Package org.jboss.ballroom.client.rbac

Examples of org.jboss.ballroom.client.rbac.AuthorisationDecision

44
45
46
47
48
49
50
51
52
53
54
55
        boolean outcome = false;

        if(securityFramework.hasContext(token))
        {
            SecurityContext securityContext = securityFramework.getSecurityContext(token);
            final AuthorisationDecision readPriviledge = securityContext.getReadPriviledge();
            outcome = readPriviledge.isGranted();

            //notify listeners (error messages, etc)
            Scheduler.get().scheduleDeferred(new Scheduler.ScheduledCommand() {
                @Override
                public void execute() {
View Full Code Here
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
    private AuthorisationDecision checkPriviledge(Priviledge p) {

        if(!sealed)
            throw new RuntimeException("Should be sealed before policy decisions are evaluated");

        AuthorisationDecision decision = new AuthorisationDecision(true);
        for(String address : requiredResources)
        {
            final Constraints model = accessConstraints.get(address);
            if(model!=null)
            {
                if(!p.isGranted(model))
                {
                    decision.getErrorMessages().add(address);
                }
            }
            else
            {
                decision.getErrorMessages().add("Missing constraints for "+ address);
            }

            if(decision.hasErrorMessages())
            {
                decision.setGranted(false);
                break;
            }
        }

        return decision;
View Full Code Here
156
157
158
159
160
161
162
163
164
        Constraints constraints = accessConstraints.get(resourceAddress);
        assert constraints!=null : "Missing constraints for "+resourceAddress;

        boolean execPerm = constraints.isOperationExec(resourceAddress, operationName);
        AuthorisationDecision descision = new AuthorisationDecision(true);
        descision.setGranted(execPerm);
        return descision;
    }
View Full Code Here
115
116
117
118
119
120
121
122
123
124
125
126
                ToolButton btn = (ToolButton)widget;
                boolean visible = true;
                if(btn.hasOperationAddress()) // fine grained, doesn't usually apply but can help to overcome dge cases
                {
                    String[] operationAddress = btn.getOperationAddress();
                    AuthorisationDecision operationPriviledge = securityContext.getOperationPriviledge(operationAddress[0], operationAddress[1]);
                    visible = operationPriviledge.isGranted();
                }
                else
                {
                    visible = overallPrivilege; // coarse grained, inherited from parent
                }
View Full Code Here
113
114
115
116
117
118
119
120
121
122
123
124
125
                ToolButton btn = (ToolButton) widget;
                boolean visible = true;
                if (btn.hasOperationAddress()) // fine grained, doesn't usually apply but can help to overcome dge cases
                {
                    String[] operationAddress = btn.getOperationAddress();
                    AuthorisationDecision operationPriviledge = securityContext
                            .getOperationPriviledge(operationAddress[0], operationAddress[1]);
                    visible = operationPriviledge.isGranted();
                } else {
                    visible = overallPrivilege; // coarse grained, inherited from parent
                }

                if (!visible) {
View Full Code Here
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
        boolean outcome = false;

        if(securityFramework.hasContext(token))
        {
            SecurityContext securityContext = securityFramework.getSecurityContext(token);
            final AuthorisationDecision readPriviledge = securityContext.getReadPriviledge();


            // bootstrap operations
            boolean bootstrapRequirementsSatisfied = true;
            for(String op : accessControlMetaData.getOperations(token))
            {
                int idx = op.indexOf("#");
                AuthorisationDecision opPriv = securityContext.getOperationPriviledge(
                        op.substring(0, idx),
                        op.substring(idx + 1, op.length())
                );

                if(!opPriv.isGranted())
                {
                    bootstrapRequirementsSatisfied = false;
                    break;
                }
            }
View Full Code Here
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
    private AuthorisationDecision checkPriviledge(Priviledge p, boolean includeOptional) {

        if(!sealed)
            throw new RuntimeException("Should be sealed before policy decisions are evaluated");

        AuthorisationDecision decision = new AuthorisationDecision(true);
        for(ResourceRef ref : requiredResources)
        {
            if(ref.optional) continue; // skip optional ones

            final Constraints model = getConstraints(ref.address, false);
            if(model!=null)
            {
                if(!p.isGranted(model))
                {
                    decision.getErrorMessages().add(ref.address);
                }
            }
            else
            {
                decision.getErrorMessages().add("Missing constraints for "+ ref.address);
            }

            if(decision.hasErrorMessages())
            {
                decision.setGranted(false);
                break;
            }
        }

        return decision;
View Full Code Here
111
112
113
114
115
116
117
    }

    @Override
    public AuthorisationDecision getReadPrivilege(String resourceAddress) {
        Constraints constraints = getConstraints(resourceAddress, false);
        return new AuthorisationDecision(constraints.isReadResource());
    }
View Full Code Here
130
131
132
133
134
135
136
    }

    @Override
    public AuthorisationDecision getWritePrivilege(String resourceAddress) {
        Constraints constraints = getConstraints(resourceAddress, false);
        return new AuthorisationDecision(constraints.isWriteResource());
    }
View Full Code Here
151
152
153
154
155
156
157
        Constraints.AttributePerm attributePerm = constraints.attributePermissions.get(attributeName);

        if(null==attributePerm)
            throw new RuntimeException("No such attribute: "+ attributeName);

        return new AuthorisationDecision(attributePerm.isWrite());
    }
View Full Code Here
TOP

Related Classes of org.jboss.ballroom.client.rbac.AuthorisationDecision

  • org.jboss.as.console.client.domain.topology.HtmlGenerator
  • org.jboss.as.console.client.rbac.RBACGatekeeper
  • org.jboss.as.console.client.rbac.SecurityContextImpl
  • org.jboss.as.console.client.rbac.SecurityContextImpl$ChildContext
  • org.jboss.as.console.mbui.reification.FormStrategy$FormAdapter
  • org.jboss.ballroom.client.widgets.tools.ToolStrip
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.