Package org.jboss.ejb3.annotation

Examples of org.jboss.ejb3.annotation.SecurityDomain

1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140
                  .getUnauthenticatedPrincipal());

         addClassAnnotation(container, annotation.annotationType(), annotation);
      } else if (dd.getUnauthenticatedPrincipal() != null)
      {
         SecurityDomain annotation = ejbClass.getAnnotation(SecurityDomain.class);
         SecurityDomainImpl override;
         if (annotation != null)
         {
            override = new SecurityDomainImpl(annotation.value());
            override.setUnauthenticatedPrincipal(dd
                  .getUnauthenticatedPrincipal());
         }
         else
         {
View Full Code Here
137
138
139
140
141
142
143
144
145
146
147
148
149
150
            shelper.isMDB(container))
         return invocation.invokeNext();
     
      try
      {
         SecurityDomain domain = (SecurityDomain)container.getAnnotation(SecurityDomain.class);
        
         boolean domainExists = domain != null && domain.value() != null
         && domain.value().length() > 0;
        
         if(domainExists)
         {
            SecurityContext sc = SecurityActions.getSecurityContext();
            if(sc == null)
View Full Code Here
41
42
43
44
45
46
47
48
49
50
51
   public Object createPerClass(Advisor advisor)
   {
      // Must be a separate line (EJBContainer cannot be dereferenced)
      EJBContainer container = EJBContainer.getEJBContainer(advisor);
      SecurityDomain securityAnnotation = (SecurityDomain) advisor.resolveAnnotation(SecurityDomain.class);
        
      //If there is no annotation, return a null action interceptor
      if(securityAnnotation == null)
         return new NullInterceptor();
      CodeSource ejbCS = advisor.getClazz().getProtectionDomain().getCodeSource();
View Full Code Here
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
         return invocation.invokeNext();
      
      SecurityContext prevSC = SecurityActions.getSecurityContext();
      SecurityContext invSC = (SecurityContext) invocation.getMetaData("security","context");
     
      SecurityDomain domain = container.getAnnotation(SecurityDomain.class);
     
      boolean domainExists = domain != null && domain.value() != null
                    && domain.value().length() > 0;
      
      /**
       * TODO: Decide if you want to allow zero security based on non-availability
       * of a security domain, as per the configuration on the container
       */
      if(domainExists)
      { 
         String domainValue = canonicalizeSecurityDomain(domain.value());
        
         /* Need to establish the security context. For local calls, we pick the outgoing runas
          * of the existing sc. For remote calls, we create a new security context with the information
          * from the invocation sc
          */
 
View Full Code Here
132
133
134
135
136
137
138
139
140
141
142
   public Principal getCallerPrincipal()
   {
      if(beanPrincipal == null)
      {
         EJBContainer ec = (EJBContainer) container;
         SecurityDomain domain = ec.getAnnotation(SecurityDomain.class);
         Principal callerPrincipal = ejbContextHelper.getCallerPrincipal(SecurityActions.getSecurityContext(),
               rm, domain);
                
         // This method never returns null.
         if (callerPrincipal == null)
View Full Code Here
1211
1212
1213
1214
1215
1216
1217
1218
1219
1220
1221
1222
1223
1224
   public <T> T getSecurityManager(Class<T> type)
   {
      try
      {
         InitialContext ctx = getInitialContext();
         SecurityDomain securityAnnotation = (SecurityDomain) resolveAnnotation(SecurityDomain.class);
         if (securityAnnotation != null && securityAnnotation.value().length() > 0)
         {
            return (T) SecurityDomainManager.getSecurityManager(securityAnnotation.value(),ctx);
         }
         return null;
      }
      catch (NamingException e)
      {
View Full Code Here
131
132
133
134
135
136
137
138
139
140
141
    * @see EJBContext#getCallerPrincipal()
    */
   public Principal getCallerPrincipal()
   {
      EJBContainer ec = (EJBContainer) container;
      SecurityDomain domain = ec.getAnnotation(SecurityDomain.class);
      Principal callerPrincipal = ejbContextHelper.getCallerPrincipal(SecurityActions.getSecurityContext(),
            rm, domain);
             
      // This method never returns null.
      if (callerPrincipal == null)
View Full Code Here
90
91
92
93
94
95
96
97
98
99
100
101
102
103
      Object domain = null;
      try
      {
         InitialContext ctx = container.getInitialContext();
         SecurityDomain securityDomain = (SecurityDomain) advisor.resolveAnnotation(SecurityDomain.class);
         if (securityDomain != null)
         {
            String domainName = securityDomain.value();
            domain = SecurityDomainManager.getSecurityManager(domainName, ctx);
         }
      }
      catch (NamingException e)
      {
View Full Code Here
68
69
70
71
72
73
74
75
76
77
78
79
80
81
       * through AuthenticationInterceptor. This is probably because
       * we are an MDB. So create a new SecurityContext
       */
      if(sc == null)
      {
         SecurityDomain domain = (SecurityDomain)container.resolveAnnotation(SecurityDomain.class);
         if(domain != null)
         {
            sc = SecurityActions.createSecurityContext(domain.value());
            SecurityActions.setSecurityContext(sc);
        
      }
     
      if(sc != null)
View Full Code Here
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
      try
      {
         // See org.jboss.ejb3.security.client.SecurityClientInterceptor
         SecurityContext invSC = (SecurityContext) invocation.getMetaData("security","context");
        
         SecurityDomain domain = container.getAnnotation(SecurityDomain.class);
        
         boolean domainExists = domain != null && domain.value() != null
                       && domain.value().length() > 0;
         
         /**
          * TODO: Decide if you want to allow zero security based on non-availability
          * of a security domain, as per the configuration on the container
          */
         if(domainExists)
         { 
            String domainValue = canonicalizeSecurityDomain(domain.value());
           
            /* Need to establish the security context. For local calls, we pick the outgoing runas
             * of the existing sc. For remote calls, we create a new security context with the information
             * from the invocation sc
             */
            final SecurityContext sc = SecurityActions.createSecurityContext(domainValue);

            if(invSC == null)
            {
               if(prevSC == null)
                  throw new IllegalStateException("Local Call: Security Context is null");
               populateSecurityContext(sc, prevSC);
            }
            else
            {
               populateSecurityContext(sc, invSC);
            }
           
            SecurityActions.setSecurityContext(sc);
              
            //TODO: Need to get the SecurityManagement instance
            AccessController.doPrivileged(new PrivilegedExceptionAction<Object>()
            {
               public Object run() throws Exception
               {
                  sc.setSecurityManagement(getSecurityManagement());
                  return null;
               }
            });
           
             
            //Check if there is a RunAs configured and can be trusted
            EJBAuthenticationHelper helper = null;
            try
            {
               helper = SecurityHelperFactory.getEJBAuthenticationHelper(sc);
            }
            catch(Exception e)
            {
               throw new RuntimeException(e);
            }
            boolean trustedCaller = hasIncomingRunAsIdentity(sc) || helper.isTrusted();
            if(!trustedCaller)
            {
               Subject subject = new Subject();
               /**
                * Special Case: Invocation has no principal set,
                * but an unauthenticatedPrincipal has been configured in JBoss DD
                */
               Principal userPrincipal = sc.getUtil().getUserPrincipal();
               String unauthenticatedPrincipal = domain.unauthenticatedPrincipal();
               if(userPrincipal == null && unauthenticatedPrincipal !=null &&
                     unauthenticatedPrincipal.length() > 0)
               {
                  Identity unauthenticatedIdentity = new SimpleIdentity(unauthenticatedPrincipal);
                  sc.getSubjectInfo().addIdentity(unauthenticatedIdentity);
View Full Code Here
TOP

Related Classes of org.jboss.ejb3.annotation.SecurityDomain

  • org.jboss.aop.advice.AdviceStack
  • org.jboss.aop.Advisor
  • org.jboss.aop.annotation.AnnotationRepository
  • org.jboss.aop.joinpoint.InvocationResponse
  • org.jboss.aop.joinpoint.MethodInvocation
  • org.jboss.aop.MethodInfo
  • org.jboss.ejb3.annotation.Clustered
  • org.jboss.ejb3.annotation.impl.ActivationConfigPropertyImpl
  • org.jboss.ejb3.annotation.impl.RemoteBindingImpl
  • org.jboss.ejb3.annotation.LocalBinding
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.