Package-level declarations¶
Types¶
| Name | Summary |
|---|---|
| AccessAnnotationEntry | [jvm] data class AccessAnnotationEntry@JvmOverloadsconstructor(val annotation: KClass<out Annotation>, val services: List<String> = listOf(), val capabilities: List<String> = listOf(), val allowAnyService: Boolean = false, val allowAnyUser: Boolean = false) Use this to alias an annotation to a set of services and capabilities. This can be used to decouple code that needs access control from the policy that defines it. |
| AccessControlModule | [jvm] class AccessControlModule : ActionScopedProviderModule Install support for performing access control checks for actions based on the incoming caller. |
| AccessInterceptor | [jvm] class AccessInterceptor : ApplicationInterceptor |
| DevelopmentOnly | [jvm] @Qualifier @Target(allowedTargets = [AnnotationTarget.FIELD, AnnotationTarget.FUNCTION]) annotation class DevelopmentOnly |
| ExcludeFromAllowAnyService | [jvm] @Target(allowedTargets = [AnnotationTarget.PROPERTY, AnnotationTarget.VALUE_PARAMETER]) annotation class ExcludeFromAllowAnyService Exclude a service from @AllowAnyService. |
| FakeCallerAuthenticator | [jvm] @Singleton class FakeCallerAuthenticator@Injectconstructor(currentHttpCall: ActionScoped<HttpCall>) : MiskCallerAuthenticator A caller authenticator that blindly trusts HTTP headers. Unsafe for production use. |
| MiskCallerAuthenticator | [jvm] interface MiskCallerAuthenticator Interface for determining the current MiskCaller. Typically use an Request, ClientCertSubject, etc to determine the caller based on request headers or client certificate information. |
Functions¶
| Name | Summary |
|---|---|
| AccessAnnotationEntry | [jvm] inline fun <T : Annotation> AccessAnnotationEntry(services: List<String> = listOf(), capabilities: List<String> = listOf(), allowAnyService: Boolean = false, allowAnyUser: Boolean = false): AccessAnnotationEntry |