public boolean authorize(String ejbName, CodeSource ejbCodeSource, String ejbMethodIntf, Method ejbMethod, Set<Principal> methodRoles, String contextID) { final SecurityContext securityContext = doPrivileged(securityContext()); if (securityContext == null) { return false; } EJBResource resource = new EJBResource(new HashMap<String, Object>()); resource.setEjbName(ejbName); resource.setEjbMethod(ejbMethod); resource.setEjbMethodInterface(ejbMethodIntf); resource.setEjbMethodRoles(new SimpleRoleGroup(methodRoles)); resource.setCodeSource(ejbCodeSource); resource.setPolicyContextID(contextID); resource.setCallerRunAsIdentity(securityContext.getIncomingRunAs()); resource.setCallerSubject(securityContext.getUtil().getSubject()); Principal userPrincipal = securityContext.getUtil().getUserPrincipal(); resource.setPrincipal(userPrincipal); try { AbstractEJBAuthorizationHelper helper = SecurityHelperFactory.getEJBAuthorizationHelper(securityContext); return helper.authorize(resource); } catch (Exception e) { throw new RuntimeException(e); } }
final EJBResource resource = new EJBResource(new HashMap<String, Object>()); resource.setEjbName(ejbName); resource.setPolicyContextID(policyContextID); resource.setCallerRunAsIdentity(securityContext.getIncomingRunAs()); resource.setCallerSubject(securityContext.getUtil().getSubject()); Principal userPrincipal = securityContext.getUtil().getUserPrincipal(); resource.setPrincipal(userPrincipal); if (roleLinks != null) { final Set<SecurityRoleRef> roleRefs = new HashSet<SecurityRoleRef>(); resource.setSecurityRoleReferences(roleRefs);
map.put(ResourceKeys.ROLEREF_PERM_CHECK, Boolean.TRUE); EJBResource ejbResource = new EJBResource(map); ejbResource.setPolicyContextID(contextID); ejbResource.setEjbVersion(version); ejbResource.setEjbName(ejbName); ejbResource.setPrincipal(ejbPrincipal); ejbResource.setCallerRunAsIdentity(callerRunAs); ejbResource.setSecurityRoleReferences(securityRoleRefs); ejbResource.setEnforceEJBRestrictions(enforceEJBRestrictions); ejbResource.setCallerSubject(callerSubject); SecurityContextCallbackHandler sch = new SecurityContextCallbackHandler(this.securityContext); RoleGroup callerRoles = am.getSubjectRoles(callerSubject, sch);
map.put(ResourceKeys.ROLEREF_PERM_CHECK, Boolean.TRUE); EJBResource ejbResource = new EJBResource(map); ejbResource.setPolicyContextID(contextID); ejbResource.setEjbVersion(version); ejbResource.setEjbName(ejbName); ejbResource.setPrincipal(ejbPrincipal); ejbResource.setCallerRunAsIdentity(callerRunAs); ejbResource.setSecurityRoleReferences(securityRoleRefs); ejbResource.setEnforceEJBRestrictions(enforceEJBRestrictions); ejbResource.setCallerSubject(callerSubject); SecurityContextCallbackHandler sch = new SecurityContextCallbackHandler(this.securityContext); RoleGroup callerRoles = am.getSubjectRoles(callerSubject, sch);
final EJBResource resource = new EJBResource(new HashMap<String, Object>()); resource.setEjbName(ejbName); resource.setPolicyContextID(policyContextID); resource.setCallerRunAsIdentity(securityContext.getIncomingRunAs()); resource.setCallerSubject(securityContext.getUtil().getSubject()); Principal userPrincipal = securityContext.getUtil().getUserPrincipal(); resource.setPrincipal(userPrincipal); if (roleLinks != null) { final Set<SecurityRoleRef> roleRefs = new HashSet<SecurityRoleRef>(); resource.setSecurityRoleReferences(roleRefs);
public boolean authorize(String ejbName, CodeSource ejbCodeSource, String ejbMethodIntf, Method ejbMethod, Set<Principal> methodRoles, String contextID) { final SecurityContext securityContext = doPrivileged(securityContext()); if (securityContext == null) { return false; } EJBResource resource = new EJBResource(new HashMap<String, Object>()); resource.setEjbName(ejbName); resource.setEjbMethod(ejbMethod); resource.setEjbMethodInterface(ejbMethodIntf); resource.setEjbMethodRoles(new SimpleRoleGroup(methodRoles)); resource.setCodeSource(ejbCodeSource); resource.setPolicyContextID(contextID); resource.setCallerRunAsIdentity(securityContext.getIncomingRunAs()); resource.setCallerSubject(securityContext.getUtil().getSubject()); Principal userPrincipal = securityContext.getUtil().getUserPrincipal(); resource.setPrincipal(userPrincipal); try { AbstractEJBAuthorizationHelper helper = SecurityHelperFactory.getEJBAuthorizationHelper(securityContext); return helper.authorize(resource); } catch (Exception e) { throw new RuntimeException(e); } }
public boolean authorize(String ejbName, CodeSource ejbCodeSource, String ejbMethodIntf, Method ejbMethod, Set<Principal> methodRoles, String contextID) { final SecurityContext securityContext = doPrivileged(securityContext()); if (securityContext == null) { return false; } EJBResource resource = new EJBResource(new HashMap<String, Object>()); resource.setEjbName(ejbName); resource.setEjbMethod(ejbMethod); resource.setEjbMethodInterface(ejbMethodIntf); resource.setEjbMethodRoles(new SimpleRoleGroup(methodRoles)); resource.setCodeSource(ejbCodeSource); resource.setPolicyContextID(contextID); resource.setCallerRunAsIdentity(securityContext.getIncomingRunAs()); resource.setCallerSubject(securityContext.getUtil().getSubject()); Principal userPrincipal = securityContext.getUtil().getUserPrincipal(); resource.setPrincipal(userPrincipal); try { AbstractEJBAuthorizationHelper helper = SecurityHelperFactory.getEJBAuthorizationHelper(securityContext); return helper.authorize(resource); } catch (Exception e) { throw new RuntimeException(e); } }
public boolean authorize(String ejbName, CodeSource ejbCodeSource, String ejbMethodIntf, Method ejbMethod, Set<Principal> methodRoles, String contextID) { final SecurityContext securityContext = doPrivileged(securityContext()); if (securityContext == null) { return false; } EJBResource resource = new EJBResource(new HashMap<String, Object>()); resource.setEjbName(ejbName); resource.setEjbMethod(ejbMethod); resource.setEjbMethodInterface(ejbMethodIntf); resource.setEjbMethodRoles(new SimpleRoleGroup(methodRoles)); resource.setCodeSource(ejbCodeSource); resource.setPolicyContextID(contextID); resource.setCallerRunAsIdentity(securityContext.getIncomingRunAs()); resource.setCallerSubject(securityContext.getUtil().getSubject()); Principal userPrincipal = securityContext.getUtil().getUserPrincipal(); resource.setPrincipal(userPrincipal); try { AbstractEJBAuthorizationHelper helper = SecurityHelperFactory.getEJBAuthorizationHelper(securityContext); return helper.authorize(resource); } catch (Exception e) { throw new RuntimeException(e); } }
EJBResource ejbResource = new EJBResource(map); ejbResource.setEjbVersion(version); ejbResource.setPolicyContextID(contextID); ejbResource.setCallerRunAsIdentity(callerRunAs); ejbResource.setEjbName(ejbName); ejbResource.setEjbMethod(ejbMethod); ejbResource.setPrincipal(ejbPrincipal); ejbResource.setEjbMethodInterface(invocationInterfaceString); ejbResource.setCodeSource(ejbCS); ejbResource.setCallerRunAsIdentity(callerRunAs); ejbResource.setCallerSubject(callerSubject); ejbResource.setEjbMethodRoles(methodRoles);
EJBResource ejbResource = new EJBResource(map); ejbResource.setEjbVersion(version); ejbResource.setPolicyContextID(contextID); ejbResource.setCallerRunAsIdentity(callerRunAs); ejbResource.setEjbName(ejbName); ejbResource.setEjbMethod(ejbMethod); ejbResource.setPrincipal(ejbPrincipal); ejbResource.setEjbMethodInterface(invocationInterfaceString); ejbResource.setCodeSource(ejbCodeSource); ejbResource.setCallerRunAsIdentity(callerRunAs); ejbResource.setCallerSubject(callerSubject); ejbResource.setEjbMethodRoles(methodRoles);