src/site/assets/static/1.6.0/apidocs/org/apache/shiro/authz/package-summary.html - shiro-site - Git at Google

 <!DOCTYPE HTML>
 <!-- NewPage -->
 <html lang="en">
 <head>
 <!-- Generated by javadoc (11.0.7) on Mon Aug 17 10:30:05 EDT 2020 -->
 <title>org.apache.shiro.authz (Apache Shiro 1.6.0 API)</title>
 <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
 <meta name="dc.created" content="2020-08-17">
 <link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="Style">
 <link rel="stylesheet" type="text/css" href="../../../../jquery/jquery-ui.css" title="Style">
 <script type="text/javascript" src="../../../../script.js"></script>
 <script type="text/javascript" src="../../../../jquery/jszip/dist/jszip.min.js"></script>
 <script type="text/javascript" src="../../../../jquery/jszip-utils/dist/jszip-utils.min.js"></script>
 <!--[if IE]>
 <script type="text/javascript" src="../../../../jquery/jszip-utils/dist/jszip-utils-ie.min.js"></script>
 <![endif]-->
 <script type="text/javascript" src="../../../../jquery/jquery-3.3.1.js"></script>
 <script type="text/javascript" src="../../../../jquery/jquery-migrate-3.0.1.js"></script>
 <script type="text/javascript" src="../../../../jquery/jquery-ui.js"></script>
 </head>
 <body>
 <script type="text/javascript"><!--
     try {
         if (location.href.indexOf('is-external=true') == -1) {
             parent.document.title="org.apache.shiro.authz (Apache Shiro 1.6.0 API)";
         }
     }
     catch(err) {
     }
 //-->
 var pathtoroot = "../../../../";
 var useModuleDirectories = true;
 loadScripts(document, 'script');</script>
 <noscript>
 <div>JavaScript is disabled on your browser.</div>
 </noscript>
 <header role="banner">
 <nav role="navigation">
 <div class="fixedNav">
 <!-- ========= START OF TOP NAVBAR ======= -->
 <div class="topNav"><a id="navbar.top">
 <!--   -->
 </a>
 <div class="skipNav"><a href="#skip.navbar.top" title="Skip navigation links">Skip navigation links</a></div>
 <a id="navbar.top.firstrow">
 <!--   -->
 </a>
 <ul class="navList" title="Navigation">
 <li><a href="../../../../index.html">Overview</a></li>
 <li class="navBarCell1Rev">Package</li>
 <li>Class</li>
 <li><a href="package-use.html">Use</a></li>
 <li><a href="package-tree.html">Tree</a></li>
 <li><a href="../../../../deprecated-list.html">Deprecated</a></li>
 <li><a href="../../../../index-all.html">Index</a></li>
 <li><a href="../../../../help-doc.html">Help</a></li>
 </ul>
 </div>
 <div class="subNav">
 <ul class="navList" id="allclasses_navbar_top">
 <li><a href="../../../../allclasses.html">All&nbsp;Classes</a></li>
 </ul>
 <ul class="navListSearch">
 <li><label for="search">SEARCH:</label>
 <input type="text" id="search" value="search" disabled="disabled">
 <input type="reset" id="reset" value="reset" disabled="disabled">
 </li>
 </ul>
 <div>
 <script type="text/javascript"><!--
   allClassesLink = document.getElementById("allclasses_navbar_top");
   if(window==top) {
     allClassesLink.style.display = "block";
   }
   else {
     allClassesLink.style.display = "none";
   }
   //-->
 </script>
 <noscript>
 <div>JavaScript is disabled on your browser.</div>
 </noscript>
 </div>
 <a id="skip.navbar.top">
 <!--   -->
 </a></div>
 <!-- ========= END OF TOP NAVBAR ========= -->
 </div>
 <div class="navPadding">&nbsp;</div>
 <script type="text/javascript"><!--
 $('.navPadding').css('padding-top', $('.fixedNav').css("height"));
 //-->
 </script>
 </nav>
 </header>
 <main role="main">
 <div class="header">
 <h1 title="Package" class="title">Package&nbsp;org.apache.shiro.authz</h1>
 </div>
 <div class="contentContainer">
 <section role="region"><a id="package.description">
 <!--   -->
 </a>
 <div class="block">Core interfaces and exceptions supporting Authorization (access control).
  <p/>
  Shiro abbreviates the word 'AuthoriZation' as <tt>authz</tt> to distinguish it separately from
  'AuthentiCation', abbreviated as <tt>authc</tt>.
  <p/>
  This package's primary interface of interest, which is the core of Shiro authorization functionality,
  is the <tt>Authorizer</tt>. This interface handles all aspects of principal-related security and is the
  facade to all other Shiro authorization components.
  <p/>
  Shiro has the ability to authorize subjects (a.k.a. users) without being intrusive to the application's
  domain model. Most applications will utilize the concepts of <tt>group</tt>s, <tt>role</tt>s, and
  <tt>permission</tt>s, but Shiro tries to be as non-invasive as possible doesn't require any such
  interfaces (although a Permission interface is made available for fine-grained access control policies if
  you want to use Shiro's permission support out-of-the-box).
  <p/>
  Although it is possible for applications to implement this and other interfaces directly, it is not
  recommended. Shiro already has base implementations which should be suitable for 99% of deployments.</div>
 </section>
 <ul class="blockList">
 <li class="blockList">
 <table class="typeSummary">
 <caption><span>Interface Summary</span><span class="tabEnd">&nbsp;</span></caption>
 <tr>
 <th class="colFirst" scope="col">Interface</th>
 <th class="colLast" scope="col">Description</th>
 </tr>
 <tbody>
 <tr class="altColor">
 <th class="colFirst" scope="row"><a href="AuthorizationInfo.html" title="interface in org.apache.shiro.authz">AuthorizationInfo</a></th>
 <td class="colLast">
 <div class="block"><code>AuthorizationInfo</code> represents a single Subject's stored authorization data (roles, permissions, etc)
  used during authorization (access control) checks only.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <th class="colFirst" scope="row"><a href="Authorizer.html" title="interface in org.apache.shiro.authz">Authorizer</a></th>
 <td class="colLast">
 <div class="block">An <tt>Authorizer</tt> performs authorization (access control) operations for any given Subject
  (aka 'application user').</div>
 </td>
 </tr>
 <tr class="altColor">
 <th class="colFirst" scope="row"><a href="Permission.html" title="interface in org.apache.shiro.authz">Permission</a></th>
 <td class="colLast">
 <div class="block">A Permission represents the ability to perform an action or access a resource.</div>
 </td>
 </tr>
 </tbody>
 </table>
 </li>
 <li class="blockList">
 <table class="typeSummary">
 <caption><span>Class Summary</span><span class="tabEnd">&nbsp;</span></caption>
 <tr>
 <th class="colFirst" scope="col">Class</th>
 <th class="colLast" scope="col">Description</th>
 </tr>
 <tbody>
 <tr class="altColor">
 <th class="colFirst" scope="row"><a href="ModularRealmAuthorizer.html" title="class in org.apache.shiro.authz">ModularRealmAuthorizer</a></th>
 <td class="colLast">
 <div class="block">A <tt>ModularRealmAuthorizer</tt> is an <tt>Authorizer</tt> implementation that consults one or more configured
  <a href="../realm/Realm.html" title="interface in org.apache.shiro.realm"><code>Realm</code></a>s during an authorization operation.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <th class="colFirst" scope="row"><a href="SimpleAuthorizationInfo.html" title="class in org.apache.shiro.authz">SimpleAuthorizationInfo</a></th>
 <td class="colLast">
 <div class="block">Simple POJO implementation of the <a href="AuthorizationInfo.html" title="interface in org.apache.shiro.authz"><code>AuthorizationInfo</code></a> interface that stores roles and permissions as internal
  attributes.</div>
 </td>
 </tr>
 <tr class="altColor">
 <th class="colFirst" scope="row"><a href="SimpleRole.html" title="class in org.apache.shiro.authz">SimpleRole</a></th>
 <td class="colLast">
 <div class="block">A simple representation of a security role that has a name and a collection of permissions.</div>
 </td>
 </tr>
 </tbody>
 </table>
 </li>
 <li class="blockList">
 <table class="typeSummary">
 <caption><span>Exception Summary</span><span class="tabEnd">&nbsp;</span></caption>
 <tr>
 <th class="colFirst" scope="col">Exception</th>
 <th class="colLast" scope="col">Description</th>
 </tr>
 <tbody>
 <tr class="altColor">
 <th class="colFirst" scope="row"><a href="AuthorizationException.html" title="class in org.apache.shiro.authz">AuthorizationException</a></th>
 <td class="colLast">
 <div class="block">Exception thrown if there is a problem during authorization (access control check).</div>
 </td>
 </tr>
 <tr class="rowColor">
 <th class="colFirst" scope="row"><a href="HostUnauthorizedException.html" title="class in org.apache.shiro.authz">HostUnauthorizedException</a></th>
 <td class="colLast">
 <div class="block">Thrown when a particular client (that is, host address) has not been enabled to access the system
  or if the client has been enabled access but is not permitted to perform a particular operation
  or access a particular resource.</div>
 </td>
 </tr>
 <tr class="altColor">
 <th class="colFirst" scope="row"><a href="UnauthenticatedException.html" title="class in org.apache.shiro.authz">UnauthenticatedException</a></th>
 <td class="colLast">
 <div class="block">Exception thrown when attempting to execute an authorization action when a successful
  authentication hasn't yet occurred.</div>
 </td>
 </tr>
 <tr class="rowColor">
 <th class="colFirst" scope="row"><a href="UnauthorizedException.html" title="class in org.apache.shiro.authz">UnauthorizedException</a></th>
 <td class="colLast">
 <div class="block">Thrown to indicate a requested operation or access to a requested resource is not allowed.</div>
 </td>
 </tr>
 </tbody>
 </table>
 </li>
 </ul>
 </div>
 </main>
 <footer role="contentinfo">
 <nav role="navigation">
 <!-- ======= START OF BOTTOM NAVBAR ====== -->
 <div class="bottomNav"><a id="navbar.bottom">
 <!--   -->
 </a>
 <div class="skipNav"><a href="#skip.navbar.bottom" title="Skip navigation links">Skip navigation links</a></div>
 <a id="navbar.bottom.firstrow">
 <!--   -->
 </a>
 <ul class="navList" title="Navigation">
 <li><a href="../../../../index.html">Overview</a></li>
 <li class="navBarCell1Rev">Package</li>
 <li>Class</li>
 <li><a href="package-use.html">Use</a></li>
 <li><a href="package-tree.html">Tree</a></li>
 <li><a href="../../../../deprecated-list.html">Deprecated</a></li>
 <li><a href="../../../../index-all.html">Index</a></li>
 <li><a href="../../../../help-doc.html">Help</a></li>
 </ul>
 </div>
 <div class="subNav">
 <ul class="navList" id="allclasses_navbar_bottom">
 <li><a href="../../../../allclasses.html">All&nbsp;Classes</a></li>
 </ul>
 <div>
 <script type="text/javascript"><!--
   allClassesLink = document.getElementById("allclasses_navbar_bottom");
   if(window==top) {
     allClassesLink.style.display = "block";
   }
   else {
     allClassesLink.style.display = "none";
   }
   //-->
 </script>
 <noscript>
 <div>JavaScript is disabled on your browser.</div>
 </noscript>
 </div>
 <a id="skip.navbar.bottom">
 <!--   -->
 </a></div>
 <!-- ======== END OF BOTTOM NAVBAR ======= -->
 </nav>
 <p class="legalCopy"><small>Copyright &#169; 2004&#x2013;2020 <a href="https://www.apache.org/">The Apache Software Foundation</a>. All rights reserved.</small></p>
 </footer>
 </body>
 </html>
	<!DOCTYPE HTML>
	<!-- NewPage -->
	<html lang="en">
	<head>
	<!-- Generated by javadoc (11.0.7) on Mon Aug 17 10:30:05 EDT 2020 -->
	<title>org.apache.shiro.authz (Apache Shiro 1.6.0 API)</title>
	<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
	<meta name="dc.created" content="2020-08-17">
	<link rel="stylesheet" type="text/css" href="../../../../stylesheet.css" title="Style">
	<link rel="stylesheet" type="text/css" href="../../../../jquery/jquery-ui.css" title="Style">
	<script type="text/javascript" src="../../../../script.js"></script>
	<script type="text/javascript" src="../../../../jquery/jszip/dist/jszip.min.js"></script>
	<script type="text/javascript" src="../../../../jquery/jszip-utils/dist/jszip-utils.min.js"></script>
	<!--[if IE]>
	<script type="text/javascript" src="../../../../jquery/jszip-utils/dist/jszip-utils-ie.min.js"></script>
	<![endif]-->
	<script type="text/javascript" src="../../../../jquery/jquery-3.3.1.js"></script>
	<script type="text/javascript" src="../../../../jquery/jquery-migrate-3.0.1.js"></script>
	<script type="text/javascript" src="../../../../jquery/jquery-ui.js"></script>
	</head>
	<body>
	<script type="text/javascript"><!--
	try {
	if (location.href.indexOf('is-external=true') == -1) {
	parent.document.title="org.apache.shiro.authz (Apache Shiro 1.6.0 API)";
	}
	}
	catch(err) {
	}
	//-->
	var pathtoroot = "../../../../";
	var useModuleDirectories = true;
	loadScripts(document, 'script');</script>
	<noscript>
	<div>JavaScript is disabled on your browser.</div>
	</noscript>
	<header role="banner">
	<nav role="navigation">
	<div class="fixedNav">
	<!-- ========= START OF TOP NAVBAR ======= -->
	<div class="topNav"><a id="navbar.top">
	<!-- -->
	</a>
	<div class="skipNav"><a href="#skip.navbar.top" title="Skip navigation links">Skip navigation links</a></div>
	<a id="navbar.top.firstrow">
	<!-- -->
	</a>
	<ul class="navList" title="Navigation">
	<li><a href="../../../../index.html">Overview</a></li>
	<li class="navBarCell1Rev">Package</li>
	<li>Class</li>
	<li><a href="package-use.html">Use</a></li>
	<li><a href="package-tree.html">Tree</a></li>
	<li><a href="../../../../deprecated-list.html">Deprecated</a></li>
	<li><a href="../../../../index-all.html">Index</a></li>
	<li><a href="../../../../help-doc.html">Help</a></li>
	</ul>
	</div>
	<div class="subNav">
	<ul class="navList" id="allclasses_navbar_top">
	<li><a href="../../../../allclasses.html">All Classes</a></li>
	</ul>
	<ul class="navListSearch">
	<li><label for="search">SEARCH:</label>
	<input type="text" id="search" value="search" disabled="disabled">
	<input type="reset" id="reset" value="reset" disabled="disabled">
	</li>
	</ul>
	<div>
	<script type="text/javascript"><!--
	allClassesLink = document.getElementById("allclasses_navbar_top");
	if(window==top) {
	allClassesLink.style.display = "block";
	}
	else {
	allClassesLink.style.display = "none";
	}
	//-->
	</script>
	<noscript>
	<div>JavaScript is disabled on your browser.</div>
	</noscript>
	</div>
	<a id="skip.navbar.top">
	<!-- -->
	</a></div>
	<!-- ========= END OF TOP NAVBAR ========= -->
	</div>
	<div class="navPadding"> </div>
	<script type="text/javascript"><!--
	$('.navPadding').css('padding-top', $('.fixedNav').css("height"));
	//-->
	</script>
	</nav>
	</header>
	<main role="main">
	<div class="header">
	<h1 title="Package" class="title">Package org.apache.shiro.authz</h1>
	</div>
	<div class="contentContainer">
	<section role="region"><a id="package.description">
	<!-- -->
	</a>
	<div class="block">Core interfaces and exceptions supporting Authorization (access control).
	<p/>
	Shiro abbreviates the word 'AuthoriZation' as <tt>authz</tt> to distinguish it separately from
	'AuthentiCation', abbreviated as <tt>authc</tt>.
	<p/>
	This package's primary interface of interest, which is the core of Shiro authorization functionality,
	is the <tt>Authorizer</tt>. This interface handles all aspects of principal-related security and is the
	facade to all other Shiro authorization components.
	<p/>
	Shiro has the ability to authorize subjects (a.k.a. users) without being intrusive to the application's
	domain model. Most applications will utilize the concepts of <tt>group</tt>s, <tt>role</tt>s, and
	<tt>permission</tt>s, but Shiro tries to be as non-invasive as possible doesn't require any such
	interfaces (although a Permission interface is made available for fine-grained access control policies if
	you want to use Shiro's permission support out-of-the-box).
	<p/>
	Although it is possible for applications to implement this and other interfaces directly, it is not
	recommended. Shiro already has base implementations which should be suitable for 99% of deployments.</div>
	</section>
	<ul class="blockList">
	<li class="blockList">
	<table class="typeSummary">
	<caption><span>Interface Summary</span><span class="tabEnd"> </span></caption>
	<tr>
	<th class="colFirst" scope="col">Interface</th>
	<th class="colLast" scope="col">Description</th>
	</tr>
	<tbody>
	<tr class="altColor">
	<th class="colFirst" scope="row"><a href="AuthorizationInfo.html" title="interface in org.apache.shiro.authz">AuthorizationInfo</a></th>
	<td class="colLast">
	<div class="block"><code>AuthorizationInfo</code> represents a single Subject's stored authorization data (roles, permissions, etc)
	used during authorization (access control) checks only.</div>
	</td>
	</tr>
	<tr class="rowColor">
	<th class="colFirst" scope="row"><a href="Authorizer.html" title="interface in org.apache.shiro.authz">Authorizer</a></th>
	<td class="colLast">
	<div class="block">An <tt>Authorizer</tt> performs authorization (access control) operations for any given Subject
	(aka 'application user').</div>
	</td>
	</tr>
	<tr class="altColor">
	<th class="colFirst" scope="row"><a href="Permission.html" title="interface in org.apache.shiro.authz">Permission</a></th>
	<td class="colLast">
	<div class="block">A Permission represents the ability to perform an action or access a resource.</div>
	</td>
	</tr>
	</tbody>
	</table>
	</li>
	<li class="blockList">
	<table class="typeSummary">
	<caption><span>Class Summary</span><span class="tabEnd"> </span></caption>
	<tr>
	<th class="colFirst" scope="col">Class</th>
	<th class="colLast" scope="col">Description</th>
	</tr>
	<tbody>
	<tr class="altColor">
	<th class="colFirst" scope="row"><a href="ModularRealmAuthorizer.html" title="class in org.apache.shiro.authz">ModularRealmAuthorizer</a></th>
	<td class="colLast">
	<div class="block">A <tt>ModularRealmAuthorizer</tt> is an <tt>Authorizer</tt> implementation that consults one or more configured
	<a href="../realm/Realm.html" title="interface in org.apache.shiro.realm"><code>Realm</code></a>s during an authorization operation.</div>
	</td>
	</tr>
	<tr class="rowColor">
	<th class="colFirst" scope="row"><a href="SimpleAuthorizationInfo.html" title="class in org.apache.shiro.authz">SimpleAuthorizationInfo</a></th>
	<td class="colLast">
	<div class="block">Simple POJO implementation of the <a href="AuthorizationInfo.html" title="interface in org.apache.shiro.authz"><code>AuthorizationInfo</code></a> interface that stores roles and permissions as internal
	attributes.</div>
	</td>
	</tr>
	<tr class="altColor">
	<th class="colFirst" scope="row"><a href="SimpleRole.html" title="class in org.apache.shiro.authz">SimpleRole</a></th>
	<td class="colLast">
	<div class="block">A simple representation of a security role that has a name and a collection of permissions.</div>
	</td>
	</tr>
	</tbody>
	</table>
	</li>
	<li class="blockList">
	<table class="typeSummary">
	<caption><span>Exception Summary</span><span class="tabEnd"> </span></caption>
	<tr>
	<th class="colFirst" scope="col">Exception</th>
	<th class="colLast" scope="col">Description</th>
	</tr>
	<tbody>
	<tr class="altColor">
	<th class="colFirst" scope="row"><a href="AuthorizationException.html" title="class in org.apache.shiro.authz">AuthorizationException</a></th>
	<td class="colLast">
	<div class="block">Exception thrown if there is a problem during authorization (access control check).</div>
	</td>
	</tr>
	<tr class="rowColor">
	<th class="colFirst" scope="row"><a href="HostUnauthorizedException.html" title="class in org.apache.shiro.authz">HostUnauthorizedException</a></th>
	<td class="colLast">
	<div class="block">Thrown when a particular client (that is, host address) has not been enabled to access the system
	or if the client has been enabled access but is not permitted to perform a particular operation
	or access a particular resource.</div>
	</td>
	</tr>
	<tr class="altColor">
	<th class="colFirst" scope="row"><a href="UnauthenticatedException.html" title="class in org.apache.shiro.authz">UnauthenticatedException</a></th>
	<td class="colLast">
	<div class="block">Exception thrown when attempting to execute an authorization action when a successful
	authentication hasn't yet occurred.</div>
	</td>
	</tr>
	<tr class="rowColor">
	<th class="colFirst" scope="row"><a href="UnauthorizedException.html" title="class in org.apache.shiro.authz">UnauthorizedException</a></th>
	<td class="colLast">
	<div class="block">Thrown to indicate a requested operation or access to a requested resource is not allowed.</div>
	</td>
	</tr>
	</tbody>
	</table>
	</li>
	</ul>
	</div>
	</main>
	<footer role="contentinfo">
	<nav role="navigation">
	<!-- ======= START OF BOTTOM NAVBAR ====== -->
	<div class="bottomNav"><a id="navbar.bottom">
	<!-- -->
	</a>
	<div class="skipNav"><a href="#skip.navbar.bottom" title="Skip navigation links">Skip navigation links</a></div>
	<a id="navbar.bottom.firstrow">
	<!-- -->
	</a>
	<ul class="navList" title="Navigation">
	<li><a href="../../../../index.html">Overview</a></li>
	<li class="navBarCell1Rev">Package</li>
	<li>Class</li>
	<li><a href="package-use.html">Use</a></li>
	<li><a href="package-tree.html">Tree</a></li>
	<li><a href="../../../../deprecated-list.html">Deprecated</a></li>
	<li><a href="../../../../index-all.html">Index</a></li>
	<li><a href="../../../../help-doc.html">Help</a></li>
	</ul>
	</div>
	<div class="subNav">
	<ul class="navList" id="allclasses_navbar_bottom">
	<li><a href="../../../../allclasses.html">All Classes</a></li>
	</ul>
	<div>
	<script type="text/javascript"><!--
	allClassesLink = document.getElementById("allclasses_navbar_bottom");
	if(window==top) {
	allClassesLink.style.display = "block";
	}
	else {
	allClassesLink.style.display = "none";
	}
	//-->
	</script>
	<noscript>
	<div>JavaScript is disabled on your browser.</div>
	</noscript>
	</div>
	<a id="skip.navbar.bottom">
	<!-- -->
	</a></div>
	<!-- ======== END OF BOTTOM NAVBAR ======= -->
	</nav>
	<p class="legalCopy"><small>Copyright © 2004–2020 <a href="https://www.apache.org/">The Apache Software Foundation</a>. All rights reserved.</small></p>
	</footer>
	</body>
	</html>