org.jboss.jms.server.security
Class SecurityMetadataStore
java.lang.Object
org.jboss.jms.server.security.SecurityMetadataStore
- All Implemented Interfaces:
- SecurityStore
public class SecurityMetadataStore
- extends java.lang.Object
- implements SecurityStore
A security metadate store for JMS. Stores security information for destinations and delegates
authentication and authorization to a JaasSecurityManager.
- Version:
- $Revision: 3238 $
$Id: SecurityMetadataStore.java 3238 2007-10-21 23:29:00Z timfox $
- Author:
- Peter Antman, Scott Stark, Tim Fox, Ovidiu Feodorov
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
SUCKER_USER
public static final java.lang.String SUCKER_USER
- See Also:
- Constant Field Values
DEFAULT_SUCKER_USER_PASSWORD
public static final java.lang.String DEFAULT_SUCKER_USER_PASSWORD
- See Also:
- Constant Field Values
SecurityMetadataStore
public SecurityMetadataStore()
getSecurityMetadata
public SecurityMetadata getSecurityMetadata(boolean isQueue,
java.lang.String destName)
- Specified by:
getSecurityMetadata in interface SecurityStore
- Returns:
- the security meta-data for the given destination.
setSecurityConfig
public void setSecurityConfig(boolean isQueue,
java.lang.String destName,
org.w3c.dom.Element conf)
throws java.lang.Exception
- Specified by:
setSecurityConfig in interface SecurityStore
- Throws:
java.lang.Exception
clearSecurityConfig
public void clearSecurityConfig(boolean isQueue,
java.lang.String name)
throws java.lang.Exception
- Specified by:
clearSecurityConfig in interface SecurityStore
- Throws:
java.lang.Exception
authenticate
public javax.security.auth.Subject authenticate(java.lang.String user,
java.lang.String password)
throws JMSSecurityException
- Description copied from interface:
SecurityStore
- Authenticate the specified user with the given password. Implementations are most likely to
delegates to a JBoss AuthenticationManager.
Successful autentication will place a new SubjectContext on thread local, which will be used
in the authorization process. However, we need to make sure we clean up thread local
immediately after we used the information, otherwise some other people security my be screwed
up, on account of thread local security stack being corrupted.
- Specified by:
authenticate in interface SecurityStore
- Throws:
JMSSecurityException - if the user is not authenticated
authorize
public boolean authorize(java.lang.String user,
java.util.Set rolePrincipals,
CheckType checkType)
- Description copied from interface:
SecurityStore
- Authorize that the subject has at least one of the specified roles. Implementations are most
likely to delegates to a JBoss AuthenticationManager.
- Specified by:
authorize in interface SecurityStore
rolePrincipals - - The set of roles allowed to read/write/create the destination.
- Returns:
- true if the subject is authorized, or false if not.
setSuckerPassword
public void setSuckerPassword(java.lang.String password)
start
public void start()
throws javax.naming.NamingException
- Throws:
javax.naming.NamingException
stop
public void stop()
throws java.lang.Exception
- Throws:
java.lang.Exception
getSecurityDomain
public java.lang.String getSecurityDomain()
setSecurityDomain
public void setSecurityDomain(java.lang.String securityDomain)
getDefaultSecurityConfig
public org.w3c.dom.Element getDefaultSecurityConfig()
setDefaultSecurityConfig
public void setDefaultSecurityConfig(org.w3c.dom.Element conf)
throws java.lang.Exception
- Throws:
java.lang.Exception
Copyright © 2006 JBoss Inc. All Rights Reserved.