/** * @author Innokenty Shuvalov innokenty@yandex-team.ru */ @WebServlet(urlPatterns = {"/quota"}, asyncSupported = true) @ServletSecurity(value = @HttpConstraint(rolesAllowed = {"user"})) public class QuotaServlet extends SpringHttpServlet { @Autowired private transient ConfigRepository config; @Override protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException { resp.setStatus(SC_OK); resp.setContentType(APPLICATION_JSON_VALUE); try (OutputStream output = resp.getOutputStream()) { String jsonResponse = toJson(config.getBrowsersCountMap(req.getRemoteUser())); IOUtils.write(jsonResponse, output, UTF_8); } } }
/** * @author Dmitry Baev charlie@yandex-team.ru */ @WebServlet(urlPatterns = {"/stats"}, asyncSupported = true) @ServletSecurity(value = @HttpConstraint(rolesAllowed = {"user"})) public class StatsServlet extends SpringHttpServlet { @Autowired private transient StatsCounter statsCounter; @Override protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { response.setStatus(SC_OK); response.setContentType(APPLICATION_JSON_VALUE); try (OutputStream output = response.getOutputStream()) { IOUtils.write(JsonFormatter.toJson( statsCounter.getStats(request.getRemoteUser()) ), output, UTF_8); } } }
@DeclareRoles({ "architect", "admin" }) @WebServlet("/servlet") @ServletSecurity(@HttpConstraint(rolesAllowed = "architect")) public class Servlet extends HttpServlet { private static final long serialVersionUID = 1L; @Override public void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException { String webName = null; if (request.getUserPrincipal() != null) { webName = request.getUserPrincipal().getName(); } response.getWriter().write("web username: " + webName + "\n"); response.getWriter().write("web user has role \"architect\": " + request.isUserInRole("architect") + "\n"); } }
/** * Protected version of {@link SimpleServlet}. Only {@value #ALLOWED_ROLE} role has access right. * * @author Josef Cacek */ @DeclareRoles({ SimpleSecuredServlet.ALLOWED_ROLE }) @ServletSecurity(@HttpConstraint(rolesAllowed = { SimpleSecuredServlet.ALLOWED_ROLE })) @WebServlet(SimpleSecuredServlet.SERVLET_PATH) public class SimpleSecuredServlet extends SimpleServlet { /** The serialVersionUID */ private static final long serialVersionUID = 1L; public static final String SERVLET_PATH = "/SimpleSecuredServlet"; public static final String ALLOWED_ROLE = "JBossAdmin"; }
@ServletSecurity(@HttpConstraint(rolesAllowed = { "*" })) public class RolePrintingServlet extends HttpServlet {
@ServletSecurity(@HttpConstraint(rolesAllowed={"user"})) public class SecuredServlet extends HttpServlet {
@ServletSecurity(@HttpConstraint(rolesAllowed = { SecuredPrincipalPrintingServlet.ALLOWED_ROLE })) @WebServlet(SecuredPrincipalPrintingServlet.SERVLET_PATH) public class SecuredPrincipalPrintingServlet extends HttpServlet {
@ServletSecurity(@HttpConstraint(rolesAllowed={"user"})) public class SecuredServlet extends HttpServlet {
@ServletSecurity(value = @HttpConstraint(rolesAllowed = {"user"})) public class RouteServlet extends SpringHttpServlet {
@ServletSecurity(@HttpConstraint(rolesAllowed = "foo")) public class TestServlet extends HttpServlet {
@ServletSecurity( @HttpConstraint(rolesAllowed={"Tester"})