Examples of railo.runtime.exp.SecurityException

• railo.runtime.exp.SecurityException

    public static short toShortAccessRWValue(String accessValue) throws SecurityException {
        accessValue=accessValue.trim().toLowerCase();
        if(accessValue.equals("open")) return ACCESS_OPEN;
        else if(accessValue.equals("close")) return ACCESS_CLOSE;
        else if(accessValue.equals("protected")) return ACCESS_PROTECTED;
        else throw new SecurityException("invalid access value ["+accessValue+"]", "valid access values are [open,protected,close]");

    }

      case VALUE_7:    return "7";
      case VALUE_8:    return "8";
      case VALUE_9:    return "9";
      case VALUE_10:    return "10";
      }
      throw new SecurityException("invalid access value", "valid access values are [all,local,no,none,yes,1,...,10]");

    }

      switch(accessValue) {
      case ACCESS_CLOSE:    return "close";
      case ACCESS_OPEN:    return "open";
      case ACCESS_PROTECTED:  return "protected";
      }
      throw new SecurityException("invalid access value", "valid access values are [open,close,protected]");

    }

              for(int i=0;i<customFileAccess.length;i++){
                if(ResourceUtil.isChildOf(res,customFileAccess[i])) return;
              }
            }
            if(isValid(config,serverPassword) ||  isAdminContext()) return;
            throw new SecurityException(createExceptionMessage(res,true),"access is prohibited by security manager");
        }
        // None
        if(isValid(config,serverPassword)) return;

        // custom
        if(!ArrayUtil.isEmpty(customFileAccess)){
          res=ResourceUtil.getCanonicalResourceEL(res);

          for(int i=0;i<customFileAccess.length;i++){
            if(ResourceUtil.isChildOf(res,customFileAccess[i])) return;
          }
        }



        if(isAdminContext()) return;
        throw new SecurityException(createExceptionMessage(res,false),"access is prohibited by security manager");
  }

        return new NativeException(t);
    }

    @Override
    public PageException createSecurityException(String message) {
        return new SecurityException(message);
    }

        return new SecurityException(message);
    }

    @Override
    public PageException createSecurityException(String message, String detail) {
        return new SecurityException(message,detail);
    }

    return call(pc, null);
  }

  private static void setProperties(CacheConnection cc, Struct properties) throws SecurityException {
    throw new SecurityException("it is not allowed to change cache connection setting this way, please use the tag cfadmin or the railo administrator frontend instead ");
  }

        ModernApplicationContext mac=(ModernApplicationContext) ac;
        password = Caster.toString(mac.getCustom(KeyImpl.init("webAdminPassword")),null);
      }
    }
    if(StringUtil.isEmpty(password, true))
      throw new SecurityException("To manipulate a REST mapping you need to define the password for the current Web Administartor, " +
          "you can do this as argument with this function or inside the application.cfc with the variable [this.webAdminPassword].");

    return password;
  }

    private static Object doDotNet(PageContext pc, String className) throws FunctionNotSupported {
      throw new FunctionNotSupported("CreateObject","type .net");
  }
  private static void checkAccess(PageContext pc, String type) throws SecurityException {
        if(pc.getConfig().getSecurityManager().getAccess(SecurityManager.TYPE_TAG_OBJECT)==SecurityManager.VALUE_NO)
      throw new SecurityException("can't access function [createObject] with type ["+type+"]","access is prohibited by security manager");

    }

          }
      catch (Exception e) {
        throw Caster.toPageException(e);
      }
        }
        throw new SecurityException("can't create Java Object ["+className+"], direct java access is deinied by security manager");
  }