Spring Security 类关系图
2022-05-12 15:01:37 15 举报
Spring Security 类关系图
作者其他创作
大纲/内容
FilterChain
AuthenticationProvider
ApplicationEventPublisher
UnanimousBased
JwtAuthenticationProvider
OAuth2AuthorizationCodeGrantFilter
FindByIndexNameSessionRepository
AbstractAccessDecisionManager
AuthenticationFailureHandler
这是对IDP的管理
principal
...Filter
SpringSessionBackedSessionRegistry
LogoutFilter
OAuth2LoginAuthenticationFilter
SessionManagementFilter
AuthenticationSuccessHandler
DelegationFilterProxy
Authentication
Filter2
ExceptionTranslationFilter
对/login的post请求做拦截,校验表单中的用户名密码
FilterChainProxy(BeanFilterN)
DaoAuthenticationProvider
SessionRegistry
CorsFilter
注意这个是spring session 用来替代 SessionRegistryImpl 的基于Redis的回话管理就要用它
AbstractAuthenticationProcessingFilter
一个异常过滤器,用来处理认证过程中抛出的异常
AuthenticationManager
SessionInformation
MyVoter
OAuth2AuthorizationRequestRedirectFilter
这个是对IDP的管理
CsrfFilter
RedisIndexedSessionRepository
MyAccessDecisionManager
SecurityFilterChain1 —— /login
credentials
FilterSecurityInterceptor
AuthenticatedVoter
AffirmativeBased
SecurityFilterChain3 一般要用的filters
Provider就是IDP
authorities
AccessDecisionVoter
可以使用methodSecurity, 但是要打开开关
ApplicationEvent
ConcurrentSessionControlAuthenticationStrategy
UsernamePasswordAuthenticationFilter
AbstractSecurityInterceptor
AnonymousAuthenticationFilter
RoleVoter
是一个方法级别的权限过滤器,基本位于过滤链最底部
SecurityContextHolder
SessionMgmt
BeanFilter1
Client
Authorization
SessionRegistryImpl
ConsensusBased
AccessDecisionManager
SecurityContext
SecurityFilterChain2 /*
Filter1
X509AuthenticationFilter
ProviderManager
Filter3
SessionAuthenticationStrategy
onAuthentication
收藏
收藏
0 条评论
下一页