KickJava   Java API By Example, From Geeks To Geeks.

Java > Open Source Codes > org > jboss > ejb3 > test > security > SecurityContextBean


1 /*
2   * JBoss, Home of Professional Open Source
3   * Copyright 2005, JBoss Inc., and individual contributors as indicated
4   * by the @authors tag. See the copyright.txt in the distribution for a
5   * full listing of individual contributors.
6   *
7   * This is free software; you can redistribute it and/or modify it
8   * under the terms of the GNU Lesser General Public License as
9   * published by the Free Software Foundation; either version 2.1 of
10   * the License, or (at your option) any later version.
11   *
12   * This software is distributed in the hope that it will be useful,
13   * but WITHOUT ANY WARRANTY; without even the implied warranty of
14   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15   * Lesser General Public License for more details.
16   *
17   * You should have received a copy of the GNU Lesser General Public
18   * License along with this software; if not, write to the Free
19   * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20   * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
21   */

22 package org.jboss.ejb3.test.security;
23
24 import java.util.Iterator JavaDoc;
25 import java.util.Set JavaDoc;
26 import javax.ejb.EJB JavaDoc;
27 import javax.ejb.EJBs JavaDoc;
28 import javax.annotation.Resource;
29 import javax.annotation.security.RolesAllowed;
30 import javax.ejb.Remote JavaDoc;
31 import javax.ejb.SessionContext JavaDoc;
32 import javax.ejb.Stateless JavaDoc;
33 import javax.naming.InitialContext JavaDoc;
34 import org.jboss.annotation.ejb.RemoteBinding;
35 import org.jboss.annotation.security.SecurityDomain;
36 import org.jboss.ejb3.Container;
37 import org.jboss.logging.Logger;
38
39 /**
40  * @author Scott.Stark@jboss.org
41  * @version $Revision: 46096 $
42  */

43 @Stateless JavaDoc(name="UserInRoleContextSession")
44 @Remote JavaDoc(org.jboss.ejb3.test.security.SecurityContext.class)
45 @RemoteBinding(jndiBinding = "spec.UserInRoleContextSession")
46 @SecurityDomain("spec-test")
47 @RolesAllowed({"Role1", "Role2"})
48 @EJBs JavaDoc({@EJB JavaDoc(name="CalledBean", beanInterface=org.jboss.ejb3.test.security.SecurityContext.class, beanName="UserInRoleContextSessionTarget")})
49 public class SecurityContextBean implements SecurityContext
50 {
51    static Logger log = Logger.getLogger(SecurityContextBean.class);
52    
53    @Resource SessionContext JavaDoc sessionContext;
54
55    public void testDomainInteraction(Set JavaDoc expectedRoles)
56    {
57       // Validate that caller has the expected roles
58
validateRoles(expectedRoles, true);
59       // Access a bean from another security-domain
60
try
61       {
62          InitialContext JavaDoc ctx = new InitialContext JavaDoc();
63          SecurityContext bean = (SecurityContext)ctx.lookup(Container.ENC_CTX_NAME + "/env/CalledBean");
64          bean.nestedInteraction(expectedRoles);
65       }
66       catch(Exception JavaDoc e)
67       {
68          e.printStackTrace();
69          SecurityException JavaDoc se = new SecurityException JavaDoc("DataSource connection failed");
70          se.initCause(e);
71          throw se;
72       }
73       // Validate that caller still has the expected roles
74
validateRoles(expectedRoles, true);
75    }
76
77    public void nestedInteraction(Set JavaDoc expectedRoles)
78       throws SecurityException JavaDoc
79    {
80       validateRoles(expectedRoles, false);
81    }
82
83    /**
84     * Validate that the current caller has every role from expectedRoles in the
85     * context isCallerInRole set.
86     *
87     * @param expectedRoles - Set<String> of the role names
88     * @param isCallerInRoleFlag - Should isCallerInRole return true
89     * @throws SecurityException - thrown if sessionContext.isCallerInRole(name)
90     * fails for any name in expectedRoles
91     */

92    private void validateRoles(Set JavaDoc expectedRoles, boolean isCallerInRoleFlag)
93       throws SecurityException JavaDoc
94    {
95       Iterator JavaDoc names = expectedRoles.iterator();
96       while( names.hasNext() )
97       {
98          String JavaDoc name = (String JavaDoc) names.next();
99          boolean hasRole = sessionContext.isCallerInRole(name);
100          if( hasRole != isCallerInRoleFlag )
101          {
102             throw new SecurityException JavaDoc("Caller does not have role: "+name);
103          }
104       }
105    }
106 }
107
Popular Tags