Examples of WebSecurityManager

• com.sun.enterprise.security.web.integration.WebSecurityManager
  The class implements the JSR 115 - JavaTM Authorization Contract for Containers. This class is a companion class of EJBSecurityManager. All the security decisions required to allow access to a resource are defined in that class. @author Jean-Francois Arcand @author Harpreet Singh. @todo introduce a new class called AbstractSecurityManager. Move functionalityfrom this class and EJBSecurityManager class and extend this class from AbstractSecurityManager
• org.apache.shiro.web.mgt.WebSecurityManager
  This interface represents a {@link SecurityManager} implementation that canbe used in a servlet container. @author Peter Ledbrook @since 1.0

Examples of com.sun.enterprise.security.web.integration.WebSecurityManager

        MessageInfo messageInfo = new HttpMessageInfo(req, res);

        boolean rvalue = false;
        boolean isMandatory = true;
        try {
            WebSecurityManager webSecMgr = getWebSecurityManager(true);
            isMandatory = !webSecMgr.permitAll(req);
            //Issue  - 9578 - produce user challenge if call originates from HttpRequest.authenticate
            if (isMandatory || calledFromAuthenticate) {
                messageInfo.getMap().put(HttpServletConstants.IS_MANDATORY,
                        Boolean.TRUE.toString());
            }

Examples of com.sun.enterprise.security.web.integration.WebSecurityManager

    //public boolean hasRole(Principal principal, String role) {
    public boolean hasRole(HttpRequest request,
            HttpResponse response,
            Principal principal,
            String role) {
        WebSecurityManager secMgr = getWebSecurityManager(true);
        if (secMgr == null) {
            return false;
        }

        //add HttpResponse and HttpResponse to the parameters, and remove
        //instance variable currentRequest from this class. References to
        //this.currentRequest are also removed from other methods.
        //String servletName = getResourceName( currentRequest.getRequestURI(),
        //                                      currentRequest.getContextPath());
        String servletName = getCanonicalName(request);

        // END S1AS8PE 4966609
        boolean isGranted = secMgr.hasRoleRefPermission(servletName, role, principal);

        if (_logger.isLoggable(Level.FINE)) {
            _logger.fine("Checking if servlet " + servletName + " with principal " + principal + " has role " + role + " isGranted: " + isGranted);
        }

Examples of com.sun.enterprise.security.web.integration.WebSecurityManager

        return isGranted;

    }

    public boolean hasRole(String servletName, Principal principal, String role) {
        WebSecurityManager secMgr = getWebSecurityManager(true);
  if (secMgr == null) {
      return false;
  }
        return secMgr.hasRoleRefPermission(servletName, role, principal);
    }

Examples of org.apache.shiro.web.mgt.WebSecurityManager

     * A fallback mechanism called in {@link #onFilterConfigSet()} to ensure that the
     * {@link #getSecurityManager() securityManager} property has been set by configuration, and if not,
     * creates one automatically.
     */
    private void ensureSecurityManager() {
        WebSecurityManager securityManager = getSecurityManager();
        if (securityManager == null) {
            log.info("No SecurityManager configured.  Creating default.");
            securityManager = createDefaultSecurityManager();
            setSecurityManager(securityManager);
        }

Examples of org.apache.shiro.web.mgt.WebSecurityManager

  @Inject
  public SecurityFilter(final SecuritySystem securitySystem,
                        final FilterChainResolver filterChainResolver)
  {
    checkNotNull(securitySystem);
    WebSecurityManager sm = (WebSecurityManager)securitySystem.getSecurityManager();
    log.trace("Security manager: {}", sm);
    setSecurityManager(sm);

    checkNotNull(filterChainResolver);
    log.trace("Filter chain resolver: {}", filterChainResolver);

Examples of org.apache.shiro.web.mgt.WebSecurityManager

     * A fallback mechanism called in {@link #onFilterConfigSet()} to ensure that the
     * {@link #getSecurityManager() securityManager} property has been set by configuration, and if not,
     * creates one automatically.
     */
    private void ensureSecurityManager() {
        WebSecurityManager securityManager = getSecurityManager();
        if (securityManager == null) {
            log.info("No SecurityManager configured.  Creating default.");
            securityManager = createDefaultSecurityManager();
            setSecurityManager(securityManager);
        }

Examples of org.apache.shiro.web.mgt.WebSecurityManager

            }
        });
        SecurityManager securityManager = injector.getInstance(SecurityManager.class);
        assertNotNull(securityManager);
        assertTrue(securityManager instanceof MyDefaultWebSecurityManager);
        WebSecurityManager webSecurityManager = injector.getInstance(WebSecurityManager.class);
        assertNotNull(webSecurityManager);
        assertTrue(webSecurityManager instanceof MyDefaultWebSecurityManager);

    }

Examples of org.apache.shiro.web.mgt.WebSecurityManager

        }
    }

    @Test
    public void testConstructor() {
        WebSecurityManager securityManager = createMock(WebSecurityManager.class);
        FilterChainResolver filterChainResolver = createMock(FilterChainResolver.class);

        GuiceShiroFilter underTest = new GuiceShiroFilter(securityManager, filterChainResolver);

        assertSame(securityManager, underTest.getSecurityManager());

Examples of org.apache.shiro.web.mgt.WebSecurityManager

    protected void configure() {

        this.objects.clear();

        WebSecurityManager securityManager = createWebSecurityManager();
        setWebSecurityManager(securityManager);

        FilterChainResolver resolver = createFilterChainResolver();
        if (resolver != null) {
            setFilterChainResolver(resolver);

Examples of org.apache.shiro.web.mgt.WebSecurityManager

            factory = new WebIniSecurityManagerFactory();
        } else {
            factory = new WebIniSecurityManagerFactory(ini);
        }

        WebSecurityManager wsm = (WebSecurityManager)factory.getInstance();

        //SHIRO-306 - get beans after they've been created (the call was before the factory.getInstance() call,
        //which always returned null.
        Map<String, ?> beans = factory.getBeans();
        if (!CollectionUtils.isEmpty(beans)) {