private static synchronized AuditManager _getAuditManager() { if(AUDIT_MANAGER == null) { SecurityServicesUtil secServUtil = Globals.get(SecurityServicesUtil.class); AUDIT_MANAGER = secServUtil.getAuditManager(); } return AUDIT_MANAGER; }
private static synchronized AuditManager _getAuditManager() { if(AUDIT_MANAGER == null) { SecurityServicesUtil secServUtil = Globals.get(SecurityServicesUtil.class); AUDIT_MANAGER = secServUtil.getAuditManager(); } return AUDIT_MANAGER; }
private void recordWebInvocation(final HttpServletRequest httpsr, final String type, final boolean isGranted) { AuditManager auditManager = SecurityServicesUtil.getInstance().getAuditManager(); if (auditManager != null && auditManager.isAuditOn() && (auditManager instanceof AppServerAuditManager)) { final AppServerAuditManager appServerAuditManager = (AppServerAuditManager) auditManager; Principal prin = httpsr.getUserPrincipal(); String user = (prin != null) ? prin.getName(): null; appServerAuditManager.webInvocation(user, httpsr, type, isGranted); } }
@Override public void event(Event event) { if (EventTypes.SERVER_SHUTDOWN.equals(event.type())) { secServUtil.getAuditManager().serverShutdown(); } } }
@Override public void event(Event event) { if (EventTypes.SERVER_SHUTDOWN.equals(event.type())) { secServUtil.getAuditManager().serverShutdown(); } } }
/** * Perform access control based on the <code>HttpServletRequest</code>. * Return <code>true</code> if this constraint is satisfied and processing * should continue, or <code>false</code> otherwise. * @return true is the resource is granted, false if denied */ public boolean hasResourcePermission(HttpServletRequest httpsr){ SecurityContext sc = getSecurityContext(httpsr.getUserPrincipal()); WebResourcePermission perm = createWebResourcePermission(httpsr); setSecurityInfo(httpsr); boolean isGranted = checkPermission(perm,sc.getPrincipalSet()); SecurityContext.setCurrent(sc); if(logger.isLoggable(Level.FINE)){ logger.log(Level.FINE, "[Web-Security] hasResource isGranted: {0}", isGranted); logger.log(Level.FINE, "[Web-Security] hasResource perm: {0}", perm); } AuditManager auditManager = SecurityServicesUtil.getInstance().getAuditManager(); if(auditManager !=null && auditManager.isAuditOn()){ Principal prin = httpsr.getUserPrincipal(); String user = (prin != null) ? prin.getName(): null; auditManager.webInvocation(user, httpsr, RESOURCE, isGranted); } return isGranted; }
AuditManager auditManager = secServUtil.getAuditManager(); auditManager.loadAuditModules();
AuditManager auditManager = secServUtil.getAuditManager(); auditManager.loadAuditModules();
AuditManager auditManager = SecurityServicesUtil.getInstance().getAuditManager(); if(auditManager!= null && auditManager.isAuditOn()){ Principal prin = httpsr.getUserPrincipal();