@Override public void createPermissions(final AttachmentList<EjbJaccConfig> metaData, final PolicyConfiguration policyConfiguration) throws PolicyContextException { for (EjbJaccConfig permission : metaData) { for (Permission deny : permission.getDeny()) { policyConfiguration.addToExcludedPolicy(deny); } for (Permission permit : permission.getPermit()) { policyConfiguration.addToUncheckedPolicy(permit); } for (Entry<String, Permission> role : permission.getRoles()) { policyConfiguration.addToRole(role.getKey(), role.getValue()); } } } }
WebResourcePermission wrpUnchecked = new WebResourcePermission(qurl, "!" + getCommaSeparatedString(seenMethods.toArray(new String[seenMethods.size()]))); pc.addToUncheckedPolicy(wrpUnchecked); pc.addToUncheckedPolicy(wrp); } else if (!roles.hasNext()) { pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String) null)); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String) null)); } else if (!info.allMethods.containsAll(WebResourceCollectionMetaData.ALL_HTTP_METHODS)) { List<String> methods = new ArrayList<>(WebResourceCollectionMetaData.ALL_HTTP_METHODS); methods.removeAll(info.allMethods); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, methods.toArray(new String[methods.size()]))); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, info.missingAuthConstraintMethods.toArray(new String[info.missingAuthConstraintMethods.size()]))); methods.toArray(httpMethods); WebUserDataPermission wudp = new WebUserDataPermission(qurl, httpMethods, transport); pc.addToUncheckedPolicy(wudp); pc.addToUncheckedPolicy(wudp1); } else { pc.addToUncheckedPolicy(wudpNonNull);
@Override public void createPermissions(final AttachmentList<EjbJaccConfig> metaData, final PolicyConfiguration policyConfiguration) throws PolicyContextException { for (EjbJaccConfig permission : metaData) { for (Permission deny : permission.getDeny()) { policyConfiguration.addToExcludedPolicy(deny); } for (Permission permit : permission.getPermit()) { policyConfiguration.addToUncheckedPolicy(permit); } for (Entry<String, Permission> role : permission.getRoles()) { policyConfiguration.addToRole(role.getKey(), role.getValue()); } } } }
private void addMissingMethodPermissions(BeanMetaData bean, boolean exclude, Class iface, InvocationType type, PolicyConfiguration pc) throws PolicyContextException { String ejbName = bean.getEjbName(); HashSet tmp = new HashSet(); getInterfaces(iface, tmp); Class[] ifaces = new Class[tmp.size()]; tmp.toArray(ifaces); for (int n = 0; n < ifaces.length; n++) { Class c = ifaces[n]; Method[] methods = c.getDeclaredMethods(); for (int m = 0; m < methods.length; m++) { String methodName = methods[m].getName(); Class[] params = methods[m].getParameterTypes(); // See if there is a method-permission if (bean.hasMethodPermission(methodName, params, type)) continue; // Create a permission for the missing method-permission EJBMethodPermission p = new EJBMethodPermission(ejbName, type.toInterfaceString(), methods[m]); if (exclude) pc.addToExcludedPolicy(p); else pc.addToUncheckedPolicy(p); } } }
pc.addToUncheckedPolicy(unchecked);
contextIdToPolicyConfigurationMap.put(contextID, policyConfiguration); policyConfiguration.addToExcludedPolicy(componentPermissions.getExcludedPermissions()); policyConfiguration.addToUncheckedPolicy(componentPermissions.getUncheckedPermissions()); for (Map.Entry<String, PermissionCollection> roleEntry : componentPermissions.getRolePermissions().entrySet()) { String roleName = roleEntry.getKey();
getPolicyConfiguration().addToUncheckedPolicy(permissionCollection); } else { for (Iterator rolesIt = methodPermissionDesc.getRoleNameList().iterator(); rolesIt.hasNext();) {
pc.addToUncheckedPolicy(uncheckedPermissions);
public void install(PolicyContext policyContext) throws OpenEJBException { try { PolicyConfigurationFactory factory = PolicyConfigurationFactory.getPolicyConfigurationFactory(); PolicyConfiguration policy = factory.getPolicyConfiguration(policyContext.getContextID(), false); policy.addToExcludedPolicy(policyContext.getExcludedPermissions()); policy.addToUncheckedPolicy(policyContext.getUncheckedPermissions()); for (Map.Entry<String, PermissionCollection> entry : policyContext.getRolePermissions().entrySet()) { policy.addToRole(entry.getKey(), entry.getValue()); } policy.commit(); } catch (ClassNotFoundException e) { throw new OpenEJBException("PolicyConfigurationFactory class not found", e); } catch (PolicyContextException e) { throw new OpenEJBException("JACC PolicyConfiguration failed: ContextId=" + policyContext.getContextID(), e); } }
pc.addToUncheckedPolicy(uncheckedPermissions);
public void install(final PolicyContext policyContext) throws OpenEJBException { if (SystemInstance.get().hasProperty("openejb.geronimo")) { return; } try { final PolicyConfigurationFactory factory = PolicyConfigurationFactory.getPolicyConfigurationFactory(); final PolicyConfiguration policy = factory.getPolicyConfiguration(policyContext.getContextID(), false); policy.addToExcludedPolicy(policyContext.getExcludedPermissions()); policy.addToUncheckedPolicy(policyContext.getUncheckedPermissions()); for (final Map.Entry<String, PermissionCollection> entry : policyContext.getRolePermissions().entrySet()) { policy.addToRole(entry.getKey(), entry.getValue()); } policy.commit(); } catch (final ClassNotFoundException e) { throw new OpenEJBException("PolicyConfigurationFactory class not found", e); } catch (final PolicyContextException e) { throw new OpenEJBException("JACC PolicyConfiguration failed: ContextId=" + policyContext.getContextID(), e); } }
public void install(final PolicyContext policyContext) throws OpenEJBException { if (SystemInstance.get().hasProperty("openejb.geronimo")) { return; } try { final PolicyConfigurationFactory factory = PolicyConfigurationFactory.getPolicyConfigurationFactory(); final PolicyConfiguration policy = factory.getPolicyConfiguration(policyContext.getContextID(), false); policy.addToExcludedPolicy(policyContext.getExcludedPermissions()); policy.addToUncheckedPolicy(policyContext.getUncheckedPermissions()); for (final Map.Entry<String, PermissionCollection> entry : policyContext.getRolePermissions().entrySet()) { policy.addToRole(entry.getKey(), entry.getValue()); } policy.commit(); } catch (final ClassNotFoundException e) { throw new OpenEJBException("PolicyConfigurationFactory class not found", e); } catch (final PolicyContextException e) { throw new OpenEJBException("JACC PolicyConfiguration failed: ContextId=" + policyContext.getContextID(), e); } }
WebResourcePermission wrpUnchecked = new WebResourcePermission(qurl, "!" + getCommaSeparatedString(seenMethods.toArray(new String[seenMethods.size()]))); pc.addToUncheckedPolicy(wrpUnchecked); pc.addToUncheckedPolicy(wrp); } else if (!roles.hasNext()) { pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String) null)); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String) null)); } else if (!info.allMethods.containsAll(WebResourceCollectionMetaData.ALL_HTTP_METHODS)) { List<String> methods = new ArrayList<>(WebResourceCollectionMetaData.ALL_HTTP_METHODS); methods.removeAll(info.allMethods); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, methods.toArray(new String[methods.size()]))); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, info.missingAuthConstraintMethods.toArray(new String[info.missingAuthConstraintMethods.size()]))); methods.toArray(httpMethods); WebUserDataPermission wudp = new WebUserDataPermission(qurl, httpMethods, transport); pc.addToUncheckedPolicy(wudp); pc.addToUncheckedPolicy(wudp1); } else { pc.addToUncheckedPolicy(wudpNonNull);
WebResourcePermission wrpUnchecked = new WebResourcePermission(qurl, "!" + getCommaSeparatedString(seenMethods.toArray(new String[seenMethods.size()]))); pc.addToUncheckedPolicy(wrpUnchecked); pc.addToUncheckedPolicy(wrp); } else if (!roles.hasNext()) { pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String) null)); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String) null)); } else if (!info.allMethods.containsAll(WebResourceCollectionMetaData.ALL_HTTP_METHODS)) { List<String> methods = new ArrayList<>(WebResourceCollectionMetaData.ALL_HTTP_METHODS); methods.removeAll(info.allMethods); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, methods.toArray(new String[methods.size()]))); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, info.missingAuthConstraintMethods.toArray(new String[info.missingAuthConstraintMethods.size()]))); methods.toArray(httpMethods); WebUserDataPermission wudp = new WebUserDataPermission(qurl, httpMethods, transport); pc.addToUncheckedPolicy(wudp); pc.addToUncheckedPolicy(wudp1); } else { pc.addToUncheckedPolicy(wudpNonNull);
WebResourcePermission wrp1 = new WebResourcePermission(info.pattern, excludedString); WebUserDataPermission wudp1 = new WebUserDataPermission(info.pattern,excludedString); pc.addToUncheckedPolicy(wrp1); pc.addToUncheckedPolicy(wudp1); + "\" and methods: " + methodsAsString, iae); pc.addToUncheckedPolicy(wrpUnchecked); pc.addToUncheckedPolicy(wrp); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String)null)); pc.addToUncheckedPolicy(new WebResourcePermission(qurl, (String)null)); methods.toArray(httpMethods); WebUserDataPermission wudp = new WebUserDataPermission(qurl, httpMethods, transport); pc.addToUncheckedPolicy(wudp); pc.addToUncheckedPolicy(wudp1); pc.addToUncheckedPolicy(wudpNonNull);
if (perm.getUnchecked() != null) pc.addToUncheckedPolicy(p); pc.addToUncheckedPolicy(p);
try { this.logger.debug("Adding unchecked permission {0}", methodSecurityInfo.getPermission()); getPolicyConfiguration().addToUncheckedPolicy(methodSecurityInfo.getPermission()); } catch (PolicyContextException e) { throw new PermissionManagerException("Cannot add unchecked policy for method '" + methodSecurityInfo