Examples of TransportGuaranteeType

Examples of io.undertow.servlet.api.TransportGuaranteeType

63
64
65
66
67
68
69
70
71
72
73
        super.handleRequest(exchange);
    }

    @Override
    protected boolean confidentialityRequired(HttpServerExchange exchange) {
        TransportGuaranteeType transportGuarantee = exchange.getAttachment(ServletRequestContext.ATTACHMENT_KEY).getTransportGuarenteeType();

        // TODO - We may be able to add more flexibility here especially with authentication mechanisms such as Digest for
        // INTEGRAL - for now just use SSL.
        return (TransportGuaranteeType.CONFIDENTIAL == transportGuarantee || TransportGuaranteeType.INTEGRAL == transportGuarantee);
    }
View Full Code Here

Examples of io.undertow.servlet.api.TransportGuaranteeType

47
48
49
50
51
52
53
54
55
56
57
        List<SingleConstraintMatch> list = servletRequestContext.getRequiredConstrains();
        if (list == null) {
            servletRequestContext.setRequiredConstrains(list = new ArrayList<SingleConstraintMatch>());
        }
        list.add(securityMatch.getMergedConstraint());
        TransportGuaranteeType type = servletRequestContext.getTransportGuarenteeType();
        if (type == null || type.ordinal() < securityMatch.getTransportGuaranteeType().ordinal()) {
            servletRequestContext.setTransportGuarenteeType(securityMatch.getTransportGuaranteeType());
        }
        next.handleRequest(exchange);
    }
View Full Code Here

Examples of io.undertow.servlet.api.TransportGuaranteeType

46
47
48
49
50
51
52
53
54
55
56
57
    @Override
    public void handleRequest(HttpServerExchange exchange) throws Exception {
        final ServletRequestContext servletRequestContext = exchange.getAttachment(ServletRequestContext.ATTACHMENT_KEY);
        final AuthorizationManager authorizationManager = servletRequestContext.getDeployment().getDeploymentInfo().getAuthorizationManager();

        TransportGuaranteeType connectionGuarantee = servletRequestContext.getOriginalRequest().isSecure() ? TransportGuaranteeType.CONFIDENTIAL : TransportGuaranteeType.NONE;
        TransportGuaranteeType transportGuarantee = authorizationManager.transportGuarantee(connectionGuarantee,
                servletRequestContext.getTransportGuarenteeType(), servletRequestContext.getOriginalRequest());
        servletRequestContext.setTransportGuarenteeType(transportGuarantee);

        if (TransportGuaranteeType.REJECTED == transportGuarantee) {
            HttpServletResponse response = (HttpServletResponse) servletRequestContext.getServletResponse();
View Full Code Here

Examples of io.undertow.servlet.api.TransportGuaranteeType

61
62
63
64
65
66
67
68
69
70
71
        super.handleRequest(exchange);
    }

    @Override
    protected boolean confidentialityRequired(HttpServerExchange exchange) {
        TransportGuaranteeType transportGuarantee = exchange.getAttachment(ServletRequestContext.ATTACHMENT_KEY).getTransportGuarenteeType();

        // TODO - We may be able to add more flexibility here especially with authentication mechanisms such as Digest for
        // INTEGRAL - for now just use SSL.
        return (TransportGuaranteeType.CONFIDENTIAL == transportGuarantee || TransportGuaranteeType.INTEGRAL == transportGuarantee);
    }
View Full Code Here

Examples of io.undertow.servlet.api.TransportGuaranteeType

47
48
49
50
51
52
53
54
55
56
57
        List<SingleConstraintMatch> list = servletRequestContext.getRequiredConstrains();
        if (list == null) {
            servletRequestContext.setRequiredConstrains(list = new ArrayList<SingleConstraintMatch>());
        }
        list.add(securityMatch.getMergedConstraint());
        TransportGuaranteeType type = servletRequestContext.getTransportGuarenteeType();
        if (type == null || type.ordinal() < securityMatch.getTransportGuaranteeType().ordinal()) {
            servletRequestContext.setTransportGuarenteeType(securityMatch.getTransportGuaranteeType());
        }
        next.handleRequest(exchange);
    }
View Full Code Here

Examples of io.undertow.servlet.api.TransportGuaranteeType

46
47
48
49
50
51
52
53
54
55
56
57
    @Override
    public void handleRequest(HttpServerExchange exchange) throws Exception {
        final ServletRequestContext servletRequestContext = exchange.getAttachment(ServletRequestContext.ATTACHMENT_KEY);
        final AuthorizationManager authorizationManager = servletRequestContext.getDeployment().getDeploymentInfo().getAuthorizationManager();

        TransportGuaranteeType connectionGuarantee = servletRequestContext.getOriginalRequest().isSecure() ? TransportGuaranteeType.CONFIDENTIAL : TransportGuaranteeType.NONE;
        TransportGuaranteeType transportGuarantee = authorizationManager.transportGuarantee(connectionGuarantee,
                servletRequestContext.getTransportGuarenteeType(), servletRequestContext.getOriginalRequest());
        servletRequestContext.setTransportGuarenteeType(transportGuarantee);

        if (TransportGuaranteeType.REJECTED == transportGuarantee) {
            HttpServletResponse response = (HttpServletResponse) servletRequestContext.getServletResponse();
View Full Code Here

Examples of io.undertow.servlet.api.TransportGuaranteeType

61
62
63
64
65
66
67
68
69
70
71
        super.handleRequest(exchange);
    }

    @Override
    protected boolean confidentialityRequired(HttpServerExchange exchange) {
        TransportGuaranteeType transportGuarantee = exchange.getAttachment(ServletRequestContext.ATTACHMENT_KEY).getTransportGuarenteeType();

        // TODO - We may be able to add more flexibility here especially with authentication mechanisms such as Digest for
        // INTEGRAL - for now just use SSL.
        return (TransportGuaranteeType.CONFIDENTIAL == transportGuarantee || TransportGuaranteeType.INTEGRAL == transportGuarantee);
    }
View Full Code Here

Examples of org.jboss.metadata.web.spec.TransportGuaranteeType

369
370
371
372
373
374
375
376
377
378
379
380
      if (scs != null)
      {
         for (SecurityConstraintMetaData value : scs)
         {
            org.apache.catalina.deploy.SecurityConstraint constraint = new org.apache.catalina.deploy.SecurityConstraint();
            TransportGuaranteeType tg = value.getTransportGuarantee();
            constraint.setUserConstraint(tg.name());
            AuthConstraintMetaData acmd = value.getAuthConstraint();
            constraint.setAuthConstraint(acmd != null);
            if (acmd != null)
            {
               if (acmd.getRoleNames() != null)
View Full Code Here

Examples of org.jboss.metadata.web.spec.TransportGuaranteeType

90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
      if(constraints != null)
      {
         for(SecurityConstraintMetaData sc : constraints)
         {
            WebResourceCollectionsMetaData resources = sc.getResourceCollections();
            TransportGuaranteeType transport = sc.getTransportGuarantee();
            if( sc.isExcluded() || sc.isUnchecked() )
            {
               // Process the permissions for the excluded/unchecked resources
               if(resources != null)
               for(WebResourceCollectionMetaData wrc : resources)
               {
                  List<String> httpMethods = wrc.getHttpMethods();
                  List<String> urlPatterns = wrc.getUrlPatterns();
                  int length = urlPatterns != null ? urlPatterns.size() : 0;
                  for(int n = 0; n < length; n ++)
                  {
                     String url = urlPatterns.get(n);
                     PatternInfo info = (PatternInfo) patternMap.get(url);
                     // Add the excluded methods
                     if( sc.isExcluded() )
                     {
                        info.addExcludedMethods(httpMethods);
                     }
                  }
               }
            }
            else
            {
               // Process the permission for the resources x roles
               if(resources != null)
               for(WebResourceCollectionMetaData wrc : resources)
               {
                  List<String> httpMethods = wrc.getHttpMethods();
                  List<String> urlPatterns = wrc.getUrlPatterns();
                  int length = urlPatterns != null ? urlPatterns.size() : 0;
                  for(int n = 0; n < length; n ++)
                  {
                     String url = urlPatterns.get(n);
                     // Get the qualified url pattern
                     PatternInfo info = (PatternInfo) patternMap.get(url);
                     HashSet<String> mappedRoles = new HashSet<String>();
                     if(sc.getRoleNames() != null)
                     for(String role : sc.getRoleNames())
                     {
                        if( role.equals("*") )
                        {
                           //JBAS-1824: Allow "*" to provide configurable authorization bypass
                           if(metaData.isJaccAllStoreRole())
                              mappedRoles.add("*");
                           else
                           {
                              // The wildcard ref maps to all declared security-role names
                              for(SecurityRoleMetaData srmd : metaData.getSecurityRoles())
                              {
                                 role = srmd.getRoleName();
                                 mappedRoles.add(role);
                              }
                           }
                        }
                        else
                        {
                           mappedRoles.add(role);
                        }
                     }
                     info.addRoles(mappedRoles, httpMethods);
                     // Add the transport to methods
                     info.addTransport(transport.name(), httpMethods);
                     //SECURITY-63: Missing auth-constraint needs unchecked policy
                     if(sc.getAuthConstraint() == null)
                        info.isMissingAuthConstraint = true;
                  }
               }
View Full Code Here

Examples of org.jboss.metadata.web.spec.TransportGuaranteeType

376
377
378
379
380
381
382
383
384
385
386
    */
   public static UserDataConstraintMetaData newUserDataConstraint(final String transportGuarantee,
         final SecurityConstraintMetaData securityConstraintMD)
   {
      final UserDataConstraintMetaData userDataConstraintMD = new UserDataConstraintMetaData();
      final TransportGuaranteeType transportGuaranteeValue = TransportGuaranteeType.valueOf(transportGuarantee);

      userDataConstraintMD.setTransportGuarantee(transportGuaranteeValue);
      securityConstraintMD.setUserDataConstraint(userDataConstraintMD);

      return userDataConstraintMD;
View Full Code Here
TOP
Copyright © 2018 www.massapi.com. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.