/** * {@inheritDoc} */ @Override public Set<Credential> extract(ServletRequest source) { Set<Credential> credentials = new HashSet<Credential>(); if (source != null) { credentials.addAll(super.extract(source)); } return credentials; }
/** * {@inheritDoc} */ @Override public Set<Credential> extract(String source) { Set<Credential> credentials = new HashSet<Credential>(); if (source != null) { if (source.startsWith("Basic ")) { extractBasic(source, credentials); } else if (source.startsWith("Digest ")) { extractDigest(source, credentials); } else { // Assuming it's a authz token like Bearer, token, AWS4-HMAC-SHA256 extractAuthorizationToken(source, credentials); } } return credentials; }
/** * Gets the ServletRequestCredentialExtractor. * @return the ServletRequestCredentialExtractor */ public static final ServletRequestCredentialExtractor getServletRequestCredentialExtractor() { ServletRequestCredentialExtractor srce = getProvider(ServletRequestCredentialExtractor.class); return srce != null ? srce : new DefaultServletRequestCredentialExtractor(); }
/** * {@inheritDoc} */ @Override public Set<Credential> extractCredentials() { Set<Credential> credentials = new HashSet<Credential>(); credentials.addAll(new SOAPMessageCredentialExtractor().extract(getSOAPMessage())); credentials.addAll(new WebServiceContextCredentialExtractor().extract(getWebServiceContext())); try { credentials.addAll(srce.extract(getServletRequest())); } catch (UnsupportedOperationException uoe) { // Ignore. This can happen with JBossWS http transport SOAPLogger.ROOT_LOGGER.credentialsAreIgnoredForServletRequest(); } return credentials; }
Set<Credential> credentials = new HashSet<Credential>(); if (_servletRequest != null) { credentials.addAll(srce.extract(_servletRequest)); } else { if (_secured) { AuthorizationHeaderCredentialExtractor ahce; if (charsetName != null) { ahce = new AuthorizationHeaderCredentialExtractor(charsetName); } else { ahce = new AuthorizationHeaderCredentialExtractor(); credentials.addAll(ahce.extract(authorizations.get(0)));
AuthorizationHeaderCredentialExtractor ahce; if (charsetName != null) { ahce = new AuthorizationHeaderCredentialExtractor(charsetName); } else { ahce = new AuthorizationHeaderCredentialExtractor(); credentials.addAll(ahce.extract(request.getHeader("Authorization")));
requestInfo.getCredentials().addAll(srce.extract(request));
Node wsseNode = soapmsg.getSOAPHeader().getOwnerDocument().importNode(doc.getDocumentElement(), true); soapmsg.getSOAPHeader().appendChild(wsseNode); credentials.addAll(new SOAPMessageCredentialExtractor().extract(soapmsg)); } catch (Exception e) { SCALogger.ROOT_LOGGER.ignoringReceivedWebServiceSecurityHeader(e.getMessage());
@Override public Set<Credential> extractCredentials() { HashSet<Credential> credentials = new HashSet<Credential>(); ChannelHandlerContext handlerContext = getMessage().getHeader(NettyConstants.NETTY_CHANNEL_HANDLER_CONTEXT, ChannelHandlerContext.class); if (handlerContext != null) { SslHandler sslHandler = handlerContext.getPipeline().get(SslHandler.class); if (sslHandler != null) { credentials.addAll(new SSLSessionCredentialExtractor().extract(sslHandler.getEngine().getSession())); } } return credentials; }
/** * {@inheritDoc} */ @Override public Set<Credential> extractCredentials() { Set<Credential> credentials = new HashSet<Credential>(); credentials.addAll(new SOAPMessageCredentialExtractor().extract(getSOAPMessage())); credentials.addAll(new WebServiceContextCredentialExtractor().extract(getWebServiceContext())); try { credentials.addAll(SecurityServices.getServletRequestCredentialExtractor().extract(getServletRequest())); } catch (UnsupportedOperationException uoe) { // Ignore. This can happen with JBossWS http transport SOAPLogger.ROOT_LOGGER.credentialsAreIgnoredForServletRequest(); } return credentials; }
Set<Credential> credentials = new HashSet<Credential>(); if (_servletRequest != null) { credentials.addAll(SecurityServices.getServletRequestCredentialExtractor().extract(_servletRequest)); } else { if (_secured) { AuthorizationHeaderCredentialExtractor ahce; if (charsetName != null) { ahce = new AuthorizationHeaderCredentialExtractor(charsetName); } else { ahce = new AuthorizationHeaderCredentialExtractor(); credentials.addAll(ahce.extract(authorizations.get(0)));
AuthorizationHeaderCredentialExtractor ahce; if (charsetName != null) { ahce = new AuthorizationHeaderCredentialExtractor(charsetName); } else { ahce = new AuthorizationHeaderCredentialExtractor(); credentials.addAll(ahce.extract(request.getHeader("Authorization"))); X509Certificate[] certs = (X509Certificate[]) request.getAttribute("javax.servlet.request.X509Certificate"); if (certs != null) {
requestInfo.getCredentials().addAll(SecurityServices.getServletRequestCredentialExtractor().extract(request));
/** * {@inheritDoc} */ @Override public Set<Credential> extract(ServletRequest source) { Set<Credential> credentials = new HashSet<Credential>(); if (source != null) { credentials.addAll(super.extract(source)); } return credentials; }
@Override public Set<Credential> extractCredentials() { HashSet<Credential> credentials = new HashSet<Credential>(); ChannelHandlerContext handlerContext = getMessage().getHeader(NettyConstants.NETTY_CHANNEL_HANDLER_CONTEXT, ChannelHandlerContext.class); if (handlerContext != null) { SslHandler sslHandler = handlerContext.getPipeline().get(SslHandler.class); if (sslHandler != null) { credentials.addAll(new SSLSessionCredentialExtractor().extract(sslHandler.getEngine().getSession())); } } return credentials; }
/** * Gets the ServletRequestCredentialExtractor. * @return the ServletRequestCredentialExtractor */ public static final ServletRequestCredentialExtractor getServletRequestCredentialExtractor() { ServletRequestCredentialExtractor srce = getProvider(ServletRequestCredentialExtractor.class); return srce != null ? srce : new DefaultServletRequestCredentialExtractor(); }
ahce = new AuthorizationHeaderCredentialExtractor(charsetName); } else { ahce = new AuthorizationHeaderCredentialExtractor(); credentials.addAll(ahce.extract(source.getRequestHeaders().getFirst("Authorization")));
/** * {@inheritDoc} */ @Override public Set<Credential> extract(ServletRequest source) { Set<Credential> credentials = new HashSet<Credential>(); if (source != null) { credentials.addAll(super.extract(source)); Request request = null; if (source instanceof Request) { request = (Request)source; } else if (source instanceof RequestFacade && REQUEST_ACCESS != null) { request = REQUEST_ACCESS.read((RequestFacade)source); } if (request != null && PRINCIPAL_ACCESS != null) { Principal principal = PRINCIPAL_ACCESS.read(request); if (principal instanceof JBossGenericPrincipal) { Subject subject = ((JBossGenericPrincipal)principal).getSubject(); if (subject != null) { credentials.add(new SubjectCredential(subject)); } } } } return credentials; }
ahce = new AuthorizationHeaderCredentialExtractor(charsetName); } else { ahce = new AuthorizationHeaderCredentialExtractor(); credentials.addAll(ahce.extract(source.getRequestHeaders().getFirst("Authorization")));
/** * {@inheritDoc} */ @Override public Set<Credential> extract(ServletRequest source) { Set<Credential> credentials = new HashSet<Credential>(); if (source != null) { credentials.addAll(super.extract(source)); Request request = null; if (source instanceof Request) { request = (Request)source; } else if (source instanceof RequestFacade && REQUEST_ACCESS != null) { request = REQUEST_ACCESS.read((RequestFacade)source); } if (request != null && PRINCIPAL_ACCESS != null) { Principal principal = PRINCIPAL_ACCESS.read(request); if (principal instanceof JBossGenericPrincipal) { Subject subject = ((JBossGenericPrincipal)principal).getSubject(); if (subject != null) { credentials.add(new SubjectCredential(subject)); } } } } return credentials; }