Examples of org.acegisecurity.ConfigAttributeDefinition

org.acegisecurity.ConfigAttributeDefinition
Holds a group of {@link ConfigAttribute}s that are associated with a given secure object target.
All the ConfigAttributeDefinitions associated with a given {@link org.acegisecurity.intercept.AbstractSecurityInterceptor} are stored in an {@link org.acegisecurity.intercept.ObjectDefinitionSource}.
@author Ben Alex @version $Id: ConfigAttributeDefinition.java 1496 2006-05-23 13:38:33Z benalex $


                // Convert value to series of security configuration attributes
                ConfigAttributeEditor configAttribEd = new ConfigAttributeEditor();
                configAttribEd.setAsText(value);


                ConfigAttributeDefinition attr = (ConfigAttributeDefinition) configAttribEd
                    .getValue();


                // Register the regular expression and its attribute
                source.addSecureUrl(name, attr);
            }

View Full Code Here

    }


    public boolean isAllowed(FilterInvocation fi, Authentication authentication) {
        Assert.notNull(fi, "FilterInvocation required");


        ConfigAttributeDefinition attrs = securityInterceptor.obtainObjectDefinitionSource()
                                                             .getAttributes(fi);


        if (attrs == null) {
            if (securityInterceptor.isRejectPublicInvocations()) {
                return false;

View Full Code Here

        int abstain = 0;


        Iterator configIter = config.getConfigAttributes();


        while (configIter.hasNext()) {
            ConfigAttributeDefinition thisDef = new ConfigAttributeDefinition();
            thisDef.addConfigAttribute((ConfigAttribute) configIter.next());


            Iterator voters = this.getDecisionVoters().iterator();


            while (voters.hasNext()) {
                AccessDecisionVoter voter = (AccessDecisionVoter) voters.next();

View Full Code Here

                }
            } else {
                Set set = new HashSet();


                while (iter.hasNext()) {
                    ConfigAttributeDefinition def = (ConfigAttributeDefinition) iter
                        .next();
                    Iterator attributes = def.getConfigAttributes();


                    while (attributes.hasNext()) {
                        ConfigAttribute attr = (ConfigAttribute) attributes
                            .next();

View Full Code Here

            "Security invocation attempted for object "
            + object.getClass().getName()
            + " but AbstractSecurityInterceptor only configured to support secure objects of type: "
            + getSecureObjectClass());


        ConfigAttributeDefinition attr = this.obtainObjectDefinitionSource()
                                             .getAttributes(object);


        if ((attr == null) && rejectPublicInvocations) {
            throw new IllegalArgumentException(
                "No public invocations are allowed via this AbstractSecurityInterceptor. This indicates a configuration error because the AbstractSecurityInterceptor.rejectPublicInvocations property is set to 'true'");
        }


        if (attr != null) {
            if (logger.isDebugEnabled()) {
                logger.debug("Secure object: " + object.toString()
                    + "; ConfigAttributes: " + attr.toString());
            }


            // We check for just the property we're interested in (we do
            // not call Context.validate() like the ContextInterceptor)
            if (SecurityContextHolder.getContext().getAuthentication() == null) {

View Full Code Here

                String value = props.getProperty(name);


                // Convert value to series of security configuration attributes
                configAttribEd.setAsText(value);


                ConfigAttributeDefinition attr = (ConfigAttributeDefinition) configAttribEd
                    .getValue();


                // Register name and attribute
                source.addSecureMethod(name, attr);
            }

View Full Code Here

        }


        Set set = new HashSet();


        while (iter.hasNext()) {
            ConfigAttributeDefinition def = (ConfigAttributeDefinition) iter
                    .next();
            Iterator attributes = def.getConfigAttributes();


            while (attributes.hasNext()) {
                ConfigAttribute attr = (ConfigAttribute) attributes.next();


                if (!this.channelDecisionManager.supports(attr)) {

View Full Code Here

            }
        }
    }


    protected ConfigAttributeDefinition lookupAttributes(Method method) {
        ConfigAttributeDefinition definition = new ConfigAttributeDefinition();


        // Add attributes explictly defined for this method invocation
        ConfigAttributeDefinition directlyAssigned = (ConfigAttributeDefinition) this.methodMap
            .get(method);
        merge(definition, directlyAssigned);


        // Add attributes explicitly defined for this method invocation's interfaces
        Class[] interfaces = method.getDeclaringClass().getInterfaces();


        for (int i = 0; i < interfaces.length; i++) {
            Class clazz = interfaces[i];


            try {
                // Look for the method on the current interface
                Method interfaceMethod = clazz.getDeclaredMethod(method.getName(),
                        (Class[]) method.getParameterTypes());
                ConfigAttributeDefinition interfaceAssigned = (ConfigAttributeDefinition) this.methodMap
                    .get(interfaceMethod);
                merge(definition, interfaceAssigned);
            } catch (Exception e) {
                // skip this interface
            }

View Full Code Here

        if (!(response instanceof HttpServletResponse)) {
            throw new ServletException("HttpServletResponse required");
        }


        FilterInvocation fi = new FilterInvocation(request, response, chain);
        ConfigAttributeDefinition attr = this.filterInvocationDefinitionSource
            .getAttributes(fi);


        if (attr != null) {
            if (logger.isDebugEnabled()) {
                logger.debug("Request: " + fi.getFullRequestUrl()
                    + "; ConfigAttributes: " + attr.toString());
            }


            channelDecisionManager.decide(fi, attr);


            if (fi.getResponse().isCommitted()) {

View Full Code Here


    public void setMappings(List mappings) {
        Iterator it = mappings.iterator();
        while (it.hasNext()) {
            RESTfulDefinitionSourceMapping mapping = (RESTfulDefinitionSourceMapping) it.next();
            ConfigAttributeDefinition configDefinition = new ConfigAttributeDefinition();


            Iterator configAttributesIt = mapping.getConfigAttributes().iterator();
            while (configAttributesIt.hasNext()) {
                String s = (String) configAttributesIt.next();
                configDefinition.addConfigAttribute(new SecurityConfig(s));
            }
            delegate.addSecureUrl(mapping.getUrl(), mapping.getHttpMethods(),
                    configDefinition);
        }
    }

View Full Code Here

0 1 2

TOP

Related Classes of org.acegisecurity.ConfigAttributeDefinition

$.DBFilterInvocationDefinitionSource

org.acegisecurity.intercept.AbstractSecurityInterceptor

org.acegisecurity.intercept.method.MethodDefinitionAttributes

org.acegisecurity.intercept.method.MethodDefinitionMap

org.acegisecurity.intercept.method.MethodDefinitionSourceEditor

org.acegisecurity.intercept.method.MethodInvocationPrivilegeEvaluator

org.acegisecurity.intercept.web.FilterInvocationDefinitionDecorator

org.acegisecurity.intercept.web.FilterInvocationDefinitionSourceEditor

org.acegisecurity.intercept.web.WebInvocationPrivilegeEvaluator

org.acegisecurity.securechannel.ChannelProcessingFilter

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.