Java tutorial
/* * Copyright 2002-2016 the original author or authors. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * https://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package org.springframework.security.web.access.expression; import javax.servlet.http.HttpServletRequest; import org.springframework.security.access.expression.SecurityExpressionRoot; import org.springframework.security.core.Authentication; import org.springframework.security.web.FilterInvocation; import org.springframework.security.web.util.matcher.IpAddressMatcher; /** * * @author Luke Taylor * @since 3.0 */ public class WebSecurityExpressionRoot extends SecurityExpressionRoot { // private FilterInvocation filterInvocation; /** Allows direct access to the request object */ public final HttpServletRequest request; public WebSecurityExpressionRoot(Authentication a, FilterInvocation fi) { super(a); // this.filterInvocation = fi; this.request = fi.getRequest(); } /** * Takes a specific IP address or a range using the IP/Netmask (e.g. 192.168.1.0/24 or * 202.24.0.0/14). * * @param ipAddress the address or range of addresses from which the request must * come. * @return true if the IP address of the current request is in the required range. */ public boolean hasIpAddress(String ipAddress) { return (new IpAddressMatcher(ipAddress).matches(request)); } }