org.wicketstuff.security.swarm.strategies

Class AbstractSwarmStrategy

java.lang.Object

org.wicketstuff.security.strategies.WaspAuthorizationStrategy

org.wicketstuff.security.strategies.ClassAuthorizationStrategy

org.wicketstuff.security.swarm.strategies.AbstractSwarmStrategy

All Implemented Interfaces:

Serializable, org.apache.wicket.authorization.IAuthorizationStrategy

Direct Known Subclasses:

SwarmStrategy

public abstract class AbstractSwarmStrategy
extends ClassAuthorizationStrategy

See Also:

Serialized Form

Nested Class Summary

Nested classes/interfaces inherited from interface org.apache.wicket.authorization.IAuthorizationStrategy

org.apache.wicket.authorization.IAuthorizationStrategy.AllowAllAuthorizationStrategy

Field Summary

Fields

Modifier and Type	Field and Description
protected LoginContainer	loginContainer

Fields inherited from class org.wicketstuff.security.strategies.WaspAuthorizationStrategy

MESSAGE_KEY

Fields inherited from interface org.apache.wicket.authorization.IAuthorizationStrategy

ALLOW_ALL

Constructor Summary

Constructors

Constructor and Description
AbstractSwarmStrategy()
AbstractSwarmStrategy(Class<? extends ISecureComponent> secureClass)

Method Summary

Methods

Modifier and Type	Method and Description
Subject	getSubject() The currently logged in subject, note that at any time there is at most 1 subject logged in.
boolean	hasPermission(Permission permission) Performs the actual permission check at the Hive.
abstract boolean	hasPermission(Permission permission, Subject subject)
boolean	isClassAuthenticated(Class<?> clazz) Performs the authentication check.
boolean	isClassAuthorized(Class<?> clazz, WaspAction action) Performs the actual authorization check on the component class.
boolean	isComponentAuthenticated(org.apache.wicket.Component component) Performs the authentication check.
boolean	isComponentAuthorized(org.apache.wicket.Component component, WaspAction action) Performs the actual authorization check on the component.
boolean	isModelAuthenticated(org.apache.wicket.model.IModel<?> model, org.apache.wicket.Component component) Performs the authentication check.
boolean	isModelAuthorized(ISecureModel<?> model, org.apache.wicket.Component component, WaspAction action) Checks if some action is granted on the model.

Methods inherited from class org.wicketstuff.security.strategies.ClassAuthorizationStrategy

destroy, getClassChecks, getClassChecks, getExceptionMessage, isInstantiationAuthorized

Methods inherited from class org.wicketstuff.security.strategies.WaspAuthorizationStrategy

createMessageSource, get, getActionFactory, getMessageSource, getMessageSource, getSecurityCheck, isActionAuthorized, isUserAuthenticated, login, logMessage, logMessage, logMessage, logMessages, logoff, removeMessageSource, setStrategyResolver

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.apache.wicket.authorization.IAuthorizationStrategy

isResourceAuthorized

Field Detail

loginContainer

protected LoginContainer loginContainer

Constructor Detail

AbstractSwarmStrategy

public AbstractSwarmStrategy()

AbstractSwarmStrategy

public AbstractSwarmStrategy(Class<? extends ISecureComponent> secureClass)

Method Detail

hasPermission

public abstract boolean hasPermission(Permission permission,
                    Subject subject)

getSubject

public Subject getSubject()

The currently logged in subject, note that at any time there is at most 1 subject logged in.

Returns:

the subject or null if no login has succeeded yet

hasPermission

public boolean hasPermission(Permission permission)

Performs the actual permission check at the Hive. This is equal to using hasPermission(Permission, Subject) with getSubject()

Parameters:

permission - the permission to verify

Returns:

true if the subject has or implies the permission, false otherwise

Throws:

SecurityException - if the permission is null

See Also:

hasPermission(Permission, Subject)

isClassAuthenticated

public boolean isClassAuthenticated(Class<?> clazz)

Description copied from class: WaspAuthorizationStrategy

Performs the authentication check.

Specified by:

isClassAuthenticated in class WaspAuthorizationStrategy

Parameters:

clazz - the class of the wicket component

Returns:

true if the user is authenticated, false otherwise

See Also:

WaspAuthorizationStrategy.isClassAuthenticated(java.lang.Class)

isClassAuthorized

public boolean isClassAuthorized(Class<?> clazz,
                        WaspAction action)

Description copied from class: WaspAuthorizationStrategy

Performs the actual authorization check on the component class.

Specified by:

isClassAuthorized in class WaspAuthorizationStrategy

Parameters:

clazz - typically a component

action - the action to check

Returns:

true if authorized, false otherwise

See Also:

WaspAuthorizationStrategy.isClassAuthorized(java.lang.Class, org.wicketstuff.security.actions.WaspAction)

isComponentAuthenticated

public boolean isComponentAuthenticated(org.apache.wicket.Component component)

Description copied from class: WaspAuthorizationStrategy

Performs the authentication check.

Specified by:

isComponentAuthenticated in class WaspAuthorizationStrategy

Parameters:

component - the wicket component

Returns:

true if the user is authenticated, false otherwise

See Also:

WaspAuthorizationStrategy.isComponentAuthenticated(org.apache.wicket.Component)

isComponentAuthorized

public boolean isComponentAuthorized(org.apache.wicket.Component component,
                            WaspAction action)

Description copied from class: WaspAuthorizationStrategy

Performs the actual authorization check on the component.

Specified by:

isComponentAuthorized in class WaspAuthorizationStrategy

Returns:

true if authorized, false otherwise

See Also:

WaspAuthorizationStrategy.isComponentAuthorized(org.apache.wicket.Component, org.wicketstuff.security.actions.WaspAction)

isModelAuthenticated

public boolean isModelAuthenticated(org.apache.wicket.model.IModel<?> model,
                           org.apache.wicket.Component component)

Description copied from class: WaspAuthorizationStrategy

Performs the authentication check.

Specified by:

isModelAuthenticated in class WaspAuthorizationStrategy

Parameters:

model - the (secure) model

component - the component owning the model

Returns:

true if the user is authenticated, false otherwise

See Also:

WaspAuthorizationStrategy.isModelAuthenticated(org.apache.wicket.model.IModel, org.apache.wicket.Component)

isModelAuthorized

public boolean isModelAuthorized(ISecureModel<?> model,
                        org.apache.wicket.Component component,
                        WaspAction action)

Checks if some action is granted on the model. Although SwarmModels are preferred any ISecureModel can be used, in that case it uses the ISecureModel#toString() method as the name of the DataPermission

Specified by:

isModelAuthorized in class WaspAuthorizationStrategy

Parameters:

model - the model

component - component 'owning' the model if available

action - the action to check

Returns:

true if authorized, false otherwise

See Also:

WaspAuthorizationStrategy.isModelAuthorized(ISecureModel, Component, WaspAction)