Examples of org.springframework.security.acls.model.Sid

Package org.springframework.security.acls.model

Examples of org.springframework.security.acls.model.Sid

org.springframework.security.acls.model.Sid
A security identity recognised by the ACL system.
This interface provides indirection between actual security objects (eg principals, roles, groups etc) and what is stored inside an Acl. This is because an Acl will not store an entire security object, but only an abstraction of it. This interface therefore provides a simple way to compare these abstracted security identities with other security identities and actual security objects.
@author Ben Alex


        // We need SecureDocumentDao to assign different permissions
        //SecureDocumentDao dao = (SecureDocumentDao) documentDao;


        // We need to construct an ACL-specific Sid. Note the prefix contract is defined on the superclass method's JavaDocs
        Sid sid = null;
        if (recipient.startsWith("ROLE_")) {
            sid = new GrantedAuthoritySid(recipient);
        } else {
            sid = new PrincipalSid(recipient);
        }

View Full Code Here

        }


        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();


        // Check if authorized by virtue of ACL ownership
        Sid currentUser = new PrincipalSid(authentication);


        if (currentUser.equals(acl.getOwner())
                && ((changeType == CHANGE_GENERAL) || (changeType == CHANGE_OWNERSHIP))) {
            return;
        }


        // Not authorized by ACL ownership; try via adminstrative permissions

View Full Code Here

       MutableAcl topParent = jdbcMutableAclService.createAcl(topParentOid);


       // Add an ACE permission entry
       Permission cm = new CumulativePermission().set(BasePermission.READ).set(BasePermission.ADMINISTRATION);
       assertEquals(17, cm.getMask());
       Sid benSid = new PrincipalSid(auth);
       topParent.insertAce(0, cm, benSid, true);
       assertEquals(1, topParent.getEntries().size());


       // Explicitly save the changed ACL
       topParent = jdbcMutableAclService.updateAcl(topParent);

View Full Code Here

                if (parentAclId != 0) {
                    parentAcl = new StubAclParent(Long.valueOf(parentAclId));
                }


                boolean entriesInheriting = rs.getBoolean("entries_inheriting");
                Sid owner;


                if (rs.getBoolean("acl_principal")) {
                    owner = new PrincipalSid(rs.getString("acl_sid"));
                } else {
                    owner = new GrantedAuthoritySid(rs.getString("acl_sid"));
                }


                acl = new AclImpl(objectIdentity, id, aclAuthorizationStrategy, grantingStrategy, parentAcl, null,
                        entriesInheriting, owner);


                acls.put(id, acl);
            }


            // Add an extra ACE to the ACL (ORDER BY maintains the ACE list order)
            // It is permissible to have no ACEs in an ACL (which is detected by a null ACE_SID)
            if (rs.getString("ace_sid") != null) {
                Long aceId = new Long(rs.getLong("ace_id"));
                Sid recipient;


                if (rs.getBoolean("ace_principal")) {
                    recipient = new PrincipalSid(rs.getString("ace_sid"));
                } else {
                    recipient = new GrantedAuthoritySid(rs.getString("ace_sid"));

View Full Code Here

    }


    @Test
    public void testAccessControlEntryImplGetters() {
        Acl mockAcl = mock(Acl.class);
        Sid sid = new PrincipalSid("johndoe");


        // Create a sample entry
        AccessControlEntry ace = new AccessControlEntryImpl(Long.valueOf(1), mockAcl, sid, BasePermission.ADMINISTRATION,
                true, true, true);

View Full Code Here

    public void testEquals() {
        final Acl mockAcl = mock(Acl.class);
        final ObjectIdentity oid = mock(ObjectIdentity.class);


        when(mockAcl.getObjectIdentity()).thenReturn(oid);
        Sid sid = new PrincipalSid("johndoe");


        AccessControlEntry ace = new AccessControlEntryImpl(Long.valueOf(1), mockAcl, sid, BasePermission.ADMINISTRATION,
                true, true, true);


        assertFalse(ace.equals(null));

View Full Code Here

            @RequestParam("sid") String sid,
            @RequestParam("permission") int mask) {


        Contact contact = contactManager.getById(new Long(contactId));


        Sid sidObject = new PrincipalSid(sid);
        Permission permission = permissionFactory.buildFromMask(mask);


        contactManager.deletePermission(contact, sidObject, permission);


        Map<String, Object> model = new HashMap<String, Object>();

View Full Code Here

        }
    }


    public void testPrincipalSidEquals() throws Exception {
        Authentication authentication = new TestingAuthenticationToken("johndoe", "password");
        Sid principalSid = new PrincipalSid(authentication);


        Assert.assertFalse(principalSid.equals(null));
        Assert.assertFalse(principalSid.equals("DIFFERENT_TYPE_OBJECT"));
        Assert.assertTrue(principalSid.equals(principalSid));
        Assert.assertTrue(principalSid.equals(new PrincipalSid(authentication)));
        Assert.assertTrue(principalSid.equals(new PrincipalSid(new TestingAuthenticationToken("johndoe", null))));
        Assert.assertFalse(principalSid.equals(new PrincipalSid(new TestingAuthenticationToken("scott", null))));
        Assert.assertTrue(principalSid.equals(new PrincipalSid("johndoe")));
        Assert.assertFalse(principalSid.equals(new PrincipalSid("scott")));
    }

View Full Code Here

        Assert.assertFalse(principalSid.equals(new PrincipalSid("scott")));
    }


    public void testGrantedAuthoritySidEquals() throws Exception {
        GrantedAuthority ga = new SimpleGrantedAuthority("ROLE_TEST");
        Sid gaSid = new GrantedAuthoritySid(ga);


        Assert.assertFalse(gaSid.equals(null));
        Assert.assertFalse(gaSid.equals("DIFFERENT_TYPE_OBJECT"));
        Assert.assertTrue(gaSid.equals(gaSid));
        Assert.assertTrue(gaSid.equals(new GrantedAuthoritySid(ga)));
        Assert.assertTrue(gaSid.equals(new GrantedAuthoritySid(new SimpleGrantedAuthority("ROLE_TEST"))));
        Assert.assertFalse(gaSid.equals(new GrantedAuthoritySid(new SimpleGrantedAuthority("ROLE_NOT_EQUAL"))));
        Assert.assertTrue(gaSid.equals(new GrantedAuthoritySid("ROLE_TEST")));
        Assert.assertFalse(gaSid.equals(new GrantedAuthoritySid("ROLE_NOT_EQUAL")));
    }

View Full Code Here

        Assert.assertFalse(gaSid.equals(new GrantedAuthoritySid("ROLE_NOT_EQUAL")));
    }


    public void testPrincipalSidHashCode() throws Exception {
        Authentication authentication = new TestingAuthenticationToken("johndoe", "password");
        Sid principalSid = new PrincipalSid(authentication);


        Assert.assertTrue(principalSid.hashCode() == "johndoe".hashCode());
        Assert.assertTrue(principalSid.hashCode() == new PrincipalSid("johndoe").hashCode());
        Assert.assertTrue(principalSid.hashCode() != new PrincipalSid("scott").hashCode());
        Assert.assertTrue(principalSid.hashCode() != new PrincipalSid(new TestingAuthenticationToken("scott", "password")).hashCode());
    }

View Full Code Here

0 1

TOP

Related Classes of org.springframework.security.acls.model.Sid

org.jtalks.jcommune.service.security.AclGroupPermissionEvaluator

org.springframework.security.acls.domain.AccessControlImplEntryTests

org.springframework.security.acls.domain.AclAuthorizationStrategyImpl

org.springframework.security.acls.jdbc.BasicLookupStrategy$ProcessResultSet

org.springframework.security.acls.jdbc.JdbcMutableAclServiceTests

org.springframework.security.acls.sid.SidTests

sample.contact.AdminPermissionController

sample.dms.secured.SecureDataSourcePopulator

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.