public boolean hasRoleRefPermission(String servletName, String role, Principal p) { Set principalSet = getSecurityContext(p).getPrincipalSet(); WebRoleRefPermission perm = new WebRoleRefPermission(servletName, role); boolean isGranted = checkPermission(perm,principalSet); if(logger.isLoggable(Level.FINE)){ logger.log(Level.FINE, "[Web-Security] hasRoleRef perm: {0}", perm); logger.log(Level.FINE, "[Web-Security] hasRoleRef isGranted: {0}", isGranted); } return isGranted; }
public boolean hasRoleRefPermission(String servletName, String role, Principal p) { Set principalSet = getSecurityContext(p).getPrincipalSet(); WebRoleRefPermission perm = new WebRoleRefPermission(servletName, role); boolean isGranted = checkPermission(perm,principalSet); if(logger.isLoggable(Level.FINE)){ logger.log(Level.FINE, "[Web-Security] hasRoleRef perm: {0}", perm); logger.log(Level.FINE, "[Web-Security] hasRoleRef isGranted: {0}", isGranted); } return isGranted; }
/** * Perform access control based on the <code>HttpServletRequest</code>. * Return <code>true</code> if this constraint is satisfied and processing * should continue, or <code>false</code> otherwise. * @return true is the resource is granted, false if denied */ public boolean hasResourcePermission(HttpServletRequest httpsr){ SecurityContext sc = getSecurityContext(httpsr.getUserPrincipal()); WebResourcePermission perm = createWebResourcePermission(httpsr); setSecurityInfo(httpsr); boolean isGranted = checkPermission(perm,sc.getPrincipalSet()); SecurityContext.setCurrent(sc); if(logger.isLoggable(Level.FINE)){ logger.log(Level.FINE, "[Web-Security] hasResource isGranted: {0}", isGranted); logger.log(Level.FINE, "[Web-Security] hasResource perm: {0}", perm); } recordWebInvocation(httpsr, RESOURCE, isGranted); return isGranted; }
boolean isGranted = checkPermission(perm, defaultPrincipalSet); int result = 0; "CONFIDENTIAL"); isGranted = checkPermission(perm, defaultPrincipalSet);
/** * Perform access control based on the <code>HttpServletRequest</code>. * Return <code>true</code> if this constraint is satisfied and processing * should continue, or <code>false</code> otherwise. * @return true is the resource is granted, false if denied */ public boolean hasResourcePermission(HttpServletRequest httpsr){ SecurityContext sc = getSecurityContext(httpsr.getUserPrincipal()); WebResourcePermission perm = createWebResourcePermission(httpsr); setSecurityInfo(httpsr); boolean isGranted = checkPermission(perm,sc.getPrincipalSet()); SecurityContext.setCurrent(sc); if(logger.isLoggable(Level.FINE)){ logger.log(Level.FINE, "[Web-Security] hasResource isGranted: {0}", isGranted); logger.log(Level.FINE, "[Web-Security] hasResource perm: {0}", perm); } AuditManager auditManager = SecurityServicesUtil.getInstance().getAuditManager(); if(auditManager !=null && auditManager.isAuditOn()){ Principal prin = httpsr.getUserPrincipal(); String user = (prin != null) ? prin.getName(): null; auditManager.webInvocation(user, httpsr, RESOURCE, isGranted); } return isGranted; }
boolean isGranted = checkPermission(perm, defaultPrincipalSet); int result = 0; "CONFIDENTIAL"); isGranted = checkPermission(perm, defaultPrincipalSet);