@Override public void configure(ResourceInfo resourceInfo, FeatureContext context) { final Class<?> resourceClass = resourceInfo.getResourceClass(); final Method resourceMethod = resourceInfo.getResourceMethod(); context.register(ShiroSecurityContextFilter.class); if (resourceMethod.isAnnotationPresent(RequiresAuthentication.class) || resourceClass.isAnnotationPresent(RequiresAuthentication.class)) { if (resourceMethod.isAnnotationPresent(RequiresGuest.class)) { LOG.debug("Resource method {}#{} is marked as unauthenticated, skipping setting filter."); } else { LOG.debug("Resource method {}#{} requires an authenticated user.", resourceClass.getCanonicalName(), resourceMethod.getName()); context.register(new ShiroAuthenticationFilter()); } } if (resourceMethod.isAnnotationPresent(RequiresPermissions.class) || resourceClass.isAnnotationPresent(RequiresPermissions.class)) { RequiresPermissions requiresPermissions = resourceClass.getAnnotation(RequiresPermissions.class); if (requiresPermissions == null) { requiresPermissions = resourceMethod.getAnnotation(RequiresPermissions.class); } LOG.debug("Resource method {}#{} requires an authorization checks.", resourceClass.getCanonicalName(), resourceMethod.getName()); context.register(new ShiroAuthorizationFilter(requiresPermissions)); } // TODO this is the wrong approach, we should have an Environment and proper request wrapping context.register((ContainerResponseFilter) (requestContext, responseContext) -> ThreadContext.unbindSubject()); } }
@Test public void testScope() throws Exception { Subject subject = createMock(Subject.class); try { ThreadContext.bind(subject); final Key<SomeClass> key = Key.get(SomeClass.class); Provider<SomeClass> mockProvider = createMock(Provider.class); Session session = createMock(Session.class); SomeClass retuned = new SomeClass(); expect(subject.getSession()).andReturn(session); expect(session.getAttribute(key)).andReturn(null); expect(mockProvider.get()).andReturn(retuned); expect(subject.getSession()).andReturn(session); expect(session.getAttribute(key)).andReturn(retuned); replay(subject, mockProvider, session); ShiroSessionScope underTest = new ShiroSessionScope(); // first time the session doesn't contain it, we expect the provider to be invoked assertSame(retuned, underTest.scope(key, mockProvider).get()); // second time the session does contain it, we expect the provider to not be invoked assertSame(retuned, underTest.scope(key, mockProvider).get()); verify(subject, mockProvider, session); } finally { ThreadContext.unbindSubject(); } }
@Override public void filter(ContainerRequestContext requestContext, ContainerResponseContext responseContext) { ThreadContext.unbindSubject(); } });
public void logout() { ThreadContext.unbindSubject(); }
public void releaseSubject() { ThreadContext.unbindSubject(); }
@Override public void close(MessageContext context) { ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); } }
@Override public void passivateService() throws Exception { ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); }
@Override public void passivateService() throws Exception { ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); }
@Override public void destroy() { ses.shutdownNow(); ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); }
@Override public void destroy() { ses.shutdownNow(); ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); }
@Override public void afterTest(TestContext testContext) { if (subject != null) { LOGGER.info("Logging user out", testContext.testMethod()); subject.logout(); ThreadContext.unbindSecurityManager(); ThreadContext.unbindSubject(); } }
@Override public void run() { try { ThreadContext.bind(subject); check(load(requestId)); } catch (Exception e) { logger.error("Error checking pull request status", e); } finally { ThreadContext.unbindSubject(); } }
@Override public void destroy() { ses.shutdownNow(); consoleReader.shutdown(); ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); }
public void interactionEnds() { ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); } // END SNIPPET: thread-context
@Override public void destroy() { ses.shutdownNow(); consoleReader.shutdown(); ThreadContext.unbindSubject(); ThreadContext.unbindSecurityManager(); }
@Sessional @Override public void postStart() { listenerRegistry.post(new SystemStarted()); ThreadContext.unbindSubject(); logger.info("Server is ready at " + configManager.getSystemSetting().getServerUrl() + "."); initStage = null; }
@Override public void run() { ThreadContext.bind(subject); try { PullRequest request = load(requestId); request.getTargetProject().cacheObjectId(request.getTargetRef(), newTargetHeadId); listenerRegistry.post(new RefUpdated(request.getTargetProject(), targetRef, targetHeadId, newTargetHeadId)); } finally { ThreadContext.unbindSubject(); } }
@Override public void run() { ThreadContext.bind(subject); try { Project project = OneDev.getInstance(ProjectManager.class).load(projectId); project.cacheObjectId(branch, refUpdated.getNewCommitId()); RefUpdated refUpdated = new RefUpdated(project, refName, oldCommitId, newCommitId); OneDev.getInstance(ListenerRegistry.class).post(refUpdated); } finally { ThreadContext.unbindSubject(); } }
@Override public void run() { ThreadContext.bind(subject); try { Project project = OneDev.getInstance(ProjectManager.class).load(getId()); OneDev.getInstance(ListenerRegistry.class).post( new RefUpdated(project, refName, commitId, ObjectId.zeroId())); } finally { ThreadContext.unbindSubject(); } }
@Override public void run() { ThreadContext.bind(subject); try { Project project = OneDev.getInstance(ProjectManager.class).load(getId()); OneDev.getInstance(ListenerRegistry.class).post( new RefUpdated(project, refName, commitId, ObjectId.zeroId())); } finally { ThreadContext.unbindSubject(); } }