01: /*
02: * JBoss, Home of Professional Open Source.
03: * Copyright 2006, Red Hat Middleware LLC, and individual contributors
04: * as indicated by the @author tags. See the copyright.txt file in the
05: * distribution for a full listing of individual contributors.
06: *
07: * This is free software; you can redistribute it and/or modify it
08: * under the terms of the GNU Lesser General Public License as
09: * published by the Free Software Foundation; either version 2.1 of
10: * the License, or (at your option) any later version.
11: *
12: * This software is distributed in the hope that it will be useful,
13: * but WITHOUT ANY WARRANTY; without even the implied warranty of
14: * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15: * Lesser General Public License for more details.
16: *
17: * You should have received a copy of the GNU Lesser General Public
18: * License along with this software; if not, write to the Free
19: * Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
20: * 02110-1301 USA, or see the FSF site: http://www.fsf.org.
21: */
22: package org.jboss.test.security.ejb;
23:
24: import java.rmi.RemoteException;
25: import java.security.Principal;
26: import javax.ejb.CreateException;
27: import javax.ejb.EJBException;
28: import javax.ejb.SessionBean;
29: import javax.ejb.SessionContext;
30:
31: /** A simple session bean for testing declarative security.
32:
33: @author Scott.Stark@jboss.org
34: @version $Revision: 57211 $
35: */
36: public class StatelessSessionBean implements SessionBean {
37: org.apache.log4j.Category log = org.apache.log4j.Category
38: .getInstance(getClass());
39:
40: private SessionContext sessionContext;
41:
42: public void ejbCreate() throws CreateException {
43: log.debug("ejbCreate() called");
44: }
45:
46: public void ejbActivate() {
47: log.debug("ejbActivate() called");
48: }
49:
50: public void ejbPassivate() {
51: log.debug("ejbPassivate() called");
52: }
53:
54: public void ejbRemove() {
55: log.debug("ejbRemove() called");
56: }
57:
58: public void setSessionContext(SessionContext context) {
59: sessionContext = context;
60: }
61:
62: public String echo(String arg) {
63: log.debug("echo, arg=" + arg);
64: Principal p = sessionContext.getCallerPrincipal();
65: log.debug("echo, callerPrincipal=" + p);
66: boolean isCaller = sessionContext.isCallerInRole("EchoCaller");
67: log.debug("echo, isCallerInRole('EchoCaller')=" + isCaller);
68: if (isCaller == false)
69: throw new SecurityException(
70: "Caller does not have EchoCaller role");
71: return arg;
72: }
73:
74: public String forward(String echoArg) {
75: log.debug("forward, echoArg=" + echoArg);
76: return echo(echoArg);
77: }
78:
79: public void noop() {
80: log.debug("noop");
81: }
82:
83: public void npeError() {
84: log.debug("npeError");
85: Object obj = null;
86: obj.toString();
87: }
88:
89: public void unchecked() {
90: Principal p = sessionContext.getCallerPrincipal();
91: log.debug("unchecked, callerPrincipal=" + p);
92: }
93:
94: public void excluded() {
95: throw new EJBException("excluded, no access should be allowed");
96: }
97:
98: }
|