org.apache.catalina.security

Class SecurityUtil

public final class SecurityUtil extends Object

This utility class associates a Subject to the current AccessControlContext. When a SecurityManager is used, * the container will always associate the called thread with an AccessControlContext * containing only the principal of the requested Servlet/Filter. This class uses reflection to invoke the invoke methods.

Author: Jean-Francois Arcand

Method Summary
static voiddoAsPrivilege(String methodName, Servlet targetObject)
Perform work as a particular Subject.
static voiddoAsPrivilege(String methodName, Servlet targetObject, Class[] targetType, Object[] targetArguments)
Perform work as a particular Subject.
static voiddoAsPrivilege(String methodName, Servlet targetObject, Class[] targetType, Object[] targetArguments, Principal principal)
Perform work as a particular Subject.
static voiddoAsPrivilege(String methodName, Filter targetObject)
Perform work as a particular Subject.
static voiddoAsPrivilege(String methodName, Filter targetObject, Class[] targetType, Object[] targetArguments)
Perform work as a particular Subject.
static voiddoAsPrivilege(String methodName, Filter targetObject, Class[] targetType, Object[] targetArguments, Principal principal)
Perform work as a particular Subject.
static booleanisPackageProtectionEnabled()
Return the SecurityManager only if Security is enabled AND package protection mechanism is enabled.
static voidremove(Object cachedObject)
Remove the object from the cache.

Method Detail

doAsPrivilege

public static void doAsPrivilege(String methodName, Servlet targetObject)
Perform work as a particular Subject. Here the work will be granted to a null subject.

Parameters: methodName the method to apply the security restriction targetObject the Servlet on which the method will be called.

doAsPrivilege

public static void doAsPrivilege(String methodName, Servlet targetObject, Class[] targetType, Object[] targetArguments)
Perform work as a particular Subject. Here the work will be granted to a null subject.

Parameters: methodName the method to apply the security restriction targetObject the Servlet on which the method will be called. targetType Class array used to instanciate a i Method object. targetArguments Object array contains the runtime parameters instance.

doAsPrivilege

public static void doAsPrivilege(String methodName, Servlet targetObject, Class[] targetType, Object[] targetArguments, Principal principal)
Perform work as a particular Subject. Here the work will be granted to a null subject.

Parameters: methodName the method to apply the security restriction targetObject the Servlet on which the method will be called. targetType Class array used to instanciate a Method object. targetArguments Object array contains the runtime parameters instance. principal the Principal to which the security privilege apply..

doAsPrivilege

public static void doAsPrivilege(String methodName, Filter targetObject)
Perform work as a particular Subject. Here the work will be granted to a null subject.

Parameters: methodName the method to apply the security restriction targetObject the Filter on which the method will be called.

doAsPrivilege

public static void doAsPrivilege(String methodName, Filter targetObject, Class[] targetType, Object[] targetArguments)
Perform work as a particular Subject. Here the work will be granted to a null subject.

Parameters: methodName the method to apply the security restriction targetObject the Filter on which the method will be called. targetType Class array used to instanciate a Method object. targetArguments Object array contains the runtime parameters instance.

doAsPrivilege

public static void doAsPrivilege(String methodName, Filter targetObject, Class[] targetType, Object[] targetArguments, Principal principal)
Perform work as a particular Subject. Here the work will be granted to a null subject.

Parameters: methodName the method to apply the security restriction targetObject the Filter on which the method will be called. targetType Class array used to instanciate a Method object. targetArguments Object array contains the runtime parameters instance. principal the Principal to which the security privilege apply

isPackageProtectionEnabled

public static boolean isPackageProtectionEnabled()
Return the SecurityManager only if Security is enabled AND package protection mechanism is enabled.

remove

public static void remove(Object cachedObject)
Remove the object from the cache.

Parameters: cachedObject The object to remove

Copyright © 2000-2011 Apache Software Foundation. All Rights Reserved.