Examples of AuthorizationInfo

• com.google.dataconnector.protocol.proto.SdcFrame.AuthorizationInfo
• org.apache.shiro.authz.AuthorizationInfo
  AuthorizationInfo represents a single Subject's stored authorization data (roles, permissions, etc) used during authorization (access control) checks only.

  Roles are represented as a Collection of Strings ( {@link java.util.Collection Collection}< {@link String String}>), typically each element being the Role name.

  {@link Permission Permission}s are provided in two ways:

  • A Collection of Strings, where each String can usually be converted into Permission objects by a Realm's {@link org.apache.shiro.authz.permission.PermissionResolver PermissionResolver}
  • A Collection of {@link Permission Permission} objects

  Both permission collections together represent the total aggregate collection of permissions. You may use one or both depending on your preference and needs.

  Because the act of authorization (access control) is orthoganal to authentication (log-in), this interface is intended to represent only the account data needed by Shiro during an access control check (role, permission, etc). Shiro also has a parallel {@link org.apache.shiro.authc.AuthenticationInfo AuthenticationInfo} interface for use during the authenticationprocess that represents identity data such as principals and credentials.

  Because many if not most {@link org.apache.shiro.realm.Realm Realm}s store both sets of data for a Subject, it might be convenient for a Realm implementation to utilize an implementation of the {@link org.apache.shiro.authc.Account Account} interface instead, which is a convenience interface that combines bothAuthenticationInfo and AuthorizationInfo. Whether you choose to implement these two interfaces separately or implement the one Account interface for a given Realm is entirely based on your application's needs or your preferences. @author Jeremy Haile @author Les Hazlewood @see org.apache.shiro.authc.AuthenticationInfo AuthenticationInfo @see org.apache.shiro.authc.Account @since 0.9

• org.jboss.security.config.AuthorizationInfo
  Holder for Authorization configuration @author Anil Saldhana @since Jun 9, 2006 @version $Revision: 45942 $

Examples of org.apache.shiro.authz.AuthorizationInfo

        }
        return false;
    }

    public boolean isPermittedAll(PrincipalCollection principal, Collection<Permission> permissions) {
        AuthorizationInfo info = getAuthorizationInfo(principal);
        return info != null && isPermittedAll(permissions, info);
    }

Examples of org.apache.shiro.authz.AuthorizationInfo

        Permission p = getPermissionResolver().resolvePermission(permission);
        checkPermission(subjectIdentifier, p);
    }

    public void checkPermission(PrincipalCollection principal, Permission permission) throws AuthorizationException {
        AuthorizationInfo info = getAuthorizationInfo(principal);
        checkPermission(permission, info);
    }

Examples of org.jboss.security.config.AuthorizationInfo

        // authorization
        node = operation.get(AUTHORIZATION);
        if (node.isDefined()) {
            if (applicationPolicy == null)
                applicationPolicy = new ApplicationPolicy(securityDomain);
            AuthorizationInfo authorizationInfo = new AuthorizationInfo(securityDomain);
            modules = node.asList();
            for (ModelNode module : modules) {
                String codeName = module.require(CODE).asString();
                ControlFlag controlFlag = ControlFlag.valueOf(module.require(FLAG).asString());
                Map<String, Object> options = new HashMap<String, Object>();
                if (module.hasDefined(MODULE_OPTIONS)) {
                    for (Property prop : module.get(MODULE_OPTIONS).asPropertyList()) {
                        options.put(prop.getName(), prop.getValue().asString());
                    }
                }
                AuthorizationModuleEntry entry = new AuthorizationModuleEntry(codeName, options);
                entry.setControlFlag(controlFlag);
                authorizationInfo.add(entry);

            }
            applicationPolicy.setAuthorizationInfo(authorizationInfo);
        }

Examples of org.jboss.security.config.AuthorizationInfo

        }

        // authorization
        node = operation.get(Element.AUTHORIZATION.getLocalName());
        if (node.isDefined()) {
            AuthorizationInfo authorizationInfo = new AuthorizationInfo(securityDomain);
            modules = node.asList();
            for (ModelNode module : modules) {
                String codeName = module.require(Attribute.CODE.getLocalName()).asString();
                ControlFlag controlFlag = ControlFlag.valueOf(module.require(Attribute.FLAG.getLocalName()).asString());
                Map<String, Object> options = new HashMap<String, Object>();
                if (module.hasDefined(MODULE_OPTIONS)) {
                    for (Property prop : module.get(MODULE_OPTIONS).asPropertyList()) {
                        options.put(prop.getName(), prop.getValue().asString());
                    }
                }
                AuthorizationModuleEntry entry = new AuthorizationModuleEntry(codeName, options);
                entry.setControlFlag(controlFlag);
                authorizationInfo.add(entry);

            }
            applicationPolicy.setAuthorizationInfo(authorizationInfo);
        }

Examples of org.jboss.security.config.AuthorizationInfo

   {
      Object child = super.newChild(aPolicy,  navigator,
                             namespaceUri,localName,attrs);
      if(child == null && "authorization".equals(localName))
      {
         child = new AuthorizationInfo(aPolicy.getName());
      }
      else
         if(child == null && "rolemapping".equals(localName))
         {
            MappingInfo mi = new MappingInfo();

Examples of org.jboss.security.config.AuthorizationInfo

    */
   public void setApplicationPolicy(ApplicationPolicy aPolicy)
   {
      if(aPolicy == null)
         throw new IllegalArgumentException("Application Policy is null:domain="+this.securityDomainName);
      AuthorizationInfo authzInfo = aPolicy.getAuthorizationInfo();
      if( authzInfo == null)
         throw new IllegalArgumentException("Application Policy has no AuthorizationInfo");
      if(!authzInfo.getName().equals(securityDomainName))
         throw new IllegalArgumentException("Application Policy ->AuthorizationInfo:" + authzInfo.getName()
               + " does not match required domain name=" + this.securityDomainName);
      this.applicationPolicy = aPolicy;
   }

Examples of org.jboss.security.config.AuthorizationInfo

   }

   //Private Methods
   private void initializeModules(Resource resource, RoleGroup role) throws PrivilegedActionException
   {
      AuthorizationInfo authzInfo = getAuthorizationInfo(securityDomainName, resource);
      if(authzInfo == null)
         throw new IllegalStateException("Authorization Info is null");
      AuthorizationModuleEntry[] entries = authzInfo.getAuthorizationModuleEntry();
      int len = entries != null ? entries.length : 0;
      for(int i = 0 ; i < len; i++)
      {
         AuthorizationModuleEntry entry = entries[i];
         ControlFlag flag = entry.getControlFlag();

Examples of org.jboss.security.config.AuthorizationInfo

               aPolicy = SecurityConfiguration.getApplicationPolicy(WEB);
      }
      if(aPolicy == null)
         throw new IllegalStateException("Application Policy is null for domain:"+ domainName);

      AuthorizationInfo ai = aPolicy.getAuthorizationInfo();
      if(ai == null)
         return getAuthorizationInfo(layer);
      else
         return aPolicy.getAuthorizationInfo();
   }

Examples of org.jboss.security.config.AuthorizationInfo

         return aPolicy.getAuthorizationInfo();
   }

   private AuthorizationInfo getAuthorizationInfo(ResourceType layer)
   {
      AuthorizationInfo ai = null;

      if(layer == ResourceType.EJB)
         ai = SecurityConfiguration.getApplicationPolicy(EJB).getAuthorizationInfo();
      else
         if(layer == ResourceType.WEB)
            ai = SecurityConfiguration.getApplicationPolicy(WEB).getAuthorizationInfo();
         else
         {
            if(log.isTraceEnabled())
               log.trace("AuthorizationInfo not found. Providing default authorization info");
            ai = new AuthorizationInfo(SecurityConstants.DEFAULT_APPLICATION_POLICY);
            ai.add(new AuthorizationModuleEntry(DelegatingAuthorizationModule.class.getName()));
         }
      return ai;
   }

Examples of org.jboss.security.config.AuthorizationInfo

      //Get the second AuthModule
      AuthModuleEntry aEntry2 = authEntry[1];
      validateAuthModule2(aEntry2);

      //Test Authorization
      AuthorizationInfo authzInfo = aPolicy.getAuthorizationInfo();
      AuthorizationModuleEntry[] authzEntries = authzInfo.getAuthorizationModuleEntry();
      assertTrue("AuthzInfo != null", authzInfo != null);
      assertTrue("authzEntries has 1 element", authzEntries.length == 1);
      // Get the first AuthorizationModuleEntry
      AuthorizationModuleEntry azEntry1 = authzEntries[0];
      validateAuthorizationModuleEntry(azEntry1);