Package org.glassfish.security.services.api.authorization.AzResult

Examples of org.glassfish.security.services.api.authorization.AzResult.Decision


             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here


             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectInternalAdministrator(subject.getSubject())
                   
                    || isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
View Full Code Here

             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here

             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectInternalAdministrator(subject.getSubject())
                   
                    || isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
View Full Code Here

             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectKernelIdentity(subject.getSubject())
                   
                    || isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
View Full Code Here

         */
        final String isDASSetting = environment.getAttributeValue(AuthorizationAttributeNames.ISDAS_ATTRIBUTE);
        final boolean isDAS = Boolean.parseBoolean(isDASSetting);
        final String adminIndicator = subject.getAttributeValue(AuthorizationAttributeNames.ADMIN_INDICATOR_ATTRIBUTE);
        final boolean isLocalPassword = (subject.getAttributeValue(AuthorizationAttributeNames.ADMIN_LOCAL_PASSWORD_ATTRIBUTE)) != null;
        final Decision d = (
                isDAS
                || isLocalPassword
                || (adminIndicator != null)
                ||(action.getAttributeValue("ACTION").equals("read")))
                ? Decision.PERMIT : Decision.DENY;
View Full Code Here

             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here

             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here

TOP

Related Classes of org.glassfish.security.services.api.authorization.AzResult.Decision

Copyright © 2018 www.massapicom. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.