KickJava   Java API By Example, From Geeks To Geeks.

Java > Open Source Codes > org > jboss > test > web > servlets > UnsecureEJBServlet


1 /*
2   * JBoss, Home of Professional Open Source
3   * Copyright 2005, JBoss Inc., and individual contributors as indicated
4   * by the @authors tag. See the copyright.txt in the distribution for a
5   * full listing of individual contributors.
6   *
7   * This is free software; you can redistribute it and/or modify it
8   * under the terms of the GNU Lesser General Public License as
9   * published by the Free Software Foundation; either version 2.1 of
10   * the License, or (at your option) any later version.
11   *
12   * This software is distributed in the hope that it will be useful,
13   * but WITHOUT ANY WARRANTY; without even the implied warranty of
14   * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15   * Lesser General Public License for more details.
16   *
17   * You should have received a copy of the GNU Lesser General Public
18   * License along with this software; if not, write to the Free
19   * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20   * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
21   */
22 package org.jboss.test.web.servlets;
23
24 import java.io.IOException JavaDoc;
25 import java.io.PrintWriter JavaDoc;
26 import java.security.Principal JavaDoc;
27 import javax.naming.InitialContext JavaDoc;
28 import javax.naming.Context JavaDoc;
29 import javax.servlet.ServletException JavaDoc;
30 import javax.servlet.http.HttpServlet JavaDoc;
31 import javax.servlet.http.HttpServletRequest JavaDoc;
32 import javax.servlet.http.HttpServletResponse JavaDoc;
33
34 import org.jboss.test.web.interfaces.StatelessSessionLocalHome;
35 import org.jboss.test.web.interfaces.StatelessSessionLocal;
36 import org.jboss.logging.Logger;
37
38 /** A servlet deployed under an unrestricted path that invokes the method
39  * specified as a parameter on a secured EJB.
40  *
41  * @author Scott.Stark@jboss.org
42  * @version $Revision: 37406 $
43  */
44 public class UnsecureEJBServlet extends HttpServlet JavaDoc
45 {
46    Logger log = Logger.getLogger(UnsecureEJBServlet.class);
47
48    protected void processRequest(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
49       throws ServletException JavaDoc, IOException JavaDoc
50    {
51       boolean includeHead = true;
52       String JavaDoc param = request.getParameter("includeHead");
53       if( param != null )
54          includeHead = Boolean.valueOf(param).booleanValue();
55       String JavaDoc method = request.getParameter("method");
56       if( method == null )
57          method = "echo";
58
59       try
60       {
61          InitialContext JavaDoc ctx = new InitialContext JavaDoc();
62          StatelessSessionLocalHome home = null;
63          Context JavaDoc enc = (Context JavaDoc) ctx.lookup("java:comp/env");
64          home = (StatelessSessionLocalHome) enc.lookup("ejb/local/SecuredEJB");
65          StatelessSessionLocal bean = home.create();
66          if( method.equals("echo") )
67             bean.echo("UnsecureEJBServlet called SecuredEJB.echo");
68          else if( method.equals("unchecked") )
69             bean.unchecked();
70          else if( method.equals("checkRunAs") )
71             bean.checkRunAs();
72          else
73             throw new IllegalArgumentException JavaDoc("method must be one of: echo, unchecked, checkRunAs");
74       }
75       catch(Exception JavaDoc e)
76       {
77          log.error("Access to failed to method: "+method, e);
78          throw new ServletException JavaDoc("Access to failed to method: "+method, e);
79       }
80
81       Principal JavaDoc user = request.getUserPrincipal();
82       PrintWriter JavaDoc out = response.getWriter();
83       if( includeHead == true )
84       {
85          response.setContentType("text/html");
86          out.println("<html>");
87          out.println("<head><title>UnsecureEJBServlet</title></head><body>");
88       }
89       out.println("<h1>UnsecureEJBServlet Accessed</h1>");
90       out.println("<pre>You have accessed this servlet as user: "+user+"<br>");
91       out.println("You have accessed SecuredEJB as user: "+user);
92       out.println("You have invoked SecuredEJB."+method);
93       out.println("</pre>");
94       if( includeHead == true )
95          out.println("</pre></body></html>");
96       out.close();
97    }
98
99    protected void doGet(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
100       throws ServletException JavaDoc, IOException JavaDoc
101    {
102       processRequest(request, response);
103    }
104    
105    protected void doPost(HttpServletRequest JavaDoc request, HttpServletResponse JavaDoc response)
106       throws ServletException JavaDoc, IOException JavaDoc
107    {
108       processRequest(request, response);
109    }
110
111 }
112
Popular Tags