Examples of org.apache.shiro.mgt.SecurityManager

org.apache.shiro.mgt.SecurityManager
A {@code SecurityManager} executes all security operations for all Subjects (aka users) across asingle application.
The interface itself primarily exists as a convenience - it extends the {@link org.apache.shiro.authc.Authenticator}, {@link Authorizer}, and {@link SessionManager} interfaces, thereby consolidatingthese behaviors into a single point of reference. For most Shiro usages, this simplifies configuration and tends to be a more convenient approach than referencing {@code Authenticator}, {@code Authorizer}, and {@code SessionManager} instances separately; instead one only needs to interact with a single{@code SecurityManager} instance.
In addition to the above three interfaces, this interface provides a number of methods supporting {@link Subject} behavior. A {@link org.apache.shiro.subject.Subject Subject} executesauthentication, authorization, and session operations for a single user, and as such can only be managed by {@code A SecurityManager} which is aware of all three functions. The three parent interfaces on theother hand do not 'know' about {@code Subject}s to ensure a clean separation of concerns.
Usage Note: In actuality the large majority of application programmers won't interact with a SecurityManager very often, if at all. Most application programmers only care about security operations for the currently executing user, usually attained by calling {@link org.apache.shiro.SecurityUtils#getSubject() SecurityUtils.getSubject()}.
Framework developers on the other hand might find working with an actual SecurityManager useful. @author Les Hazlewood @see org.apache.shiro.mgt.DefaultSecurityManager @since 0.2

    private SecurityManager createSecurityManager(Ini ini, Ini.Section mainSection) {


        Map<String, ?> defaults = createDefaults(ini, mainSection);
        Map<String, ?> objects = buildInstances(mainSection, defaults);


        SecurityManager securityManager = getSecurityManagerBean();


        boolean autoApplyRealms = isAutoApplyRealms(securityManager);


        if (autoApplyRealms) {
            //realms and realm factory might have been created - pull them out first so we can

View Full Code Here

    }


    protected Map<String, ?> createDefaults(Ini ini, Ini.Section mainSection) {
        Map<String, Object> defaults = new LinkedHashMap<String, Object>();


        SecurityManager securityManager = createDefaultInstance();
        defaults.put(SECURITY_MANAGER_NAME, securityManager);


        if (shouldImplicitlyCreateRealm(ini)) {
            Realm realm = createRealm(ini);
            if (realm != null) {

View Full Code Here

    public Subject createSubject(SubjectContext context) {
        if (!(context instanceof WebSubjectContext)) {
            return super.createSubject(context);
        }
        WebSubjectContext wsc = (WebSubjectContext) context;
        SecurityManager securityManager = wsc.resolveSecurityManager();
        Session session = wsc.resolveSession();
        PrincipalCollection principals = wsc.resolvePrincipals();
        boolean authenticated = wsc.resolveAuthenticated();
        String host = wsc.resolveHost();
        ServletRequest request = wsc.resolveServletRequest();

View Full Code Here

            factory = new WebIniSecurityManagerFactory(ini);
        }


        // Create the security manager and check that it implements WebSecurityManager.
        // Otherwise, it can't be used with the filter.
        SecurityManager securityManager = factory.getInstance();
        if (!(securityManager instanceof WebSecurityManager)) {
            String msg = "The configured security manager is not an instance of WebSecurityManager, so " +
                    "it can not be used with the Shiro servlet filter.";
            throw new ConfigurationException(msg);
        }

View Full Code Here

        Logger log = Logger.getLogger(AspectjAnnotationsAuthorizingMethodInterceptor.class);
        log.addAppender(new ConsoleAppender(new SimpleLayout(), ConsoleAppender.SYSTEM_OUT));
        log.setLevel(Level.TRACE);


        Factory<SecurityManager> factory = new IniSecurityManagerFactory("classpath:shiroDummyServiceTest.ini");
        SecurityManager securityManager = factory.getInstance();
        SecurityUtils.setSecurityManager(securityManager);


        SECURED_SERVICE = new SecuredDummyService();
        RESTRICTED_SERVICE = new RestrictedDummyService();
    }

View Full Code Here

    private static final transient Logger log = LoggerFactory.getLogger(ShiroTest.class);


    public static void main(String[] args) {
        log.info("My Second Apache Shiro Application");
        Factory<SecurityManager> factory = new IniSecurityManagerFactory("classpath:shiro.ini");
        SecurityManager securityManager = factory.getInstance();
        SecurityUtils.setSecurityManager(securityManager);
        Subject currentUser = SecurityUtils.getSubject();
        //Session session = currentUser.getSession();
        if ( !currentUser.isAuthenticated() ) {
            //collect user principals and credentials in a gui specific manner

View Full Code Here


    public static void main(String[] args) {
        log.info("My First Apache Shiro Application");
        //System.out.println("My First Apache Shiro Application without Logger");
        Factory<SecurityManager> factory = new IniSecurityManagerFactory("classpath:shiro.ini");
        SecurityManager securityManager = factory.getInstance();
        SecurityUtils.setSecurityManager(securityManager);
        Subject currentUser = SecurityUtils.getSubject();
        //Session session = currentUser.getSession();
        if ( !currentUser.isAuthenticated() ) {
            //collect user principals and credentials in a gui specific manner

View Full Code Here


  protected AbstractShiroFilter createInstance() throws Exception {


        log.debug("Creating Shiro Filter instance.");


        SecurityManager securityManager = getSecurityManager();
        if (securityManager == null) {
            String msg = "SecurityManager property must be set.";
            throw new BeanInitializationException(msg);
        }

View Full Code Here

  /**
   * Preparamos Shiro para ser usado.
   */
  @Before
  public void before(){
    SecurityManager securityManager = injector.getInstance(SecurityManager.class);
      SecurityUtils.setSecurityManager(securityManager);
  }

View Full Code Here

    private static int testCounter;


    @BeforeClass
    public static void setUpClass() throws Exception {
        Factory<SecurityManager> factory = new IniSecurityManagerFactory("classpath:shiroBankServiceTest.ini");
        SecurityManager securityManager = factory.getInstance();
        SecurityUtils.setSecurityManager(securityManager);


        service = new SecureBankService();
        service.start();
    }

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

Related Classes of org.apache.shiro.mgt.SecurityManager

com.google.code.lightssh.common.support.shiro.MyShiroFilterFactoryBean

com.piercey.app.framework.ApplicationFilter

com.tododev.shiro.GuiceAopTest

juzu.plugin.shiro.impl.SecurityManagerProvider

org.apache.isis.security.shiro.ShiroAuthenticatorOrAuthorizor

org.apache.isis.security.shiro.ShiroAuthenticatorOrAuthorizorTest

org.apache.isis.security.shiro.ShiroAuthenticatorOrAuthorizorTest_authenticate

org.apache.isis.security.shiro.ShiroAuthenticatorOrAuthorizorTest_isVisibleInAnyRole

org.apache.shiro.aspectj.DummyServiceTest

org.apache.shiro.config.IniSecurityManagerFactory

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.