Interface SecurityService
- All Known Implementing Classes:
DefaultSecurityService
public interface SecurityService
Service used during the authorization flow to assess the privileges of the current user in order
to filter the requested scopes or retrieve the permissions for an access token.
- Author:
- Nick Crum (ncrum)
-
Method Summary
Modifier and TypeMethodDescriptioncheckScopes
(Set<String> requestedScopes) Returns the sub-set of requested scopes that the user is permitted to access.extractPermissions
(Set<String> scopes) Returns the set of permissions the user has for the given scopes.
-
Method Details
-
checkScopes
Returns the sub-set of requested scopes that the user is permitted to access. This method is used within theSecurityServiceOAuth2RequestFactory
to check that the requested scopes are accessible for the current user. If none of the requested scopes are accessible, this will return an empty set.- Parameters:
requestedScopes
- the set of requested scopes- Returns:
- a sub-set of the requested scopes
-
extractPermissions
Returns the set of permissions the user has for the given scopes. This method is used within theSecurityServiceAccessTokenConverter
to extract the set of permissions the user has for the requested scopes.- Parameters:
scopes
- the scopes- Returns:
- a set of permissions
-