KickJava   Java API By Example, From Geeks To Geeks.

Java > Open Source Codes > org > jboss > ejb3 > test > security > SecurityContextTargetBean


1 /*
2   * JBoss, Home of Professional Open Source
3   * Copyright 2005, JBoss Inc., and individual contributors as indicated
4   * by the @authors tag. See the copyright.txt in the distribution for a
5   * full listing of individual contributors.
6   *
7   * This is free software; you can redistribute it and/or modify it
8   * under the terms of the GNU Lesser General Public License as
9   * published by the Free Software Foundation; either version 2.1 of
10   * the License, or (at your option) any later version.
11   *
12   * This software is distributed in the hope that it will be useful,
13   * but WITHOUT ANY WARRANTY; without even the implied warranty of
14   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15   * Lesser General Public License for more details.
16   *
17   * You should have received a copy of the GNU Lesser General Public
18   * License along with this software; if not, write to the Free
19   * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20   * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
21   */

22 package org.jboss.ejb3.test.security;
23
24 import java.rmi.RemoteException JavaDoc;
25 import java.util.Iterator JavaDoc;
26 import java.util.Set JavaDoc;
27 import javax.ejb.Remote JavaDoc;
28 import javax.ejb.SessionContext JavaDoc;
29 import javax.ejb.Stateless JavaDoc;
30 import javax.naming.InitialContext JavaDoc;
31
32 import javax.annotation.Resource;
33 import javax.annotation.security.PermitAll;
34
35 import org.jboss.annotation.ejb.RemoteBinding;
36 import org.jboss.annotation.security.SecurityDomain;
37 import org.jboss.ejb3.Container;
38 import org.jboss.logging.Logger;
39
40 /**
41  * @author Scott.Stark@jboss.org
42  * @version $Revision: 37459 $
43  */

44 @Stateless JavaDoc(name="UserInRoleContextSessionTarget")
45 @Remote JavaDoc(org.jboss.ejb3.test.security.SecurityContext.class)
46 @RemoteBinding(jndiBinding = "spec.UserInRoleContextSessionTarget")
47 @SecurityDomain("spec-test-domain2")
48 @PermitAll
49 public class SecurityContextTargetBean
50 {
51    static Logger log = Logger.getLogger(SecurityContextTargetBean.class);
52    
53    @Resource SessionContext JavaDoc sessionContext;
54
55    public void testDomainInteraction(Set JavaDoc expectedRoles)
56    {
57       // Validate that caller has the expected roles
58
validateRoles(expectedRoles, true);
59       // Access a bean from another security-domain
60
try
61       {
62          InitialContext JavaDoc ctx = new InitialContext JavaDoc();
63          SecurityContext bean = (SecurityContext)ctx.lookup(Container.ENC_CTX_NAME + "/env/ejb/CalledBean");
64          bean.nestedInteraction(expectedRoles);
65       }
66       catch(Exception JavaDoc e)
67       {
68          SecurityException JavaDoc se = new SecurityException JavaDoc("DataSource connection failed");
69          se.initCause(e);
70          throw se;
71       }
72       // Validate that caller still has the expected roles
73
validateRoles(expectedRoles, true);
74    }
75
76    public void nestedInteraction(Set JavaDoc expectedRoles)
77       throws SecurityException JavaDoc
78    {
79       validateRoles(expectedRoles, false);
80    }
81
82    /**
83     * Validate that the current caller has every role from expectedRoles in the
84     * context isCallerInRole set.
85     *
86     * @param expectedRoles - Set<String> of the role names
87     * @param isCallerInRoleFlag - Should isCallerInRole return true
88     * @throws SecurityException - thrown if sessionContext.isCallerInRole(name)
89     * fails for any name in expectedRoles
90     */

91    private void validateRoles(Set JavaDoc expectedRoles, boolean isCallerInRoleFlag)
92       throws SecurityException JavaDoc
93    {
94       Iterator JavaDoc names = expectedRoles.iterator();
95       while( names.hasNext() )
96       {
97          String JavaDoc name = (String JavaDoc) names.next();
98          boolean hasRole = sessionContext.isCallerInRole(name);
99          if( hasRole != isCallerInRoleFlag )
100          {
101             throw new SecurityException JavaDoc("Caller does not have role: "+name);
102          }
103       }
104    }
105 }
106
Popular Tags