| java.lang.Object
 org.jboss.web.WebPermissionMapping
| WebPermissionMapping | | public class WebPermissionMapping (Code) | | A utility class encapsulating the logic for building the web container JACC
permission from a deployment's metadata.
author:
Scott.Stark@jboss.org
version:
$Revision: 60958 $ |
| Inner Class :static class PatternInfo | |
| Field Summary | |
| static Logger | log
|
| Method Summary | |
| public static void | createPermissions(WebMetaData metaData, PolicyConfiguration pc)
Apply the JACC rules for creating permissions from the web.xml
security-constraints. | | static int | getPatternType(String urlPattern)
| | static HashMap | qualifyURLPatterns(WebMetaData metaData)
JACC url pattern Qualified URL Pattern Names.
The rules for qualifying a URL pattern are dependent on the rules for
determining if one URL pattern matches another as defined in Section 3.1.3.3,
Servlet URL-Pattern Matching Rules, and are described as follows:
- If the pattern is a path prefix pattern, it must be qualified by every
path-prefix pattern in the deployment descriptor matched by and different from
the pattern being qualified. |
| createPermissions | | public static void createPermissions(WebMetaData metaData, PolicyConfiguration pc) throws PolicyContextException(Code) | | Apply the JACC rules for creating permissions from the web.xml
security-constraints.
Parameters:
metaData - - the web deployment web.xml/jboss-web.xml metadata
Parameters:
pc - - the active JACC policy configuration
throws:
PolicyContextException - |
| getPatternType | | static int getPatternType(String urlPattern)(Code) | | Determine the url-pattern type
Parameters:
urlPattern - - the raw url-pattern value one of EXACT, EXTENSION, PREFIX, DEFAULT |
| qualifyURLPatterns | | static HashMap qualifyURLPatterns(WebMetaData metaData)(Code) | | JACC url pattern Qualified URL Pattern Names.
The rules for qualifying a URL pattern are dependent on the rules for
determining if one URL pattern matches another as defined in Section 3.1.3.3,
Servlet URL-Pattern Matching Rules, and are described as follows:
- If the pattern is a path prefix pattern, it must be qualified by every
path-prefix pattern in the deployment descriptor matched by and different from
the pattern being qualified. The pattern must also be qualified by every exact
pattern appearing in the deployment descriptor that is matched by the pattern
being qualified.
- If the pattern is an extension pattern, it must be qualified by every
path-prefix pattern appearing in the deployment descriptor and every exact
pattern in the deployment descriptor that is matched by the pattern being
qualified.
- If the pattern is the default pattern, "/", it must be qualified by every
other pattern except the default pattern appearing in the deployment descriptor.
- If the pattern is an exact pattern, its qualified form must not contain any
qualifying patterns.
URL patterns are qualified by appending to their String representation, a
colon separated representation of the list of patterns that qualify the pattern.
Duplicates must not be included in the list of qualifying patterns, and any
qualifying pattern matched by another qualifying pattern may5 be dropped from
the list.
Any pattern, qualified by a pattern that matches it, is overridden and made
irrelevant (in the translation) by the qualifying pattern. Specifically, all
extension patterns and the default pattern are made irrelevant by the presence
of the path prefix pattern "/*" in a deployment descriptor. Patterns qualified
by the "/*" pattern violate the URLPatternSpec constraints of
WebResourcePermission and WebUserDataPermission names and must be rejected by
the corresponding permission constructors.
Parameters:
metaData - - the web deployment metadata HashMap |
|
|