public abstract class AbstractWebAuthorizationHelper extends AbstractJavaEEHelper
Modifier and Type | Field and Description |
---|---|
protected boolean |
enableAudit |
policyRegistration, securityContext
Constructor and Description |
---|
AbstractWebAuthorizationHelper() |
Modifier and Type | Method and Description |
---|---|
abstract boolean |
checkResourcePermission(Map<String,Object> contextMap,
ServletRequest request,
ServletResponse response,
Subject callerSubject,
String contextID,
String canonicalRequestURI)
Validate that the caller has the permission to access a web resource
|
abstract boolean |
checkResourcePermission(Map<String,Object> contextMap,
ServletRequest request,
ServletResponse response,
Subject callerSubject,
String contextID,
String canonicalRequestURI,
List<String> roles)
Validate that the caller has the permission to access a web resource
|
abstract boolean |
hasRole(String roleName,
Principal principal,
String servletName,
Set<Principal> principalRoles,
String contextID,
Subject callerSubject)
Validate that the caller has the required role to access a resource
|
abstract boolean |
hasRole(String roleName,
Principal principal,
String servletName,
Set<Principal> principalRoles,
String contextID,
Subject callerSubject,
List<String> roles)
Validate that the caller has the required role to access a resource
|
abstract boolean |
hasUserDataPermission(Map<String,Object> contextMap,
ServletRequest request,
ServletResponse response,
String contextID,
Subject callerSubject)
Validate whether the transport constraints are met by the caller
|
abstract boolean |
hasUserDataPermission(Map<String,Object> contextMap,
ServletRequest request,
ServletResponse response,
String contextID,
Subject callerSubject,
List<String> roles)
Validate whether the transport constraints are met by the caller
|
boolean |
isEnableAudit() |
void |
setEnableAudit(boolean enableAudit) |
audit, authenticationAudit, authorizationAudit, getCallerPrincipal, getContextMap, getPolicyRegistration, getSecurityContext, setPolicyRegistration, setSecurityContext
public boolean isEnableAudit()
public void setEnableAudit(boolean enableAudit)
public abstract boolean checkResourcePermission(Map<String,Object> contextMap, ServletRequest request, ServletResponse response, Subject callerSubject, String contextID, String canonicalRequestURI)
contextMap
- request
- response
- callerSubject
- contextID
- canonicalRequestURI
- IllegalArgumentException
- request, response, callerSubject, contextID or canonicalRequestURI is nullIllegalStateException
- Authorization Manager from Security Context is nullpublic abstract boolean checkResourcePermission(Map<String,Object> contextMap, ServletRequest request, ServletResponse response, Subject callerSubject, String contextID, String canonicalRequestURI, List<String> roles)
contextMap
- request
- response
- callerSubject
- contextID
- canonicalRequestURI
- roles
- IllegalArgumentException
- request, response, callerSubject, contextID or canonicalRequestURI is nullIllegalStateException
- Authorization Manager from Security Context is nullpublic abstract boolean hasRole(String roleName, Principal principal, String servletName, Set<Principal> principalRoles, String contextID, Subject callerSubject)
roleName
- principal
- servletName
- principalRoles
- contextID
- callerSubject
- IllegalArgumentException
- roleName, contextID, callerSubject is nullIllegalStateException
- Authorization Manager from Security Context is nullpublic abstract boolean hasRole(String roleName, Principal principal, String servletName, Set<Principal> principalRoles, String contextID, Subject callerSubject, List<String> roles)
roleName
- principal
- servletName
- principalRoles
- contextID
- callerSubject
- roles
- IllegalArgumentException
- roleName, contextID, callerSubject is nullIllegalStateException
- Authorization Manager from Security Context is nullpublic abstract boolean hasUserDataPermission(Map<String,Object> contextMap, ServletRequest request, ServletResponse response, String contextID, Subject callerSubject)
contextMap
- request
- response
- contextID
- callerSubject
- IllegalArgumentException
- request, response, callerSubject or contextID is nullIllegalStateException
- Authorization Manager from Security Context is nullpublic abstract boolean hasUserDataPermission(Map<String,Object> contextMap, ServletRequest request, ServletResponse response, String contextID, Subject callerSubject, List<String> roles)
contextMap
- request
- response
- contextID
- callerSubject
- roles
- IllegalArgumentException
- request, response, callerSubject or contextID is nullIllegalStateException
- Authorization Manager from Security Context is nullCopyright © 2021 JBoss by Red Hat. All rights reserved.