Examples of com.sun.enterprise.security.SecurityContext

com.sun.enterprise.security.SecurityContext
This class that extends AbstractSecurityContext that gets stored in Thread Local Storage. If the current thread creates child threads, the SecurityContext stored in the current thread is automatically propogated to the child threads. This class is used on the server side to represent the security context. Thread Local Storage is a concept introduced in JDK1.2. @see java.lang.ThreadLocal @see java.lang.InheritableThreadLocal @author Harish Prabandham @author Harpreet Singh

            }


           if (key != null) {
               DigestCredentials creds = new DigestCredentials(_realmName,key.getUsername(), params);     
               LoginContextDriver.login(creds);
               SecurityContext secCtx = SecurityContext.getCurrent();
               return new WebPrincipal(creds.getUserName(),(char[])null, secCtx);
           } else {
               throw new RuntimeException("No key found in parameters");
           }

View Full Code Here

        if (_logger.isLoggable(Level.FINE)) {
            _logger.fine("Tomcat callback for authenticate user/password");
            _logger.fine("usename = " + username);
        }
        if (authenticate(username, password, null)) {
            SecurityContext secCtx = SecurityContext.getCurrent();
            assert (secCtx != null); // or auth should've failed
            return new WebPrincipal(username, password, secCtx);
            
        } else {
            return null;

View Full Code Here

        }
    }


    public Principal authenticate(X509Certificate certs[]) {
        if (authenticate(null, null, certs)) {
            SecurityContext secCtx = SecurityContext.getCurrent();
            assert (secCtx != null); // or auth should've failed
            return new WebPrincipal(certs, secCtx);
        } else {
            return null;
        }

View Full Code Here


        if (runAs != null) {
            // The existing SecurityContext is saved - however, this seems
            // meaningless - see bug 4757733. For now, keep it unchanged
            // in case there are some dependencies elsewhere in RI.
            SecurityContext old = getSecurityContext();
            inv.setOldSecurityContext(old);


            // Set the run-as principal into SecurityContext
            loginForRunAs(runAs);

View Full Code Here

     */
    public Principal createFailOveredPrincipal(String username) {
        _logger.log(Level.FINEST, "IN createFailOveredPrincipal (" + username + ")");
        //set the appropriate security context
        loginForRunAs(username);
        SecurityContext secCtx = SecurityContext.getCurrent();
        _logger.log(Level.FINE, "Security context is " + secCtx);
        assert (secCtx != null);
        Principal principal = new WebPrincipal(username, (char[])null, secCtx);
        _logger.log(Level.INFO, "Principal created for FailOvered user " + principal);
        return principal;

View Full Code Here

            // must be at least one new principal to establish 
            // non-default security context
            if (principalSet != null && !principalSet.isEmpty() &&
                !principalSetContainsOnlyAnonymousPrincipal(principalSet)) {


                SecurityContext ctx = new SecurityContext(subject);
                //XXX assuming no null principal here
                Principal p = ctx.getCallerPrincipal();
                WebPrincipal wp = new WebPrincipal(p, ctx);
                try {
                    //XXX Keep it for reference
                    /*
                    if (this.sAC.managesSessions(sharedState)) {

View Full Code Here


                @Override
                public SecurityContext run() {
                    Subject s = new Subject();
                    s.getPrincipals().add(p);
                    return new SecurityContext(p.getName(), s);
                }
            });
        }
    }

View Full Code Here

        if (s == null || (s!= null &&
                s.getPrincipals().isEmpty() &&
                s.getPublicCredentials().isEmpty())) {
            SecurityContext.setUnauthenticatedContext();
        } else {
      SecurityContext sC = new SecurityContext(s);
            SecurityContext.setCurrent(sC);
        }


  // we should try to replace this endpoint specific
  // authorization check with a generic web service message check

View Full Code Here

            }
            if (s == null) {
                s = Subject.getSubject(AccessController.getContext());
            }
        } else {
            SecurityContext sc = SecurityContext.getCurrent();
            if (sc != null && !sc.didServerGenerateCredentials()) {
                // make sure we don't use default unauthenticated subject,
                // so that module cannot change this important (constant)
                // subject.
                s = sc.getSubject();
            }
        }


  if (s == null) {
      s = new Subject();

View Full Code Here

            }
            if (s == null) {
                s = Subject.getSubject(AccessController.getContext());
            }
        } else {
            SecurityContext sc = SecurityContext.getCurrent();
            if (sc != null && !sc.didServerGenerateCredentials()) {
                // make sure we don't use default unauthenticated subject,
                // so that module cannot change this important (constant)
                // subject.
                s = sc.getSubject();
            }
        }


  if (s == null) {
      s = new Subject();

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

Related Classes of com.sun.enterprise.security.SecurityContext

com.sun.enterprise.admin.server.core.ConfigInterceptor

com.sun.enterprise.admin.util.GenericAdminAuthenticator

com.sun.enterprise.admin.wsmgmt.msg.MessageTraceFactory

com.sun.enterprise.connectors.ConnectionManagerImpl

com.sun.enterprise.connectors.work.context.ConnectorCallbackHandler

com.sun.enterprise.deployment.PrincipalImpl

com.sun.enterprise.jbi.serviceengine.handlers.JBISecurityHandler

com.sun.enterprise.security.application.EJBSecurityManager

com.sun.enterprise.security.auth.login.DistinguishedPrincipalCredential

com.sun.enterprise.security.auth.login.LoginContextDriver

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.