Package org.jboss.metadata.web.spec

Examples of org.jboss.metadata.web.spec.UserDataConstraintMetaData

600
601
602
603
604
605
606
607
608
609
      // <auth-constraint />
      AuthConstraintMetaData excluded = new AuthConstraintMetaData();
      sc1.setAuthConstraint(excluded);

      // user-data-constraint/transport-guarantee
      UserDataConstraintMetaData none = new UserDataConstraintMetaData();
      none.setTransportGuarantee(TransportGuaranteeType.NONE);
      sc1.setUserDataConstraint(none);
      securityContraints.add(sc1);
   }
View Full Code Here
633
634
635
636
637
638
639
640
641
642
      ac1.getRoleNames().add("GetRole");
      ac1.getRoleNames().add("PostRole");
      sc1.setAuthConstraint(ac1);

      // user-data-constraint/transport-guarantee
      UserDataConstraintMetaData none = new UserDataConstraintMetaData();
      none.setTransportGuarantee(TransportGuaranteeType.NONE);
      sc1.setUserDataConstraint(none);
      securityContraints.add(sc1);    
   }
View Full Code Here
663
664
665
666
667
668
669
670
671
672
      // auth-constraint/role-name = unchecked
      sc1.setAuthConstraint(null);

      // user-data-constraint/transport-guarantee
      UserDataConstraintMetaData none = new UserDataConstraintMetaData();
      none.setTransportGuarantee(TransportGuaranteeType.NONE);
      sc1.setUserDataConstraint(none);
      securityContraints.add(sc1);
   }
View Full Code Here
200
201
202
203
204
205
206
207
208
209
210
211
      wrcna.getHttpMethods().add("GET");
      wrcna.getHttpMethods().add("POST");

      AuthConstraintMetaData excluded = new AuthConstraintMetaData();
      sc1.setAuthConstraint(excluded);
      UserDataConstraintMetaData none = new UserDataConstraintMetaData();
      none.setTransportGuarantee(TransportGuaranteeType.NONE);
      sc1.setUserDataConstraint(none);

      // security-constraint/ display-name = unchecked
      SecurityConstraintMetaData sc2 = new SecurityConstraintMetaData();
      sc1.setDisplayName("unchecked");
View Full Code Here
177
178
179
180
181
182
183
184
185
186
187
188
      // <auth-constraint />
      AuthConstraintMetaData excluded = new AuthConstraintMetaData();
      sc1.setAuthConstraint(excluded);

      // user-data-constraint/transport-guarantee
      UserDataConstraintMetaData none = new UserDataConstraintMetaData();
      none.setTransportGuarantee(TransportGuaranteeType.NONE);
      sc1.setUserDataConstraint(none);
      securityContraints.add(sc1);

      SecurityConstraintMetaData sc2 = new SecurityConstraintMetaData();
      sc2.setDisplayName("SC2");
View Full Code Here
106
107
108
109
110
111
112
113
114
      // web-resource-collection/web-resource-name = exact, get method, roleA
      wsmd.setName("SSL Only");
      wsmd.getUrlPatterns().add("/*");
      // A null set of roles is unchecked
      securityContraints.getAuthConstraint().setRoleNames(null);
      UserDataConstraintMetaData udc = new UserDataConstraintMetaData();
      udc.setTransportGuarantee(TransportGuaranteeType.CONFIDENTIAL);
      securityContraints.setUserDataConstraint(udc);
   }
View Full Code Here
200
201
202
203
204
205
206
207
208
209
      AuthConstraintMetaData ac = new AuthConstraintMetaData();
      ArrayList<String> roles = new ArrayList<String>();
      roles.add("R1");
      ac.setRoleNames(roles);
      sc2.setAuthConstraint(ac);
      UserDataConstraintMetaData udc = new UserDataConstraintMetaData();
      udc.setTransportGuarantee(TransportGuaranteeType.CONFIDENTIAL);
      sc2.setUserDataConstraint(udc);
      securityContraints.add(sc2);
   }
View Full Code Here
225
226
227
228
229
230
231
232
233
234
235
236
               securityConstraint.setAuthConstraint(authConstraint);
            }
            // Optional user-data-constraint
            if (transportGuarantee != null)
            {
               UserDataConstraintMetaData userDataConstraint = new UserDataConstraintMetaData();
               userDataConstraint.setTransportGuarantee(TransportGuaranteeType.valueOf(transportGuarantee));
               securityConstraint.setUserDataConstraint(userDataConstraint);
            }
         }
      }
View Full Code Here
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
        List<SecurityConstraintMetaData> secConstraints = jbossWebMetaData.getSecurityConstraints();

        if (secConstraints != null) {
            for (SecurityConstraintMetaData secConstraint : secConstraints) {
                WebResourceCollectionsMetaData resourceCollectionsMetaData = secConstraint.getResourceCollections();
                UserDataConstraintMetaData userDataConstraintMetaData = secConstraint.getUserDataConstraint();

                if (resourceCollectionsMetaData != null) {
                    if (secConstraint.isExcluded() || secConstraint.isUnchecked()) {
                        // Process the permissions for the excluded/unchecked resources
                        for (WebResourceCollectionMetaData resourceCollectionMetaData : resourceCollectionsMetaData) {
                            List<String> httpMethods = resourceCollectionMetaData.getHttpMethods();
                            List<String> urlPatterns = resourceCollectionMetaData.getUrlPatterns();
                            for (String urlPattern : urlPatterns) {
                                PatternInfo info = patternMap.get(urlPattern);

                                // Add the excluded methods
                                if (secConstraint.isExcluded()) {
                                    info.addExcludedMethods(httpMethods);
                                }

                                // SECURITY-63: Missing auth-constraint needs unchecked policy
                                if (secConstraint.isUnchecked())
                                    info.isMissingAuthConstraint = true;
                            }
                        }
                    } else {
                        // Process the permission for the resources x roles
                        for (WebResourceCollectionMetaData resourceCollectionMetaData : resourceCollectionsMetaData) {
                            List<String> httpMethods = resourceCollectionMetaData.getHttpMethods();
                            List<String> urlPatterns = resourceCollectionMetaData.getUrlPatterns();
                            for (String urlPattern : urlPatterns) {
                                // Get the qualified url pattern
                                PatternInfo info = patternMap.get(urlPattern);
                                HashSet<String> mappedRoles = new HashSet<String>();
                                secConstraint.getAuthConstraint().getRoleNames();
                                List<String> authRoles = secConstraint.getAuthConstraint().getRoleNames();
                                for (String role : authRoles) {
                                    if ("*".equals(role)) {
                                        // The wildcard ref maps to all declared security-role names
                                        mappedRoles.addAll(jbossWebMetaData.getSecurityRoleNames());
                                    }
                                    else {
                                        mappedRoles.add(role);
                                    }
                                }
                                info.addRoles(mappedRoles, httpMethods);
                                // Add the transport to methods
                                if (userDataConstraintMetaData != null && userDataConstraintMetaData.getTransportGuarantee() != null)
                                    info.addTransport(userDataConstraintMetaData.getTransportGuarantee().name(), httpMethods);
                            }
                        }
                    }
                }
            }
View Full Code Here
342
343
344
345
346
347
348
349
350
351
352
353
354
     * @param securityConstraintMD security constraint meta data
     * @return new user data constraint meta data
     */
    public static UserDataConstraintMetaData newUserDataConstraint(final String transportGuarantee,
            final SecurityConstraintMetaData securityConstraintMD) {
        final UserDataConstraintMetaData userDataConstraintMD = new UserDataConstraintMetaData();
        final TransportGuaranteeType transportGuaranteeValue = TransportGuaranteeType.valueOf(transportGuarantee);

        userDataConstraintMD.setTransportGuarantee(transportGuaranteeValue);
        securityConstraintMD.setUserDataConstraint(userDataConstraintMD);

        return userDataConstraintMD;
    }
View Full Code Here
TOP

Related Classes of org.jboss.metadata.web.spec.UserDataConstraintMetaData

  • org.jboss.as.metadata.parser.servlet.UserDataConstraintMetaDataParser
  • org.jboss.as.webservices.util.WebMetaDataHelper
  • org.jboss.test.metadata.web.WebApp5EverythingUnitTestCase
  • org.jboss.test.web.security.jacc.DataWebConstraintsUnitTestCase
  • org.jboss.test.web.security.jacc.ExcludedPrefixWebConstraintsUnitTestCase
  • org.jboss.test.web.security.jacc.QualifiedPatternUnitTestCase
  • org.jboss.test.web.security.jacc.UncheckedExactWebConstraintsUnitTestCase
  • org.jboss.test.web.security.jacc.UncheckedPrefixWebConstraintsUnitTestCase
  • org.jboss.test.web.security.jacc.WebConstraintsUnitTestCase
  • org.jboss.webservices.integration.util.WebMetaDataHelper
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.