org.apache.jetspeed.security.impl
Class SecurityValveImpl

java.lang.Object
  extended byorg.apache.jetspeed.pipeline.valve.AbstractValve
      extended byorg.apache.jetspeed.security.impl.AbstractSecurityValve
          extended byorg.apache.jetspeed.security.impl.SecurityValveImpl
All Implemented Interfaces:
SecurityValve, Valve

public class SecurityValveImpl
extends AbstractSecurityValve
implements SecurityValve

SecurityValve

Version:
$Id: SecurityValveImpl.java 188241 2005-01-21 16:45:20Z weaver $
Author:
David Sean Taylor , Randy Walter , Scott T. Weaver

Field Summary
private static org.apache.commons.logging.Log log
           
private  org.apache.jetspeed.profiler.Profiler profiler
           
private  org.apache.jetspeed.security.UserManager userMgr
           
 
Constructor Summary
SecurityValveImpl(org.apache.jetspeed.profiler.Profiler profiler, org.apache.jetspeed.security.UserManager userMgr)
           
 
Method Summary
protected  Subject getSubject(org.apache.jetspeed.request.RequestContext request)
           getSubject
protected  Principal getUserPrincipal(org.apache.jetspeed.request.RequestContext request)
           getUserPrincipal
 String toString()
           
 
Methods inherited from class org.apache.jetspeed.security.impl.AbstractSecurityValve
getSubjectFromSession, invoke
 
Methods inherited from class org.apache.jetspeed.pipeline.valve.AbstractValve
initialize
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait
 
Methods inherited from interface org.apache.jetspeed.pipeline.valve.Valve
initialize, invoke
 

Field Detail

log

private static final org.apache.commons.logging.Log log

profiler

private org.apache.jetspeed.profiler.Profiler profiler

userMgr

private org.apache.jetspeed.security.UserManager userMgr
Constructor Detail

SecurityValveImpl

public SecurityValveImpl(org.apache.jetspeed.profiler.Profiler profiler,
                         org.apache.jetspeed.security.UserManager userMgr)
Method Detail

toString

public String toString()

getSubject

protected final Subject getSubject(org.apache.jetspeed.request.RequestContext request)
                            throws Exception

getSubject

Check for previously established session subject and invalidate if subject and current user principals do not match

Specified by:
getSubject in class AbstractSecurityValve
Parameters:
request -
Returns:
Throws:
Exception

getUserPrincipal

protected final Principal getUserPrincipal(org.apache.jetspeed.request.RequestContext request)

getUserPrincipal

Aaccess request user principal if defined or default to profiler anonymous user

Specified by:
getUserPrincipal in class AbstractSecurityValve
Parameters:
request -
Returns:


Copyright © 1999-2005 Apache Software Foundation. All Rights Reserved.