Go to new doc!

Features Virtualization API Gateway OAuth2 Performance Testimonials Reverse Proxy FAQ Documentation

Overview Deployment Logging/monitoring Web Services WebSockets Cloud Interceptors Configuration

Interceptor Configuration proxies.xml Location Samples Element Reference

accessControl

accountBlocker accountRegistration acme acmeHttpChallenge adminConsole amQuota amRateLimiter amStatisticsCollector analyser api apiKeyChecker apiManagement authHead2Body balancer basicAuthentication bean bearerToken beautifier byThreadStrategy cache certificate claims clamav clusterNotification cookieOriginalExchangeStore counter customStatementJdbcUserDataProvider defaultConfig dispatching elasticSearchExchangeStore etcdBasedConfigurator etcdPublisher etcdRegistryApiConfig etcdResolver exchangeStore exclude faultMonitoringStrategy fileExchangeStore fileStore fileUserDataProvider forgetfulExchangeStore formValidation gatekeeper graphQLProtection groovy groovyTemplate headerFilter headerJwtRetriever http2xml httpClient httpClientConfig httpSchemaResolver if inMemorySessionManager2 inMemoryStore include index interceptor internalProxy jSessionIdExtractor javascript jdbcUserDataProvider jmxExporter json2Xml jsonPointerExtractor jsonProtection jwks jwtAuth jwtSessionManager jwtSessionManager2 key keyFile keyGenerator keystore kubernetesValidation limit limitedMemoryExchangeStore log logContext login membrane memoryExchangeStore methodOverride nodeOnlineChecker ntlm oauth2PermissionChecker oauth2Resource oauth2Resource2 oauth2authserver private prometheus proxy rateLimiter redis redisOriginalExchangeStore redisSessionManager regExReplacer registration resolverMap rest2Soap return reverseProxying rewriter roundRobinStrategy router routerIpResolver ruleMatching serviceProxy sessionOriginalExchangeStore setHeader shutdown simpleApiConfig soap2Rest soapOperationExtractor soapProxy soapStackTraceFilter spdy ssl sslProxy staticClientList staticUserDataProvider statisticsCSV statisticsJDBC statisticsProvider stompClient stompProxy swaggerApiKeyRequirer swaggerProxy swaggerRewriter switch tcp template testService throttle tokenValidator transform transport trust truststore uriFactory urlNormalizer userFeature validator wadlRewriter webServer webServiceExplorer webSocket wsInterceptor wsLog wsStompReassembler wsdlPublisher wsdlRewriter xenAuthentication xml2Json xmlContentFilter xmlProtection xmlSessionIdExtractor xpathExtractor

Security Clustering Development

5.1 5.0 4.8 3.5

+49 228 5552576-0

info@predic8.com

accessControl

Description

Blocks requests whose origin TCP/IP address (hostname or IP address) is not allowed to access the requested resource.

Can be used in

spring:beans, api, bean, if, interceptor, internalProxy, proxy, registration, request, response, serviceProxy, soapProxy, stompProxy, swaggerProxy, transport and wsStompReassembler

Syntax

		<accessControl file="path" />

Listing 1: accessControl Syntax

Sample

The following example shows how to configure access control globally. Every request will be checked against the rules of the access control. The accessControl is placed into the transport of the beans configuration.

			<router>
			  <transport coreThreadPoolSize="20">
			    <ruleMatching />
				<dispatching />
				
				<accessControl file="resources/acl/acl.xml" />
							
				<userFeature />
				<httpClient />
				
			  </transport>

			  <serviceProxy>
			  	[...]
			  </serviceProxy>
			</router>

Listing 2: accessControl Example

Attributes

Name	Required	Default	Description	Example
file	true	-	Location of the ACL file.	acl/acl.xml

See also

Documentation: Access Control Lists

Copyright (c) 2018-2023 predic8 GmbH, Koblenzer Str. 65, 53173 Bonn, Germany
Privacy Policy