org.apache.tomee.catalina

Class TomcatSecurityService

java.lang.Object

org.apache.openejb.core.security.AbstractSecurityService

org.apache.tomee.catalina.TomcatSecurityService

All Implemented Interfaces:

javax.security.jacc.PolicyContextHandler, org.apache.openejb.api.resource.DestroyableResource, BasicPolicyConfiguration.RoleResolver, ThreadContextListener, SecurityService<UUID>, Service

public class TomcatSecurityService
extends AbstractSecurityService

Nested Class Summary

Nested Classes

Modifier and Type	Class and Description
protected static class	TomcatSecurityService.RunAsRole
static class	TomcatSecurityService.TomcatUser

Nested classes/interfaces inherited from class org.apache.openejb.core.security.AbstractSecurityService

AbstractSecurityService.Group, AbstractSecurityService.Identity, AbstractSecurityService.ProvidedSecurityContext, AbstractSecurityService.SecurityContext, AbstractSecurityService.User

Field Summary

Fields

Modifier and Type	Field and Description
protected static ThreadLocal<LinkedList<Subject>>	RUN_AS_STACK

Fields inherited from class org.apache.openejb.core.security.AbstractSecurityService

clientIdentity, defaultContext, defaultSubject, defaultUser, KEY_REQUEST, KEY_SUBJECT, KEYS

Constructor Summary

Constructors

Constructor and Description
TomcatSecurityService()

Method Summary

Modifier and Type	Method and Description
protected Subject	createRunAsSubject(String role)
Object	enterWebApp(org.apache.catalina.Realm realm, Principal principal, String runAs)
void	exitWebApp(Object state)
Principal	getCallerPrincipal()
Object	getContext(String key, Object data)
protected AbstractSecurityService.SecurityContext	getDefaultSecurityContext()
String[]	getKeys()
Set<String>	getLogicalRoles(Principal[] principals, Set<String> logicalRoles)
Subject	getRunAsSubject(BeanContext callingBeanContext)
boolean	isCallerInRole(String role)
UUID	login(String realmName, String username, String password)
void	onLogout(javax.servlet.http.HttpServletRequest request)
boolean	supports(String key)

Methods inherited from class org.apache.openejb.core.security.AbstractSecurityService

associate, autoJaccProvider, contextEntered, contextExited, createRunAsSubject, createSubject, currentState, destroyResource, disassociate, getDefaultUser, getPrincipalsByType, getProtectionDomain, getRealmName, getSubject, init, installJacc, isCallerAuthorized, login, logout, overrideWithRunAsContext, registerSubject, setDefaultUser, setRealmName, setState, unregisterSubject

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

RUN_AS_STACK

protected static final ThreadLocal<LinkedList<Subject>> RUN_AS_STACK

Constructor Detail

TomcatSecurityService

public TomcatSecurityService()

Method Detail

isCallerInRole

public boolean isCallerInRole(String role)

Specified by:

isCallerInRole in interface SecurityService<UUID>

Overrides:

isCallerInRole in class AbstractSecurityService

login

public UUID login(String realmName,
                  String username,
                  String password)
           throws LoginException

Throws:

LoginException

getLogicalRoles

public Set<String> getLogicalRoles(Principal[] principals,
                                   Set<String> logicalRoles)

Specified by:

getLogicalRoles in interface BasicPolicyConfiguration.RoleResolver

Overrides:

getLogicalRoles in class AbstractSecurityService

getCallerPrincipal

public Principal getCallerPrincipal()

Specified by:

getCallerPrincipal in interface SecurityService<UUID>

Overrides:

getCallerPrincipal in class AbstractSecurityService

enterWebApp

public Object enterWebApp(org.apache.catalina.Realm realm,
                          Principal principal,
                          String runAs)

onLogout

public void onLogout(javax.servlet.http.HttpServletRequest request)

Specified by:

onLogout in interface SecurityService<UUID>

Overrides:

onLogout in class AbstractSecurityService

exitWebApp

public void exitWebApp(Object state)

getRunAsSubject

public Subject getRunAsSubject(BeanContext callingBeanContext)

Overrides:

getRunAsSubject in class AbstractSecurityService

createRunAsSubject

protected Subject createRunAsSubject(String role)

getDefaultSecurityContext

protected AbstractSecurityService.SecurityContext getDefaultSecurityContext()

Overrides:

getDefaultSecurityContext in class AbstractSecurityService

supports

public boolean supports(String key)
                 throws javax.security.jacc.PolicyContextException

Specified by:

supports in interface javax.security.jacc.PolicyContextHandler

Overrides:

supports in class AbstractSecurityService

Throws:

javax.security.jacc.PolicyContextException

getKeys

public String[] getKeys()
                 throws javax.security.jacc.PolicyContextException

Specified by:

getKeys in interface javax.security.jacc.PolicyContextHandler

Overrides:

getKeys in class AbstractSecurityService

Throws:

javax.security.jacc.PolicyContextException

getContext

public Object getContext(String key,
                         Object data)
                  throws javax.security.jacc.PolicyContextException

Specified by:

getContext in interface javax.security.jacc.PolicyContextHandler

Overrides:

getContext in class AbstractSecurityService

Throws:

javax.security.jacc.PolicyContextException