Package $

Source Code of $.AuthorizeSupport

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
package ${package}.security.ext;

import java.util.HashSet;
import java.util.Set;

import org.acegisecurity.Authentication;
import org.acegisecurity.GrantedAuthority;
import org.acegisecurity.context.SecurityContextHolder;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.apache.oro.text.regex.MalformedPatternException;
import org.apache.oro.text.regex.PatternMatcher;
import org.apache.oro.text.regex.Perl5Compiler;
import org.apache.oro.text.regex.Perl5Matcher;
import org.springframework.util.AntPathMatcher;
import org.springframework.util.PathMatcher;

public abstract class AuthorizeSupport {

  protected final Log logger = LogFactory.getLog(getClass());

  private boolean useAntPath = false;

  private PathMatcher pathMatcher = new AntPathMatcher();

  private PatternMatcher matcher = new Perl5Matcher();

  public boolean isUseAntPath() {
    return useAntPath;
  }

  public void setUseAntPath(boolean useAntPath) {
    this.useAntPath = useAntPath;
  }

  public boolean isMatch(String pattern, String url) {
    if (isUseAntPath()) {
      return pathMatcher.match(pattern, url);
    }
    try {
      return matcher.matches(url, new Perl5Compiler().compile(pattern,
          Perl5Compiler.READ_ONLY_MASK));
    } catch (MalformedPatternException mpe) {
      throw new IllegalArgumentException("Malformed regular expression: "
          + pattern);
    }
  }

  public boolean authorize(String url) {
    if ((url != null) && !"".equals(url)) {
      Set<String> granted = getPrincipalAuthorities();
      Set<String> required = getRequiredAuthorities(url);
      granted.retainAll(required);
      if (granted.isEmpty()) {
        return false;
      }
    }
    return true;
  }

  public Set<String> getPrincipalAuthorities() {
    Set<String> result = new HashSet<String>();
    Authentication auth = SecurityContextHolder.getContext()
        .getAuthentication();
    if (auth != null) {
      GrantedAuthority[] authorities = auth.getAuthorities();
      if (authorities != null) {
        for (GrantedAuthority authority : authorities) {
          result.add(authority.getAuthority());
        }
        return result;
      }
    }
    return result;
  }

  public abstract Set<String> getRequiredAuthorities(String url);

}
TOP

Related Classes of $.AuthorizeSupport

  • org.acegisecurity.Authentication
  • org.apache.oro.text.regex.Perl5Compiler
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.