Examples of AuthorizationFilter

org.apache.activemq.shiro.authz.AuthorizationFilter
The {@code AuthorizationFilter} asserts that actions are allowed to execute first before they are actuallyexecuted. Such actions include creating, removing, reading from and writing to destinations.
This implementation is strictly permission-based, allowing for the finest-grained security policies possible. Whenever a {@link Subject} associated with a connection attempts to perform an {@link org.apache.activemq.shiro.authz.Action} (such as creating adestination, or reading from a queue, etc), one or more {@link Permission}s representing that {@code action} arechecked.
If the {@code Subject}{@link Subject#isPermitted(org.apache.shiro.authz.Permission) isPermitted} to perform the{@code action}, the action is allowed to execute and the broker filter chain executes uninterrupted.
However, if the {@code Subject} is not permitted to perform the action, an {@link UnauthorizedException} will bethrown, preventing the filter chain from executing that action.
ActionPermissionResolver
The attempted {@code Action} is guarded by one or more {@link Permission}s as indicated by a configurable {@link #setActionPermissionResolver(org.apache.activemq.shiro.authz.ActionPermissionResolver) actionPermissionResolver}. The {@code actionPermissionResolver} indicates which permissions must be granted to the connection {@code Subject} inorder for the action to execute.
The default {@code actionPermissionResolver} instance is a{@link org.apache.activemq.shiro.authz.DestinationActionPermissionResolver DestinationActionPermissionResolver}, which indicates which permissions are required to perform any action on a particular destination. Those familiar with Shiro's {@link org.apache.shiro.authz.permission.WildcardPermission WildcardPermission} syntax will find the{@code DestinationActionPermissionResolver}'s {@link org.apache.activemq.shiro.authz.DestinationActionPermissionResolver#createPermissionString createPermissionString} methoddocumentation valuable for understanding how destination actions are represented as permissions. @see org.apache.activemq.shiro.authz.ActionPermissionResolver @see org.apache.activemq.shiro.authz.DestinationActionPermissionResolver @since 5.10.0
org.apache.shiro.web.filter.authz.AuthorizationFilter
Superclass for authorization-related filters. If an request is unauthorized, response handling is delegated to the {@link #onAccessDenied(javax.servlet.ServletRequest,javax.servlet.ServletResponse) onAccessDenied} method, whichprovides reasonable handling for most applications. @author Les Hazlewood @author Jeremy Haile @see #onAccessDenied(javax.servlet.ServletRequest,javax.servlet.ServletResponse) @since 0.9

Examples of org.apache.activemq.shiro.authz.AuthorizationFilter

        assertSame(plugin.getSubjectFilter().getNext(), filter);
    }


    public void testSetAuthorizationFilter() {
        ShiroPlugin plugin = new ShiroPlugin();
        AuthorizationFilter filter = new AuthorizationFilter();
        plugin.setAuthorizationFilter(filter);
        assertSame(filter, plugin.getAuthorizationFilter());
        //assert that the AuthenticationFilter is always the next filter in the chain after the AuthenticationFilter:
        assertSame(plugin.getAuthenticationFilter().getNext(), filter);
    }

View Full Code Here

Examples of org.apache.activemq.shiro.authz.AuthorizationFilter

    public ShiroPlugin() {


        //Default if this.environment is not configured. See the ensureEnvironment() method below.
        iniEnvironment = new IniEnvironment();


        authorizationFilter = new AuthorizationFilter();


        // we want to share one AuthenticationPolicy instance across both the AuthenticationFilter and the
        // ConnectionSubjectFactory:
        AuthenticationPolicy authcPolicy = new DefaultAuthenticationPolicy();

View Full Code Here

Examples of org.apache.shiro.web.filter.authz.AuthorizationFilter

    }


    private void applyUnauthorizedUrlIfNecessary(Filter filter) {
        String unauthorizedUrl = getUnauthorizedUrl();
        if (StringUtils.hasText(unauthorizedUrl) && (filter instanceof AuthorizationFilter)) {
            AuthorizationFilter authzFilter = (AuthorizationFilter) filter;
            //only apply the unauthorizedUrl if they haven't explicitly configured one already:
            String existingUnauthorizedUrl = authzFilter.getUnauthorizedUrl();
            if (existingUnauthorizedUrl == null) {
                authzFilter.setUnauthorizedUrl(unauthorizedUrl);
            }
        }
    }

View Full Code Here

Examples of org.apache.shiro.web.filter.authz.AuthorizationFilter

    }


    private void applyUnauthorizedUrlIfNecessary(Filter filter) {
        String unauthorizedUrl = getUnauthorizedUrl();
        if (StringUtils.hasText(unauthorizedUrl) && (filter instanceof AuthorizationFilter)) {
            AuthorizationFilter authzFilter = (AuthorizationFilter) filter;
            //only apply the unauthorizedUrl if they haven't explicitly configured one already:
            String existingUnauthorizedUrl = authzFilter.getUnauthorizedUrl();
            if (existingUnauthorizedUrl == null) {
                authzFilter.setUnauthorizedUrl(unauthorizedUrl);
            }
        }
    }

View Full Code Here

Examples of org.apache.shiro.web.filter.authz.AuthorizationFilter

    }


    private void applyUnauthorizedUrlIfNecessary(Filter filter) {
        String unauthorizedUrl = getUnauthorizedUrl();
        if (StringUtils.hasText(unauthorizedUrl) && (filter instanceof AuthorizationFilter)) {
            AuthorizationFilter authzFilter = (AuthorizationFilter) filter;
            //only apply the unauthorizedUrl if they haven't explicitly configured one already:
            String existingUnauthorizedUrl = authzFilter.getUnauthorizedUrl();
            if (existingUnauthorizedUrl == null) {
                authzFilter.setUnauthorizedUrl(unauthorizedUrl);
            }
        }
    }

View Full Code Here

TOP

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.

Examples of AuthorizationFilter

ActionPermissionResolver

Examples of org.apache.activemq.shiro.authz.AuthorizationFilter

Examples of org.apache.activemq.shiro.authz.AuthorizationFilter

Examples of org.apache.shiro.web.filter.authz.AuthorizationFilter

Examples of org.apache.shiro.web.filter.authz.AuthorizationFilter

Examples of org.apache.shiro.web.filter.authz.AuthorizationFilter