Package javax.ws.rs

Examples of javax.ws.rs.ForbiddenException

123
124
125
126
127
128
129
130
        return getSubject().isPermitted(permission + ":" + instanceId);
    }

    protected void checkPermission(String permission) {
        if (!isPermitted(permission)) {
            throw new ForbiddenException("Not authorized");
        }
    }
View Full Code Here
133
134
135
136
137
138
139
140
        return getSubject().isPermitted(permission);
    }

    protected void checkPermission(String permission, String instanceId) {
        if (!isPermitted(permission, instanceId)) {
            throw new ForbiddenException("Not authorized to access resource id " + instanceId);
        }
    }
View Full Code Here
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
    public void checkSearchPermission(String filter, String searchPermission) {
        if (filter == null || filter.equals("*") || filter.isEmpty()) {
            checkPermission(searchPermission);
        } else {
            if(!filter.startsWith("streams:")) {
                throw new ForbiddenException("Not allowed to search with filter: [" + filter + "]");
            }

            String[] parts = filter.split(":");
            if (parts.length <= 1) {
                throw new ForbiddenException("Not allowed to search with filter: [" + filter + "]");
            }
           
            String streamList = parts[1];
            String[] streams = streamList.split(",");
            if (streams.length == 0 ) {
                throw new ForbiddenException("Not allowed to search with filter: [" + filter + "]");
            }

            for(String streamId : streams) {
                if (!isPermitted(RestPermissions.STREAMS_READ, streamId)) {
                    LOG.warn("Not allowed to search with filter: [" + filter + "]. (Forbidden stream: " + streamId + ")");
                    throw new ForbiddenException();
                }
            }
        }
    }
View Full Code Here
133
134
135
136
137
138
139
                        return;
                    }
                }
            }

            throw new ForbiddenException();
        }
View Full Code Here
937
938
939
940
941
942
943
944
945
946
947
                    break;
                case UNAUTHORIZED:
                    webAppException = new NotAuthorizedException(response);
                    break;
                case FORBIDDEN:
                    webAppException = new ForbiddenException(response);
                    break;
                case NOT_FOUND:
                    webAppException = new NotFoundException(response);
                    break;
                case METHOD_NOT_ALLOWED:
View Full Code Here
948
949
950
951
952
953
954
955
956
957
958
                    break;
                case UNAUTHORIZED:
                    webAppException = new NotAuthorizedException(response);
                    break;
                case FORBIDDEN:
                    webAppException = new ForbiddenException(response);
                    break;
                case NOT_FOUND:
                    webAppException = new NotFoundException(response);
                    break;
                case METHOD_NOT_ALLOWED:
View Full Code Here
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43

   public void filter(ContainerRequestContext requestContext) throws IOException
   {
      SecurityContext sc = requestContext.getSecurityContext();
      if (sc == null) throw new ForbiddenException();
      Principal principal = sc.getUserPrincipal();
      if (principal == null) throw new ForbiddenException();

      String user = principal.getName();
      if (!authorized(user))
      {
         throw new ForbiddenException();
      }
   }
View Full Code Here
47
48
49
50
51
52
53
   @GET
   @Path("injection-failure/{param}")
   public void injectionFailure(@Suspended final AsyncResponse response, @PathParam("param") int id) {
      System.out.println("injectionFailure: " + id);
      throw new ForbiddenException("Should be unreachable");
   }
View Full Code Here
53
54
55
56
57
58
59
   }

   @GET
   @Path("method-failure")
   public void injectionFailure(@Suspended final AsyncResponse response) {
      throw new ForbiddenException("Should be unreachable");
   }
View Full Code Here
189
190
191
192
193
194
195
196
   protected void checkOrigin(ContainerRequestContext requestContext, String origin)
   {
      if (!allowedOrigins.contains("*") && !allowedOrigins.contains(origin))
      {
         requestContext.setProperty("cors.failure", true);
         throw new ForbiddenException("Origin not allowed: " + origin);
      }
   }
View Full Code Here
TOP

Related Classes of javax.ws.rs.ForbiddenException

  • com.restfully.shop.features.PerDayAuthorizer
  • org.apache.cxf.jaxrs.utils.SpecExceptions
  • org.glassfish.jersey.client.JerseyInvocation
  • org.glassfish.jersey.server.filter.RolesAllowedDynamicFeature$RolesAllowedRequestFilter
  • org.graylog2.rest.resources.RestResource
  • org.graylog2.rest.resources.search.SearchResource
  • org.jboss.resteasy.plugins.interceptors.CorsFilter
  • org.jboss.resteasy.plugins.interceptors.RoleBasedSecurityFilter
  • org.jboss.resteasy.skeleton.key.idm.service.TokenManagement
  • org.jboss.resteasy.test.async.JaxrsResource
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.