@DeclareRoles({ "architect" })
@DeclareRoles({ADMIN, USER}) @ApplicationPath(value = "api") public class ApplicationConfig extends Application { }
@DeclareRoles("admin") @Stateless(name="calculator") public class CalculatorBean implements Calculator { @Override @RolesAllowed(value = {"admin"}) public int add(int x, int y) { return x + y; } @Override @DenyAll public int subtract(int x, int y) { return x - y; } }
@Stateless @DeclareRoles({ "student", "printer" }) public class FooObserver {
@DeclareRoles(value = { "student", "printer" }) public class PrinterSecurityInterceptor { public static boolean securityContextOK = false; @Resource private SessionContext sc; @EJB private Toner toner; @AroundInvoke public Object intercept(InvocationContext ic) throws Exception { Object obj = ic.proceed(); assertTrue(this.sc.isCallerInRole("student")); assertTrue(!this.sc.isCallerInRole("printer")); securityContextOK = true; toner.callFromInterceptor(); return obj; } }
/** * Protected version of {@link SimpleServlet}. Only {@value #ALLOWED_ROLE} role has access right. * * @author Josef Cacek */ @DeclareRoles({ SimpleSecuredServlet.ALLOWED_ROLE }) @ServletSecurity(@HttpConstraint(rolesAllowed = { SimpleSecuredServlet.ALLOWED_ROLE })) @WebServlet(SimpleSecuredServlet.SERVLET_PATH) public class SimpleSecuredServlet extends SimpleServlet { /** The serialVersionUID */ private static final long serialVersionUID = 1L; public static final String SERVLET_PATH = "/SimpleSecuredServlet"; public static final String ALLOWED_ROLE = "JBossAdmin"; }
@DeclareRoles({ "architect", "admin" }) @WebServlet("/servlet") @ServletSecurity(@HttpConstraint(rolesAllowed = "architect")) public class Servlet extends HttpServlet { private static final long serialVersionUID = 1L; @Override public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { String webName = null; if (request.getUserPrincipal() != null) { webName = request.getUserPrincipal().getName(); } response.getWriter().write("web username: " + webName + "\n"); response.getWriter().write("web user has role \"architect\": " + request.isUserInRole("architect") + "\n"); } }
@DeclareRoles({"HR", "salesDpt"}) @RolesAllowed({"user", "employee", "admin"}) public class ItemEJB05 {
@DeclareRoles({ SecuredPrincipalPrintingServlet.ALLOWED_ROLE }) @ServletSecurity(@HttpConstraint(rolesAllowed = { SecuredPrincipalPrintingServlet.ALLOWED_ROLE })) @WebServlet(SecuredPrincipalPrintingServlet.SERVLET_PATH)
@DeclareRoles({"user"}) @ServletSecurity(@HttpConstraint(rolesAllowed={"user"})) public class SecuredServlet extends HttpServlet {
@DeclareRoles({"user"}) @ServletSecurity(@HttpConstraint(rolesAllowed={"user"})) public class SecuredServlet extends HttpServlet {
@DeclareRoles(HelloBean.ROLE_ALLOWED) @Stateless @RolesAllowed(HelloBean.ROLE_ALLOWED)
@DeclareRoles({ "org.imixs.ACCESSLEVEL.MANAGERACCESS" }) @RunAs("org.imixs.ACCESSLEVEL.MANAGERACCESS") public class SchedulerConfigurationService {
@RunAs("InternalUser") @RolesAllowed({"AuthorizedUser", "AuthorizedServer", "InternalUser", "Administrator"}) @DeclareRoles({"AuthorizedUser", "AuthorizedServer", "InternalUser", "Administrator"}) @Exclude(ifProjectStage = DatawaveEmbeddedProjectStageHolder.DatawaveEmbedded.class) public class AuditBean {
@DeclareRoles({"InternalUser", "Administrator", "JBossAdministrator"})
@RunAs("InternalUser") @RolesAllowed({"AuthorizedUser", "AuthorizedQueryServer", "InternalUser", "Administrator"}) @DeclareRoles({"AuthorizedUser", "AuthorizedQueryServer", "InternalUser", "Administrator"}) @Startup
@Path("/Accumulo") @RolesAllowed({"InternalUser", "Administrator"}) @DeclareRoles({"InternalUser", "Administrator"}) @LocalBean @Stateless
@Path("/Accumulo") @RolesAllowed({"InternalUser", "Administrator"}) @DeclareRoles({"InternalUser", "Administrator"}) @LocalBean @Stateless
@Path("/Accumulo") @RolesAllowed({"InternalUser", "Administrator"}) @DeclareRoles({"InternalUser", "Administrator"}) @LocalBean @Stateless
@DeclareRoles({ "foo", "bar", "kaz" }) @ServletSecurity(@HttpConstraint(rolesAllowed = "foo")) public class TestServlet extends HttpServlet {