Package org.apache.shiro.grails

Source Code of org.apache.shiro.grails.LegacyShiroFilter

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
package org.apache.shiro.grails;

import java.util.Map;

import org.apache.shiro.config.Ini;
import org.apache.shiro.util.CollectionUtils;
import org.apache.shiro.web.config.WebIniSecurityManagerFactory;
import org.apache.shiro.web.mgt.WebSecurityManager;
import org.apache.shiro.web.servlet.IniShiroFilter;

import org.codehaus.groovy.grails.commons.ApplicationAttributes;
import org.springframework.context.ApplicationContext;

/**
* Custom servlet filter that loads the Shiro configuration from an
* init parameter in INI format. Based on IniShiroFilter, this class
* ensures that the "shiroSecurityManager" Spring bean is used by the
* filter rather than the one created by IniShiroFilter. Its only
* reason for existence is to support the legacy
* <tt>security.shiro.filter.config</tt> setting.
*/
public class LegacyShiroFilter extends IniShiroFilter {
    public static final String SM_BEAN_NAME_INIT_PARAM_NAME = "securityManagerBeanName";

    private String securityManagerBeanName;

    /**
     * Reads the 'securityManagerBeanName' servlet init parameter and
     * stores it for use by the {@link applySecurityManager} method.
     * Delegates to the super class for other init parameters.
     */
    protected void applyInitParams() throws Exception {
        String smBeanName = getInitParam(SM_BEAN_NAME_INIT_PARAM_NAME);
        if (smBeanName != null) {
            this.securityManagerBeanName = smBeanName;
        }

        super.applyInitParams();
    }

    /**
     * Grabs the bean with the configured name "securityManagerBeanName"
     * and sets that as the filter's security manager.
     */
    protected Map<String, ?> applySecurityManager(Ini ini) {
        // Get the Spring application context from the servlet context.
        ApplicationContext context = (ApplicationContext)
                getServletContext().getAttribute(ApplicationAttributes.APPLICATION_CONTEXT);

        // Create a specialised factory that grabs the security manager
        // from the application's Spring application context and initialises
        // it using the INI configuration.
        WebIniSecurityManagerFactory factory;
        if (CollectionUtils.isEmpty(ini)) {
            factory = new LegacyIniSecurityManagerFactory(context, this.securityManagerBeanName);
        } else {
            factory = new LegacyIniSecurityManagerFactory(context, this.securityManagerBeanName, ini);
        }

        setSecurityManager((WebSecurityManager) factory.getInstance());

        return factory.getBeans();
    }
}
TOP

Related Classes of org.apache.shiro.grails.LegacyShiroFilter

  • org.apache.shiro.web.config.WebIniSecurityManagerFactory
  • org.springframework.context.ApplicationContext
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.