Package org.jboss.errai.bus.server.security.auth

Examples of org.jboss.errai.bus.server.security.auth.AuthSubject

59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
  public boolean decision(final Message message) {
    if (!message.hasResource("Session")) return false;
    else {

      AuthSubject subject = getSession(message).getAttribute(AuthSubject.class, ErraiService.SESSION_AUTH_DATA);

      if (subject == null) {
        /**
         * Inform the client they must login.
         */

        if ("LoginClient".equals(message.getSubject())) {
          /**
           * Make an exception for the LoginClient ...
           */
          return true;
        }


        // TODO: This reside with the "AuthenticationService" listener, no
        // i.e. by forwarding to that subject. See ErraiServiceImpl
        createMessage()
            .toSubject("LoginClient")
            .command(SecurityCommands.SecurityChallenge)
            .with(SecurityParts.CredentialsRequired, "Name,Password")
            .with(MessageParts.ReplyTo, ErraiService.AUTHORIZATION_SVC_SUBJECT)
            .with(SecurityParts.RejectedMessage, ServerBusUtils.encodeJSON(message.getParts()))
            .copyResource("Session", message)
            .errorsHandledBy(new ErrorCallback() {
              public boolean error(Message message, Throwable throwable) {
                ErrorHelper.sendClientError(bus, message, throwable.getMessage(), throwable);
                return false;
              }
            })
            .sendNowWith(bus, false);

        return false;
      }

      if (!subject.getRoles().containsAll(requiredRoles)) {
        createConversation(message)
            .toSubject("ClientErrorService")
            .with(MessageParts.ErrorMessage, "Access denied to service: "
                + message.get(String.class, MessageParts.ToSubject) +
                " (Required Roles: [" + getRequiredRolesString() + "])")
View Full Code Here
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
      }
    });

    bus.subscribe(ErraiService.AUTHORIZATION_SERVICE, new MessageCallback() {
      public void callback(Message message) {
        AuthSubject subject = message.getResource(QueueSession.class, "Session")
            .getAttribute(AuthSubject.class, ErraiService.SESSION_AUTH_DATA);

        Message reply = MessageBuilder.createConversation(message).getMessage();

        if (subject != null) {
          reply.set(SecurityParts.Roles, subject.toRolesString());
          reply.set(SecurityParts.Name, subject.getUsername());
        }

        reply.sendNowWith(bus);
      }
    });
View Full Code Here
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
        .setString("name", name)
        .setString("password", password)
        .uniqueResult();

    if (userObj != null) {
      AuthSubject authSubject = new AuthSubject(name, name, (Collection) MVEL.getProperty(rolesField, userObj));

      /**
       * If we got this far, then the authentication succeeded. So grab access to the HTTPSession and
       * add the authorization token.
       */
      addAuthenticationToken(message, authSubject);

      /**
       * Prepare to send a message back to the client, informing it that a successful login has
       * been performed.
       */
      createConversation(message)
          .subjectProvided()
          .command(SecurityCommands.SuccessfulAuth)
          .with(SecurityParts.Roles, authSubject.toRolesString())
          .with(SecurityParts.Name, name)
          .noErrorHandling()
          .sendNowWith(bus);
    }
    else {
View Full Code Here
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
      }
    });

    bus.subscribe(ErraiService.AUTHORIZATION_SERVICE, new MessageCallback() {
      public void callback(Message message) {
        AuthSubject subject = message.getResource(QueueSession.class, "Session")
            .getAttribute(AuthSubject.class, ErraiService.SESSION_AUTH_DATA);

        Message reply = MessageBuilder.createConversation(message).getMessage();

        if (subject != null) {
          reply.set(SecurityParts.Roles, subject.toRolesString());
          reply.set(SecurityParts.Name, subject.getUsername());
        }

        reply.sendNowWith(bus);
      }
    });
View Full Code Here
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
  public boolean decision(final Message message) {
    if (!message.hasResource("Session")) return false;
    else {

      AuthSubject subject = getSession(message).getAttribute(AuthSubject.class, ErraiService.SESSION_AUTH_DATA);

      if (subject == null) {
        /**
         * Inform the client they must login.
         */

        if ("LoginClient".equals(message.getSubject())) {
          /**
           * Make an exception for the LoginClient ...
           */
          return true;
        }


        // TODO: This reside with the "AuthenticationService" listener, no
        // i.e. by forwarding to that subject. See ErraiServiceImpl
        createMessage()
            .toSubject("LoginClient")
            .command(SecurityCommands.SecurityChallenge)
            .with(SecurityParts.CredentialsRequired, "Name,Password")
            .with(MessageParts.ReplyTo, ErraiService.AUTHORIZATION_SVC_SUBJECT)
            .with(SecurityParts.RejectedMessage, BusToolsCli.encodeMessage(message))
            .copyResource("Session", message)
            .errorsHandledBy(new ErrorCallback<Message>() {
              public boolean error(Message message, Throwable throwable) {
                ErrorHelper.sendClientError(bus, message, throwable.getMessage(), throwable);
                return false;
              }
            })
            .sendNowWith(bus, false);

        return false;
      }

      if (!subject.getRoles().containsAll(requiredRoles)) {
        createConversation(message)
            .toSubject("ClientErrorService")
            .with(MessageParts.ErrorMessage, "Access denied to service: "
                + message.get(String.class, MessageParts.ToSubject) +
                " (Required Roles: [" + getRequiredRolesString() + "])")
View Full Code Here
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
                .setString("name", name)
                .setString("password", password)
                .uniqueResult();

        if (userObj != null) {
            AuthSubject authSubject = new AuthSubject(name, name, (Collection) MVEL.getProperty(rolesField, userObj));

            /**
             * If we got this far, then the authentication succeeded. So grab access to the HTTPSession and
             * add the authorization token.
             */
            addAuthenticationToken(message, authSubject);


            /**
             * Prepare to send a message back to the client, informing it that a successful login has
             * been performed.
             */
            createConversation(message)
                    .subjectProvided()
                    .command(SecurityCommands.SuccessfulAuth)
                    .with(SecurityParts.Roles, authSubject.toRolesString())
                    .with(SecurityParts.Name, name)
                    .noErrorHandling()
                    .sendNowWith(bus);
        } else {
            /**
 
View Full Code Here
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
            }
        });

        bus.subscribe("ClientNegotiationService", new MessageCallback() {
            public void callback(CommandMessage message) {
                AuthSubject subject = (AuthSubject)
                        ((HttpSession) message.getResource("Session")).getAttribute(ErraiService.SESSION_AUTH_DATA);

                ConversationMessage reply = ConversationMessage.create(message);

                if (subject != null) {
                    reply.set(SecurityParts.Roles, subject.toRolesString());
                    reply.set(SecurityParts.Name, subject.getUsername());
                }

                reply.sendNowWith(bus);
            }
        });
View Full Code Here
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
    }

    public boolean decision(CommandMessage message) {
        if (!message.hasResource("Session")) return false;
        else {
            AuthSubject subject = (AuthSubject) getSession(message)
                    .getAttribute(ErraiService.SESSION_AUTH_DATA);

            if (subject == null) {
                /**
                 * Inform the client they must login.
                 */
                bus.send(CommandMessage.create(SecurityCommands.SecurityChallenge)
                        .toSubject("LoginClient")
                        .set(SecurityParts.CredentialsRequired, "Name,Password")
                        .set(SecurityParts.ReplyTo, ErraiService.AUTHORIZATION_SVC_SUBJECT)
                        .copyResource("Session", message)
                        .set(SecurityParts.RejectedMessage, ServerBusUtils.encodeJSON(message.getParts()))
                        , false);
                return false;
            }

            if (!subject.getRoles().containsAll(requiredRoles)) {
                ConversationMessage.create()
                        .toSubject("ClientErrorService")
                        .set(MessageParts.ErrorMessage, "Access denied to service: "
                                + message.get(String.class, MessageParts.ToSubject) +
                                " (Required Roles: [" + getRequiredRolesString() + "])")
View Full Code Here
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
      }
    });

    bus.subscribe(ErraiService.AUTHORIZATION_SERVICE, new MessageCallback() {
      public void callback(Message message) {
        AuthSubject subject = message.getResource(QueueSession.class, "Session")
            .getAttribute(AuthSubject.class, ErraiService.SESSION_AUTH_DATA);

        Message reply = MessageBuilder.createConversation(message).getMessage();

        if (subject != null) {
          reply.set(SecurityParts.Roles, subject.toRolesString());
          reply.set(SecurityParts.Name, subject.getUsername());
        }

        reply.sendNowWith(bus);
      }
    });
View Full Code Here
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
  public boolean decision(final Message message) {
    if (!message.hasResource("Session")) return false;
    else {

      AuthSubject subject = getSession(message).getAttribute(AuthSubject.class, ErraiService.SESSION_AUTH_DATA);

      if (subject == null) {
        /**
         * Inform the client they must login.
         */

        if ("LoginClient".equals(message.getSubject())) {
          /**
           * Make an exception for the LoginClient ...
           */
          return true;
        }


        // TODO: This reside with the "AuthenticationService" listener, no
        // i.e. by forwarding to that subject. See ErraiServiceImpl
        createMessage()
            .toSubject("LoginClient")
            .command(SecurityCommands.SecurityChallenge)
            .with(SecurityParts.CredentialsRequired, "Name,Password")
            .with(MessageParts.ReplyTo, ErraiService.AUTHORIZATION_SVC_SUBJECT)
            .with(SecurityParts.RejectedMessage, ServerBusTools.encodeMessage(message))
            .copyResource("Session", message)
            .errorsHandledBy(new ErrorCallback() {
              public boolean error(Message message, Throwable throwable) {
                ErrorHelper.sendClientError(bus, message, throwable.getMessage(), throwable);
                return false;
              }
            })
            .sendNowWith(bus, false);

        return false;
      }

      if (!subject.getRoles().containsAll(requiredRoles)) {
        createConversation(message)
            .toSubject("ClientErrorService")
            .with(MessageParts.ErrorMessage, "Access denied to service: "
                + message.get(String.class, MessageParts.ToSubject) +
                " (Required Roles: [" + getRequiredRolesString() + "])")
View Full Code Here
TOP

Related Classes of org.jboss.errai.bus.server.security.auth.AuthSubject

  • org.jboss.errai.bus.server.security.auth.rules.RolesRequiredRule
  • org.jboss.errai.bus.server.service.bootstrap.DefaultServices
  • org.jboss.errai.bus.server.service.ErraiServiceImpl
  • org.jboss.errai.persistence.server.security.HibernateAuthenticationAdapter
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.