Menu
▾
▴
[jboss-cvs] jboss/src/main/org/jboss/ejb/plugins SecurityInterceptor.java
|
From: Scott M S. <st...@us...> - 2003-07-26 03:18:40
|
User: starksm
Date: 03/07/25 12:14:47
Modified: src/main/org/jboss/ejb/plugins Tag: Branch_3_2
SecurityInterceptor.java
Log:
Add some trace level logging
Revision Changes Path
No revision
No revision
1.32.2.2 +210 -195 jboss/src/main/org/jboss/ejb/plugins/Attic/SecurityInterceptor.java
Index: SecurityInterceptor.java
===================================================================
RCS file: /cvsroot/jboss/jboss/src/main/org/jboss/ejb/plugins/Attic/SecurityInterceptor.java,v
retrieving revision 1.32.2.1
retrieving revision 1.32.2.2
diff -u -r1.32.2.1 -r1.32.2.2
--- SecurityInterceptor.java 4 Mar 2003 21:17:14 -0000 1.32.2.1
+++ SecurityInterceptor.java 25 Jul 2003 19:14:47 -0000 1.32.2.2
@@ -22,211 +22,226 @@
import org.jboss.security.SimplePrincipal;
/** The SecurityInterceptor is where the EJB 2.0 declarative security model
-is enforced. This is where the caller identity propagation is controlled as well.
+ is enforced. This is where the caller identity propagation is controlled as well.
-@author <a href="on...@ib...">Oleg Nitz</a>
-@author <a href="mailto:Sco...@jb...">Scott Stark</a>.
-@version $Revision: 1.32.2.1 $
-*/
+ @author <a href="on...@ib...">Oleg Nitz</a>
+ @author <a href="mailto:Sco...@jb...">Scott Stark</a>.
+ @version $Revision: 1.32.2.2 $
+ */
public class SecurityInterceptor extends AbstractInterceptor
{
- /**
- * @supplierCardinality 0..1
- * @supplierQualifier authentication
- * @clientCardinality 1..*
- */
- protected AuthenticationManager securityManager;
-
- /**
- * @supplierCardinality 0..1
- * @clientCardinality 1..*
- * @supplierQualifier identity mapping
- */
- protected RealmMapping realmMapping;
- protected Principal runAsRole;
-
- public SecurityInterceptor()
- {
- }
-
- /** Called by the super class to set the container to which this interceptor
- belongs. We obtain the security manager and runAs identity to use here.
- */
- public void setContainer(Container container)
- {
- super.setContainer(container);
- if( container != null )
- {
- BeanMetaData beanMetaData = container.getBeanMetaData();
- SecurityIdentityMetaData secMetaData = beanMetaData.getSecurityIdentityMetaData();
- if( secMetaData != null && secMetaData.getUseCallerIdentity() == false )
- {
- String roleName = secMetaData.getRunAsRoleName();
- runAsRole = new SimplePrincipal(roleName);
- }
- securityManager = container.getSecurityManager();
- realmMapping = container.getRealmMapping();
- }
- }
+ /**
+ * @supplierCardinality 0..1
+ * @supplierQualifier authentication
+ * @clientCardinality 1..*
+ */
+ protected AuthenticationManager securityManager;
+
+ /**
+ * @supplierCardinality 0..1
+ * @clientCardinality 1..*
+ * @supplierQualifier identity mapping
+ */
+ protected RealmMapping realmMapping;
+ protected Principal runAsRole;
+
+ public SecurityInterceptor()
+ {
+ }
+
+ /** Called by the super class to set the container to which this interceptor
+ belongs. We obtain the security manager and runAs identity to use here.
+ */
+ public void setContainer(Container container)
+ {
+ super.setContainer(container);
+ if (container != null)
+ {
+ BeanMetaData beanMetaData = container.getBeanMetaData();
+ SecurityIdentityMetaData secMetaData = beanMetaData.getSecurityIdentityMetaData();
+ if (secMetaData != null && secMetaData.getUseCallerIdentity() == false)
+ {
+ String roleName = secMetaData.getRunAsRoleName();
+ runAsRole = new SimplePrincipal(roleName);
+ }
+ securityManager = container.getSecurityManager();
+ realmMapping = container.getRealmMapping();
+ }
+ }
// Container implementation --------------------------------------
- public void start() throws Exception
- {
- super.start();
- }
-
- public Object invokeHome(Invocation mi) throws Exception
- {
- // Authenticate the subject and apply any declarative security checks
- checkSecurityAssociation(mi);
- /* If a run-as role was specified, push it so that any calls made
- by this bean will have the runAsRole available for declarative
- security checks.
- */
- if( runAsRole != null )
- {
- SecurityAssociation.pushRunAsRole(runAsRole);
- }
- try
- {
- Object returnValue = getNext().invokeHome(mi);
- return returnValue;
- }
- finally
- {
- if( runAsRole != null )
- {
- SecurityAssociation.popRunAsRole();
- }
- }
- }
- public Object invoke(Invocation mi) throws Exception
- {
- // Authenticate the subject and apply any declarative security checks
- checkSecurityAssociation(mi);
- /* If a run-as role was specified, push it so that any calls made
- by this bean will have the runAsRole available for declarative
- security checks.
- */
- if( runAsRole != null )
- {
- SecurityAssociation.pushRunAsRole(runAsRole);
- }
- try
- {
- Object returnValue = getNext().invoke(mi);
- return returnValue;
- }
- finally
- {
- if( runAsRole != null )
- {
- SecurityAssociation.popRunAsRole();
- }
- }
- }
-
- /** The EJB 2.0 declarative security algorithm:
- 1. Authenticate the caller using the principal and credentials in the MethodInfocation
- 2. Validate access to the method by checking the principal's roles against
- those required to access the method.
- */
- private void checkSecurityAssociation(Invocation mi)
- throws Exception
- {
- Principal principal = mi.getPrincipal();
- Object credential = mi.getCredential();
-
- /* If there is not a security manager then there is no authentication
- required
- */
- if(mi.getMethod() == null || securityManager == null)
- {
- // Allow for the progatation of caller info to other beans
- SecurityAssociation.setPrincipal( principal );
- SecurityAssociation.setCredential( credential );
- return;
- }
-
- if (realmMapping == null)
- {
- throw new EJBException("checkSecurityAssociation",
- new SecurityException("Role mapping manager has not been set"));
- }
-
- // Check the security info from the method invocation
- if( securityManager.isValid(principal, credential) == false )
- {
- String msg = "Authentication exception, principal="+principal;
- log.error(msg);
- SecurityException e = new SecurityException(msg);
- throw new EJBException("checkSecurityAssociation", e);
- }
- else
- {
- SecurityAssociation.setPrincipal( principal );
- SecurityAssociation.setCredential( credential );
- }
-
- InvocationType iface = mi.getType();
- Set methodRoles = container.getMethodPermissions(mi.getMethod(), iface);
- if( methodRoles == null )
- {
- String method = mi.getMethod().getName();
- String msg = "No method permissions assigned to method="+method
- + ", interface="+iface;
- log.error(msg);
- SecurityException e = new SecurityException(msg);
- throw new EJBException("checkSecurityAssociation", e);
- }
+ public void start() throws Exception
+ {
+ super.start();
+ }
- /* See if there is a runAs role associated with this thread. If there
- is, this is the security role against which the assigned method
- permissions must be checked.
- */
- Principal threadRunAsRole = SecurityAssociation.peekRunAsRole();
- if( threadRunAsRole != null )
- {
- // Check the runAs role
- if( methodRoles.contains(threadRunAsRole) == false &&
- methodRoles.contains(AnybodyPrincipal.ANYBODY_PRINCIPAL) == false )
- {
- String method = mi.getMethod().getName();
- String msg = "Insufficient method permissions, runAsRole="+threadRunAsRole
- + ", method="+method+", interface="+iface
- + ", requiredRoles="+methodRoles;
- log.error(msg);
- SecurityException e = new SecurityException(msg);
- throw new EJBException("checkSecurityAssociation", e);
- }
- }
- /* If the method has no assigned roles or the user does not have at
- least one of the roles then access is denied.
- */
- else if( realmMapping.doesUserHaveRole(principal, methodRoles) == false )
- {
+ public Object invokeHome(Invocation mi) throws Exception
+ {
+ // Authenticate the subject and apply any declarative security checks
+ checkSecurityAssociation(mi);
+ /* If a run-as role was specified, push it so that any calls made
+ by this bean will have the runAsRole available for declarative
+ security checks.
+ */
+ if (runAsRole != null)
+ {
+ SecurityAssociation.pushRunAsRole(runAsRole);
+ }
+ try
+ {
+ Object returnValue = getNext().invokeHome(mi);
+ return returnValue;
+ }
+ finally
+ {
+ if (runAsRole != null)
+ {
+ SecurityAssociation.popRunAsRole();
+ }
+ }
+ }
+
+ public Object invoke(Invocation mi) throws Exception
+ {
+ // Authenticate the subject and apply any declarative security checks
+ checkSecurityAssociation(mi);
+ /* If a run-as role was specified, push it so that any calls made
+ by this bean will have the runAsRole available for declarative
+ security checks.
+ */
+ if (runAsRole != null)
+ {
+ SecurityAssociation.pushRunAsRole(runAsRole);
+ }
+ try
+ {
+ Object returnValue = getNext().invoke(mi);
+ return returnValue;
+ }
+ finally
+ {
+ if (runAsRole != null)
+ {
+ SecurityAssociation.popRunAsRole();
+ }
+ }
+ }
+
+ /** The EJB 2.0 declarative security algorithm:
+ 1. Authenticate the caller using the principal and credentials in the MethodInfocation
+ 2. Validate access to the method by checking the principal's roles against
+ those required to access the method.
+ */
+ private void checkSecurityAssociation(Invocation mi)
+ throws Exception
+ {
+ Principal principal = mi.getPrincipal();
+ Object credential = mi.getCredential();
+ boolean trace = log.isInfoEnabled();
+
+ /* If there is not a security manager then there is no authentication
+ required
+ */
+ if (mi.getMethod() == null || securityManager == null)
+ {
+ // Allow for the progatation of caller info to other beans
+ SecurityAssociation.setPrincipal(principal);
+ SecurityAssociation.setCredential(credential);
+ return;
+ }
+
+ if (realmMapping == null)
+ {
+ throw new EJBException("checkSecurityAssociation",
+ new SecurityException("Role mapping manager has not been set"));
+ }
+
+ // Check the security info from the method invocation
+ if (securityManager.isValid(principal, credential) == false)
+ {
+ String msg = "Authentication exception, principal=" + principal;
+ log.error(msg);
+ SecurityException e = new SecurityException(msg);
+ throw new EJBException("checkSecurityAssociation", e);
+ }
+ else
+ {
+ SecurityAssociation.setPrincipal(principal);
+ SecurityAssociation.setCredential(credential);
+ if (trace)
+ {
+ log.trace("Authenticated principal=" + principal);
+ }
+ }
+
+ InvocationType iface = mi.getType();
+ Set methodRoles = container.getMethodPermissions(mi.getMethod(), iface);
+ if (methodRoles == null)
+ {
+ String method = mi.getMethod().getName();
+ String msg = "No method permissions assigned to method=" + method
+ + ", interface=" + iface;
+ log.error(msg);
+ SecurityException e = new SecurityException(msg);
+ throw new EJBException("checkSecurityAssociation", e);
+ }
+ else if (trace)
+ {
+ log.trace("method=" + mi.getMethod() + ", interface=" + iface
+ + ", requiredRoles=" + methodRoles);
+ }
+
+ /* See if there is a runAs role associated with this thread. If there
+ is, this is the security role against which the assigned method
+ permissions must be checked.
+ */
+ Principal threadRunAsRole = SecurityAssociation.peekRunAsRole();
+ if (threadRunAsRole != null)
+ {
+ if( trace )
+ {
+ log.trace("Checking runAsRole: "+threadRunAsRole);
+ }
+ // Check the runAs role
+ if (methodRoles.contains(threadRunAsRole) == false &&
+ methodRoles.contains(AnybodyPrincipal.ANYBODY_PRINCIPAL) == false)
+ {
String method = mi.getMethod().getName();
- Set userRoles = realmMapping.getUserRoles(principal);
- String msg = "Insufficient method permissions, principal="+principal
- + ", method="+method+", interface="+iface
- + ", requiredRoles="+methodRoles+", principalRoles="+userRoles;
+ String msg = "Insufficient method permissions, runAsRole=" + threadRunAsRole
+ + ", method=" + method + ", interface=" + iface
+ + ", requiredRoles=" + methodRoles;
log.error(msg);
SecurityException e = new SecurityException(msg);
throw new EJBException("checkSecurityAssociation", e);
- }
+ }
+ }
+ /* If the method has no assigned roles or the user does not have at
+ least one of the roles then access is denied.
+ */
+ else if (realmMapping.doesUserHaveRole(principal, methodRoles) == false)
+ {
+ String method = mi.getMethod().getName();
+ Set userRoles = realmMapping.getUserRoles(principal);
+ String msg = "Insufficient method permissions, principal=" + principal
+ + ", method=" + method + ", interface=" + iface
+ + ", requiredRoles=" + methodRoles + ", principalRoles=" + userRoles;
+ log.error(msg);
+ SecurityException e = new SecurityException(msg);
+ throw new EJBException("checkSecurityAssociation", e);
+ }
}
- /* Monitorable implementation ------------------------------------
- public void sample(Object s)
- {
- // Just here to because Monitorable request it but will be removed soon
- }
- public Map retrieveStatistic()
- {
- return null;
- }
- public void resetStatistic()
- {
- }
- */
+ /* Monitorable implementation ------------------------------------
+ public void sample(Object s)
+ {
+ // Just here to because Monitorable request it but will be removed soon
+ }
+ public Map retrieveStatistic()
+ {
+ return null;
+ }
+ public void resetStatistic()
+ {
+ }
+ */
}
|