List of checkPermission() Examples

Examples of checkPermission()

anvil.server.Zone.checkPermission()
be.c4j.ee.security.permission.GenericPermissionVoter.checkPermission()
com.ecyrd.jspwiki.auth.AuthorizationManager.checkPermission()
Returns true or false, depending on whether a Permission is allowed for the Subject associated with a supplied WikiSession. The access control algorithm works this way:
1. The {@link com.ecyrd.jspwiki.auth.acl.Acl} for the page is obtained
2. The Subject associated with the current {@link com.ecyrd.jspwiki.WikiSession} is obtained
3. If the Subject's Principal set includes the Role Principal that is the administrator group, always allow the Permission
4. For all permissions, check to see if the Permission is allowed according to the default security policy. If it isn't, deny the permission and halt further processing.
5. If there is an Acl, get the list of Principals assigned this Permission in the Acl: these will be role, group or user Principals, or {@link com.ecyrd.jspwiki.auth.acl.UnresolvedPrincipal}s (see below). Then iterate through the Subject's Principal set and determine whether the user (Subject) posesses any one of these specified Roles or Principals. The matching process delegates to {@link #hasRoleOrPrincipal(WikiSession,Principal)}.
Note that when iterating through the Acl's list of authorized Principals, it is possible that one or more of the Acl's Principal entries are of type UnresolvedPrincipal. This means that the last time the ACL was read, the Principal (user, built-in Role, authorizer Role, or wiki Group) could not be resolved: the Role was not valid, the user wasn't found in the UserDatabase, or the Group wasn't known to (e.g., cached) in the GroupManager. If an UnresolvedPrincipal is encountered, this method will attempt to resolve it first before checking to see if the Subject possesses this principal, by calling {@link #resolvePrincipal(String)}. If the (re-)resolution does not succeed, the access check for the principal will fail by definition (the Subject should never contain UnresolvedPrincipals).

If security not set to JAAS, will return true.
@param session the current wiki session @param permission the Permission being checked @see #hasRoleOrPrincipal(WikiSession,Principal) @return the result of the Permission check
com.hazelcast.security.SecurityContext.checkPermission()
Checks whether current {@link Subject} has been granted specified permission or not. @param permission @throws AccessControlException
com.sk89q.craftbook.LocalPlayer.checkPermission()
com.sun.enterprise.security.CachedPermission.checkPermission()
com.sun.enterprise.security.ee.CachedPermission.checkPermission()
com.volantis.shared.security.acl.mutable.MutableACLEntry.checkPermission()
de.iritgo.aktera.permissions.security.Acl.checkPermission()
de.iritgo.aktera.ui.form.CommandInfo.checkPermission()
Check if the command permissions are fulfilled. @param request A model request @return True if the permissions are met
gabriel.acl.Acl.checkPermission()
Check if a principal from the set has the permission. @param principals Set of principal to check permission for @param permission Permission to check @return true if one principal has the permission
hudson.model.AbstractProject.checkPermission()
hudson.model.Hudson.checkPermission()
hudson.model.Run.checkPermission()
hudson.security.AccessControlled.checkPermission()
Convenient short-cut for {@code getACL().checkPermission(permission)}
java.lang.SecurityManager.checkPermission()
Throws a SecurityException if the requested access, specified by the given permission, is not permitted based on the security policy currently in effect.
This method calls AccessController.checkPermission with the given permission. @param perm the requested permission. @exception SecurityException if access is not permitted based onthe current security policy. @exception NullPointerException if the permission argument isnull. @since 1.2
java.security.AccessControlContext.checkPermission()
Determines whether the access request indicated by the specified permission should be allowed or denied, based on the security policy currently in effect, and the context in this object. The request is allowed only if every ProtectionDomain in the context implies the permission. Otherwise the request is denied.
This method quietly returns if the access request is permitted, or throws a suitable AccessControlException otherwise. @param perm the requested permission. @exception AccessControlException if the specified permissionis not permitted, based on the current security policy and the context encapsulated by this object. @exception NullPointerException if the permission to check for is null.
java.security.acl.AclEntry.checkPermission()
Checks if the specified permission is part of the permission set in this entry. @param permission the permission to be checked for. @return true if the permission is part of thepermission set in this entry, false otherwise.
javax.jcr.Session.checkPermission()
Checks if the session can perform the given actions for the path. @param absPath absolute path to a node. @param actions actions attempted on the node.
jenkins.model.Jenkins.checkPermission()
net.sourceforge.processdash.security.DashboardPermission.checkPermission()
net.timewalker.ffmq3.local.connection.LocalConnection.checkPermission()
Check if the connection has the required credentials to use the given destination
org.apache.deltaspike.security.api.authorization.AccessDecisionVoter.checkPermission()
Checks the permission for the given {@link javax.interceptor.InvocationContext}. If a violation is detected, it should be added to a set which gets returned by the method. @param accessDecisionVoterContext current access-decision-voter-context @return a set which contains violations which have been detected
org.apache.jackrabbit.core.SessionImpl.checkPermission()
{@inheritDoc}
org.apache.jackrabbit.core.security.AccessManager.checkPermission()
Determines whether the specified permissions are granted on the item with the specified id (i.e. the target item). @param id the id of the target item @param permissions A combination of one or more of the following constantsencoded as a bitmask value:
- READ
- WRITE
- REMOVE
@throws AccessDeniedException if permission is denied @throws ItemNotFoundException if the target item does not exist @throws RepositoryException it an error occurs @deprecated
org.apache.myfaces.extensions.cdi.core.api.security.AbstractAccessDecisionVoter.checkPermission()
It should be final - but proxy-libs won't support it. {@inheritDoc}
org.apache.myfaces.extensions.cdi.core.api.security.AccessDecisionVoter.checkPermission()
Checks the permission for the given {@link javax.interceptor.InvocationContext}. If a violation is detected, it should be added to a set which gets returned by the method. @param invocationContext current invocationContext @return a set which contains violations which have been detected
org.apache.roller.weblogger.business.UserManager.checkPermission()
Return true if user has permission specified.
org.apache.shiro.subject.Subject.checkPermission()
Ensures this Subject implies the specified permission String.
If this subject's existing associated permissions do not {@link Permission#implies(Permission)} imply}the given permission, an {@link org.apache.shiro.authz.AuthorizationException} will be thrown.
This is an overloaded method for the corresponding type-safe {@link Permission Permission} variant.Please see the class-level JavaDoc for more information on these String-based permission methods. @param permission the String representation of the Permission to check. @throws org.apache.shiro.authz.AuthorizationException if the user does not have the permission. @since 0.9
org.apache.wiki.auth.AuthorizationManager.checkPermission()
Returns true or false, depending on whether a Permission is allowed for the Subject associated with a supplied WikiSession. The access control algorithm works this way:
1. The {@link org.apache.wiki.auth.acl.Acl} for the page is obtained
2. The Subject associated with the current {@link org.apache.wiki.WikiSession} is obtained
3. If the Subject's Principal set includes the Role Principal that is the administrator group, always allow the Permission
4. For all permissions, check to see if the Permission is allowed according to the default security policy. If it isn't, deny the permission and halt further processing.
5. If there is an Acl, get the list of Principals assigned this Permission in the Acl: these will be role, group or user Principals, or {@link org.apache.wiki.auth.acl.UnresolvedPrincipal}s (see below). Then iterate through the Subject's Principal set and determine whether the user (Subject) possesses any one of these specified Roles or Principals. The matching process delegates to {@link #hasRoleOrPrincipal(WikiSession,Principal)}.
Note that when iterating through the Acl's list of authorized Principals, it is possible that one or more of the Acl's Principal entries are of type UnresolvedPrincipal. This means that the last time the ACL was read, the Principal (user, built-in Role, authorizer Role, or wiki Group) could not be resolved: the Role was not valid, the user wasn't found in the UserDatabase, or the Group wasn't known to (e.g., cached) in the GroupManager. If an UnresolvedPrincipal is encountered, this method will attempt to resolve it first before checking to see if the Subject possesses this principal, by calling {@link #resolvePrincipal(String)}. If the (re-)resolution does not succeed, the access check for the principal will fail by definition (the Subject should never contain UnresolvedPrincipals).

If security not set to JAAS, will return true.
@param session the current wiki session @param permission the Permission being checked @see #hasRoleOrPrincipal(WikiSession,Principal) @return the result of the Permission check
org.infinispan.security.AuthorizationManager.checkPermission()
org.jresearch.gossip.am.model.IPermissionGuard.checkPermission()
@param p @return
org.sonatype.security.SecuritySystem.checkPermission()
Checks if principal has a permission, throws an AuthorizationException otherwise.

Examples of java.security.AccessControlContext.checkPermission()


            Permission permission = new EJBMethodPermission(ejbName, name, method);


            AccessControlContext accessContext = ContextManager.getCurrentContext();


            if (permission != null) accessContext.checkPermission(permission);


        } catch (AccessControlException e) {
            return false;
        }
        return true;

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()

            // JACC v1.0 secion B.19
            String servletName = InternalJettyServletHolder.getCurrentServletName();
            if (servletName == null || servletName.equals("jsp")) {
                servletName = "";
            }
            acc.checkPermission(new WebRoleRefPermission(servletName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()


            /**
             * JACC v1.0 section 4.1.1
             */
            WebUserDataPermission wudp = new WebUserDataPermission(substitutedPathInContext, new String[]{request.getMethod()}, transportType);
            acc.checkPermission(wudp);


            WebResourcePermission webResourcePermission = new WebResourcePermission(request);
            /**
             * JACC v1.0 section 4.1.2
             */

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()

            /**
             * JACC v1.0 section 4.1.2
             */
            if (isAuthenticated) {
                //current user is logged in, this is the actual check
                acc.checkPermission(webResourcePermission);
            } else {
                //user is not logged in: if access denied, try to log them in.
                try {
                    acc.checkPermission(webResourcePermission);
                } catch (AccessControlException e) {

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()

                //current user is logged in, this is the actual check
                acc.checkPermission(webResourcePermission);
            } else {
                //user is not logged in: if access denied, try to log them in.
                try {
                    acc.checkPermission(webResourcePermission);
                } catch (AccessControlException e) {
                    //not logged in: try to log them in.
                    Principal user = authenticator.authenticate(realm, pathInContext, request, response);
                    if (user == SecurityHandler.__NOBODY) {
                        return true;

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()


            /**
             * JACC v1.0 secion 4.1.1
             */
            WebUserDataPermission wudp = new WebUserDataPermission(request);
            acc.checkPermission(wudp);


        } catch (AccessControlException ace) {
            response.sendError(Response.SC_FORBIDDEN);
            return false;
        }

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()




            /**
             * JACC v1.0 section 4.1.2
             */
            acc.checkPermission(new WebResourcePermission(request));


        } catch (AccessControlException ace) {
            response.sendError(Response.SC_FORBIDDEN);
            return false;
        }

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()


        try {
            /**
             * JACC v1.0 section 4.1.3
             */
            acc.checkPermission(new WebRoleRefPermission(name, role));
        } catch (AccessControlException e) {
            return false;
        }


        return true;

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()

            // JACC v1.0 secion B.19
            String servletName = JettyServletHolder.getCurrentServletName();
            if (servletName.equals("jsp")) {
                servletName = "";
            }
            acc.checkPermission(new WebRoleRefPermission(servletName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of java.security.AccessControlContext.checkPermission()

                transportType = "INTEGRAL";
            } else {
                transportType = "NONE";
            }
            WebUserDataPermission wudp = new WebUserDataPermission(servletHttpRequest.getServletPath(), new String[]{servletHttpRequest.getMethod()}, transportType);
            acc.checkPermission(wudp);


            /**
             * JACC v1.0 secion 4.1.2
             */
            acc.checkPermission(new WebResourcePermission(servletHttpRequest));

View Full Code Here

0 1 2 3 4 5 6 7

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.