Examples of org.apache.shiro.authz.permission.AllPermission

Package org.apache.shiro.authz.permission

Examples of org.apache.shiro.authz.permission.AllPermission

org.apache.shiro.authz.permission.AllPermission
An all AllPermission instance is one that always implies any other permission; that is, its {@link #implies implies} method always returns true.
You should be very careful about the users, roles, and/or groups to which this permission is assigned since those respective entities will have the ability to do anything. As such, an instance of this class is typically only assigned only to "root" or "administrator" users or roles. @author Les Hazlewood @since 0.1

        add(new SimpleAccount(
                username,
                password,
                getName(),
                CollectionUtils.asSet("root"),
                CollectionUtils.<Permission>asSet(new AllPermission())
        ));
    }

View Full Code Here

      throws Exception
  {
    ExceptionCatchingModularRealmAuthorizer subject =
        new ExceptionCatchingModularRealmAuthorizer(Collections.<Realm>singleton(BROKEN_REALM));


    Permission permission = new AllPermission();


    Assert.assertFalse(subject.isPermitted((PrincipalCollection) null, ""));
    Assert.assertFalse(subject.isPermitted((PrincipalCollection) null, permission));
    Assert.assertFalse(subject.isPermitted((PrincipalCollection) null, new String[]{""})[0]);
    Assert.assertFalse(subject.isPermitted((PrincipalCollection) null, Collections.singletonList(permission))[0]);

View Full Code Here

        ProjectAuthorityService projectAuthorityService = beanFactory.getBean(ProjectAuthorityService.class);
        //
        Project project = getProjectFromWebSubject();
        ProjectUser projectUser = getProjectUserFromWebSubject();
        if(project==null) {
            authorizationInfo.addObjectPermission(new AllPermission());
        } else if(project.getCreatedById()==projectUser.getId()) {// owner
            //
            List<ProjectAuthority> projectAuthorities = projectAuthorityService.listProjectAuthorities();
            for(ProjectAuthority projectAuthority : projectAuthorities) {
                //
                String authorityCode = projectAuthority.getCode();
                StringUtils.replace(authorityCode, "-", ":");
                authorizationInfo.addStringPermission(authorityCode.replaceAll("-", ":"));
            }
        } else {
            //
            authorizationInfo.addObjectPermission(new AllPermission());
        }
        //
        return authorizationInfo;
    }

View Full Code Here

TOP

Related Classes of org.apache.shiro.authz.permission.AllPermission

org.focusns.security.realm.DefaultAuthorizingRealm

org.graylog2.security.realm.GraylogSimpleAccountRealm

org.sonatype.security.ExceptionCatchingModularRealmAuthorizerTest

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.