javax.servlet.annotation.ServletSecurity.EmptyRoleSemantic Java Examples
The following examples show how to use
javax.servlet.annotation.ServletSecurity.EmptyRoleSemantic.
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example #1
| Source File: UserController.java From packagedrone with Eclipse Public License 1.0 | 6 votes |
|
@RequestMapping ( value = "/{userId}/view", method = RequestMethod.GET )
@HttpConstraint ( value = EmptyRoleSemantic.PERMIT )
public ModelAndView viewUser ( @PathVariable ( "userId" ) final String userId, final HttpServletRequest request )
{
final boolean you = isYou ( userId, request );
if ( !you && !request.isUserInRole ( "ADMIN" ) )
{
return CommonController.createAccessDenied ();
}
final DatabaseUserInformation user = this.storage.getUserDetails ( userId );
if ( user == null || user.getDetails ( DatabaseDetails.class ) == null )
{
return CommonController.createNotFound ( "user", userId );
}
final ModelAndView model = new ModelAndView ( "user/view" );
model.put ( "user", user );
model.put ( "you", you );
return model;
}
Example #2
| Source File: HttpConstraintElement.java From Tomcat8-Source-Read with MIT License | 5 votes |
|
/**
* Default constraint is permit with no transport guarantee.
*/
public HttpConstraintElement() {
// Default constructor
this.emptyRoleSemantic = EmptyRoleSemantic.PERMIT;
this.transportGuarantee = TransportGuarantee.NONE;
this.rolesAllowed = new String[0];
}
Example #3
| Source File: UserController.java From packagedrone with Eclipse Public License 1.0 | 5 votes |
|
@RequestMapping ( value = "/{userId}/newPassword", method = RequestMethod.POST )
@HttpConstraint ( value = EmptyRoleSemantic.PERMIT )
public ModelAndView changePasswordPost ( @PathVariable ( "userId" ) final String userId, @Valid @FormData ( "command" ) final NewPassword data, final BindingResult result, final HttpServletRequest request )
{
final boolean you = isYou ( userId, request );
if ( !you && !request.isUserInRole ( "ADMIN" ) )
{
return CommonController.createAccessDenied ();
}
final Map<String, Object> model = new HashMap<> ();
model.put ( "you", you );
if ( result.hasErrors () )
{
model.put ( "command", data );
return new ModelAndView ( "user/newPassword", model );
}
try
{
if ( !you /* but we are ADMIN */ )
{
this.storage.updatePassword ( userId, null, data.getPassword () );
}
else
{
this.storage.updatePassword ( userId, data.getCurrentPassword (), data.getPassword () );
}
return new ModelAndView ( "redirect:/user/" + userId + "/view" );
}
catch ( final Exception e )
{
return CommonController.createError ( "Error", "Failed to change password", e );
}
}
Example #4
| Source File: UserController.java From packagedrone with Eclipse Public License 1.0 | 5 votes |
|
@RequestMapping ( "/{userId}/newPassword" )
@HttpConstraint ( value = EmptyRoleSemantic.PERMIT )
public ModelAndView changePassword ( @PathVariable ( "userId" ) final String userId, final HttpServletRequest request )
{
final Map<String, Object> model = new HashMap<> ();
final boolean you = isYou ( userId, request );
if ( !you && !request.isUserInRole ( "ADMIN" ) )
{
return CommonController.createAccessDenied ();
}
final DatabaseUserInformation user = this.storage.getUserDetails ( userId );
if ( user == null )
{
return CommonController.createNotFound ( "user", userId );
}
final DatabaseDetails details = user.getDetails ( DatabaseDetails.class );
if ( details == null )
{
return CommonController.createNotFound ( "details", userId );
}
final NewPassword data = new NewPassword ();
data.setEmail ( details.getEmail () );
model.put ( "you", you );
model.put ( "command", data );
return new ModelAndView ( "user/newPassword", model );
}
Example #5
| Source File: HttpContraintControllerInterceptor.java From packagedrone with Eclipse Public License 1.0 | 5 votes |
|
public static boolean isAllowed ( final HttpConstraint constraint, final HttpServletRequest request )
{
final EmptyRoleSemantic empty = constraint.value ();
final String[] allowedRoles = constraint.rolesAllowed ();
if ( allowedRoles == null || allowedRoles.length <= 0 )
{
// no roles
if ( EmptyRoleSemantic.PERMIT.equals ( empty ) )
{
return true;
}
else
{
return false;
}
}
else
{
// check all roles .. one is ok
for ( final String role : allowedRoles )
{
if ( request.isUserInRole ( role ) )
{
return true;
}
}
// we ran out of options
return false;
}
}
Example #6
| Source File: HttpConstraintElement.java From tomcatsrc with Apache License 2.0 | 5 votes |
|
/**
*
* @param emptyRoleSemantic
* @param transportGuarantee
* @param rolesAllowed
* @throws IllegalArgumentException if roles are specified when DENY is used
*/
public HttpConstraintElement(EmptyRoleSemantic emptyRoleSemantic,
TransportGuarantee transportGuarantee, String... rolesAllowed) {
if (rolesAllowed != null && rolesAllowed.length > 0 &&
EmptyRoleSemantic.DENY.equals(emptyRoleSemantic)) {
throw new IllegalArgumentException(lStrings.getString(
"httpConstraintElement.invalidRolesDeny"));
}
this.emptyRoleSemantic = emptyRoleSemantic;
this.transportGuarantee = transportGuarantee;
this.rolesAllowed = rolesAllowed;
}
Example #7
| Source File: HttpConstraintElement.java From tomcatsrc with Apache License 2.0 | 5 votes |
|
/**
* Convenience constructor to specify transport guarantee and/or roles.
*/
public HttpConstraintElement(TransportGuarantee transportGuarantee,
String... rolesAllowed) {
this.emptyRoleSemantic = EmptyRoleSemantic.PERMIT;
this.transportGuarantee = transportGuarantee;
this.rolesAllowed = rolesAllowed;
}
Example #8
| Source File: HttpConstraintElement.java From tomcatsrc with Apache License 2.0 | 5 votes |
|
/**
* Default constraint is permit with no transport guarantee.
*/
public HttpConstraintElement() {
// Default constructor
this.emptyRoleSemantic = EmptyRoleSemantic.PERMIT;
this.transportGuarantee = TransportGuarantee.NONE;
this.rolesAllowed = new String[0];
}
Example #9
| Source File: SecurityConstraint.java From tomcatsrc with Apache License 2.0 | 5 votes |
|
private static SecurityConstraint createConstraint(
HttpConstraintElement element, String urlPattern, boolean alwaysCreate) {
SecurityConstraint constraint = new SecurityConstraint();
SecurityCollection collection = new SecurityCollection();
boolean create = alwaysCreate;
if (element.getTransportGuarantee() !=
ServletSecurity.TransportGuarantee.NONE) {
constraint.setUserConstraint(element.getTransportGuarantee().name());
create = true;
}
if (element.getRolesAllowed().length > 0) {
String[] roles = element.getRolesAllowed();
for (String role : roles) {
constraint.addAuthRole(role);
}
create = true;
}
if (element.getEmptyRoleSemantic() != EmptyRoleSemantic.PERMIT) {
constraint.setAuthConstraint(true);
create = true;
}
if (create) {
collection.addPattern(urlPattern);
constraint.addCollection(collection);
return constraint;
}
return null;
}
Example #10
| Source File: HttpConstraintElement.java From Tomcat7.0.67 with Apache License 2.0 | 5 votes |
|
/**
*
* @param emptyRoleSemantic
* @param transportGuarantee
* @param rolesAllowed
* @throws IllegalArgumentException if roles are specified when DENY is used
*/
public HttpConstraintElement(EmptyRoleSemantic emptyRoleSemantic,
TransportGuarantee transportGuarantee, String... rolesAllowed) {
if (rolesAllowed != null && rolesAllowed.length > 0 &&
EmptyRoleSemantic.DENY.equals(emptyRoleSemantic)) {
throw new IllegalArgumentException(lStrings.getString(
"httpConstraintElement.invalidRolesDeny"));
}
this.emptyRoleSemantic = emptyRoleSemantic;
this.transportGuarantee = transportGuarantee;
this.rolesAllowed = rolesAllowed;
}
Example #11
| Source File: HttpConstraintElement.java From Tomcat7.0.67 with Apache License 2.0 | 5 votes |
|
/**
* Convenience constructor to specify transport guarantee and/or roles.
*/
public HttpConstraintElement(TransportGuarantee transportGuarantee,
String... rolesAllowed) {
this.emptyRoleSemantic = EmptyRoleSemantic.PERMIT;
this.transportGuarantee = transportGuarantee;
this.rolesAllowed = rolesAllowed;
}
Example #12
| Source File: HttpConstraintElement.java From Tomcat7.0.67 with Apache License 2.0 | 5 votes |
|
/**
* Default constraint is permit with no transport guarantee.
*/
public HttpConstraintElement() {
// Default constructor
this.emptyRoleSemantic = EmptyRoleSemantic.PERMIT;
this.transportGuarantee = TransportGuarantee.NONE;
this.rolesAllowed = new String[0];
}
Example #13
| Source File: SecurityConstraint.java From Tomcat7.0.67 with Apache License 2.0 | 5 votes |
|
private static SecurityConstraint createConstraint(
HttpConstraintElement element, String urlPattern, boolean alwaysCreate) {
SecurityConstraint constraint = new SecurityConstraint();
SecurityCollection collection = new SecurityCollection();
boolean create = alwaysCreate;
if (element.getTransportGuarantee() !=
ServletSecurity.TransportGuarantee.NONE) {
constraint.setUserConstraint(element.getTransportGuarantee().name());
create = true;
}
if (element.getRolesAllowed().length > 0) {
String[] roles = element.getRolesAllowed();
for (String role : roles) {
constraint.addAuthRole(role);
}
create = true;
}
if (element.getEmptyRoleSemantic() != EmptyRoleSemantic.PERMIT) {
constraint.setAuthConstraint(true);
create = true;
}
if (create) {
collection.addPattern(urlPattern);
constraint.addCollection(collection);
return constraint;
}
return null;
}
Example #14
| Source File: SecurityConstraint.java From Tomcat8-Source-Read with MIT License | 5 votes |
|
private static SecurityConstraint createConstraint(
HttpConstraintElement element, String urlPattern, boolean alwaysCreate) {
SecurityConstraint constraint = new SecurityConstraint();
SecurityCollection collection = new SecurityCollection();
boolean create = alwaysCreate;
if (element.getTransportGuarantee() !=
ServletSecurity.TransportGuarantee.NONE) {
constraint.setUserConstraint(element.getTransportGuarantee().name());
create = true;
}
if (element.getRolesAllowed().length > 0) {
String[] roles = element.getRolesAllowed();
for (String role : roles) {
constraint.addAuthRole(role);
}
create = true;
}
if (element.getEmptyRoleSemantic() != EmptyRoleSemantic.PERMIT) {
constraint.setAuthConstraint(true);
create = true;
}
if (create) {
collection.addPattern(urlPattern);
constraint.addCollection(collection);
return constraint;
}
return null;
}
Example #15
| Source File: HttpConstraintElement.java From Tomcat7.0.67 with Apache License 2.0 | 4 votes |
|
/**
* Convenience constructor for {@link EmptyRoleSemantic#DENY}.
*
*/
public HttpConstraintElement(EmptyRoleSemantic emptyRoleSemantic) {
this.emptyRoleSemantic = emptyRoleSemantic;
this.transportGuarantee = TransportGuarantee.NONE;
this.rolesAllowed = new String[0];
}
Example #16
| Source File: TransferController.java From packagedrone with Eclipse Public License 1.0 | 4 votes |
|
@RequestMapping ( value = "/channel/export", method = RequestMethod.GET )
@HttpConstraint ( value = EmptyRoleSemantic.PERMIT )
public ModelAndView exportAll ( final HttpServletResponse response )
{
return performExport ( response, makeExportFileName ( null ), this.transferService::exportAll );
}
Example #17
| Source File: TransferController.java From packagedrone with Eclipse Public License 1.0 | 4 votes |
|
@RequestMapping ( value = "/channel/{channelId}/export", method = RequestMethod.GET )
@HttpConstraint ( value = EmptyRoleSemantic.PERMIT )
public ModelAndView exportChannel ( @PathVariable ( "channelId" ) final String channelId, final HttpServletResponse response )
{
return performExport ( response, makeExportFileName ( channelId ), ( stream ) -> this.transferService.exportChannel ( channelId, stream ) );
}
Example #18
| Source File: HttpConstraintElement.java From tomcatsrc with Apache License 2.0 | 4 votes |
|
public EmptyRoleSemantic getEmptyRoleSemantic() {
return emptyRoleSemantic;
}
Example #19
| Source File: HttpConstraintElement.java From piranha with BSD 3-Clause "New" or "Revised" License | 4 votes |
|
/**
* Constructor.
*/
public HttpConstraintElement() {
this(EmptyRoleSemantic.PERMIT);
}
Example #20
| Source File: HttpConstraintElement.java From tomcatsrc with Apache License 2.0 | 4 votes |
|
/**
* Convenience constructor for {@link EmptyRoleSemantic#DENY}.
*
*/
public HttpConstraintElement(EmptyRoleSemantic emptyRoleSemantic) {
this.emptyRoleSemantic = emptyRoleSemantic;
this.transportGuarantee = TransportGuarantee.NONE;
this.rolesAllowed = new String[0];
}
Example #21
| Source File: HttpConstraintElement.java From lams with GNU General Public License v2.0 | 4 votes |
|
/**
* Constructs a default HTTP constraint element
*/
public HttpConstraintElement() {
this(EmptyRoleSemantic.PERMIT);
}
Example #22
| Source File: HttpConstraintElement.java From Tomcat7.0.67 with Apache License 2.0 | 4 votes |
|
public EmptyRoleSemantic getEmptyRoleSemantic() {
return emptyRoleSemantic;
}
Example #23
| Source File: HttpConstraintElement.java From lams with GNU General Public License v2.0 | 3 votes |
|
/**
* Constructor to establish all of getEmptyRoleSemantic,
* getRolesAllowed, and getTransportGuarantee.
*
* @param semantic <tt>EmptyRoleSemantic.DENY</tt> or
* <tt>EmptyRoleSemantic.PERMIT</tt>
* @param guarantee <tt>TransportGuarantee.NONE</tt> or
* <tt>TransportGuarantee.CONFIDENTIAL</tt>
* @param roleNames the names of the roles that are to be allowed
* access, or missing if the semantic is <tt>EmptyRoleSemantic.DENY</tt>
*/
public HttpConstraintElement(EmptyRoleSemantic semantic,
TransportGuarantee guarantee, String... roleNames) {
if (semantic == EmptyRoleSemantic.DENY && roleNames.length > 0) {
throw new IllegalArgumentException(
"Deny semantic with rolesAllowed");
}
this.emptyRoleSemantic = semantic;
this.transportGuarantee = guarantee;
this.rolesAllowed = copyStrings(roleNames);
}
Example #24
| Source File: HttpConstraintElement.java From Tomcat8-Source-Read with MIT License | 3 votes |
|
/**
* Construct a constraint with an empty role semantic, a transport guarantee
* and roles.
*
* @param emptyRoleSemantic The empty role semantic to apply to the newly
* created constraint
* @param transportGuarantee The transport guarantee to apply to the newly
* created constraint
* @param rolesAllowed The roles to associate with the newly created
* constraint
* @throws IllegalArgumentException if roles are specified when DENY is used
*/
public HttpConstraintElement(EmptyRoleSemantic emptyRoleSemantic,
TransportGuarantee transportGuarantee, String... rolesAllowed) {
if (rolesAllowed != null && rolesAllowed.length > 0 &&
EmptyRoleSemantic.DENY.equals(emptyRoleSemantic)) {
throw new IllegalArgumentException(lStrings.getString(
"httpConstraintElement.invalidRolesDeny"));
}
this.emptyRoleSemantic = emptyRoleSemantic;
this.transportGuarantee = transportGuarantee;
this.rolesAllowed = rolesAllowed;
}
Example #25
| Source File: HttpConstraintElement.java From Tomcat8-Source-Read with MIT License | 3 votes |
|
/**
* Construct a constraint with a transport guarantee and roles.
*
* @param transportGuarantee The transport guarantee to apply to the newly
* created constraint
* @param rolesAllowed The roles to associate with the newly created
* constraint
*/
public HttpConstraintElement(TransportGuarantee transportGuarantee,
String... rolesAllowed) {
this.emptyRoleSemantic = EmptyRoleSemantic.PERMIT;
this.transportGuarantee = transportGuarantee;
this.rolesAllowed = rolesAllowed;
}
Example #26
| Source File: HttpConstraintElement.java From lams with GNU General Public License v2.0 | 2 votes |
|
/**
* Gets the default authorization semantic.
*
* <p>This value is insignificant when <code>getRolesAllowed</code>
* returns a non-empty array, and should not be specified when a
* non-empty array is specified for <tt>getRolesAllowed</tt>.
*
* @return the {@link EmptyRoleSemantic} to be applied when
* <code>getRolesAllowed</code> returns an empty (that is, zero-length)
* array
*/
public EmptyRoleSemantic getEmptyRoleSemantic() {
return this.emptyRoleSemantic;
}
Example #27
| Source File: HttpConstraintElement.java From piranha with BSD 3-Clause "New" or "Revised" License | 2 votes |
|
/**
* Constructor.
*
* @param transportGuarantee the TransportGuarantee.
* @param rolesAllowed the roles allowed.
*/
public HttpConstraintElement(TransportGuarantee transportGuarantee, String... rolesAllowed) {
this(EmptyRoleSemantic.PERMIT, transportGuarantee, rolesAllowed);
}
Example #28
| Source File: HttpConstraintElement.java From piranha with BSD 3-Clause "New" or "Revised" License | 2 votes |
|
/**
* Constructor.
*
* @param emptyRoleSemantic the EmptyRoleSemantic.
*/
public HttpConstraintElement(EmptyRoleSemantic emptyRoleSemantic) {
this(emptyRoleSemantic, TransportGuarantee.NONE, new String[0]);
}
Example #29
| Source File: HttpConstraintElement.java From lams with GNU General Public License v2.0 | 2 votes |
|
/**
* Constructor to establish non-empty getRolesAllowed and/or
* <tt>TransportGuarantee.CONFIDENTIAL</tt>.
*
* @param guarantee <tt>TransportGuarantee.NONE</tt> or
* <tt>TransportGuarantee.CONFIDENTIAL</tt>
* @param roleNames the names of the roles that are to be
* allowed access
*/
public HttpConstraintElement(TransportGuarantee guarantee,
String... roleNames) {
this(EmptyRoleSemantic.PERMIT, guarantee, roleNames);
}
Example #30
| Source File: HttpConstraintElement.java From lams with GNU General Public License v2.0 | 2 votes |
|
/**
* Convenience constructor to establish <tt>EmptyRoleSemantic.DENY</tt>
*
* @param semantic should be EmptyRoleSemantic.DENY
*/
public HttpConstraintElement(EmptyRoleSemantic semantic) {
this(semantic, TransportGuarantee.NONE, new String[0]);
}
