Package javax.security.jacc

Examples of javax.security.jacc.WebRoleRefPermission

110
111
112
113
114
115
116
117
118
119
120
121
122
      assertTrue(p.implies(new WebUserDataPermission("/excluded.jsp", "GET,POST")));
   }
  
   private void checkAddToRoleForManager(Permissions p)
   {
      assertTrue(p.implies(new WebRoleRefPermission("secured", "Manager")));
      assertTrue(p.implies(new WebRoleRefPermission("sslprotected", "MGR")));
      assertTrue(p.implies(new WebRoleRefPermission("sslprotected", "Manager")));
      assertTrue(p.implies(new WebRoleRefPermission("unchecked", "Manager")));
      assertTrue(p.implies(new WebRoleRefPermission("excluded", "Manager")));
      //Jacc1.1
      assertTrue(p.implies(new WebRoleRefPermission("", "Manager")));
   }
View Full Code Here
124
125
126
127
128
129
130
131
132
133
134
135
136
137
   private void checkAddToRoleForAdministrator(Permissions p)
   {
      assertTrue(p.implies(new WebResourcePermission("/secured.jsp", "GET,POST")));
      assertTrue(p.implies(new WebResourcePermission("/sslprotected.jsp", "GET,POST")));
     
      assertTrue(p.implies(new WebRoleRefPermission("secured", "ADM")));
      assertTrue(p.implies(new WebRoleRefPermission("secured", "Administrator")));
      assertTrue(p.implies(new WebRoleRefPermission("sslprotected", "ADM")));
      assertTrue(p.implies(new WebRoleRefPermission("sslprotected", "Administrator")));
      assertTrue(p.implies(new WebRoleRefPermission("unchecked", "Administrator")));
      assertTrue(p.implies(new WebRoleRefPermission("excluded", "Administrator")));
      //Jacc1.1
      assertTrue(p.implies(new WebRoleRefPermission("", "Administrator")));
   }
View Full Code Here
136
137
138
139
140
141
142
143
144
145
146
147
      assertTrue(p.implies(new WebRoleRefPermission("", "Administrator")));
   }
  
   private void checkAddToRoleForEmployee(Permissions p)
   {
      assertTrue(p.implies(new WebRoleRefPermission("secured", "Employee")));
      assertTrue(p.implies(new WebRoleRefPermission("sslprotected", "Employee")));
      assertTrue(p.implies(new WebRoleRefPermission("unchecked", "Employee")));
      assertTrue(p.implies(new WebRoleRefPermission("excluded", "Employee")));
      //  Jacc1.1
      assertTrue(p.implies(new WebRoleRefPermission("", "Employee")));
   }
View Full Code Here
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
         Set<String> unreferencedRoles = metaData.getSecurityRoleNames();
         if(roleRefs != null)
         for(SecurityRoleRefMetaData roleRef : roleRefs)
         {
            String roleName = roleRef.getRoleLink();
            WebRoleRefPermission wrrp = new WebRoleRefPermission(servletName, roleRef.getName());
            pc.addToRole(roleName, wrrp);
            /* A bit of a hack due to how tomcat calls out to its Realm.hasRole()
            with a role name that has been mapped to the role-link value. We
            may need to handle this with a custom request wrapper.
            */
            wrrp = new WebRoleRefPermission(servletName, roleName);
            pc.addToRole(roleRef.getName(), wrrp);
            // Remove the role from the unreferencedRoles
            unreferencedRoles.remove(roleName);
         }
        
         //Spec 3.1.3.2: For each servlet element in the deployment descriptor
         //a WebRoleRefPermission must be added to each security-role of the
         //application whose name does not appear as the rolename
         //in a security-role-ref within the servlet element. 
         if(unreferencedRoles != null)
         for(String unrefRole : unreferencedRoles)
         {
            WebRoleRefPermission unrefP = new WebRoleRefPermission(servletName,unrefRole);
            pc.addToRole(unrefRole, unrefP);
         }
      }

      Set<String> unreferencedRoles = metaData.getSecurityRoleNames();
      //JACC 1.1:Spec 3.1.3.2: For each security-role defined in the deployment descriptor, an
      //additional WebRoleRefPermission must be added to the corresponding role by
      //calling the addToRole method on the PolicyConfiguration object. The
      //name of all such permissions must be the empty string, and the actions of each
      //such permission must be the role-name of the corresponding role.
      if(unreferencedRoles != null)
      for(String unreferencedRole : unreferencedRoles)
      {
        WebRoleRefPermission wrrep = new WebRoleRefPermission("", unreferencedRole);
        pc.addToRole(unreferencedRole, wrrep);
      }
     
      // Now build the cross product of the unreferencedRoles and servlets
      Set<String> servletNames = servlets.keySet();
      if(servletNames != null)
      for(String servletName : servletNames)
      {
         if(unreferencedRoles != null)
         for(String role : unreferencedRoles)
         {
            WebRoleRefPermission wrrp = new WebRoleRefPermission(servletName, role);
            pc.addToRole(role, wrrp);           
         }
      }
      /**
       * The programmatic security checks are made from jsps.
       * JBAS-3054:Use of isCallerInRole from jsp does not work for JACC
       */
      if(unreferencedRoles != null)
      for(String role : unreferencedRoles)
      {
         WebRoleRefPermission wrrp = new WebRoleRefPermission("", role);
         pc.addToRole(role, wrrp)
      }
   }
View Full Code Here
468
469
470
471
472
473
474
475
    }


    protected void addUnmappedJSPPermissions(Set<String> securityRoles, Map<String, PermissionCollection> rolePermissions) {
        for (String roleName : securityRoles) {
            addPermissionToRole(roleName, new WebRoleRefPermission("", roleName), rolePermissions);
        }
    }
View Full Code Here
743
744
745
746
747
748
749
750
751
752
753
754
            * must be the value of the role-name (that is the  reference), appearing in the security-role-ref.
            * The deployment tools must  call the addToRole method on the PolicyConfiguration object to add the
            * WebRoleRefPermission object resulting from the translation to the role
            * identified in the role-link appearing in the security-role-ref.
            */
            addPermissionToRole(roleLink, new WebRoleRefPermission(servletName, roleName), rolePermissions);
            unmappedRoles.remove(roleName);
        }
        for (String roleName : unmappedRoles) {
            addPermissionToRole(roleName, new WebRoleRefPermission(servletName, roleName), rolePermissions);
        }
    }
View Full Code Here
237
238
239
240
241
242
243
244
245
246
247
        try {
            /**
             * JACC v1.0 section 4.1.3
             */
            acc.checkPermission(new WebRoleRefPermission(name, role));
        } catch (AccessControlException e) {
            return false;
        }

        return true;
View Full Code Here
143
144
145
146
147
148
149
150
151
152
153
            // JACC v1.0 secion B.19
            String servletName = InternalJettyServletHolder.getCurrentServletName();
            if (servletName == null || servletName.equals("jsp")) {
                servletName = "";
            }
            acc.checkPermission(new WebRoleRefPermission(servletName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }
View Full Code Here
238
239
240
241
242
243
244
245
246
247
248
        try {
            /**
             * JACC v1.0 section 4.1.3
             */
            acc.checkPermission(new WebRoleRefPermission(name, role));
        } catch (AccessControlException e) {
            return false;
        }

        return true;
View Full Code Here
138
139
140
141
142
143
144
145
146
147
148
            // JACC v1.0 secion B.19
            String servletName = JettyServletHolder.getCurrentServletName();
            if (servletName.equals("jsp")) {
                servletName = "";
            }
            acc.checkPermission(new WebRoleRefPermission(servletName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }
View Full Code Here
TOP

Related Classes of javax.security.jacc.WebRoleRefPermission

  • com.sun.enterprise.security.web.integration.WebPermissionUtil
  • com.sun.web.security.WebPermissionUtil
  • org.apache.geronimo.jetty.deployment.JettyModuleBuilder
  • org.apache.geronimo.jetty.InternalJAASJettyRealm
  • org.apache.geronimo.jetty.JAASJettyRealm
  • org.apache.geronimo.jetty.JettyXMLConfiguration
  • org.apache.geronimo.jetty6.InternalJAASJettyRealm
  • org.apache.geronimo.jetty7.handler.GeronimoUserIdentity
  • org.apache.geronimo.jetty8.handler.GeronimoJettyUserIdentity
  • org.apache.geronimo.jetty8.handler.GeronimoUserIdentity
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.