentialsHexEncoded(boolean) - Method in class org.jsecurity.authc.credential.HashedCredentialsMatcher
Sets the indicator if this system's stored credential hash is Hex encoded or not.
setStringPermissions(Set<String>) - Method in class org.jsecurity.authc.SimpleAccount
Sets the String-based permissions assigned to this Account.
setStringPermissions(Set<String>) - Method in class org.jsecurity.authz.SimpleAuthorizationInfo
Sets the string-based permissions assigned directly to the account.
setSuccessUrl(String) - Method in class org.jsecurity.web.filter.authc.AuthenticationFilter
Sets the success URL that is the default location a user is sent to after logging in when AuthenticationFilter.issueSuccessRedirect(javax.servlet.ServletRequest, javax.servlet.ServletResponse) is called by subclasses of this filter.
setSystemPassword(String) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Used when initializing the default LdapContextFactory.
setSystemPassword(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
The system password that will be used when connecting to the LDAP server to retrieve authorization information about a user.
setSystemUsername(String) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Used when initializing the default LdapContextFactory.
setSystemUsername(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
The system username that will be used when connecting to the LDAP server to retrieve authorization information about a user.
setTimeout(Serializable, long) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
setTimeout(long) - Method in class org.jsecurity.session.mgt.DelegatingSession
 
setTimeout(long) - Method in class org.jsecurity.session.mgt.ImmutableProxiedSession
Immediately throws an InvalidSessionException in all cases because this proxy is immutable.
setTimeout(Serializable, long) - Method in interface org.jsecurity.session.mgt.SessionManager
Sets the time in milliseconds that the specified session may remain idle before expiring.
setTimeout(long) - Method in class org.jsecurity.session.mgt.SimpleSession
 
setTimeout(long) - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
setTimeout(long) - Method in interface org.jsecurity.session.Session
Sets the time in milliseconds that the session may remain idle before expiring.
setTimeout(long) - Method in class org.jsecurity.web.session.WebSession
 
setType(String) - Method in class org.jsecurity.web.tags.PrincipalTag
 
setUnauthorizedUrl(String) - Method in class org.jsecurity.web.filter.authz.AuthorizationFilter
 
setUrl(String) - Method in class org.jsecurity.realm.ldap.AbstractLdapRealm
Used when initializing the default LdapContextFactory.
setUrl(String) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
The LDAP url to connect to.
setUrl(String) - Method in class org.jsecurity.web.RedirectView
 
setUsePooling(boolean) - Method in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
Determines whether or not LdapContext pooling is enabled for connections made using the system user account.
setUserDefinitions(String) - Method in class org.jsecurity.realm.text.TextConfigurationRealm
Sets a newline (\n) delimited String that defines user-to-password-and-role(s) key/value pairs according to the following format: username = password, role1, role2,...
setUsername(String) - Method in class org.jsecurity.authc.UsernamePasswordToken
Sets the username for submission during an authentication attempt.
setUsernameParam(String) - Method in class org.jsecurity.web.filter.authc.FormAuthenticationFilter
Sets the request parameter name to look for when acquiring the username.
setUserRolesQuery(String) - Method in class org.jsecurity.realm.jdbc.JdbcRealm
Overrides the default query used to retrieve a user's roles during authorization.
setUseXmlFormat(boolean) - Method in class org.jsecurity.realm.text.PropertiesRealm
Determines whether or not the properties XML format should be used.
setValidateRequestOrigin(boolean) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
Sets whether or not a request's origin will be validated when accessing a session.
Sha1CredentialsMatcher - Class in org.jsecurity.authc.credential
HashedCredentialsMatcher implementation that expects the stored AuthenticationInfo credentials to be SHA hashed.
Sha1CredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.Sha1CredentialsMatcher
 
Sha1Hash - Class in org.jsecurity.crypto.hash
Generates an SHA-1 Hash (Secure Hash Standard, NIST FIPS 180-1) from a given input source with an optional salt and hash iterations.
Sha1Hash() - Constructor for class org.jsecurity.crypto.hash.Sha1Hash
 
Sha1Hash(Object) - Constructor for class org.jsecurity.crypto.hash.Sha1Hash
 
Sha1Hash(Object, Object) - Constructor for class org.jsecurity.crypto.hash.Sha1Hash
 
Sha1Hash(Object, Object, int) - Constructor for class org.jsecurity.crypto.hash.Sha1Hash
 
Sha256CredentialsMatcher - Class in org.jsecurity.authc.credential
HashedCredentialsMatcher implementation that expects the stored AuthenticationInfo credentials to be SHA-256 hashed.
Sha256CredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.Sha256CredentialsMatcher
 
Sha256Hash - Class in org.jsecurity.crypto.hash
Generates an SHA-256 Hash from a given input source with an optional salt and hash iterations.
Sha256Hash() - Constructor for class org.jsecurity.crypto.hash.Sha256Hash
 
Sha256Hash(Object) - Constructor for class org.jsecurity.crypto.hash.Sha256Hash
 
Sha256Hash(Object, Object) - Constructor for class org.jsecurity.crypto.hash.Sha256Hash
 
Sha256Hash(Object, Object, int) - Constructor for class org.jsecurity.crypto.hash.Sha256Hash
 
Sha384CredentialsMatcher - Class in org.jsecurity.authc.credential
HashedCredentialsMatcher implementation that expects the stored AuthenticationInfo credentials to be SHA-384 hashed.
Sha384CredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.Sha384CredentialsMatcher
 
Sha384Hash - Class in org.jsecurity.crypto.hash
Generates an SHA-384 Hash from a given input source with an optional salt and hash iterations.
Sha384Hash() - Constructor for class org.jsecurity.crypto.hash.Sha384Hash
 
Sha384Hash(Object) - Constructor for class org.jsecurity.crypto.hash.Sha384Hash
 
Sha384Hash(Object, Object) - Constructor for class org.jsecurity.crypto.hash.Sha384Hash
 
Sha384Hash(Object, Object, int) - Constructor for class org.jsecurity.crypto.hash.Sha384Hash
 
Sha512CredentialsMatcher - Class in org.jsecurity.authc.credential
HashedCredentialsMatcher implementation that expects the stored AuthenticationInfo credentials to be SHA-512 hashed.
Sha512CredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.Sha512CredentialsMatcher
 
Sha512Hash - Class in org.jsecurity.crypto.hash
Generates an SHA-512 Hash from a given input source with an optional salt and hash iterations.
Sha512Hash() - Constructor for class org.jsecurity.crypto.hash.Sha512Hash
 
Sha512Hash(Object) - Constructor for class org.jsecurity.crypto.hash.Sha512Hash
 
Sha512Hash(Object, Object) - Constructor for class org.jsecurity.crypto.hash.Sha512Hash
 
Sha512Hash(Object, Object, int) - Constructor for class org.jsecurity.crypto.hash.Sha512Hash
 
shouldNotFilter(ServletRequest) - Method in class org.jsecurity.web.servlet.OncePerRequestFilter
Can be overridden in subclasses for custom filtering control, returning true to avoid filtering of the given request.
showTagBody(String) - Method in class org.jsecurity.web.tags.HasAnyRolesTag
 
showTagBody(String) - Method in class org.jsecurity.web.tags.HasPermissionTag
 
showTagBody(String) - Method in class org.jsecurity.web.tags.HasRoleTag
 
showTagBody(String) - Method in class org.jsecurity.web.tags.LacksPermissionTag
 
showTagBody(String) - Method in class org.jsecurity.web.tags.LacksRoleTag
 
showTagBody(String) - Method in class org.jsecurity.web.tags.PermissionTag
 
showTagBody(String) - Method in class org.jsecurity.web.tags.RoleTag
 
SimpleAccount - Class in org.jsecurity.authc
Simple implementation of the Account interface that contains principal and credential and authorization information (roles and permissions) as instance variables and exposes them via getters and setters using standard JavaBean notation.
SimpleAccount() - Constructor for class org.jsecurity.authc.SimpleAccount
Default no-argument constructor.
SimpleAccount(Object, Object, String) - Constructor for class org.jsecurity.authc.SimpleAccount
Constructs a SimpleAccount instance for the specified realm with the given principals and credentials.
SimpleAccount(Collection, Object, String) - Constructor for class org.jsecurity.authc.SimpleAccount
Constructs a SimpleAccount instance for the specified realm with the given principals and credentials.
SimpleAccount(PrincipalCollection, Object) - Constructor for class org.jsecurity.authc.SimpleAccount
Constructs a SimpleAccount instance for the specified principals and credentials.
SimpleAccount(PrincipalCollection, Object, Set<String>) - Constructor for class org.jsecurity.authc.SimpleAccount
Constructs a SimpleAccount instance for the specified principals and credentials, with the assigned roles.
SimpleAccount(Object, Object, String, Set<String>, Set<Permission>) - Constructor for class org.jsecurity.authc.SimpleAccount
Constructs a SimpleAccount instance for the specified realm with the given principal and credentials, with the the assigned roles and permissions.
SimpleAccount(Collection, Object, String, Set<String>, Set<Permission>) - Constructor for class org.jsecurity.authc.SimpleAccount
Constructs a SimpleAccount instance for the specified realm with the given principals and credentials, with the the assigned roles and permissions.
SimpleAccount(PrincipalCollection, Object, Set<String>, Set<Permission>) - Constructor for class org.jsecurity.authc.SimpleAccount
Constructs a SimpleAccount instance from the given principals and credentials, with the the assigned roles and permissions.
SimpleAccountRealm - Class in org.jsecurity.realm
A simple implementation of the Realm interface that uses a set of configured user accounts and roles to support authentication and authorization.
SimpleAccountRealm() - Constructor for class org.jsecurity.realm.SimpleAccountRealm
 
SimpleAccountRealm(String) - Constructor for class org.jsecurity.realm.SimpleAccountRealm
 
SimpleAuthenticationInfo - Class in org.jsecurity.authc
Simple implementation of the MergableAuthenticationInfo interface that holds the principals and credentials.
SimpleAuthenticationInfo() - Constructor for class org.jsecurity.authc.SimpleAuthenticationInfo
Default no-argument constructor.
SimpleAuthenticationInfo(Object, Object, String) - Constructor for class org.jsecurity.authc.SimpleAuthenticationInfo
Constructor that takes in a single 'primary' principal of the account and its corresponding credentials, associated with the specified realm.
SimpleAuthenticationInfo(PrincipalCollection, Object) - Constructor for class org.jsecurity.authc.SimpleAuthenticationInfo
Constructor that takes in an account's identifying principal(s) and its corresponding credentials that verify the principals.
SimpleAuthorizationInfo - Class in org.jsecurity.authz
Simple POJO implementation of the AuthorizationInfo interface that stores roles and permissions as internal attributes.
SimpleAuthorizationInfo() - Constructor for class org.jsecurity.authz.SimpleAuthorizationInfo
Default no-argument constructor.
SimpleAuthorizationInfo(Set<String>) - Constructor for class org.jsecurity.authz.SimpleAuthorizationInfo
Creates a new instance with the specified roles and no permissions.
SimpleAuthorizingAccount - Class in org.jsecurity.authz
Deprecated.  
SimpleAuthorizingAccount() - Constructor for class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleAuthorizingAccount(Object, Object, String) - Constructor for class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleAuthorizingAccount(Collection, Object, String) - Constructor for class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleAuthorizingAccount(PrincipalCollection, Object) - Constructor for class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleAuthorizingAccount(Object, Object, String, Set<String>, Set<Permission>) - Constructor for class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleAuthorizingAccount(Collection, Object, String, Set<String>, Set<Permission>) - Constructor for class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleAuthorizingAccount(PrincipalCollection, Object, String, Set<String>, Set<Permission>) - Constructor for class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleCredentialsMatcher - Class in org.jsecurity.authc.credential
Simple CredentialsMatcher implementation.
SimpleCredentialsMatcher() - Constructor for class org.jsecurity.authc.credential.SimpleCredentialsMatcher
 
SimplePrincipalCollection - Class in org.jsecurity.subject
A simple implementation of the MutablePrincipalCollection interface that tracks principals internally by storing them in a LinkedHashMap.
SimplePrincipalCollection() - Constructor for class org.jsecurity.subject.SimplePrincipalCollection
 
SimplePrincipalCollection(Object, String) - Constructor for class org.jsecurity.subject.SimplePrincipalCollection
 
SimplePrincipalCollection(Collection, String) - Constructor for class org.jsecurity.subject.SimplePrincipalCollection
 
SimplePrincipalCollection(PrincipalCollection) - Constructor for class org.jsecurity.subject.SimplePrincipalCollection
 
SimpleRole - Class in org.jsecurity.authz
A simple representation of a security role that has a name and a collection of permissions.
SimpleRole() - Constructor for class org.jsecurity.authz.SimpleRole
 
SimpleRole(String) - Constructor for class org.jsecurity.authz.SimpleRole
 
SimpleRole(String, Set<Permission>) - Constructor for class org.jsecurity.authz.SimpleRole
 
simpleRoles - Variable in class org.jsecurity.authz.SimpleAuthorizingAccount
Deprecated.  
SimpleSession - Class in org.jsecurity.session.mgt
Simple Session POJO implementation, intended to be used on the business/server tier.
SimpleSession() - Constructor for class org.jsecurity.session.mgt.SimpleSession
 
SimpleSession(InetAddress) - Constructor for class org.jsecurity.session.mgt.SimpleSession
 
size() - Method in interface org.jsecurity.cache.Cache
Returns the number of entries in the cache.
size() - Method in class org.jsecurity.cache.ehcache.EhCache
 
size() - Method in class org.jsecurity.cache.HashtableCache
 
split(String) - Static method in class org.jsecurity.util.StringUtils
 
split(String, char) - Static method in class org.jsecurity.util.StringUtils
 
split(String, char, char) - Static method in class org.jsecurity.util.StringUtils
 
split(String, char, char, char) - Static method in class org.jsecurity.util.StringUtils
 
split(String, char, char, char, boolean, boolean) - Static method in class org.jsecurity.util.StringUtils
Splits the specified delimited String into tokens, supporting quoted tokens so that quoted strings themselves won't be tokenized.
splitKeyValue(String) - Static method in class org.jsecurity.util.StringUtils
 
SpringIniWebConfiguration - Class in org.jsecurity.spring
JSecurity configuration that relies on Spring to define and initialize the JSecurity SecurityManager instance (and all of its dependencies) and makes it available to the JSecurityFilter by performing a Spring bean lookup.
SpringIniWebConfiguration() - Constructor for class org.jsecurity.spring.SpringIniWebConfiguration
 
SpringJSecurityFilter - Class in org.jsecurity.spring
Extension of JSecurityFilter that uses SpringIniWebConfiguration to configure JSecurity in a Spring web environment.
SpringJSecurityFilter() - Constructor for class org.jsecurity.spring.SpringJSecurityFilter
Default constructor, merely calls this.configClassName = SpringIniWebConfiguration.class.getName()}.
start(InetAddress) - Method in class org.jsecurity.mgt.SessionsSecurityManager
 
start(InetAddress) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
start(InetAddress) - Method in interface org.jsecurity.session.mgt.SessionManager
Starts a new session within the system for the host with the specified originating IP address.
start(InetAddress) - Method in interface org.jsecurity.session.SessionFactory
Starts a new session within the system for the host with the specified originating IP address.
start(InetAddress) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
start(ServletRequest, ServletResponse, InetAddress) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
startReloadThread() - Method in class org.jsecurity.realm.text.PropertiesRealm
 
startsWithIgnoreCase(String, String) - Static method in class org.jsecurity.util.StringUtils
Test if the given String starts with the specified prefix, ignoring upper/lower case.
stop(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
stop(Session) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
stop() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
stop() - Method in class org.jsecurity.session.mgt.ImmutableProxiedSession
Immediately throws an InvalidSessionException in all cases because this proxy is immutable.
stop(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Explicitly stops the session identified by sessionId, thereby releasing all associated resources.
stop() - Method in class org.jsecurity.session.mgt.SimpleSession
 
stop() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
stop() - Method in interface org.jsecurity.session.Session
Explicitly stops (invalidates) this session and releases all associated resources.
stop() - Method in class org.jsecurity.web.session.WebSession
 
StoppedSessionException - Exception in org.jsecurity.session
Exception thrown when attempting to interact with the system under a session that has been stopped.
StoppedSessionException() - Constructor for exception org.jsecurity.session.StoppedSessionException
Creates a new StoppedSessionException.
StoppedSessionException(String) - Constructor for exception org.jsecurity.session.StoppedSessionException
Constructs a new StoppedSessionException.
StoppedSessionException(Throwable) - Constructor for exception org.jsecurity.session.StoppedSessionException
Constructs a new StoppedSessionException.
StoppedSessionException(String, Throwable) - Constructor for exception org.jsecurity.session.StoppedSessionException
Constructs a new StoppedSessionException.
StoppedSessionException(Serializable) - Constructor for exception org.jsecurity.session.StoppedSessionException
Constructs a new StoppedSessionException.
StoppedSessionException(String, Serializable) - Constructor for exception org.jsecurity.session.StoppedSessionException
Constructs a new StoppedSessionException.
StoppedSessionException(String, Throwable, Serializable) - Constructor for exception org.jsecurity.session.StoppedSessionException
Constructs a new StoppedSessionException.
stopSession(Subject) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
storeSessionId(Serializable, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
storeValue(T, ServletRequest, ServletResponse) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
storeValue(T, ServletRequest, ServletResponse) - Method in interface org.jsecurity.web.attr.WebAttribute
 
stringPermissions - Variable in class org.jsecurity.authz.SimpleAuthorizationInfo
Collection of all string-based permissions associated with the account.
StringUtils - Class in org.jsecurity.util
Simple utility class for String operations useful across the framework.
StringUtils() - Constructor for class org.jsecurity.util.StringUtils
 
Subject - Interface in org.jsecurity.subject
A Subject represents state and security operations for a single application user.
SUBJECT_KEY - Static variable in class org.jsecurity.util.ThreadContext
 
SubjectException - Exception in org.jsecurity.subject
Throws when there is an error accessing or interacting with a Subject.
SubjectException() - Constructor for exception org.jsecurity.subject.SubjectException
Creates a new SubjectException.
SubjectException(String) - Constructor for exception org.jsecurity.subject.SubjectException
Constructs a new SubjectException.
SubjectException(Throwable) - Constructor for exception org.jsecurity.subject.SubjectException
Constructs a new SubjectException.
SubjectException(String, Throwable) - Constructor for exception org.jsecurity.subject.SubjectException
Constructs a new SubjectException.
SUBPART_DIVIDER_TOKEN - Static variable in class org.jsecurity.authz.permission.WildcardPermission
 
SUN_CONNECTION_POOLING_PROPERTY - Static variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
The Sun LDAP property used to enable connection pooling.
supports(MethodInvocation) - Method in class org.jsecurity.aop.AnnotationMethodInterceptor
Returns true if this interceptor supports, that is, should inspect, the specified MethodInvocation, false otherwise.
supports(AuthenticationToken) - Method in class org.jsecurity.realm.AuthenticatingRealm
Convenience implementation that returns getAuthenticationTokenClass().isAssignableFrom( token.getClass() );.
supports(AuthenticationToken) - Method in interface org.jsecurity.realm.Realm
Returns true if this realm wishes to authenticate the Subject represented by the given AuthenticationToken instance, false otherwise.
systemPassword - Variable in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
systemPassword - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
systemUsername - Variable in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
systemUsername - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 

T

TextConfiguration - Class in org.jsecurity.config
//TODO - complete JavaDoc
TextConfiguration() - Constructor for class org.jsecurity.config.TextConfiguration
 
TextConfigurationRealm - Class in org.jsecurity.realm.text
a SimpleAccountRealm that enables text-based configuration of the initial User, Role, and Permission objects created at startup.
TextConfigurationRealm() - Constructor for class org.jsecurity.realm.text.TextConfigurationRealm
 
TextResource - Class in org.jsecurity.io
//TODO complete JavaDoc
TextResource() - Constructor for class org.jsecurity.io.TextResource
 
TextResource(String) - Constructor for class org.jsecurity.io.TextResource
 
TextResource(String, String) - Constructor for class org.jsecurity.io.TextResource
 
TextResource(InputStream) - Constructor for class org.jsecurity.io.TextResource
 
TextResource(Reader) - Constructor for class org.jsecurity.io.TextResource
 
TextResource(Scanner) - Constructor for class org.jsecurity.io.TextResource
 
ThreadContext - Class in org.jsecurity.util
A ThreadContext provides a means of binding and unbinding objects to the current thread based on key/value pairs.
ThreadContext() - Constructor for class org.jsecurity.util.ThreadContext
Default no-argument constructor.
throwImmutableException() - Method in class org.jsecurity.session.mgt.ImmutableProxiedSession
Simply throws an InvalidSessionException indicating that this proxy is immutable.
toBase64() - Method in class org.jsecurity.crypto.hash.AbstractHash
Returns a Base64-encoded string of the underlying byte array.
toBase64() - Method in interface org.jsecurity.crypto.hash.Hash
Returns a Base64 encoding of this Hash's byte array.
toBytes(char[]) - Static method in class org.jsecurity.codec.CodecSupport
Converts the specified character array to a byte array using the JSecurity's preferred encoding (UTF-8).
toBytes(char[], String) - Static method in class org.jsecurity.codec.CodecSupport
Converts the specified character array into a byte array using the specified character encoding.
toBytes(String) - Static method in class org.jsecurity.codec.CodecSupport
Converts the specified source argument to a byte array with JSecurity's PREFERRED_ENCODING.
toBytes(String, String) - Static method in class org.jsecurity.codec.CodecSupport
Converts the specified source to a byte array via the specified encoding, throwing a CodecException if the encoding fails.
toBytes(Object) - Method in class org.jsecurity.codec.CodecSupport
Converts the specified Object into a byte array.
toChars(byte[]) - Static method in class org.jsecurity.codec.CodecSupport
Returns the specified byte array as a character array using JSecurity's PREFERRED_ENCODING.
toChars(byte[], String) - Static method in class org.jsecurity.codec.CodecSupport
Converts the specified byte array to a character array using the specified character encoding.
toDigit(char, int) - Static method in class org.jsecurity.codec.Hex
Converts a hexadecimal character to an integer.
toEncoded(String, String) - Method in class org.jsecurity.web.servlet.JSecurityHttpServletResponse
Return the specified URL with the specified session identifier suitably encoded.
toHex() - Method in class org.jsecurity.crypto.hash.AbstractHash
Returns a hex-encoded string of the underlying byte array.
toHex() - Method in interface org.jsecurity.crypto.hash.Hash
Returns a Hex encoding of this Hash's byte array.
toHttp(ServletRequest) - Static method in class org.jsecurity.web.WebUtils
A convenience method that merely casts the incoming ServletRequest to an HttpServletRequest:

return (HttpServletRequest)request;

Logic could be changed in the future for logging or throwing an meaningful exception in non HTTP request environments (e.g.

toHttp(ServletResponse) - Static method in class org.jsecurity.web.WebUtils
A convenience method that merely casts the incoming ServletResponse to an HttpServletResponse:

return (HttpServletResponse)response;

Logic could be changed in the future for logging or throwing an meaningful exception in non HTTP request environments (e.g.

tokenizeToStringArray(String, String) - Static method in class org.jsecurity.util.StringUtils
Tokenize the given String into a String array via a StringTokenizer.
tokenizeToStringArray(String, String, boolean, boolean) - Static method in class org.jsecurity.util.StringUtils
Tokenize the given String into a String array via a StringTokenizer.
toLines(String) - Static method in class org.jsecurity.realm.text.TextConfigurationRealm
 
toMap(Collection<String>) - Static method in class org.jsecurity.realm.text.TextConfigurationRealm
 
toPermissionStrings(String) - Static method in class org.jsecurity.util.PermissionUtils
 
toSet(String, String) - Static method in class org.jsecurity.realm.SimpleAccountRealm
 
toString() - Method in class org.jsecurity.authc.SimpleAccount
Returns principals.toString() if they are not null, otherwise prints out the string "empty"
toString() - Method in class org.jsecurity.authc.SimpleAuthenticationInfo
Simple implementation that merely returns principals.toString()
toString() - Method in class org.jsecurity.authc.UsernamePasswordToken
Returns the String representation.
toString() - Method in class org.jsecurity.authz.SimpleRole
 
toString() - Method in class org.jsecurity.cache.ehcache.EhCache
Returns "EhCache [" + cache.getName() + "]"
toString() - Method in class org.jsecurity.cache.HashtableCache
 
toString(byte[]) - Static method in class org.jsecurity.codec.CodecSupport
Converts the specified byte array to a string using JSecurity's PREFERRED_ENCODING.
toString(byte[], String) - Static method in class org.jsecurity.codec.CodecSupport
Converts the specified byte array to a String using the specified character encoding.
toString(Object) - Method in class org.jsecurity.codec.CodecSupport
Converts the specified Object into a String.
toString() - Method in class org.jsecurity.crypto.hash.AbstractHash
Simple implementation that merely returns toHex().
toStringArray(Collection) - Static method in class org.jsecurity.util.StringUtils
Copy the given Collection into a String array.
toStringValue(T) - Method in class org.jsecurity.web.attr.AbstractWebAttribute
 
touch(Serializable) - Method in class org.jsecurity.session.mgt.AbstractSessionManager
 
touch() - Method in class org.jsecurity.session.mgt.DelegatingSession
 
touch() - Method in class org.jsecurity.session.mgt.ImmutableProxiedSession
Immediately throws an InvalidSessionException in all cases because this proxy is immutable.
touch(Serializable) - Method in interface org.jsecurity.session.mgt.SessionManager
Updates the last accessed time of the session identified by sessionId.
touch() - Method in class org.jsecurity.session.mgt.SimpleSession
 
touch() - Method in class org.jsecurity.session.ProxiedSession
Immediately delegates to the underlying proxied session.
touch() - Method in interface org.jsecurity.session.Session
Explicitly updates the lastAccessTime of this session.
touch() - Method in class org.jsecurity.web.session.WebSession
 

U

UnauthenticatedException - Exception in org.jsecurity.authz
Exception thrown when attempting to execute an authorization action when a successful authentication hasn't yet occurred.
UnauthenticatedException() - Constructor for exception org.jsecurity.authz.UnauthenticatedException
Creates a new UnauthenticatedException.
UnauthenticatedException(String) - Constructor for exception org.jsecurity.authz.UnauthenticatedException
Constructs a new UnauthenticatedException.
UnauthenticatedException(Throwable) - Constructor for exception org.jsecurity.authz.UnauthenticatedException
Constructs a new UnauthenticatedException.
UnauthenticatedException(String, Throwable) - Constructor for exception org.jsecurity.authz.UnauthenticatedException
Constructs a new UnauthenticatedException.
UnauthorizedException - Exception in org.jsecurity.authz
Thrown to indicate a requested operation or access to a requested resource is not allowed.
UnauthorizedException() - Constructor for exception org.jsecurity.authz.UnauthorizedException
Creates a new UnauthorizedException.
UnauthorizedException(String) - Constructor for exception org.jsecurity.authz.UnauthorizedException
Constructs a new UnauthorizedException.
UnauthorizedException(Throwable) - Constructor for exception org.jsecurity.authz.UnauthorizedException
Constructs a new UnauthorizedException.
UnauthorizedException(String, Throwable) - Constructor for exception org.jsecurity.authz.UnauthorizedException
Constructs a new UnauthorizedException.
UnavailableConstructorException - Exception in org.jsecurity.util
Exception thrown when attempting to instantiate a Class via reflection, but a suitable constructor (depending on the number of expected arguments) doesn't exist or cannot be obtained.
UnavailableConstructorException() - Constructor for exception org.jsecurity.util.UnavailableConstructorException
Creates a new UnavailableConstructorException.
UnavailableConstructorException(String) - Constructor for exception org.jsecurity.util.UnavailableConstructorException
Constructs a new UnavailableConstructorException.
UnavailableConstructorException(Throwable) - Constructor for exception org.jsecurity.util.UnavailableConstructorException
Constructs a new UnavailableConstructorException.
UnavailableConstructorException(String, Throwable) - Constructor for exception org.jsecurity.util.UnavailableConstructorException
Constructs a new UnavailableConstructorException.
unbind(String) - Method in class org.jsecurity.jndi.JndiTemplate
Remove the binding for the given name from the current JNDI context.
unbind(Subject) - Method in class org.jsecurity.mgt.DefaultSecurityManager
 
unbindInetAddress() - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies removal of a thread-local InetAddress from the thread.
unbindInetAddressFromThread() - Static method in class org.jsecurity.web.WebUtils
 
unbindSecurityManager() - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies removal of the application's SecurityManager instance from the thread.
unbindServletRequest() - Static method in class org.jsecurity.web.WebUtils
Convenience method that simplifies removal of a thread-local ServletRequest from the thread.
unbindServletResponse() - Static method in class org.jsecurity.web.WebUtils
Convenience method that simplifies removal of a thread-local ServletResponse from the thread.
unbindSubject() - Static method in class org.jsecurity.util.ThreadContext
Convenience method that simplifies removal of a thread-local Subject from the thread.
uncache(Session) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Removes the specified Session from the cache.
unescapeIfNecessary(String) - Method in class org.jsecurity.config.ReflectionBuilder
 
UnknownAccountException - Exception in org.jsecurity.authc
Thrown when attempting to authenticate with a principal that doesn't exist in the system (e.g.
UnknownAccountException() - Constructor for exception org.jsecurity.authc.UnknownAccountException
Creates a new UnknownAccountException.
UnknownAccountException(String) - Constructor for exception org.jsecurity.authc.UnknownAccountException
Constructs a new UnknownAccountException.
UnknownAccountException(Throwable) - Constructor for exception org.jsecurity.authc.UnknownAccountException
Constructs a new UnknownAccountException.
UnknownAccountException(String, Throwable) - Constructor for exception org.jsecurity.authc.UnknownAccountException
Constructs a new UnknownAccountException.
UnknownClassException - Exception in org.jsecurity.util
The JSecurity framework's RuntimeException equivalent of the JDK's ClassNotFoundException, to maintain a RuntimeException paradigm.
UnknownClassException() - Constructor for exception org.jsecurity.util.UnknownClassException
Creates a new UnknownClassException.
UnknownClassException(String) - Constructor for exception org.jsecurity.util.UnknownClassException
Constructs a new UnknownClassException.
UnknownClassException(Throwable) - Constructor for exception org.jsecurity.util.UnknownClassException
Constructs a new UnknownClassException.
UnknownClassException(String, Throwable) - Constructor for exception org.jsecurity.util.UnknownClassException
Constructs a new UnknownClassException.
UnknownSessionException - Exception in org.jsecurity.session
Exception thrown when attempting to interact with the system under the pretense of a particular session (e.g. under a specific session id), and that session does not exist in the system.
UnknownSessionException() - Constructor for exception org.jsecurity.session.UnknownSessionException
Creates a new UnknownSessionException.
UnknownSessionException(String) - Constructor for exception org.jsecurity.session.UnknownSessionException
Constructs a new UnknownSessionException.
UnknownSessionException(Throwable) - Constructor for exception org.jsecurity.session.UnknownSessionException
Constructs a new UnknownSessionException.
UnknownSessionException(String, Throwable) - Constructor for exception org.jsecurity.session.UnknownSessionException
Constructs a new UnknownSessionException.
UnknownSessionException(Serializable) - Constructor for exception org.jsecurity.session.UnknownSessionException
Constructs a new UnknownSessionException.
UnknownSessionException(String, Serializable) - Constructor for exception org.jsecurity.session.UnknownSessionException
Constructs a new UnknownSessionException.
UnknownSessionException(String, Throwable, Serializable) - Constructor for exception org.jsecurity.session.UnknownSessionException
Constructs a new UnknownSessionException.
UnresolveableReferenceException - Exception in org.jsecurity.config
Exception thrown when a reference to an object is made, but that object cannot be found.
UnresolveableReferenceException() - Constructor for exception org.jsecurity.config.UnresolveableReferenceException
Creates a new UnresolveableReferenceException.
UnresolveableReferenceException(String) - Constructor for exception org.jsecurity.config.UnresolveableReferenceException
Constructs a new UnresolveableReferenceException.
UnresolveableReferenceException(Throwable) - Constructor for exception org.jsecurity.config.UnresolveableReferenceException
Constructs a new UnresolveableReferenceException.
UnresolveableReferenceException(String, Throwable) - Constructor for exception org.jsecurity.config.UnresolveableReferenceException
Constructs a new UnresolveableReferenceException.
UnsupportedTokenException - Exception in org.jsecurity.authc.pam
Exception thrown during the authentication process when an AuthenticationToken implementation is encountered that is not supported by one or more configured Realms.
UnsupportedTokenException() - Constructor for exception org.jsecurity.authc.pam.UnsupportedTokenException
Creates a new UnsupportedTokenException.
UnsupportedTokenException(String) - Constructor for exception org.jsecurity.authc.pam.UnsupportedTokenException
Constructs a new UnsupportedTokenException.
UnsupportedTokenException(Throwable) - Constructor for exception org.jsecurity.authc.pam.UnsupportedTokenException
Constructs a new UnsupportedTokenException.
UnsupportedTokenException(String, Throwable) - Constructor for exception org.jsecurity.authc.pam.UnsupportedTokenException
Constructs a new UnsupportedTokenException.
update(Session) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Updates the state of the given session to the EIS.
update(Session) - Method in interface org.jsecurity.session.mgt.eis.SessionDAO
Updates (persists) data from a previously created Session instance in the EIS identified by session.getId().
url - Variable in class org.jsecurity.realm.ldap.AbstractLdapRealm
 
url - Variable in class org.jsecurity.realm.ldap.DefaultLdapContextFactory
 
URL_PREFIX - Static variable in class org.jsecurity.io.ResourceUtils
Resource path prefix that specifies to load from a url location, value is url:
URL_SESSION_ID_SOURCE - Static variable in class org.jsecurity.web.servlet.JSecurityHttpServletRequest
 
urlEncode(String, String) - Method in class org.jsecurity.web.RedirectView
URL-encode the given input String with the given encoding scheme.
URLS - Static variable in class org.jsecurity.web.config.IniWebConfiguration
 
UserAnnotationHandler - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresUser annotation is declared, and if so, ensures the calling Subject is either authenticated or remembered via remember me services before allowing access.
UserAnnotationHandler() - Constructor for class org.jsecurity.authz.aop.UserAnnotationHandler
Default no-argument constructor that ensures this handler looks for RequiresUser annotations.
UserAnnotationMethodInterceptor - Class in org.jsecurity.authz.aop
Checks to see if a @RequiresUser annotation is declared, and if so, ensures the calling Subject is either authenticated or remembered via remember me services before invoking the method.
UserAnnotationMethodInterceptor() - Constructor for class org.jsecurity.authz.aop.UserAnnotationMethodInterceptor
Default no-argument constructor that ensures this interceptor looks for RequiresUser annotations in a method declaration.
UserFilter - Class in org.jsecurity.web.filter.authc
Filter that allows access to resources if the accessor is a known user, which is defined as having a known principal.
UserFilter() - Constructor for class org.jsecurity.web.filter.authc.UserFilter
 
UsernamePasswordToken - Class in org.jsecurity.authc
A simple username/password authentication token to support the most widely-used authentication mechanism.
UsernamePasswordToken() - Constructor for class org.jsecurity.authc.UsernamePasswordToken
JavaBeans compatible no-arg constructor.
UsernamePasswordToken(String, char[]) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted during an authentication attempt, with a null inetAddress and a rememberMe default of false.
UsernamePasswordToken(String, String) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted during an authentication attempt, with a null inetAddress and a rememberMe default of false This is a convience constructor and maintains the password internally via a character array, i.e.
UsernamePasswordToken(String, char[], InetAddress) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted, the inetAddress from where the attempt is occurring, and a default rememberMe value of false
UsernamePasswordToken(String, String, InetAddress) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted, the inetAddress from where the attempt is occurring, and a default rememberMe value of false This is a convience constructor and maintains the password internally via a character array, i.e.
UsernamePasswordToken(String, char[], boolean) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted, as well as if the user wishes their identity to be remembered across sessions.
UsernamePasswordToken(String, String, boolean) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted, as well as if the user wishes their identity to be remembered across sessions.
UsernamePasswordToken(String, char[], boolean, InetAddress) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted, if the user wishes their identity to be remembered across sessions, and the inetAddress from where the attempt is ocurring.
UsernamePasswordToken(String, String, boolean, InetAddress) - Constructor for class org.jsecurity.authc.UsernamePasswordToken
Constructs a new UsernamePasswordToken encapsulating the username and password submitted, if the user wishes their identity to be remembered across sessions, and the inetAddress from where the attempt is ocurring.
userRolesQuery - Variable in class org.jsecurity.realm.jdbc.JdbcRealm
 
UserTag - Class in org.jsecurity.web.tags
JSP tag that renders the tag body if the current user known to the system, either from a successful login attempt (not necessarily during the current session) or from 'RememberMe' services.
UserTag() - Constructor for class org.jsecurity.web.tags.UserTag
 
useXmlFormat - Variable in class org.jsecurity.realm.text.PropertiesRealm
 

V

validate(Session) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
validate() - Method in class org.jsecurity.session.mgt.SimpleSession
 
validate() - Method in interface org.jsecurity.session.mgt.ValidatingSession
 
validateSession(Serializable) - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
validateSession(Serializable) - Method in interface org.jsecurity.session.mgt.ValidatingSessionManager
Proactively validates a single session.
validateSessionOrigin(ServletRequest, Session) - Method in class org.jsecurity.web.session.DefaultWebSessionManager
 
validateSessions() - Method in class org.jsecurity.session.mgt.AbstractValidatingSessionManager
 
validateSessions() - Method in interface org.jsecurity.session.mgt.ValidatingSessionManager
Performs session validation for all open/active sessions in the system (those that have not been stopped or expired), and validates each one.
ValidatingSession - Interface in org.jsecurity.session.mgt
A ValidatingSession is a Session that is capable of determining it is valid or not and is able to validate itself if necessary.
ValidatingSessionManager - Interface in org.jsecurity.session.mgt
A ValidatingSessionManager is a SessionManager that can proactively validate any or all sessions that may be expired.
values() - Method in interface org.jsecurity.cache.Cache
Returns a view of all of the values contained in this cache.
values() - Method in class org.jsecurity.cache.ehcache.EhCache
 
values() - Method in class org.jsecurity.cache.HashtableCache
 
verifyAttributes() - Method in class org.jsecurity.web.tags.PermissionTag
 
verifyAttributes() - Method in class org.jsecurity.web.tags.SecureTag
 
verifySessionId(Serializable) - Method in class org.jsecurity.session.mgt.eis.CachingSessionDAO
Ensures the sessionId returned from the subclass implementation of CachingSessionDAO.doCreate(org.jsecurity.session.Session) is not null and not already in use.

W

WebAttribute<T> - Interface in org.jsecurity.web.attr
A WebAttribute is a storage mechanism for a single object accessible during a web request.
WebConfiguration - Interface in org.jsecurity.web.config
A WebConfiguration configures JSecurity components in a web-enabled application.
WebRememberMeManager - Class in org.jsecurity.web
Remembers a Subject's identity by using a WebAttribute instance to retain the identity value between web requests.
WebRememberMeManager() - Constructor for class org.jsecurity.web.WebRememberMeManager
 
WebSession - Class in org.jsecurity.web.session
TODO class JavaDoc
WebSession(HttpSession, InetAddress) - Constructor for class org.jsecurity.web.session.WebSession
 
WebSessionManager - Interface in org.jsecurity.web.session
A WebSessionManager is a SessionManager that has the ability to obtain Sessions based on a ServletRequest/ServletResponse pair.
WebUtils - Class in org.jsecurity.web
Simple utility class for operations used across multiple class hierarchies in the web framework code.
WebUtils() - Constructor for class org.jsecurity.web.WebUtils
 
WILDCARD_TOKEN - Static variable in class org.jsecurity.authz.permission.WildcardPermission
 
WildcardPermission - Class in org.jsecurity.authz.permission
A WildcardPermission is a very flexible permission construct supporting multiple levels of permission matching.
WildcardPermission(String) - Constructor for class org.jsecurity.authz.permission.WildcardPermission
 
WildcardPermission(String, boolean) - Constructor for class org.jsecurity.authz.permission.WildcardPermission
 
WildcardPermissionResolver - Class in org.jsecurity.authz.permission
PermissionResolver implementation that returns a new WildcardPermission based on the input string.
WildcardPermissionResolver() - Constructor for class org.jsecurity.authz.permission.WildcardPermissionResolver
 

X

XmlSerializer - Class in org.jsecurity.io
Serializer implementation that uses the JavaBeans XMLEncoder and XMLDecoder to serialize and deserialize, respectively.
XmlSerializer() - Constructor for class org.jsecurity.io.XmlSerializer
 

A B C D E F G H I J K L M N O P Q R S T U V W X
JSecurity

Copyright © 2004-2008 JSecurity.