Examples of AccessControlProvider

org.apache.jackrabbit.core.security.authorization.AccessControlProvider
The AccessControlProvider is used to provide access control policy and entry objects that apply to an item in a single workspace. The provider is bound to a system session in contrast to the AccessControlManager that is bound to a specific session/subject.
Please note following additional special conditions:
- The detection of access control policy/entries is an implementation detail. They may be resource based or retrieved by other means.
- An access control policy/entry may be inherited across the item hierarchy. The details are left to the implementation
- If no policy can be determined for a particular Item the implementation must return some implementation specific default policy.
- Transient (NEW) items created within a regular Session object are unknown to and cannot be handled by the AccessControlProvider.
- If the item id passed to the corresponding calls doesn't point to an existing item, ItemNotFoundException will be thrown. It is therefore recommended to evaluate the id of the closest not-new ancestor node before calling any methods on the provider.
- Changes to access control policy and entries made through the AccessControlEditor are not effective unless they are persisted by calling Session.save() on the session that has been used to obtain the editor.
@see AccessControlProviderFactory
org.apache.qpid.server.model.AccessControlProvider

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider

     * @see JackrabbitSecurityManager#dispose(String)
     */
    public void dispose(String workspaceName) {
        checkInitialized();
        synchronized (acProviders) {
            AccessControlProvider prov = acProviders.remove(workspaceName);
            if (prov != null) {
                prov.close();
            }
        }
    }

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider

    public AccessManager getAccessManager(Session session, AMContext amContext) throws RepositoryException {
        checkInitialized();
        AccessManagerConfig amConfig = repository.getConfig().getSecurityConfig().getAccessManagerConfig();
        try {
            String wspName = session.getWorkspace().getName();
            AccessControlProvider pp = getAccessControlProvider(wspName);
            AccessManager accessMgr;
            if (amConfig == null) {
                log.debug("No configuration entry for AccessManager. Using org.apache.jackrabbit.core.security.DefaultAccessManager");
                accessMgr = new DefaultAccessManager();
            } else {

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider

     * @throws RepositoryException
     */
    private AccessControlProvider getAccessControlProvider(String workspaceName)
            throws NoSuchWorkspaceException, RepositoryException {
        checkInitialized();
        AccessControlProvider provider = acProviders.get(workspaceName);
        if (provider == null || !provider.isLive()) {
            SystemSession systemSession = repository.getSystemSession(workspaceName);
            // mark this session as 'active' so the workspace does not get disposed
            // by the workspace-janitor until the garbage collector is done
            // TODO: review again... this workaround is now used in several places.
            repository.onSessionCreated(systemSession);

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider


        /**
         * {@inheritDoc}
         */
        public boolean grants(Set<Principal> principals, String workspaceName) throws RepositoryException {
            AccessControlProvider prov = getAccessControlProvider(workspaceName);
            return prov.canAccessRoot(principals);
        }

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider

     */
    public AccessManager getAccessManager(Session session, AMContext amContext) throws RepositoryException {
        checkInitialized();
        try {
            String wspName = session.getWorkspace().getName();
            AccessControlProvider acP = getAccessControlProvider(systemSession, wspName);


            AccessManagerConfig amc = config.getAccessManagerConfig();
            AccessManager accessMgr;
            if (amc == null) {
                accessMgr = new SimpleAccessManager();

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider


        WorkspaceSecurityConfig ws = config.getSecurityConfig();
        if (ws != null) {
            BeanConfig ppfConfig =  ws.getAccessControlProviderConfig();
            if (ppfConfig != null) {
                AccessControlProvider prov = (AccessControlProvider) ppfConfig.newInstance();
            }
        }
    }

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider


    public void testAnonymousAccessDenied() throws Exception {
        Map<String, String> config = new HashMap<String, String>();
        config.put(UserAccessControlProvider.PARAM_ANONYMOUS_ACCESS, "false");


        AccessControlProvider p2 = new UserAccessControlProvider();
        try {
            p2.init(s, config);


            Set<Principal> anonymousPrincipals = getAnonymousPrincipals();


            assertFalse(p2.canAccessRoot(anonymousPrincipals));


            CompiledPermissions cp = p2.compilePermissions(anonymousPrincipals);
            try {
                assertEquals(CompiledPermissions.NO_PERMISSION, cp);
                assertFalse(cp.canReadAll());
                assertFalse(cp.grants(((NodeImpl) s.getRootNode()).getPrimaryPath(), Permission.READ));
            } finally {
                cp.close();
            }
        } finally {
            p2.close();
        }
    }

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider

    public void testAnonymousAccessDenied2() throws Exception {
        Map<String, String> config = new HashMap<String, String>();
        config.put(UserAccessControlProvider.PARAM_ANONYMOUS_ACCESS, "false");
        config.put(UserAccessControlProvider.PARAM_ANONYMOUS_ID, "abc");


        AccessControlProvider p2 = new UserAccessControlProvider();
        try {
            p2.init(s, config);


            Principal princ = new Principal() {
                public String getName() {
                    return "abc";
                }
            };
            Set<Principal> anonymousPrincipals = Collections.singleton(princ);


            assertFalse(p2.canAccessRoot(anonymousPrincipals));


            CompiledPermissions cp = p2.compilePermissions(anonymousPrincipals);
            try {
                assertEquals(CompiledPermissions.NO_PERMISSION, cp);
                assertFalse(cp.canReadAll());
                assertFalse(cp.grants(((NodeImpl) s.getRootNode()).getPrimaryPath(), Permission.READ));
            } finally {
                cp.close();
            }
        } finally {
            p2.close();
        }
    }

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider

     * @see JackrabbitSecurityManager#dispose(String)
     */
    public void dispose(String workspaceName) {
        checkInitialized();
        synchronized (acProviders) {
            AccessControlProvider prov = acProviders.remove(workspaceName);
            if (prov != null) {
                prov.close();
            }
        }
    }

View Full Code Here

Examples of org.apache.jackrabbit.core.security.authorization.AccessControlProvider

    public AccessManager getAccessManager(Session session, AMContext amContext) throws RepositoryException {
        checkInitialized();
        AccessManagerConfig amConfig = repository.getConfig().getSecurityConfig().getAccessManagerConfig();
        try {
            String wspName = session.getWorkspace().getName();
            AccessControlProvider pp = getAccessControlProvider(wspName);
            AccessManager accessMgr;
            if (amConfig == null) {
                log.debug("No configuration entry for AccessManager. Using org.apache.jackrabbit.core.security.DefaultAccessManager");
                accessMgr = new DefaultAccessManager();
            } else {

View Full Code Here

0 1 2 3 4 5

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.