Spring Security Add PermitAll and DenyAll AuthorizationManager instances

It would be nice to have an AuthorizationManager that returned a static response:

public final class SingleResultAuthorizationManager<C> implements AuthorizationManager<C> {
    private final AuthorizationResult result;

    // ...

    public static <C> SingleResultAuthorizationManager<C> permitAll() { ... }

    public static <C> SingleResultAuthorizationManager<C> denyAll() { ... }
}

This ticket would also look for and replace code that creates a permit-all or deny-all lambda like in AuthorizeHttpRequestsConfigurer#AuthorizeUrl and RequestMatcherDelegatingAuthorizationManager#AuthorizeUrl.

Comment From: franticticktick

Hi @jzheaux , could you assign this ticket to me please?

Comment From: jzheaux

Yes, @franticticktick. Will you in your review please also ping @plll0123 as they were recently involved in a similar polish? I'd like to see if I can encourage them to make more contributions.