Class WebAttributes

java.lang.Object
org.springframework.security.web.WebAttributes
public final class WebAttributes extends Object
Well-known keys which are used to store Spring Security information in request or session scope.
Since:
3.0.3

  • Field Details

    • ACCESS_DENIED_403

      public static final String ACCESS_DENIED_403
      Used to cache an AccessDeniedException in the request for rendering.
      See Also:

    • APPLICATION_CONTEXT_ATTRIBUTE

      public static final String APPLICATION_CONTEXT_ATTRIBUTE
      Set as a request attribute to provide an ApplicationContext for use by JSP authorize tags when resolving security beans.

      When set, this attribute is preferred over the root web application context. The value must be of type ApplicationContext.

      Used in org.springframework.security.taglibs.authz.AbstractAuthorizeTag.

      Since:
      7.1

    • AUTHENTICATION_EXCEPTION

      public static final String AUTHENTICATION_EXCEPTION
      Used to cache an authentication-failure exception in the session.
      See Also:

    • WEB_INVOCATION_PRIVILEGE_EVALUATOR_ATTRIBUTE

      public static final String WEB_INVOCATION_PRIVILEGE_EVALUATOR_ATTRIBUTE
      Set as a request attribute to override the default WebInvocationPrivilegeEvaluator
      Since:
      3.1.3
      See Also:

    • REQUIRED_FACTOR_ERRORS

      public static final String REQUIRED_FACTOR_ERRORS
      Used to set a Collection of RequiredFactorError instances into the HttpServletRequest.

      Represents what authorities are missing to be authorized for the current request

      Since:
      7.0
      See Also: