Examples of EJBRoleRefPermission

javax.security.jacc.EJBRoleRefPermission
Class for EJB isCallerInRole(String reference) permissions. An EJBRoleRefPermission is a named permission and has actions.
The name of an EJBRoleRefPermission contains the value of the ejb-name element in the application's deployment descriptor that identifies the EJB in whose context the permission is being evalutated.
The actions of an EJBRoleRefPermission identifies the role reference to which the permission applies. An EJBRoleRefPermission is checked to determine if the subject is a member of the role identified by the reference. @version $Rev: 54183 $ $Date: 2004-10-09 16:04:29 -0600 (Sat, 09 Oct 2004) $

Examples of javax.security.jacc.EJBRoleRefPermission


            Context context = subjectContexts.get(currentSubject);


            assert context != null : "No registered context";


            context.context.checkPermission(new EJBRoleRefPermission(EJBName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission


            Context context = subjectContexts.get(currentSubject);


            assert context != null : "No registered context";


            context.context.checkPermission(new EJBRoleRefPermission(EJBName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission


            Context context = (Context) subjectContexts.get(currentSubject);


            assert context != null : "No registered context";


            context.context.checkPermission(new EJBRoleRefPermission(EJBName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission


            Context context = (Context) subjectContexts.get(currentSubject);


            assert context != null : "No registered context";


            context.context.checkPermission(new EJBRoleRefPermission(EJBName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission

      Iterator iroleref = eDescriptor.getRoleReferences().iterator();
      while(iroleref.hasNext()){
    SecurityRoleReference roleRef = 
        (SecurityRoleReference) iroleref.next();
    String rolename = roleRef.getRolename();
    EJBRoleRefPermission ejbrr = 
        new EJBRoleRefPermission(eName, rolename);
    String rolelink = roleRef.getSecurityRoleLink().getName();


    pc.addToRole(rolelink, ejbrr);


    if(_logger.isLoggable(Level.FINE)){
        _logger.fine("JACC: Converting role-ref -> "+roleRef.toString()+
         " to permission with name("+ejbrr.getName()+
         ") and actions ("+ejbrr.getActions()+
         ")" + "mapped to role ("+rolelink+")");
    }
      }
  }
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission


  if(_logger.isLoggable(Level.FINE)){
      _logger.entering("EJBSecurityManager", "isCallerInRole", role);


  }
  EJBRoleRefPermission ejbrr = new EJBRoleRefPermission(ejbName, role);


   SecurityContext sc;
  if (runAs != null) {
      InvocationManager im = theSwitch.getInvocationManager();
      ComponentInvocation ci = im.getCurrentInvocation();
      sc = ci.getOldSecurityContext();
  } else {
      sc = SecurityContext.getCurrent();
  }
   Set principalSet = null;
   if (sc != null) principalSet = sc.getPrincipalSet();
 
   ProtectionDomain prdm = getCachedProtectionDomain(principalSet,true);


        try {
            // set the policy context in the TLS.
            String oldContextId = setPolicyContext(this.contextId);
            try {


                ret = policy.implies(prdm, ejbrr);
            } catch (SecurityException se) {
                _logger.log(Level.SEVERE, "JACC: Unexpected security exception isCallerInRole", se);
                ret = false;
            } catch (Throwable t) {
                _logger.log(Level.SEVERE, "JACC: Unexpected exception isCallerInRole", t);
                ret = false;
            } finally {
                resetPolicyContext(oldContextId, this.contextId);
            }


        } catch (Throwable t) {
            _logger.log(Level.SEVERE, "JACC: Unexpected exception manipulating policy context", t);
            ret = false;
        }


   if(_logger.isLoggable(Level.FINE)){
       _logger.fine("JACC: isCallerInRole Result: " +ret + " EJBRoleRefPermission (Name) = "+ ejbrr.getName() + " (Action) = "+ ejbrr.getActions() + " (Codesource) = " + prdm.getCodeSource());
   }
  
    return ret;
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission

        SecurityContext securityContext = threadContext.get(SecurityContext.class);


        try {
            CoreDeploymentInfo deployment = threadContext.getDeploymentInfo();


            securityContext.acc.checkPermission(new EJBRoleRefPermission(deployment.getEjbName(), role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission

            if (roleLinks == null) {
                roleLinks = new Permissions();
                rolePermissions.put(roleLink, roleLinks);


            }
            roleLinks.add(new EJBRoleRefPermission(ejbName, securityRoleRef.roleName));
        }


        /**
         * EJB v2.1 section 21.3.2
         * <p/>

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission


        String EJBName = deploymentInfo.getEjbName();
        if (EJBName == null) throw new IllegalArgumentException("EJBName must not be null");
        try {
            AccessControlContext context = ContextManager.getCurrentContext();
            context.checkPermission(new EJBRoleRefPermission(EJBName, role));
        } catch (AccessControlException e) {
            return false;
        }
        return true;
    }

View Full Code Here

Examples of javax.security.jacc.EJBRoleRefPermission

        // of PolicyConfigurationFactory
        assert pc != null;
        String eName = eDescriptor.getName();
        for (RoleReference roleRef : eDescriptor.getRoleReferences()) {
            String rolename = roleRef.getRoleName();
            EJBRoleRefPermission ejbrr =
                    new EJBRoleRefPermission(eName, rolename);
            String rolelink = roleRef.getSecurityRoleLink().getName();


            pc.addToRole(rolelink, ejbrr);


            if (_logger.isLoggable(Level.FINE)) {
                _logger.fine("JACC: Converting role-ref -> " + roleRef.toString() +
                        " to permission with name(" + ejbrr.getName() +
                        ") and actions (" + ejbrr.getActions() +
                        ")" + "mapped to role (" + rolelink + ")");
            }
        }
    }

View Full Code Here

0 1 2 3 4 5

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.