org.apache.shiro.authz.aop

Class RoleAnnotationHandler

java.lang.Object

org.apache.shiro.aop.AnnotationHandler

org.apache.shiro.authz.aop.AuthorizingAnnotationHandler

org.apache.shiro.authz.aop.RoleAnnotationHandler

public class RoleAnnotationHandler
extends AuthorizingAnnotationHandler

Checks to see if a @RequiresRoles annotation is declared, and if so, performs a role check to see if the calling Subject is allowed to proceed.

Since:

0.9.0

Field Summary

Fields inherited from class org.apache.shiro.aop.AnnotationHandler

annotationClass

Constructor Summary

Constructors

Constructor and Description
RoleAnnotationHandler() Default no-argument constructor that ensures this handler looks for RequiresRoles annotations.

Method Summary

Modifier and Type	Method and Description
void	assertAuthorized(Annotation a) Ensures that the calling Subject has the Annotation's specified roles, and if not, throws an AuthorizingException indicating that access is denied.

Methods inherited from class org.apache.shiro.aop.AnnotationHandler

getAnnotationClass, getSubject, setAnnotationClass

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

RoleAnnotationHandler

public RoleAnnotationHandler()

Default no-argument constructor that ensures this handler looks for RequiresRoles annotations.

Method Detail

assertAuthorized

public void assertAuthorized(Annotation a)
                      throws AuthorizationException

Ensures that the calling Subject has the Annotation's specified roles, and if not, throws an AuthorizingException indicating that access is denied.

Specified by:

assertAuthorized in class AuthorizingAnnotationHandler

Parameters:

a - the RequiresRoles annotation to use to check for one or more roles

Throws:

AuthorizationException - if the calling Subject does not have the role(s) necessary to proceed.