SecurityConfig (leap-websecurity 0.7.12b API)

所有已知实现类:

DefaultSecurityConfig
```
public interface SecurityConfig
```
The configuration of security module.

方法概要

所有方法实例方法抽象方法
限定符和类型	方法和说明
`String`	`getAuthenticationTokenCookieName()`
`String`	`getAuthenticationTokenHeaderName()`
`String`	`getAuthenticationTokenType()`
`String`	`getCookieDomain()` Optional.
`String`	`getCsrfHeaderName()`
`String`	`getCsrfParameterName()`
`CsrfStore`	`getCsrfStore()` Required.
`int`	`getDefaultAuthenticationExpires()` Returns the default expires time in seconds used in persisted authentication, such authentication cookie.
`int`	`getDefaultRememberMeExpires()` Returns the default expires time in seconds of remember-me cookie.
`leap.core.web.RequestIgnore[]`	`getIgnores()` Optional.
`SecurityInterceptor[]`	`getInterceptors()` Optional.
`String`	`getLoginAction()` Required.
`String`	`getLoginUrl()` Returns the url for promote user login.
`String`	`getLogoutAction()` Required.
`String`	`getLogoutSuccessUrl()` Optional.
`leap.core.security.crypto.PasswordEncoder`	`getPasswordEncoder()` Required.
`Map<String,SecurityFailureHandler>`	`getPathPrefixFailureHandlers()` Returns the failure handler map for path prefixes.
`String`	`getRememberMeCookieName()` Returns the name of remember-me cookie.
`String`	`getRememberMeExpiresParameterName()` Returns the request parameter name for specify the expires time of remember-me cookie in login flow.
`String`	`getRememberMeParameterName()` Returns the request parameter name for enable or disable remember-me in login flow.
`String`	`getRememberMeSecret()` Returns the secret key use to sign the remember-me cookie.
`String`	`getReturnUrlParameterName()` Returns the request parameter name of return url used by sigin flow.
`String`	`getSecret()`
`SecuredPaths`	`getSecuredPaths()` Returns the `SecuredPaths`.
`UserStore`	`getUserStore()` Required.
`boolean`	`isAuthenticateAnyRequests()` Returns `true` if all request paths will be intercepted by security module and checks the user authentication.
`boolean`	`isAuthenticationTokenEnabled()`
`boolean`	`isAuthorizeAnyRequests()` Returns `true` if all request paths will be intercepted by security module and checks the user authorization.
`boolean`	`isCorsIgnored()` Returns `true` if ignore cors request.
`boolean`	`isCrossContext()` Returns `true` if user authentication is cross contexts in the same web server.
`boolean`	`isCsrfEnabled()` Returns `true` if csrf security enabled.
`boolean`	`isEnabled()` Returns `true` if web security is enabled.
`boolean`	`isLoginEnabled()` Default is true.
`boolean`	`isLoginRedirectRoot()` Is redirect to root path after login success.
`boolean`	`isLogoutEnabled()` Default is true.
`boolean`	`isRememberMeEnabled()` Returns `true` if remember-me authentication is enabled.

- 方法详细资料
  - isEnabled
```
boolean isEnabled()
```
    Returns true if web security is enabled.
  - isCrossContext
```
boolean isCrossContext()
```
    Returns true if user authentication is cross contexts in the same web server.
    That means single sign on corss contexts.
    Default is false.
  - isCsrfEnabled
```
boolean isCsrfEnabled()
```
    Returns true if csrf security enabled.
    Default is true, it should not be disabled for security reason.
  - isCorsIgnored
```
boolean isCorsIgnored()
```
    Returns true if ignore cors request.
  - isAuthenticateAnyRequests
```
boolean isAuthenticateAnyRequests()
```
    Returns true if all request paths will be intercepted by security module and checks the user authentication.
    Default is false.
  - isAuthorizeAnyRequests
```
boolean isAuthorizeAnyRequests()
```
    Returns true if all request paths will be intercepted by security module and checks the user authorization.
    Default is false.
  - getDefaultAuthenticationExpires
```
int getDefaultAuthenticationExpires()
```
    Returns the default expires time in seconds used in persisted authentication, such authentication cookie.
  - getReturnUrlParameterName
```
String getReturnUrlParameterName()
```
    Returns the request parameter name of return url used by sigin flow.
  - isRememberMeEnabled
```
boolean isRememberMeEnabled()
```
    Returns true if remember-me authentication is enabled.
    Default is true.
  - getRememberMeCookieName
```
String getRememberMeCookieName()
```
    Returns the name of remember-me cookie.
  - getRememberMeParameterName
```
String getRememberMeParameterName()
```
    Returns the request parameter name for enable or disable remember-me in login flow.
  - getRememberMeSecret
```
String getRememberMeSecret()
```
    Returns the secret key use to sign the remember-me cookie.
    Default is AppConfig.getSecret().
  - getRememberMeExpiresParameterName
```
String getRememberMeExpiresParameterName()
```
    Returns the request parameter name for specify the expires time of remember-me cookie in login flow.
  - getDefaultRememberMeExpires
```
int getDefaultRememberMeExpires()
```
    Returns the default expires time in seconds of remember-me cookie.
  - getSecret
```
String getSecret()
```
  - getCsrfHeaderName
```
String getCsrfHeaderName()
```
  - getCsrfParameterName
```
String getCsrfParameterName()
```
  - isAuthenticationTokenEnabled
```
boolean isAuthenticationTokenEnabled()
```
  - getAuthenticationTokenCookieName
```
String getAuthenticationTokenCookieName()
```
  - getAuthenticationTokenHeaderName
```
String getAuthenticationTokenHeaderName()
```
  - getAuthenticationTokenType
```
String getAuthenticationTokenType()
```
  - getCookieDomain
```
String getCookieDomain()
```
    Optional.
  - isLoginEnabled
```
boolean isLoginEnabled()
```
    Default is true.
  - isLoginRedirectRoot
```
boolean isLoginRedirectRoot()
```
    Is redirect to root path after login success.
    If false will redirect to current request uri.
    Default is true.
  - getLoginUrl
```
String getLoginUrl()
```
    Returns the url for promote user login.
  - getLoginAction
```
String getLoginAction()
```
    Required. Returns the action path for handling user's login authentication.
  - isLogoutEnabled
```
boolean isLogoutEnabled()
```
    Default is true.
  - getLogoutAction
```
String getLogoutAction()
```
    Required. Returns the action path for handling user's logout request.
  - getLogoutSuccessUrl
```
String getLogoutSuccessUrl()
```
    Optional.
  - getUserStore
```
UserStore getUserStore()
```
    Required.
  - getCsrfStore
```
CsrfStore getCsrfStore()
```
    Required.
  - getPasswordEncoder
```
leap.core.security.crypto.PasswordEncoder getPasswordEncoder()
```
    Required. Returns the PasswordEncoder for authenticating user's password in security module.
  - getIgnores
```
leap.core.web.RequestIgnore[] getIgnores()
```
    Optional.
  - getPathPrefixFailureHandlers
```
Map<String,SecurityFailureHandler> getPathPrefixFailureHandlers()
```
    Returns the failure handler map for path prefixes.
  - getSecuredPaths
```
SecuredPaths getSecuredPaths()
```
    Returns the SecuredPaths.
  - getInterceptors
```
SecurityInterceptor[] getInterceptors()
```
    Optional.

接口 SecurityConfig

方法概要

方法详细资料

isEnabled

isCrossContext

isCsrfEnabled

isCorsIgnored

isAuthenticateAnyRequests

isAuthorizeAnyRequests

getDefaultAuthenticationExpires

getReturnUrlParameterName

isRememberMeEnabled

getRememberMeCookieName

getRememberMeParameterName

getRememberMeSecret

getRememberMeExpiresParameterName

getDefaultRememberMeExpires

getSecret

getCsrfHeaderName

getCsrfParameterName

isAuthenticationTokenEnabled

getAuthenticationTokenCookieName

getAuthenticationTokenHeaderName

getAuthenticationTokenType

getCookieDomain

isLoginEnabled

isLoginRedirectRoot

getLoginUrl

getLoginAction

isLogoutEnabled

getLogoutAction

getLogoutSuccessUrl

getUserStore

getCsrfStore

getPasswordEncoder

getIgnores

getPathPrefixFailureHandlers

getSecuredPaths

getInterceptors