public final class Direction extends Object
Direction class is used to represent when the
authorization check is to be performed by an Access Decision
(either before a resource is accessed or after access has been allowed).
Instances are ONCE, POST, and PRIOR.
For example, if the Direction is PRIOR and the
resource is a directory, the Access Decision might allow access.
If the Direction is POST, the Access Decision
might want to check what is being returned (that is, a particular file might be
returned from a directory that should not be). An Access Decision
might be called ONCE for access to a resource or it might get called
PRIOR and then POST access to a resource. ONCE
and PRIOR determine if the resource can be accessed; POST
determines if what is being returned from the resource may be returned.
| Modifier and Type | Field and Description |
|---|---|
static Direction |
ONCE
Indicates that the authorization check is being performed
once, with no indication of whether it is being done before or
after an operation.
|
static Direction |
POST
Indicates that the authorization check is being peformed
after the request has been allowed to be processed, but before
the results have been returned.
|
static Direction |
PRIOR
Indicates that the authorization check is being performed
prior to allowing the request to be processed.
|
public static final Direction ONCE
isAccessAllowed method using a
Direction of ONCE.public static final Direction PRIOR
public static final Direction POST