01: /**
02: * EasyBeans
03: * Copyright (C) 2006 Bull S.A.S.
04: * Contact: easybeans@ow2.org
05: *
06: * This library is free software; you can redistribute it and/or
07: * modify it under the terms of the GNU Lesser General Public
08: * License as published by the Free Software Foundation; either
09: * version 2.1 of the License, or any later version.
10: *
11: * This library is distributed in the hope that it will be useful,
12: * but WITHOUT ANY WARRANTY; without even the implied warranty of
13: * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14: * Lesser General Public License for more details.
15: *
16: * You should have received a copy of the GNU Lesser General Public
17: * License along with this library; if not, write to the Free Software
18: * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
19: * USA
20: *
21: * --------------------------------------------------------------------------
22: * $Id: RunAsAccessInterceptor.java 1970 2007-10-16 11:49:25Z benoitf $
23: * --------------------------------------------------------------------------
24: */package org.ow2.easybeans.security.interceptors;
25:
26: import javax.security.auth.Subject;
27:
28: import org.ow2.easybeans.api.EasyBeansInterceptor;
29: import org.ow2.easybeans.api.EasyBeansInvocationContext;
30: import org.ow2.easybeans.security.propagation.context.SecurityCurrent;
31:
32: /**
33: * Push run-as subject for new calls.
34: * @author Florent Benoit
35: */
36: public class RunAsAccessInterceptor implements EasyBeansInterceptor {
37:
38: /**
39: * Adds run-as role before invoking next methods.
40: * @param invocationContext context with useful attributes on the current
41: * invocation
42: * @return result of the next invocation (to chain interceptors)
43: * @throws Exception if interceptor fails
44: */
45: public Object intercept(
46: final EasyBeansInvocationContext invocationContext)
47: throws Exception {
48: Subject runAsSubject = invocationContext.getFactory()
49: .getBeanInfo().getSecurityInfo().getRunAsSubject();
50: Subject previousSubject = SecurityCurrent.getCurrent()
51: .getSecurityContext().enterRunAs(runAsSubject);
52: try {
53: return invocationContext.proceed();
54: } finally {
55: SecurityCurrent.getCurrent().getSecurityContext()
56: .endsRunAs(previousSubject);
57: }
58: }
59: }
|