Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
Apache CXF API
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.apache.cxf.interceptor.security
Class DefaultSecurityContext

java.lang.Object
  extended by org.apache.cxf.interceptor.security.DefaultSecurityContext
All Implemented Interfaces:
SecurityContext
public class DefaultSecurityContext
extends java.lang.Object
implements SecurityContext

SecurityContext which implements isUserInRole using the following approach : skip the first Subject principal, and then checks Groups the principal is a member of TODO : consider moving this class into common/security

Constructor Summary
DefaultSecurityContext(java.security.Principal p, javax.security.auth.Subject subject)
           
 
Method Summary
protected  boolean checkGroup(java.security.acl.Group group, java.lang.String role)
           
 java.security.Principal getUserPrincipal()
           
 boolean isUserInRole(java.lang.String role)
           
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

DefaultSecurityContext

public DefaultSecurityContext(java.security.Principal p,
                              javax.security.auth.Subject subject)
Method Detail

getUserPrincipal

public java.security.Principal getUserPrincipal()
Specified by:
getUserPrincipal in interface SecurityContext

isUserInRole

public boolean isUserInRole(java.lang.String role)
Specified by:
isUserInRole in interface SecurityContext

checkGroup

protected boolean checkGroup(java.security.acl.Group group,
                             java.lang.String role)
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
Apache CXF API
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Apache CXF