ClassDescriptionThis matcher can be used for restricting access to an app.Provides basic CSRF protection implementing a Same Origin Standard Header verification (step 1) and a Synchronization Token with a cookie-stored token on the front-end.This is a
RequestAuthorizerwhich authorizes all process engine api requests based on the current authenticationA
SecurityFilterRulethat deleagates to a set of
PathMatchersThe interface for request authorizers.A request matcher that matches uris compatible to the JAX-RS syntax and extracts the arguments on match.Simple filter implementation which delegates to a list of
FilterRules, evaluating their
SecurityFilterRule#setAuthorized(org.camunda.bpm.webapp.impl.security.filter.AppRequest)condition for the given request.POJO representing the configuration of the security filterThis interface is used by the
SecurityFilterto authorize incoming requests.