Package com.cloud.bridge.service.exception

Examples of com.cloud.bridge.service.exception.PermissionDeniedException

153
154
155
156
157
158
159
160
161
162
163
        S3PolicyContext context = new S3PolicyContext( PolicyActions.PutObject, destinationBucketName );
        context.setKeyName( destinationKeyName );
        context.setEvalParam( ConditionKeys.MetaData, request.getDirective().toString());
        context.setEvalParam( ConditionKeys.CopySource, "/" + request.getSourceBucketName() + "/" + request.getSourceKey());
        if (PolicyAccess.DENY == verifyPolicy( context ))
            throw new PermissionDeniedException( "Access Denied - bucket policy DENY result" );

        S3GetObjectResponse originalObject = handleRequest(getRequest);  
        int resultCode = originalObject.getResultCode();
        if (200 != resultCode) {
            response.setResultCode( resultCode );
View Full Code Here
199
200
201
202
203
204
205
206
207
208
209
        verifyBucketName( bucketName, false );

        S3PolicyContext context = new S3PolicyContext( PolicyActions.CreateBucket,  bucketName );
        context.setEvalParam( ConditionKeys.Acl, cannedAccessPolicy );
        if (PolicyAccess.DENY == verifyPolicy( context ))
            throw new PermissionDeniedException( "Access Denied - bucket policy DENY result" );
        OrderedPair<SHostVO, String> shost_storagelocation_pair = null;
        boolean success = false;
        try {
            txn = Transaction.open(Transaction.AWSAPI_DB);
View Full Code Here
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
                // The bucket policy can give users permission to delete a
                // bucket whereas ACLs cannot
                break;

            case DENY:
                throw new PermissionDeniedException(
                        "Access Denied - bucket policy DENY result");

            case DEFAULT_DENY:
            default:
                // Irrespective of what the ACLs say, only the owner can delete
                // a bucket
                String client = UserContext.current().getCanonicalUserId();
                if (!client.equals(sbucket.getOwnerCanonicalId())) {
                    throw new PermissionDeniedException(
                            "Access Denied - only the owner can delete a bucket");
                }
                break;
            }
View Full Code Here
1723
1724
1725
1726
1727
1728
1729
1730
1731
1732
1733
        switch( verifyPolicy( context ) ) {
        case ALLOW:   // overrides ACLs (?)
            return;

        case DENY:
            throw new PermissionDeniedException( "Access Denied - bucket policy DENY result" );

        case DEFAULT_DENY:
        default:
            accessAllowed( target, targetId, requestedPermission );
            break;
View Full Code Here
1760
1761
1762
1763
1764
1765
1766
            if (hasPermission( s_saclDao.listGrants( target, targetId, userId ), requestedPermission )) return;
            // Or alternatively is there is any principal authenticated ACL set for this <target, targetId>?
            if (hasPermission( s_saclDao.listGrants( target, targetId, "*" ), requestedPermission )) return;
        }
        // No privileges implies that no access is allowed  in the case of an anonymous user
        throw new PermissionDeniedException( "Access Denied - ACLs do not give user the required permission" );
    }
View Full Code Here
59
60
61
62
63
64
65
  }
 
  public void verify() throws PermissionDeniedException
  {
    if (0 == conditionList.size())
            throw new PermissionDeniedException( "S3 Bucket Policy Condition Block needs at least one condition" );
  }
View Full Code Here
114
115
116
117
118
119
120
  }
 
  public void verify() throws PermissionDeniedException
  {
    if (0 == keys.size())
            throw new PermissionDeniedException( "S3 Bucket Policy IpAddress Condition needs at least one key-value pairs" );
  }
View Full Code Here
129
130
131
132
133
134
135
  }
 
  public void verify() throws PermissionDeniedException
  {
    if (0 == keys.size())
            throw new PermissionDeniedException( "S3 Bucket Policy Numeric Condition needs at least one key-value pairs" );
  }
View Full Code Here
135
136
137
138
139
140
141
            errors++;
            value.append(" missing Resource");
        }

        if (0 < errors)
            throw new PermissionDeniedException(value.toString());
    }
View Full Code Here
93
94
95
96
97
98
99
    }

    public void verify() throws PermissionDeniedException {
        if (0 == keys.size())
            throw new PermissionDeniedException("S3 Bucket Policy Bool Condition needs at least one key-value pairs");
    }
View Full Code Here
TOP

Related Classes of com.cloud.bridge.service.exception.PermissionDeniedException

  • com.cloud.bridge.service.controller.s3.S3BucketAction
  • com.cloud.bridge.service.core.s3.S3Engine
  • com.cloud.bridge.service.core.s3.S3PolicyArnCondition
  • com.cloud.bridge.service.core.s3.S3PolicyBoolCondition
  • com.cloud.bridge.service.core.s3.S3PolicyConditionBlock
  • com.cloud.bridge.service.core.s3.S3PolicyDateCondition
  • com.cloud.bridge.service.core.s3.S3PolicyIPAddressCondition
  • com.cloud.bridge.service.core.s3.S3PolicyNumericCondition
  • com.cloud.bridge.service.core.s3.S3PolicyStatement
  • com.cloud.bridge.service.core.s3.S3PolicyStringCondition
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.