Package org.jboss.security.javaee
Class AbstractWebAuthorizationHelper
- java.lang.Object
-
- org.jboss.security.javaee.AbstractJavaEEHelper
-
- org.jboss.security.javaee.AbstractWebAuthorizationHelper
-
- Direct Known Subclasses:
WebAuthorizationHelper
public abstract class AbstractWebAuthorizationHelper extends AbstractJavaEEHelper
Abstract Web Authorization Helper- Since:
- Apr 17, 2008
- Version:
- $Revision$
- Author:
- Anil.Saldhana@redhat.com
-
-
Field Summary
Fields Modifier and Type Field Description protected boolean
enableAudit
-
Fields inherited from class org.jboss.security.javaee.AbstractJavaEEHelper
policyRegistration, securityContext
-
-
Constructor Summary
Constructors Constructor Description AbstractWebAuthorizationHelper()
-
Method Summary
All Methods Instance Methods Abstract Methods Concrete Methods Modifier and Type Method Description abstract boolean
checkResourcePermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, Subject callerSubject, String contextID, String canonicalRequestURI)
Validate that the caller has the permission to access a web resourceabstract boolean
checkResourcePermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, Subject callerSubject, String contextID, String canonicalRequestURI, List<String> roles)
Validate that the caller has the permission to access a web resourceabstract boolean
hasRole(String roleName, Principal principal, String servletName, Set<Principal> principalRoles, String contextID, Subject callerSubject)
Validate that the caller has the required role to access a resourceabstract boolean
hasRole(String roleName, Principal principal, String servletName, Set<Principal> principalRoles, String contextID, Subject callerSubject, List<String> roles)
Validate that the caller has the required role to access a resourceabstract boolean
hasUserDataPermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, String contextID, Subject callerSubject)
Validate whether the transport constraints are met by the callerabstract boolean
hasUserDataPermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, String contextID, Subject callerSubject, List<String> roles)
Validate whether the transport constraints are met by the callerboolean
isEnableAudit()
void
setEnableAudit(boolean enableAudit)
-
Methods inherited from class org.jboss.security.javaee.AbstractJavaEEHelper
audit, authenticationAudit, authorizationAudit, getCallerPrincipal, getContextMap, getPolicyRegistration, getSecurityContext, setPolicyRegistration, setSecurityContext
-
-
-
-
Method Detail
-
isEnableAudit
public boolean isEnableAudit()
-
setEnableAudit
public void setEnableAudit(boolean enableAudit)
-
checkResourcePermission
public abstract boolean checkResourcePermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, Subject callerSubject, String contextID, String canonicalRequestURI)
Validate that the caller has the permission to access a web resource- Parameters:
contextMap
-request
-response
-callerSubject
-contextID
-canonicalRequestURI
-- Returns:
- true - permitted
- Throws:
IllegalArgumentException
- request, response, callerSubject, contextID or canonicalRequestURI is nullIllegalStateException
- Authorization Manager from Security Context is null
-
checkResourcePermission
public abstract boolean checkResourcePermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, Subject callerSubject, String contextID, String canonicalRequestURI, List<String> roles)
Validate that the caller has the permission to access a web resource- Parameters:
contextMap
-request
-response
-callerSubject
-contextID
-canonicalRequestURI
-roles
-- Returns:
- true - permitted
- Throws:
IllegalArgumentException
- request, response, callerSubject, contextID or canonicalRequestURI is nullIllegalStateException
- Authorization Manager from Security Context is null
-
hasRole
public abstract boolean hasRole(String roleName, Principal principal, String servletName, Set<Principal> principalRoles, String contextID, Subject callerSubject)
Validate that the caller has the required role to access a resource- Parameters:
roleName
-principal
-servletName
-principalRoles
-contextID
-callerSubject
-- Returns:
- Throws:
IllegalArgumentException
- roleName, contextID, callerSubject is nullIllegalStateException
- Authorization Manager from Security Context is null
-
hasRole
public abstract boolean hasRole(String roleName, Principal principal, String servletName, Set<Principal> principalRoles, String contextID, Subject callerSubject, List<String> roles)
Validate that the caller has the required role to access a resource- Parameters:
roleName
-principal
-servletName
-principalRoles
-contextID
-callerSubject
-roles
-- Returns:
- Throws:
IllegalArgumentException
- roleName, contextID, callerSubject is nullIllegalStateException
- Authorization Manager from Security Context is null
-
hasUserDataPermission
public abstract boolean hasUserDataPermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, String contextID, Subject callerSubject)
Validate whether the transport constraints are met by the caller- Parameters:
contextMap
-request
-response
-contextID
-callerSubject
-- Returns:
- Throws:
IllegalArgumentException
- request, response, callerSubject or contextID is nullIllegalStateException
- Authorization Manager from Security Context is null
-
hasUserDataPermission
public abstract boolean hasUserDataPermission(Map<String,Object> contextMap, javax.servlet.ServletRequest request, javax.servlet.ServletResponse response, String contextID, Subject callerSubject, List<String> roles)
Validate whether the transport constraints are met by the caller- Parameters:
contextMap
-request
-response
-contextID
-callerSubject
-roles
-- Returns:
- Throws:
IllegalArgumentException
- request, response, callerSubject or contextID is nullIllegalStateException
- Authorization Manager from Security Context is null
-
-