private AuthorizationResult authorize(OperationContext context, ModelNode authOp, ModelNode opWithHeaders) { authOp.get(OPERATION_HEADERS).set(opWithHeaders.get(OPERATION_HEADERS)); return context.authorize(authOp, Collections.singleton(ActionEffect.ADDRESS)); }
private AuthorizationResult authorize(OperationContext context, ModelNode authOp, ModelNode opWithHeaders) { authOp.get(OPERATION_HEADERS).set(opWithHeaders.get(OPERATION_HEADERS)); return context.authorize(authOp, Collections.singleton(ActionEffect.ADDRESS)); }
private AuthorizationResult authorize(OperationContext context, ModelNode authOp, ModelNode opWithHeaders) { authOp.get(OPERATION_HEADERS).set(opWithHeaders.get(OPERATION_HEADERS)); return context.authorize(authOp, Collections.singleton(ActionEffect.ADDRESS)); }
private boolean isAccessPermitted(OperationContext context, ModelNode address) { ModelNode fakeOperation = new ModelNode(); fakeOperation.get(OP).set(READ_RESOURCE_OPERATION); fakeOperation.get(OP_ADDR).set(address); AuthorizationResult authResult = context.authorize(fakeOperation, READ_EFFECT); return (authResult.getDecision() == AuthorizationResult.Decision.PERMIT); }
private boolean isAccessPermitted(OperationContext context, ModelNode address) { ModelNode fakeOperation = new ModelNode(); fakeOperation.get(OP).set(READ_RESOURCE_OPERATION); fakeOperation.get(OP_ADDR).set(address); AuthorizationResult authResult = context.authorize(fakeOperation, READ_EFFECT); return (authResult.getDecision() == AuthorizationResult.Decision.PERMIT); }
@Override public void execute(OperationContext context, ModelNode operation) throws OperationFailedException { context.authorize(operation, EnumSet.of(Action.ActionEffect.WRITE_RUNTIME)); context.completeStep(new OperationContext.ResultHandler() { @Override public void handleResult(OperationContext.ResultAction resultAction, OperationContext context, ModelNode operation) { doExecute(serverName); } }); } }, OperationContext.Stage.RUNTIME);
private boolean isAccessPermitted(OperationContext context, ModelNode address) { ModelNode fakeOperation = new ModelNode(); fakeOperation.get(OP).set(READ_RESOURCE_OPERATION); fakeOperation.get(OP_ADDR).set(address); AuthorizationResult authResult = context.authorize(fakeOperation, READ_EFFECT); return (authResult.getDecision() == AuthorizationResult.Decision.PERMIT); }
@Override public void execute(OperationContext context, ModelNode operation) throws OperationFailedException { context.authorize(operation, EnumSet.of(Action.ActionEffect.WRITE_RUNTIME)); context.completeStep(new OperationContext.ResultHandler() { @Override public void handleResult(OperationContext.ResultAction resultAction, OperationContext context, ModelNode operation) { doExecute(serverName); } }); } }, OperationContext.Stage.RUNTIME);
private AuthorizationResult authorize(OperationContext context, PathAddress address, ModelNode operation) { ModelNode authOp = operation.clone(); authOp.get(OP).set(READ_RESOURCE_OPERATION); authOp.get(OP_ADDR).set(address.toModelNode()); return context.authorize(authOp, Collections.singleton(ActionEffect.ADDRESS)); } }
private AuthorizationResult authorize(OperationContext context, PathAddress address, ModelNode operation) { ModelNode authOp = operation.clone(); authOp.get(OP).set(READ_RESOURCE_OPERATION); authOp.get(OP_ADDR).set(address.toModelNode()); return context.authorize(authOp, Collections.singleton(ActionEffect.ADDRESS)); } }
private AuthorizationResult authorize(OperationContext context, PathAddress address, ModelNode operation) { ModelNode authOp = operation.clone(); authOp.get(OP).set(READ_RESOURCE_OPERATION); authOp.get(OP_ADDR).set(address.toModelNode()); return context.authorize(authOp, Collections.singleton(ActionEffect.ADDRESS)); } }
private boolean canReadFailureDescription(OperationContext context, ModelNode bootError) { ModelNode completeOPeration = bootError.get(COMPLETE_OP); OperationEntry operationEntry = context.getRootResourceRegistration().getOperationEntry( PathAddress.pathAddress(completeOPeration.get(OP_ADDR)), completeOPeration.get(OP).asString()); Set<Action.ActionEffect> effects = getEffects(operationEntry); return context.authorize(bootError.get(COMPLETE_OP), effects).getDecision() == AuthorizationResult.Decision.PERMIT; }
private boolean canReadFailureDescription(OperationContext context, ModelNode bootError) { ModelNode completeOPeration = bootError.get(COMPLETE_OP); OperationEntry operationEntry = context.getRootResourceRegistration().getOperationEntry( PathAddress.pathAddress(completeOPeration.get(OP_ADDR)), completeOPeration.get(OP).asString()); Set<Action.ActionEffect> effects = getEffects(operationEntry); return context.authorize(bootError.get(COMPLETE_OP), effects).getDecision() == AuthorizationResult.Decision.PERMIT; }
@Override public void execute(OperationContext context, ModelNode operation) throws OperationFailedException { AuthorizationResult authorizationResult = context.authorize(operation); if (authorizationResult.getDecision() == AuthorizationResult.Decision.DENY) { throw ControllerLogger.ROOT_LOGGER.unauthorized(operation.get(OP).asString(), context.getCurrentAddress(), authorizationResult.getExplanation()); } String name = operation.require(ModelDescriptionConstants.NAME).asString(); try { persister.deleteSnapshot(name); } catch (Exception e) { throw new OperationFailedException(e); } context.completeStep(OperationContext.RollbackHandler.NOOP_ROLLBACK_HANDLER); }
@Override public void execute(OperationContext context, ModelNode operation) throws OperationFailedException { AuthorizationResult authorizationResult = context.authorize(operation); if (authorizationResult.getDecision() == AuthorizationResult.Decision.DENY) { throw ControllerLogger.ROOT_LOGGER.unauthorized(operation.get(OP).asString(), context.getCurrentAddress(), authorizationResult.getExplanation()); } String name = operation.require(ModelDescriptionConstants.NAME).asString(); try { persister.deleteSnapshot(name); } catch (Exception e) { throw new OperationFailedException(e); } context.completeStep(OperationContext.RollbackHandler.NOOP_ROLLBACK_HANDLER); }
private void doExecuteInternal(OperationContext context, ModelNode operation) throws OperationFailedException { ModelNode value = context.hasResult() ? context.getResult().clone() : new ModelNode(); AuthorizationResult authorizationResult = context.authorize(operation, operation.require(NAME).asString(), value); if (authorizationResult.getDecision() == AuthorizationResult.Decision.DENY) { context.getResult().clear(); throw ControllerLogger.ROOT_LOGGER.unauthorized(operation.require(OP).asString(), context.getCurrentAddress(), authorizationResult.getExplanation()); } } }
private void doExecuteInternal(OperationContext context, ModelNode operation) throws OperationFailedException { ModelNode value = context.hasResult() ? context.getResult().clone() : new ModelNode(); AuthorizationResult authorizationResult = context.authorize(operation, operation.require(NAME).asString(), value); if (authorizationResult.getDecision() == AuthorizationResult.Decision.DENY) { context.getResult().clear(); throw ControllerMessages.MESSAGES.unauthorized(operation.require(OP).asString(), PathAddress.pathAddress(operation.get(OP_ADDR)), authorizationResult.getExplanation()); } context.stepCompleted(); } }
private void doExecuteInternal(OperationContext context, ModelNode operation) throws OperationFailedException { ModelNode value = context.hasResult() ? context.getResult().clone() : new ModelNode(); AuthorizationResult authorizationResult = context.authorize(operation, operation.require(NAME).asString(), value); if (authorizationResult.getDecision() == AuthorizationResult.Decision.DENY) { context.getResult().clear(); throw ControllerLogger.ROOT_LOGGER.unauthorized(operation.require(OP).asString(), context.getCurrentAddress(), authorizationResult.getExplanation()); } } }
@Override public void execute(OperationContext context, ModelNode operation) throws OperationFailedException { final AuthorizationResult authResult = context.authorize(operation, DESCRIBE_EFFECTS); authResult.failIfDenied(operation, context.getCurrentAddress()); // WFCORE-1353. If this op is being used as part of a server launch, pass that info // to any subsystem describe handlers. if (SERVER_LAUNCH.resolveModelAttribute(context, operation).asBoolean()) { context.attach(GenericSubsystemDescribeHandler.SERVER_LAUNCH_KEY, Boolean.TRUE); } super.execute(context, operation); }
@Override public void execute(OperationContext context, ModelNode operation) throws OperationFailedException { final AuthorizationResult authResult = context.authorize(operation, DESCRIBE_EFFECTS); authResult.failIfDenied(operation, context.getCurrentAddress()); // WFCORE-1353. If this op is being used as part of a server launch, pass that info // to any subsystem describe handlers. if (SERVER_LAUNCH.resolveModelAttribute(context, operation).asBoolean()) { context.attach(GenericSubsystemDescribeHandler.SERVER_LAUNCH_KEY, Boolean.TRUE); } super.execute(context, operation); }