/** * @return The authorization strategy for this session */ public IAuthorizationStrategy getAuthorizationStrategy() { return getApplication().getSecuritySettings().getAuthorizationStrategy(); }
/** * @see org.apache.wicket.jmx.SecuritySettingsMBean#getAuthorizationStrategy() */ @Override public String getAuthorizationStrategy() { return Stringz.className(application.getSecuritySettings().getAuthorizationStrategy()); }
/** * @return The authorization strategy for this session */ public IAuthorizationStrategy getAuthorizationStrategy() { return getApplication().getSecuritySettings().getAuthorizationStrategy(); }
@Override public final boolean evaluate() { return CollectionUtils.isNotEmpty(allRoles) && SyncopeWebApplication.get().getSecuritySettings().getAuthorizationStrategy(). isActionAuthorized(this, RENDER); } }
@Override public boolean evaluate() { return (anyTO instanceof GroupTO ? !allDynRealms.isEmpty() : !allDynRealms.isEmpty() || !groupsModel.getObject().isEmpty()) && SyncopeWebApplication.get().getSecuritySettings().getAuthorizationStrategy(). isActionAuthorized(this, RENDER); }
@Override public boolean isVisible() { return SyncopeWebApplication.get().getSecuritySettings().getAuthorizationStrategy(). isActionAuthorized(this, RENDER); } });
@Override public boolean isVisible() { return SyncopeWebApplication.get().getSecuritySettings().getAuthorizationStrategy(). isActionAuthorized(this, RENDER); } });
@Override public boolean evaluate() { return SyncopeWebApplication.get().getSecuritySettings().getAuthorizationStrategy(). isActionAuthorized(this, RENDER); } }
@Override protected void onInitialize() { super.onInitialize(); setVisibilityAllowed(OrienteerWebApplication.get().getSecuritySettings() .getAuthorizationStrategy().isInstantiationAuthorized(pageClass)); }
@Override public boolean evaluate() { if (SyncopeWebApplication.get().getSecuritySettings(). getAuthorizationStrategy().isActionAuthorized(this, RENDER)) { available.setObject(SyncopeWebApplication.get().getResourceProvider().get()); return !available.getObject().isEmpty(); } else { return false; } } }
allRoles = SyncopeWebApplication.get().getSecuritySettings().getAuthorizationStrategy(). isActionAuthorized(this, RENDER) ? new RoleRestClient().list().stream().map(EntityTO::getKey).collect(Collectors.toList())
@Override public void onRequestHandlerScheduled(RequestCycle cycle, IRequestHandler handler) { if (handler instanceof IPageClassRequestHandler) { final IPageClassRequestHandler classHandler = (IPageClassRequestHandler) handler; final Class<Page> pgClass = (Class<Page>) classHandler.getPageClass(); final boolean authorized = getSecuritySettings().getAuthorizationStrategy().isInstantiationAuthorized(pgClass); if (!authorized) { if (!ServletContainerAuthenticatedWebSession.get().isSignedIn()) { // A secure Page is scheduled that is not authenticated. // Setting the RestartResponse to the class forces a request with a URL // that the servlet container intercepts and redirects to the login page. // If a wicket login page is used then continueToOriginalDestination will // redirect to the page. If a non wicket page is used then the servlet container // will redirect to the page using its mechanism. // If the page is not mounted to a path that matches a security-constraint in web.xml // then unauthorized page will result. final PageParameters pp = classHandler.getPageParameters(); throw new RestartResponseAtInterceptPageException(pgClass, pp); } } } }
private void authorize() { IAuthorizationStrategy authorizationStrategy = null; if (Session.exists()) { authorizationStrategy = Session.get().getAuthorizationStrategy(); } else if (Application.exists()) { authorizationStrategy = Application.get().getSecuritySettings().getAuthorizationStrategy(); } if (authorizationStrategy != null && authorizationStrategy.isResourceAuthorized(resource, parameters) == false) { if (Application.exists()) { Application.get().getSecuritySettings().getUnauthorizedResourceRequestListener().onUnauthorizedRequest(resource, parameters); } else { new DefaultUnauthorizedResourceRequestListener().onUnauthorizedRequest(resource, parameters); } } }
private void authorize() { IAuthorizationStrategy authorizationStrategy = null; if (Session.exists()) { authorizationStrategy = Session.get().getAuthorizationStrategy(); } else if (Application.exists()) { authorizationStrategy = Application.get().getSecuritySettings().getAuthorizationStrategy(); } if (authorizationStrategy != null && authorizationStrategy.isResourceAuthorized(resource, parameters) == false) { if (Application.exists()) { Application.get().getSecuritySettings().getUnauthorizedResourceRequestListener().onUnauthorizedRequest(resource, parameters); } else { new DefaultUnauthorizedResourceRequestListener().onUnauthorizedRequest(resource, parameters); } } }