org.pajes.security
Class DefaultAccessPermission

java.lang.Object
  org.pajes.servlet.PajesContextListener
      org.pajes.security.AccessPermission
          org.pajes.security.DefaultAccessPermission

All Implemented Interfaces:

java.util.EventListener, javax.servlet.ServletContextListener

public class DefaultAccessPermission
extends AccessPermission

The Default AccessPermission is used when no servlet container authentication or PAJES authentication method has been defined.

Field Summary

Fields inherited from class org.pajes.security.AccessPermission

J_PASSWORD, J_USERNAME

Constructor Summary

DefaultAccessPermission()

Method Summary

java.security.Principal	getUserPrincipal(PajeServlet servlet, javax.servlet.http.HttpServletRequest request) Determines whether the specified request should be allowed to access the specified servlet.
PrincipalRoles	getUserPrincipalRoles(java.security.Principal user) Returns a list of valid roles for a specific user.
void	init() AccessPermission sub-class initialisation.

Methods inherited from class org.pajes.security.AccessPermission

contextDestroyed, contextInitialized, destroy, getDBConnection, getDBConnection, getDBConnectionPoolManager, getLoginAttempts, getLoginAttemptsExceededPage, getLoginAttemptsExceededPage, getLoginFailedPage, getLoginFailedPage, getLoginPage, getLoginPage, getLoginSuccessPage, getMaximumLoginAttempts, getServletContext, init, isInitialised, isInvalid, isPermitted, loginFailed, loginSucceeded, logout, postLoginProcessing, postLogoutProcessing, preLogoutProcessing, resetLoginAttempts, setInvalidateSessionOnLogout, setLoginAttempts, setLoginAttemptsExceededPage, setLoginFailedPage, setLoginPage, setLoginSuccessPage, setMaximumLoginAttempts

Methods inherited from class org.pajes.servlet.PajesContextListener

getContext

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

DefaultAccessPermission

public DefaultAccessPermission()

Method Detail

getUserPrincipal

public java.security.Principal getUserPrincipal(PajeServlet servlet,
                                                javax.servlet.http.HttpServletRequest request)

Description copied from class: AccessPermission

Determines whether the specified request should be allowed to access the specified servlet.

Specified by:

getUserPrincipal in class AccessPermission

Parameters:

servlet - the servlet to which access is requested.

request - the request object.

Returns:

the Principal object representing the user if access should be permitted, or null if user authentication fails.

See Also:

AccessPermission.getUserPrincipal(org.pajes.servlet.PajeServlet, javax.servlet.http.HttpServletRequest)

getUserPrincipalRoles

public PrincipalRoles getUserPrincipalRoles(java.security.Principal user)

Description copied from class: AccessPermission

Returns a list of valid roles for a specific user.

Specified by:

getUserPrincipalRoles in class AccessPermission

Parameters:

user - Description of Parameter

Returns:

the object representing a list of valid roles for a specific user.

See Also:

AccessPermission.getUserPrincipalRoles(java.security.Principal)

init

public void init()
          throws AccessPermissionException

Description copied from class: AccessPermission

AccessPermission sub-class initialisation.

This method is called by AccessPermission.init(ServletContext), and the default implementation does nothing.

Sub-classes should over-ride this method and call the protected set methods to correctly configure access permissions.

Overrides:

init in class AccessPermission

Throws:

AccessPermissionException - if a security related exception occurs.

See Also:

AccessPermission.init()