org.jboss.web.tomcat.security: public class: JaccContextValve

org.jboss.web.tomcat.security
public class: JaccContextValve [javadoc | source]

java.lang.Object
   org.apache.catalina.valves.ValveBase
      org.jboss.web.tomcat.security.JaccContextValve

A Valve that sets the JACC context id and HttpServletRequest policy context handler value. The context id needs to be established prior to any authorization valves.

author: Scott.Stark - @jboss.org

author: Anil.Saldhana - @redhat.com

version: $ - Revision: 81037 $

Field Summary
public static ThreadLocal<CodeSource>	activeCS

Constructor:
public JaccContextValve(JBossWebMetaData wmd, CodeSource cs) { this.metaData = wmd; this.contextID = metaData.getJaccContextID(); this.warCS = cs; this.trace = log.isTraceEnabled(); }

Constructor:

 public JaccContextValve(JBossWebMetaData wmd,
    CodeSource cs) {
      this.metaData = wmd;
      this.contextID = metaData.getJaccContextID();
      this.warCS = cs;
      this.trace = log.isTraceEnabled();
}

Method from org.jboss.web.tomcat.security.JaccContextValve Summary:
event, invoke

Methods from java.lang.Object:
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method from org.jboss.web.tomcat.security.JaccContextValve Detail:
public void event(Request request, Response response, HttpEvent event) throws IOException, ServletException { SecurityAssociationValve.activeWebMetaData.set(metaData); activeCS.set(warCS); HttpServletRequest httpRequest = (HttpServletRequest) request.getRequest(); //Set the customized rolename-principalset mapping in jboss-app.xml Map< String, Set< String > > principalToRoleSetMap = metaData.getPrincipalVersusRolesMap(); SecurityRolesAssociation.setSecurityRoles(principalToRoleSetMap); if(trace) log.trace("MetaData:"+metaData+":principalToRoleSetMap"+principalToRoleSetMap); try { // Set the JACC context id PolicyContext.setContextID(contextID); // Set the JACC HttpServletRequest PolicyContextHandler data HttpServletRequestPolicyContextHandler.setRequest(httpRequest); if(SecurityAssociationValve.activeRequest.get() == null) SecurityAssociationValve.activeRequest.set(request); // Perform the request getNext().event(request, response, event); } finally { SecurityAssociationValve.activeWebMetaData.set(null); SecurityAssociationValve.activeRequest.set(null); SecurityAssociationActions.clear(); activeCS.set(null); SecurityRolesAssociation.setSecurityRoles(null); HttpServletRequestPolicyContextHandler.setRequest(null); } }
public void invoke(Request request, Response response) throws IOException, ServletException { SecurityAssociationValve.activeWebMetaData.set(metaData); activeCS.set(warCS); HttpServletRequest httpRequest = (HttpServletRequest) request.getRequest(); //Set the customized rolename-principalset mapping in jboss-app.xml Map< String, Set< String > > principalToRoleSetMap = metaData.getPrincipalVersusRolesMap(); SecurityRolesAssociation.setSecurityRoles(principalToRoleSetMap); if(trace) log.trace("MetaData:"+metaData+":principalToRoleSetMap"+principalToRoleSetMap); try { // Set the JACC context id PolicyContext.setContextID(contextID); // Set the JACC HttpServletRequest PolicyContextHandler data HttpServletRequestPolicyContextHandler.setRequest(httpRequest); if(SecurityAssociationValve.activeRequest.get() == null) SecurityAssociationValve.activeRequest.set(request); // Perform the request getNext().invoke(request, response); } finally { SecurityAssociationValve.activeWebMetaData.set(null); SecurityAssociationValve.activeRequest.set(null); SecurityAssociationActions.clear(); activeCS.set(null); SecurityRolesAssociation.setSecurityRoles(null); HttpServletRequestPolicyContextHandler.setRequest(null); } }

Method from org.jboss.web.tomcat.security.JaccContextValve Detail:

 public  void event(Request request,
    Response response,
    HttpEvent event) throws IOException, ServletException {
      SecurityAssociationValve.activeWebMetaData.set(metaData);
      activeCS.set(warCS);
      HttpServletRequest httpRequest = (HttpServletRequest) request.getRequest();
      //Set the customized rolename-principalset mapping in jboss-app.xml
      Map< String, Set< String > > principalToRoleSetMap = metaData.getPrincipalVersusRolesMap();
      SecurityRolesAssociation.setSecurityRoles(principalToRoleSetMap);
      if(trace)
         log.trace("MetaData:"+metaData+":principalToRoleSetMap"+principalToRoleSetMap);  
      try
      {
         // Set the JACC context id
         PolicyContext.setContextID(contextID);
         // Set the JACC HttpServletRequest PolicyContextHandler data
         HttpServletRequestPolicyContextHandler.setRequest(httpRequest);
         if(SecurityAssociationValve.activeRequest.get() == null)
            SecurityAssociationValve.activeRequest.set(request);
         // Perform the request
         getNext().event(request, response, event);
      }
      finally
      {
         SecurityAssociationValve.activeWebMetaData.set(null);
         SecurityAssociationValve.activeRequest.set(null);
         SecurityAssociationActions.clear();
         activeCS.set(null);
         SecurityRolesAssociation.setSecurityRoles(null);
         HttpServletRequestPolicyContextHandler.setRequest(null); 
      }
}

 public  void invoke(Request request,
    Response response) throws IOException, ServletException {
 
      SecurityAssociationValve.activeWebMetaData.set(metaData);
      activeCS.set(warCS);
      HttpServletRequest httpRequest = (HttpServletRequest) request.getRequest();
      //Set the customized rolename-principalset mapping in jboss-app.xml
      Map< String, Set< String > > principalToRoleSetMap = metaData.getPrincipalVersusRolesMap();
      SecurityRolesAssociation.setSecurityRoles(principalToRoleSetMap);
      if(trace)
         log.trace("MetaData:"+metaData+":principalToRoleSetMap"+principalToRoleSetMap);  
      try
      {
         // Set the JACC context id
         PolicyContext.setContextID(contextID);
         // Set the JACC HttpServletRequest PolicyContextHandler data
         HttpServletRequestPolicyContextHandler.setRequest(httpRequest);
         if(SecurityAssociationValve.activeRequest.get() == null)
            SecurityAssociationValve.activeRequest.set(request);
         // Perform the request
         getNext().invoke(request, response);
      }
      finally
      {
         SecurityAssociationValve.activeWebMetaData.set(null);
         SecurityAssociationValve.activeRequest.set(null);
         SecurityAssociationActions.clear();
         activeCS.set(null);
         SecurityRolesAssociation.setSecurityRoles(null);
         HttpServletRequestPolicyContextHandler.setRequest(null); 
      }
}