Examples of javax.security.jacc.EJBRoleRefPermission

javax.security.jacc.EJBRoleRefPermission
Class for EJB isCallerInRole(String reference) permissions. An EJBRoleRefPermission is a named permission and has actions.
The name of an EJBRoleRefPermission contains the value of the ejb-name element in the application's deployment descriptor that identifies the EJB in whose context the permission is being evalutated.
The actions of an EJBRoleRefPermission identifies the role reference to which the permission applies. An EJBRoleRefPermission is checked to determine if the subject is a member of the role identified by the reference. @version $Rev: 54183 $ $Date: 2004-10-09 16:04:29 -0600 (Sat, 09 Oct 2004) $


        if (_logger.isLoggable(Level.FINE)) {
            _logger.entering("EJBSecurityManager", "isCallerInRole", role);


        }
        EJBRoleRefPermission ejbrr = new EJBRoleRefPermission(ejbName, role);
        
        SecurityContext sc;
        if (runAs != null) {
            ComponentInvocation ci = invMgr.getCurrentInvocation();
            sc = (SecurityContext) ci.getOldSecurityContext();
        } else {
            sc = SecurityContext.getCurrent();
        }
        Set principalSet = null;
        if (sc != null) principalSet = sc.getPrincipalSet();


        ProtectionDomain prdm = getCachedProtectionDomain(principalSet, true);


        String oldContextId = null;
        try {
            // set the policy context in the TLS.
            oldContextId = setPolicyContext(this.contextId);
            ret = policy.implies(prdm, ejbrr);
        } catch (SecurityException se) {
            _logger.log(Level.SEVERE, "jacc_is_caller_in_role_exception", se);
            ret = false;
        } catch (Throwable t) {
            _logger.log(Level.SEVERE, "jacc_is_caller_in_role_exception", t);
            ret = false;
        } finally {
            try {
                resetPolicyContext(oldContextId, this.contextId);
            } catch (Throwable ex) {
                _logger.log(Level.SEVERE, "jacc_policy_context_exception", ex);
                ret = false;
            }
        }


        if (_logger.isLoggable(Level.FINE)) {
            _logger.fine("JACC: isCallerInRole Result: " + ret + " EJBRoleRefPermission (Name) = " + ejbrr.getName() + " (Action) = " + ejbrr.getActions() + " (Codesource) = " + prdm.getCodeSource());
        }


        return ret;
    }

View Full Code Here


            Context context = (Context) subjectContexts.get(currentCaller.get());


            assert context != null : "No registered context";


            context.context.checkPermission(new EJBRoleRefPermission(EJBName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

            if (roleLinks == null) {
                roleLinks = DelegatePermissionCollection.getPermissionCollection();
                rolePermissions.put(roleLink, roleLinks);


            }
            roleLinks.add(new EJBRoleRefPermission(ejbName, securityRoleRef.roleName));
        }


        /**
         * EJB v2.1 section 21.3.2
         * <p/>

View Full Code Here

0 1 2 3 4 5 6 7 8

TOP

Related Classes of javax.security.jacc.EJBRoleRefPermission

com.sun.enterprise.security.application.EJBSecurityManager

org.apache.geronimo.openejb.deployment.SecurityBuilder

org.apache.geronimo.openejb.GeronimoSecurityService

org.apache.geronimo.security.ContextManager

org.apache.geronimo.security.util.ConfigurationUtil

org.apache.openejb.assembler.classic.JaccPermissionsBuilder

org.apache.openejb.core.security.AbstractSecurityService

org.apache.openejb.core.security.SecurityServiceImpl

org.glassfish.ejb.security.application.EJBSecurityManager

org.jboss.as.ejb3.security.EjbJaccConfigurator

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.