Package org.glassfish.security.services.api.authorization.AzResult

Examples of org.glassfish.security.services.api.authorization.AzResult.Decision

209
210
211
212
213
214
215
216
217
218
219
             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here
198
199
200
201
202
203
204
205
206
207
208
             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectInternalAdministrator(subject.getSubject())
                   
                    || isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
View Full Code Here
209
210
211
212
213
214
215
216
217
218
219
             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here
198
199
200
201
202
203
204
205
206
207
208
             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectInternalAdministrator(subject.getSubject())
                   
                    || isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
View Full Code Here
208
209
210
211
212
213
214
215
216
217
218
             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectKernelIdentity(subject.getSubject())
                   
                    || isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
View Full Code Here
108
109
110
111
112
113
114
115
116
117
118
         */
        final String isDASSetting = environment.getAttributeValue(AuthorizationAttributeNames.ISDAS_ATTRIBUTE);
        final boolean isDAS = Boolean.parseBoolean(isDASSetting);
        final String adminIndicator = subject.getAttributeValue(AuthorizationAttributeNames.ADMIN_INDICATOR_ATTRIBUTE);
        final boolean isLocalPassword = (subject.getAttributeValue(AuthorizationAttributeNames.ADMIN_LOCAL_PASSWORD_ATTRIBUTE)) != null;
        final Decision d = (
                isDAS
                || isLocalPassword
                || (adminIndicator != null)
                ||(action.getAttributeValue("ACTION").equals("read")))
                ? Decision.PERMIT : Decision.DENY;
View Full Code Here
209
210
211
212
213
214
215
216
217
218
219
             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here
208
209
210
211
212
213
214
215
216
217
218
             * Basically, if the subject has one of the "special" principals
             * (token, local password, etc.) then we accept it for any action
             * on the DAS and on instances.  Otherwise, it's a person and
             * we allow full access on the DAS but read-only on instances.
             */
            Decision result =
                    isSubjectTrustedForDASAndInstances(subject)
                  
                    || // Looks external.  Allow full access on DAS, read-only on instance.
                  
                    (isSubjectAnAdministrator(subject)
View Full Code Here
TOP

Related Classes of org.glassfish.security.services.api.authorization.AzResult.Decision

  • org.glassfish.security.services.provider.authorization.SimpleAuthorizationProviderImpl
  • org.glassfish.security.services.provider.authorization.SimpleAuthorizationProviderImpl$Decider
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.