KickJava   Java API By Example, From Geeks To Geeks.

Java > Open Source Codes > org > jboss > ejb3 > test > dd > web > servlets > UnsecureEJBServlet


1 /*
2   * JBoss, Home of Professional Open Source
3   * Copyright 2005, JBoss Inc., and individual contributors as indicated
4   * by the @authors tag. See the copyright.txt in the distribution for a
5   * full listing of individual contributors.
6   *
7   * This is free software; you can redistribute it and/or modify it
8   * under the terms of the GNU Lesser General Public License as
9   * published by the Free Software Foundation; either version 2.1 of
10   * the License, or (at your option) any later version.
11   *
12   * This software is distributed in the hope that it will be useful,
13   * but WITHOUT ANY WARRANTY; without even the implied warranty of
14   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15   * Lesser General Public License for more details.
16   *
17   * You should have received a copy of the GNU Lesser General Public
18   * License along with this software; if not, write to the Free
19   * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20   * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
21   */
22 package org.jboss.ejb3.test.dd.web.servlets;
23
24 import java.io.IOException JavaDoc;
25 import java.io.PrintWriter JavaDoc;
26 import java.security.Principal JavaDoc;
27 import javax.naming.InitialContext JavaDoc;
28 import javax.naming.Context JavaDoc;
29 import javax.servlet.ServletException JavaDoc;
30 import javax.servlet.http.HttpServlet JavaDoc;
31 import javax.servlet.http.HttpServletRequest JavaDoc;
32 import javax.servlet.http.HttpServletResponse JavaDoc;
33
34 import org.jboss.ejb3.test.dd.web.interfaces.StatelessSessionLocal;
35 import org.jboss.logging.Logger;
36
37 /** A servlet deployed under an unrestricted path that invokes the method
38  * specified as a parameter on a secured EJB.
39  *
40  * @author Scott.Stark@jboss.org
41  * @version $Revision: 37459 $
42  */
43 public class UnsecureEJBServlet extends HttpServlet JavaDoc
44 {
45    Logger log = Logger.getLogger(UnsecureEJBServlet.class);
46
47    protected void processRequest(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
48       throws ServletException JavaDoc, IOException JavaDoc
49    {
50       boolean includeHead = true;
51       String JavaDoc param = request.getParameter("includeHead");
52       if( param != null )
53          includeHead = Boolean.valueOf(param).booleanValue();
54       String JavaDoc method = request.getParameter("method");
55       if( method == null )
56          method = "echo";
57
58       try
59       {
60          InitialContext JavaDoc ctx = new InitialContext JavaDoc();
61        
62          Context JavaDoc enc = (Context JavaDoc) ctx.lookup("java:comp/env");
63        
64          StatelessSessionLocal bean = (StatelessSessionLocal)enc.lookup("ejb/local/SecuredEJB");
65          if( method.equals("echo") )
66             bean.echo("UnsecureEJBServlet called SecuredEJB.echo");
67          else if( method.equals("unchecked") )
68             bean.unchecked();
69          else if( method.equals("checkRunAs") )
70             bean.checkRunAs();
71          else
72             throw new IllegalArgumentException JavaDoc("method must be one of: echo, unchecked, checkRunAs");
73       }
74       catch(Exception JavaDoc e)
75       {
76          log.error("Access to failed to method: "+method, e);
77          throw new ServletException JavaDoc("Access to failed to method: "+method, e);
78       }
79
80       Principal JavaDoc user = request.getUserPrincipal();
81       PrintWriter JavaDoc out = response.getWriter();
82       if( includeHead == true )
83       {
84          response.setContentType("text/html");
85          out.println("<html>");
86          out.println("<head><title>UnsecureEJBServlet</title></head><body>");
87       }
88       out.println("<h1>UnsecureEJBServlet Accessed</h1>");
89       out.println("<pre>You have accessed this servlet as user: "+user+"<br>");
90       out.println("You have accessed SecuredEJB as user: "+user);
91       out.println("You have invoked SecuredEJB."+method);
92       out.println("</pre>");
93       if( includeHead == true )
94          out.println("</pre></body></html>");
95       out.close();
96    }
97
98    protected void doGet(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
99       throws ServletException JavaDoc, IOException JavaDoc
100    {
101       processRequest(request, response);
102    }
103    
104    protected void doPost(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
105       throws ServletException JavaDoc, IOException JavaDoc
106    {
107       processRequest(request, response);
108    }
109
110 }
111
Popular Tags