Examples of java.security.AccessControlContext

java.security.AccessControlContext
An AccessControlContext is used to make system resource access decisions based on the context it encapsulates.
More specifically, it encapsulates a context and has a single method, checkPermission, that is equivalent to the checkPermission method in the AccessController class, with one difference: The AccessControlContext checkPermission method makes access decisions based on the context it encapsulates, rather than that of the current execution thread.
Thus, the purpose of AccessControlContext is for those situations where a security check that should be made within a given context actually needs to be done from within a different context (for example, from within a worker thread).
An AccessControlContext is created by calling the AccessController.getContext method. The getContext method takes a "snapshot" of the current calling context, and places it in an AccessControlContext object, which it returns. A sample call is the following:
```
 AccessControlContext acc = AccessController.getContext() 
```
Code within a different context can subsequently call the checkPermission method on the previously-saved AccessControlContext object. A sample call is the following:
```
 acc.checkPermission(permission) 
```
@see AccessController @author Roland Schemers

   * privileges of the bundle with the blueprint file that get used, not the privileges 
   * of blueprint-core. To achieve this we use an access context. 
   * @return
   */
    private AccessControlContext createAccessControlContext() {
        return new AccessControlContext(AccessController.getContext(),
                new DomainCombiner() {               
                    public ProtectionDomain[] combine(ProtectionDomain[] arg0,
                                                      ProtectionDomain[] arg1) {                    
                        return new ProtectionDomain[] { new ProtectionDomain(null, null) {                        
                            public boolean implies(Permission permission) {

View Full Code Here

        } else {
          urlHandler = new GetURLObjectWrapper(interp, (NativeObject)args[1], ww);
        }
        final Window.GetURLHandler fw = urlHandler;


        AccessControlContext acc =
            ((RhinoInterpreter)window.getInterpreter()).getAccessControlContext();


        if (len == 2) {
            AccessController.doPrivileged(new PrivilegedAction() {
                    public Object run(){

View Full Code Here

    private Session extendAuthentication(String workspaceName)
            throws RepositoryException, AccessDeniedException {


        Subject subject = null;
        try {
            AccessControlContext acc = AccessController.getContext();
            subject = Subject.getSubject(acc);
        } catch (SecurityException e) {
            log.warn("Can't check for preauthentication. Reason:", e.getMessage());
        }
        if (subject == null) {

View Full Code Here

        SecurityManager sm = System.getSecurityManager();
        if (sm != null) sm.checkPermission(SET_CONTEXT);


        if (subject == null) throw new IllegalArgumentException("Subject must not be null");


        AccessControlContext acc = (AccessControlContext) Subject.doAsPrivileged(subject, new PrivilegedAction() {
            public Object run() {
                return AccessController.getContext();
            }
        }, null);

View Full Code Here

            }
            if (user == SecurityConstraint.__NOBODY) {
                return true;
            }


            AccessControlContext acc = ContextManager.getCurrentContext();


            /**
             * JACC v1.0 secion 4.1.1
             */


            acc.checkPermission(wudp);


            /**
             * JACC v1.0 secion 4.1.2
             */
            acc.checkPermission(webResourcePermission);
        } catch (HttpException he) {
            response.sendError(he.getCode(), he.getReason());
            return false;
        } catch (AccessControlException ace) {
            response.sendError(HttpResponse.__403_Forbidden);

View Full Code Here


        ContextManager.setCurrentCaller(subject);


        try {


            AccessControlContext acc = ContextManager.getCurrentContext();


            /**
             * JACC v1.0 secion 4.1.1
             */
            String transportType;
            if (request.isSecure()) {
                transportType = "CONFIDENTIAL";
                //What about INTEGRAL?? Does Tomcat support it??
            } else {
                transportType = "NONE";
            }
            WebUserDataPermission wudp = new WebUserDataPermission(request.getServletPath(), new String[]{request.getMethod()}, transportType);
            acc.checkPermission(wudp);


        } catch (AccessControlException ace) {
            response.sendError(Response.SC_FORBIDDEN);
            return false;
        }

View Full Code Here

            ContextManager.setCurrentCaller(((JAASTomcatPrincipal) principal).getSubject());
        }


        try {


            AccessControlContext acc = ContextManager.getCurrentContext();




            /**
             * JACC v1.0 section 4.1.2
             */
            acc.checkPermission(new WebResourcePermission(request));


        } catch (AccessControlException ace) {
            response.sendError(Response.SC_FORBIDDEN);
            return false;
        }

View Full Code Here

        }


        //Set the caller
        ContextManager.setCurrentCaller(((JAASTomcatPrincipal) principal).getSubject());


        AccessControlContext acc = ContextManager.getCurrentContext();


        try {
            /**
             * JACC v1.0 section 4.1.3
             */
            acc.checkPermission(new WebRoleRefPermission(name, role));
        } catch (AccessControlException e) {
            return false;
        }


        return true;

View Full Code Here

    public boolean isUserInRole(Principal user, String role) {
        if (user == null || role == null) {
            return false;
        }


        AccessControlContext acc = ContextManager.getCurrentContext();
        try {
            // JACC v1.0 secion B.19
            String servletName = JettyServletHolder.getCurrentServletName();
            if (servletName.equals("jsp")) {
                servletName = "";
            }
            acc.checkPermission(new WebRoleRefPermission(servletName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

        ProtectionDomain rhinoProtectionDomain 
            = new ProtectionDomain(codeSource,
                                   getPermissions(codeSource));
        
        rhinoAccessControlContext
            = new AccessControlContext(new ProtectionDomain[]{
                rhinoProtectionDomain});
    }

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

Related Classes of java.security.AccessControlContext

au.net.ocean.maven.plugin.extractor.util.ProjectCompileClassPathLoader

co.paralleluniverse.fibers.Fiber

com.sun.jini.test.impl.end2end.e2etest.ReaderObject

com.sun.jmx.interceptor.DefaultMBeanServerInterceptor

com.sun.jmx.remote.internal.ClientNotifForwarder$NotifFetcher

com.sun.jmx.remote.internal.ServerNotifForwarder

com.sun.jmx.remote.security.JMXSubjectDomainCombiner

com.sun.xml.ws.fault.SOAPFaultBuilder

com.sun.xml.ws.security.impl.kerberos.KerberosLogin$KerberosClientSetupAction

com.sun.xml.ws.security.impl.kerberos.KerberosLogin$KerberosServerSetupAction

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.