|
||||||||||
PREV CLASS (src) NEXT CLASS (src) | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.jboss.axis.handlers.BasicHandler (src)
org.jboss.net.axis.server.JBossAuthorizationHandler
AuthorizationHandler that checks allowed and denied roles against the active
subject using a given realmMapping. Is somehow redundant to what, e.g., the JBoss EJB invocation handler
does, but maybe we need this to shield access to other container resources
such as MBeans for which we will expose security-agnostic providers.
Field Summary | |
protected boolean |
isInitialised
whether this handler has been initialized |
protected RealmMapping (src) |
realmMapping
the security domain against which we call |
protected java.util.Set |
rolesAllowed
the roles that we want to let through |
protected java.util.Set |
rolesDenied
the roles that we want to deny access |
Fields inherited from class org.jboss.axis.handlers.BasicHandler (src) |
makeLockable, name, options |
Constructor Summary | |
JBossAuthorizationHandler()
|
Method Summary | |
protected boolean |
doesUserHaveRole(java.security.Principal principal,
java.util.Set roles)
return whether the given Principal has the given roles |
protected java.util.Collection |
getAssociatedPrincipals(MessageContext (src) msgContext)
returns a collection of principals that the context subject is associated with |
protected java.security.Principal |
getPrincipal(java.lang.String userName)
creates a new principal belonging to the given username, override to adapt to specific security domains. |
protected void |
initialise()
initializes the roles checked by this handler |
void |
invoke(MessageContext (src) msgContext)
Authenticate the user and password from the msgContext. |
Methods inherited from class org.jboss.axis.handlers.BasicHandler (src) |
canHandleBlock, cleanup, generateWSDL, getDeploymentData, getName, getOption, getOptions, getUnderstoodHeaders, init, initHashtable, onFault, setName, setOption, setOptionDefault, setOptions, setOptionsLockable |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
protected RealmMapping (src) realmMapping
protected final java.util.Set rolesAllowed
protected final java.util.Set rolesDenied
protected boolean isInitialised
Constructor Detail |
public JBossAuthorizationHandler()
Method Detail |
protected void initialise() throws AxisFault (src)
AxisFault (src)
protected java.security.Principal getPrincipal(java.lang.String userName)
protected java.util.Collection getAssociatedPrincipals(MessageContext (src) msgContext)
protected boolean doesUserHaveRole(java.security.Principal principal, java.util.Set roles)
public void invoke(MessageContext (src) msgContext) throws AxisFault (src)
invoke
in interface Handler (src)
invoke
in class BasicHandler (src)
AxisFault (src)
|
||||||||||
PREV CLASS (src) NEXT CLASS (src) | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |