WebSecurityExpressionRoot.java example

Explorer
com.revolsys.open-master
package com.revolsys.spring.security;

import javax.servlet.http.HttpServletRequest;

import org.springframework.security.core.Authentication;
import org.springframework.security.web.FilterInvocation;
import org.springframework.security.web.util.matcher.IpAddressMatcher;

public class WebSecurityExpressionRoot extends SecurityExpressionRoot {
  // private FilterInvocation filterInvocation;
  /** Allows direct access to the request object */
  public final HttpServletRequest request;

  public WebSecurityExpressionRoot(final Authentication a, final FilterInvocation fi) {
    super(a);
    // this.filterInvocation = fi;
    this.request = fi.getRequest();
  }

  /**
   * Takes a specific IP address or a range using the IP/Netmask (e.g.
   * 192.168.1.0/24 or 202.24.0.0/14).
   *
   * @param ipAddress the address or range of addresses from which the request
   *          must come.
   * @return true if the IP address of the current request is in the required
   *         range.
   */
  public boolean hasIpAddress(final String ipAddress) {
    return new IpAddressMatcher(ipAddress).matches(this.request);
  }

}