public boolean checkAccess(RequestContext context, String action) { boolean access = true; if (null != securityBehavior) { access = securityBehavior.checkAccess(context, action); } return access; }
public boolean createNewPageOnEdit(RequestContext context) { if (securityBehavior == null) return false; return securityBehavior.createNewPageOnEdit(context); }
public boolean isCreateNewPageOnEditEnabled() { if (securityBehavior == null) return false; return securityBehavior.isCreateNewPageOnEditEnabled(); } public boolean isPageQualifiedForCreateNewPageOnEdit(RequestContext context)
public boolean isPageQualifiedForCreateNewPageOnEdit(RequestContext context) { if (securityBehavior == null) return false; return securityBehavior.isPageQualifiedForCreateNewPageOnEdit(context); } public boolean createNewPageOnEdit(RequestContext context)
protected void checkPrivilege(HttpServletRequest servletRequest, String action) { RequestContext requestContext = (RequestContext) servletRequest.getAttribute(RequestContext.REQUEST_PORTALENV); if (securityBehavior != null && !securityBehavior.checkAccess(requestContext, action)) { throw new WebApplicationException( Response.status(Response.Status.UNAUTHORIZED).entity( new UpdateResultBean(Response.Status.UNAUTHORIZED.getStatusCode(), "Insufficient privilege to access this REST service")).build()); } }
public void invoke( RequestContext request, ValveContext context ) throws PipelineException { securityBehavior.createNewPageOnEdit(request); context.invokeNext(request); }
/** * Returns the content page of the current portal request context with security check. * * @param requestContext the portal request context * @param action the action to check the security against. * @return * @throws SecurityException */ private ContentPage getContentPage(RequestContext requestContext, String action) throws SecurityException { if (securityBehavior != null && !securityBehavior.checkAccess(requestContext, action)) { throw new SecurityException("Insufficient access to view page"); } return requestContext.getPage(); }
if (!securityBehavior.checkAccess(request, "edit"))