Skip to content

Add PermitAll and DenyAll AuthorizationManager instances #16590

New issue
New issue
Closed
#16612
Closed
Add PermitAll and DenyAll AuthorizationManager instances#16590
#16612
Assignees
franticticktick
Labels
in: coreAn issue in spring-security-corestatus: duplicateA duplicate of another issuetype: enhancementA general enhancement
@jzheaux

Description

@jzheaux
jzheaux
opened on Feb 14, 2025

It would be nice to have an AuthorizationManager that returned a static response:

public final class SingleResultAuthorizationManager<C> implements AuthorizationManager<C> {
    private final AuthorizationResult result;

    // ...

    public static <C> SingleResultAuthorizationManager<C> permitAll() { ... }

    public static <C> SingleResultAuthorizationManager<C> denyAll() { ... }
}

This ticket would also look for and replace code that creates a permit-all or deny-all lambda like in AuthorizeHttpRequestsConfigurer#AuthorizeUrl and RequestMatcherDelegatingAuthorizationManager#AuthorizeUrl.

Metadata

Metadata

Assignees

Labels

in: coreAn issue in spring-security-corestatus: duplicateA duplicate of another issuetype: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions