Package nexj.core.runtime

Examples of nexj.core.runtime.SecurityViolationException

1954
1955
1956
1957
1958
1959
1960
1961
1962
1963
1964
1965
1966
1967
1968
    */
   public void checkReadAccess(PrivilegeSet privilegeSet) throws SecurityViolationException
   {
      if (m_nVisibility != Metaclass.PUBLIC)
      {
         throw new SecurityViolationException("err.rpc.attributeVisibility",
            new Object[]{getName(), m_metaclass.getName()});
      }

      if (m_readPrivilege != null && !privilegeSet.contains(m_readPrivilege))
      {
         throw new SecurityViolationException("err.rpc.attributeReadPrivilege",
            new Object[]{getName(), m_metaclass.getName(), m_readPrivilege.getName()});
      }
   }
View Full Code Here
1984
1985
1986
1987
1988
1989
1990
1991
1992
1993
1994
1995
1996
1997
1998
1999
2000
2001
2002
2003
2004
    */
   public void checkUpdateAccess(PrivilegeSet privilegeSet) throws SecurityViolationException
   {
      if (m_nVisibility != Metaclass.PUBLIC)
      {
         throw new SecurityViolationException("err.rpc.attributeVisibility",
            new Object[]{getName(), m_metaclass.getName()});
      }

      if (m_bReadOnly)
      {
         throw new SecurityViolationException("err.runtime.attributeReadOnlyAccess",
            new Object[]{getName(), m_metaclass.getName()});
      }

      if (m_updatePrivilege != null && !privilegeSet.contains(m_updatePrivilege))
      {
         throw new SecurityViolationException("err.rpc.attributeUpdatePrivilege",
            new Object[]{getName(), m_metaclass.getName(), m_updatePrivilege.getName()});
      }
   }
View Full Code Here
1229
1230
1231
1232
1233
1234
1235
1236
1237
   {
      PrimitivePrivilege privilege = context.getMetadata().getGenericRPCPrivilege();

      if (privilege != null && !context.getPrivilegeSet().contains(privilege))
      {
         throw new SecurityViolationException("err.rpc.privilege",
            new Object[]{context.getPrincipal().getName(), privilege.getName()});
      }
   }
View Full Code Here
1234
1235
1236
1237
1238
1239
1240
1241
1242
1243
1244
      }
      else
      {
         if (m_context.isSecure() && instance != null && !instance.isReadable())
         {
            throw new SecurityViolationException("err.rpc.instanceAccess",
               new Object[]{instance.getLazyCaption(), instance.getLazyClassName()});
         }
      }

      if (instance != null && ! m_invocationList.contains(tobj))
View Full Code Here
67
68
69
70
71
72
73
74
75
76
77
      boolean bSecure = m_context.isSecure();

      if (bSecure && service.getPrivilege() != null &&
         !m_context.getPrivilegeSet().contains(service.getPrivilege()))
      {
         throw new SecurityViolationException("err.integration.service.unauthorized",
            new Object[]{service.getFullName()});
      }

      if (service.getInterface() != null)
      {
View Full Code Here
615
616
617
618
619
620
621
622
623
624
625
         }
      }

      if (!isCached() && m_context.isProtected() && m_context.isSecure() && oid != null && !instance.isReadable())
      {
         throw new SecurityViolationException("err.rpc.instanceAccess", new Object[]
         {
            metaclass.getCaption(),
            metaclass.getName()
         });
      }
View Full Code Here
305
306
307
308
309
310
311
312
313
314
315
                  new Object[]{member.getName(), metaclass.getName()});
            }

            if (m_context.isProtected() && member.getVisibility() != Metaclass.PUBLIC)
            {
               throw new SecurityViolationException("err.rpc.eventVisibility",
                  new Object[]{member.getName(), metaclass.getName()});
            }

            Event event = (Event)member;
            Object[] args = new Object[nArgCount + 1];
View Full Code Here
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
      // Deny anonymous access to non-anonymous channels, and vice-versa
      if (HTTPUtil.isAnonymousRequest(m_request, metadata))
      {
         if (http.getAuthMode() != HTTPChannel.AUTH_NONE)
         {
            throw new SecurityViolationException("err.rpc.anonymous");
         }
      }
      else if (http.getAuthMode() == HTTPChannel.AUTH_NONE)
      {
         throw new SecurityViolationException("err.rpc.notAnonymous", new Object[]{sChannel});
      }

      boolean bRequestUsesCertificateAuth = HTTPUtil.isUsingClientCertificateAuthentication(m_request);

      // Deny access to client certificate channels if no certificate present
      if (http.getAuthMode() == HTTPChannel.AUTH_CERT)
      {
         if (!bRequestUsesCertificateAuth)
         {
            throw new SecurityViolationException("err.rpc.http.certificateRequired", new Object[]{sChannel});
         }

         X509Certificate[] certs = (X509Certificate[])m_request.getAttribute(HTTPUtil.CLIENT_CERTIFICATE_ATTRIBUTE_NAME);

         if (certs == null)
         {
            throw new SecurityViolationException("err.integration.missingCertificate", new Object[]{sChannel});
         }

         // The certificate should now be validated against allowed certificates for this channel.
         if (!HTTPUtil.isCertificateMatched(http.getTrustedCertificate(), certs))
         {
            throw new SecurityViolationException("err.integration.unauthorized", new Object[]{sChannel});
         }
      }
      else if (bRequestUsesCertificateAuth)
      {
         // Deny access to non-certificate-auth channels through certificate authentication.
         throw new SecurityViolationException("err.integration.unauthorized", new Object[]{sChannel});
      }

      if (http.getPrivilege() != null && !m_context.getPrivilegeSet().contains(http.getPrivilege()))
      {
         throw new SecurityViolationException("err.integration.unauthorized", new Object[]{sChannel});
      }
     
      m_lMaxRequestSize = http.getMaxRequestSize();

      HTTPAdapter adapter = (HTTPAdapter)channel.getReceiver().getInstance(m_context);
View Full Code Here
1258
1259
1260
1261
1262
1263
1264
1265
         );
      }

      if (!isAnonEnabled() && HTTPUtil.isAnonymousRequest(m_request, metadata))
      {
         throw new SecurityViolationException("err.rpc.anonymous");
      }
   }
View Full Code Here
1278
1279
1280
1281
1282
1283
1284
1285
1286
1287
1288
1289
1290
1291
1292
1293
1294
1295
1296
1297
1298
1299
1300
1301
1302
1303
1304
1305
1306
      if (bRequestUsesCertificateAuth)
      {
         if (trustedCertificate == null)
         {
            throw new SecurityViolationException("err.integration.unauthorized", new Object[]{m_servlet.getServletName()});
         }

         X509Certificate[] certs = (X509Certificate[])m_request.getAttribute(HTTPUtil.CLIENT_CERTIFICATE_ATTRIBUTE_NAME);

         if (certs == null)
         {
            throw new SecurityViolationException("err.integration.missingCertificate", new Object[]{m_servlet.getServletName()});
         }

         // The certificate should now be validated against allowed certificates for this channel.
         if (!HTTPUtil.isCertificateMatched(trustedCertificate, certs))
         {
            throw new SecurityViolationException("err.integration.unauthorized", new Object[]{m_servlet.getServletName()});
         }
      }
      else if (HttpServletRequest.BASIC_AUTH.equals(m_request.getAuthType()))
      {
         if (!bAllowBasic)
         {
            throw new SecurityViolationException("err.integration.unauthorized", new Object[]{m_servlet.getServletName()});
         }
      }
   }
View Full Code Here
TOP

Related Classes of nexj.core.runtime.SecurityViolationException

  • nexj.core.integration.format.object.ObjectMessageFormatterStrategy
  • nexj.core.meta.Attribute
  • nexj.core.meta.Event
  • nexj.core.meta.Metaclass
  • nexj.core.rpc.GenericServer
  • nexj.core.rpc.http.GenericHTTPServer
  • nexj.core.rpc.http.IntegrationHTTPServer
  • nexj.core.rpc.InstanceFactory
  • nexj.core.rpc.RPCUtil
  • nexj.core.runtime.sys.SysService
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.