Package com.sun.enterprise.security.jmac.provider

Examples of com.sun.enterprise.security.jmac.provider.PacketMessageInfo

111
112
113
114
115
116
117
118
119
120
121
    public void preDestroy() {
        //Give the AuthContext a chance to cleanup
        //create a dummy request packet
        try {
            Packet request = new Packet();
            PacketMessageInfo locInfo = new PacketMapMessageInfo(request, new Packet());
            Subject subj = getClientSubject(request);
            ClientAuthContext locCAC = helper.getClientAuthContext(locInfo, subj);
             if (locCAC != null && WSIT_CLIENT_AUTH_CONTEXT.equals(locCAC.getClass().getName())) {
                locCAC.cleanSubject(locInfo, subj);
            }
View Full Code Here
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
     
    @Override
    public JAXBElement startSecureConversation(Packet packet)
            throws WSSecureConversationException {

  PacketMessageInfo locInfo = new PacketMapMessageInfo(packet,new Packet());
  JAXBElement token = null;

  try {

      // gets the subject from the packet (puts one there if not found)
      Subject locClientSubject = getClientSubject(packet);

      // put MessageInfo in properties map, since MessageInfo
      // is not passed to getAuthContext, key idicates function
      HashMap map = new HashMap();
      map.put(PipeConstants.SECURITY_TOKEN,locInfo);

      helper.getSessionToken(map,locInfo,locClientSubject);

      // helper returns token in map of msgInfo, using same key
      Object o = locInfo.getMap().get(PipeConstants.SECURITY_TOKEN);

      if (o != null && o instanceof JAXBElement) {
    token = (JAXBElement) o;
      }
View Full Code Here
105
106
107
108
109
110
111
112
113
114
115
    @Override
    public void preDestroy() {
  helper.disable();
         try {
            Packet request = new Packet();
            PacketMessageInfo info = new PacketMapMessageInfo(request, new Packet());
            Subject subj = new Subject();
            ServerAuthContext sAC = helper.getServerAuthContext(info, subj);
            if (sAC != null && WSIT_SERVER_AUTH_CONTEXT.equals(sAC.getClass().getName())) {
                sAC.cleanSubject(info, subj);
            }
View Full Code Here
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
    }   

    private Packet processRequest(Packet request) throws Exception {

        AuthStatus status = AuthStatus.SUCCESS; 
  PacketMessageInfo info= new PacketMapMessageInfo(request,new Packet());
  // XXX at this time, we expect the server subject to be null
  Subject serverSubject = (Subject)
      request.invocationProperties.get(PipeConstants.SERVER_SUBJECT);

  //could change the request packet
        ServerAuthContext sAC =
      helper.getServerAuthContext(info,serverSubject);
  Subject clientSubject = getClientSubject(request);
  final Packet validatedRequest; 
  try {
      if (sAC != null) {   
    // client subject must not be null
    // and when return status is SUCCESS, module
    // must have called handler.handle(CallerPrincipalCallback)
    status = sAC.validateRequest(info,clientSubject,serverSubject);
      }
  } catch(Exception e) {
      _logger.log(Level.SEVERE,LogUtils.ERROR_REQUEST_VALIDATION, e);
      WebServiceException wse = new WebServiceException
    (localStrings.getLocalString
     ("enterprise.webservice.cantValidateRequest",
      "Cannot validate request for {0}",
      new Object[] { helper.getModelName() }),e);

      //set status for audit
      status = AuthStatus.SEND_FAILURE;
      // if unable to determine if two-way will return empty response
      return helper.getFaultResponse
    (info.getRequestPacket(),info.getResponsePacket(),wse);

  } finally {
      validatedRequest = info.getRequestPacket();
      helper.auditInvocation(validatedRequest,status);
  }

  Packet response = null;
  if (status == AuthStatus.SUCCESS) {
      boolean authorized = false;
      try {
    helper.authorize(validatedRequest);
    authorized = true;

      } catch (Exception e) {
    // not authorized, construct fault and proceded
    response = helper.getFaultResponse
        (validatedRequest,info.getResponsePacket(),e);
      }   
      if (authorized) {

    // only do doAdPriv if SecurityManager is in effect
    if (System.getSecurityManager() == null) {
                      try {
                        // proceed to invoke the endpoint
                        response = next.process(validatedRequest);
                    } catch (Exception e) {
                        _logger.log(Level.SEVERE, LogUtils.NEXT_PIPE, e);
                        response = helper.getFaultResponse(validatedRequest, info.getResponsePacket(), e);
                    }
    } else {
        try {
      response = (Packet)Subject.doAsPrivileged
          (clientSubject,new PrivilegedExceptionAction() {
                                @Override
        public Object run() throws Exception {
            // proceed to invoke the endpoint
            return next.process(validatedRequest);
        }
          }, null);
        } catch (PrivilegedActionException pae) {
            Throwable cause = pae.getCause();
      _logger.log(Level.SEVERE, LogUtils.NEXT_PIPE, cause);
      response = helper.getFaultResponse
          (validatedRequest,info.getResponsePacket(),cause);
        }
    }
      }
     
      //pipes are not supposed to return a null response packet
      if (response == null) {
    WebServiceException wse = new WebServiceException
        (localStrings.getLocalString
         ("enterprise.webservice.nullResponsePacket",
          "Invocation of Service {0} returned null response packet",
          new Object[] { helper.getModelName() }));
    response = helper.getFaultResponse
        (validatedRequest,info.getResponsePacket(),wse);
    _logger.log(Level.SEVERE, LogUtils.EXCEPTION_THROWN, wse);

      }

      // secure response, including if it is a fault
      if (sAC != null && response.getMessage() != null) {
    info.setResponsePacket(response);
    response = processResponse(info, sAC, serverSubject);
      }

  } else {
      // validateRequest did not return success
      if (_logger.isLoggable(Level.FINE)) {
    _logger.log(Level.FINE,"ws.status_validate_request", status);
      }
      // even for one-way mep, may return response with non-empty message
      response = info.getResponsePacket();
  }

        return response;
    }
View Full Code Here
106
107
108
109
110
111
112
113
114
115
116
    public void preDestroy() {
        //Give the AuthContext a chance to cleanup
        //create a dummy request packet
        try {
            Packet request = new Packet();
            PacketMessageInfo info = new PacketMapMessageInfo(request, new Packet());
            Subject subj = getClientSubject(request);
            ClientAuthContext cAC = helper.getClientAuthContext(info, subj);
             if (cAC != null && WSIT_CLIENT_AUTH_CONTEXT.equals(cAC.getClass().getName())) {
                cAC.cleanSubject(info, subj);
            }
View Full Code Here
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
   if(isHttpBinding) {
       return next.process(request);
   }
        */

  PacketMessageInfo info= new PacketMapMessageInfo(request,new Packet());
       
        info.getMap().put(javax.xml.ws.Endpoint.WSDL_SERVICE,
            helper.getProperty(PipeConstants.WSDL_SERVICE));

        AuthStatus status = AuthStatus.SEND_SUCCESS;

  Subject clientSubject = getClientSubject(request);

  ClientAuthContext cAC = null;

  try {

      cAC = helper.getClientAuthContext(info,clientSubject);

      if (cAC != null) {

    // proceed to process message sescurity
    status = cAC.secureRequest(info, clientSubject);
      }

  } catch(Exception e) {

            _logger.log(Level.SEVERE, LogUtils.ERROR_REQUEST_SECURING, e);
     
      throw new WebServiceException
    (localStrings.getLocalString
     ("enterprise.webservice.cantSecureRequst",
      "Cannot secure request for {0}",
      new Object[] { helper.getModelName() }),e);
  }

  Packet response;

  if (status == AuthStatus.FAILURE) {
      if (_logger.isLoggable(Level.FINE)) {
    _logger.log(Level.FINE,"ws.status_secure_request", status);
      }
      response = info.getResponsePacket();
  } else {
      response = processSecureRequest(info,cAC,clientSubject);
  }

  // may return a security fault even if the MEP was one-way
View Full Code Here
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
     
    @Override
    public JAXBElement startSecureConversation(Packet packet)
            throws WSSecureConversationException {

  PacketMessageInfo info = new PacketMapMessageInfo(packet,new Packet());
  JAXBElement token = null;

  try {

      // gets the subject from the packet (puts one there if not found)
      Subject clientSubject = getClientSubject(packet);

      // put MessageInfo in properties map, since MessageInfo
      // is not passed to getAuthContext, key idicates function
      HashMap map = new HashMap();
      map.put(PipeConstants.SECURITY_TOKEN,info);

      helper.getSessionToken(map,info,clientSubject);

      // helper returns token in map of msgInfo, using same key
      Object o = info.getMap().get(PipeConstants.SECURITY_TOKEN);

      if (o != null && o instanceof JAXBElement) {
    token = (JAXBElement) o;
      }
View Full Code Here
112
113
114
115
116
117
118
119
120
121
122
123
    public String getAuthContextID(MessageInfo messageInfo) {

        // make this more efficient by operating on packet
        String rvalue = null;
        if (messageInfo instanceof PacketMessageInfo) {
            PacketMessageInfo pmi = (PacketMessageInfo) messageInfo;
            Packet p = (Packet) pmi.getRequestPacket();
            if (p != null) {
                Message m = p.getMessage();
                if (m != null) {
                    WSDLPort port =
                            (WSDLPort) messageInfo.getMap().get("WSDL_MODEL");
View Full Code Here
113
114
115
116
117
118
119
120
121
122
123
124
    public String getAuthContextID(MessageInfo messageInfo) {

        // make this more efficient by operating on packet
        String rvalue = null;
        if (messageInfo instanceof PacketMessageInfo) {
            PacketMessageInfo pmi = (PacketMessageInfo) messageInfo;
            Packet p = (Packet) pmi.getRequestPacket();
            if (p != null) {
                Message m = p.getMessage();
                if (m != null) {
                    WSDLPort port =
                            (WSDLPort) messageInfo.getMap().get("WSDL_MODEL");
View Full Code Here
106
107
108
109
110
111
112
113
114
115
116
    @Override
    public void preDestroy() {
  helper.disable();
         try {
            Packet request = new Packet();
            PacketMessageInfo info = new PacketMapMessageInfo(request, new Packet());
            Subject subj = new Subject();
            ServerAuthContext sAC = helper.getServerAuthContext(info, subj);
            if (sAC != null && WSIT_SERVER_AUTH_CONTEXT.equals(sAC.getClass().getName())) {
                sAC.cleanSubject(info, subj);
            }
View Full Code Here
TOP

Related Classes of com.sun.enterprise.security.jmac.provider.PacketMessageInfo

  • com.sun.enterprise.security.webservices.ClientSecurityPipe
  • com.sun.enterprise.security.webservices.ClientSecurityTube
  • com.sun.enterprise.security.webservices.CommonServerSecurityPipe
  • com.sun.enterprise.security.webservices.WebServicesDelegateImpl
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.