org.gluu.oxtrust.service.uma.annotations.UmaSecureInterceptor クラス

org.gluu.oxtrust.service.uma.annotations.UmaSecureInterceptor 連携図

公開メンバ関数
Object	invoke (InvocationContext ctx) throws Exception

非公開メンバ関数
Map< String, Object >	computeParameterValues (InvocationContext ctx)

非公開変数類
Logger	log
SecurityExtension	securityExtension
ExpressionEvaluator	expressionEvaluator

詳解

Provides service to protect Rest service endpoints with UMA scope.

著者

Dmitry Ognyannikov

関数詳解

computeParameterValues()

Map<String, Object> org.gluu.oxtrust.service.uma.annotations.UmaSecureInterceptor.computeParameterValues ( InvocationContext  ctx )

inlineprivate

                                                                              {
        Annotation[][] parametersAnnotations = ctx.getMethod().getParameterAnnotations();
        Map<String, Object> secureVariables = new HashMap<String, Object>();
        for (int i = 0; i < parametersAnnotations.length; i++) {
            Annotation[] parameterAnnotations = parametersAnnotations[i];
            for (Annotation parameterAnnotation : parameterAnnotations) {
                if (SecureVariable.class.isAssignableFrom(parameterAnnotation.annotationType())) {
                        SecureVariable secureVariable = (SecureVariable) parameterAnnotation;
                    Object paramValue = ctx.getParameters()[i];
                    secureVariables.put(secureVariable.value(), paramValue);
                }
            }
        }

        return secureVariables;
    }

invoke()

Object org.gluu.oxtrust.service.uma.annotations.UmaSecureInterceptor.invoke ( InvocationContext  ctx ) throws Exception

inline

                                                                 {
        HttpServletResponse response = null;
        Object[] parameters = ctx.getParameters();
        
        log.trace("REST method call security check. " + ctx.getMethod().getName() + "()");
        
        for (Object parameter : parameters) {
            if (parameter instanceof HttpServletResponse) 
                response = (HttpServletResponse)parameter;
        }
        
        InterceptSecure is = securityExtension.getInterceptSecure(ctx.getMethod());

        // SecurityChecking  restrictions
        Secure[] constraints = (is == null) ? new Secure[0] : is.value();

        // Getting the parameter values
        Map<String, Object> secureVars = computeParameterValues(ctx);

        for (Secure constraint : constraints) {
            Boolean expressionValue = expressionEvaluator.evaluateValueExpression(constraint.value(), Boolean.class, secureVars);

            if ((expressionValue == null) || !expressionValue) {
                log.debug("Method: '{}' constrain '{}' evaluation is null or false!", ctx.getMethod(), constraint);
                throw new SecurityEvaluationException();
            }
        }

        try {
            // the method call
            return ctx.proceed();
        } catch (Exception e) {
            log.error("Error calling ctx.proceed in UmaSecureInterceptor");
            // REST call error report
            if (response != null) {
                try { response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR, "INTERNAL SERVER ERROR"); } catch (Exception ex) {}
            } else if (Response.class.isAssignableFrom(ctx.getMethod().getReturnType())) {
                return Response.serverError().entity("INTERNAL SERVER ERROR").build();
            }
            
            return null;
        }
    }

メンバ詳解

expressionEvaluator

ExpressionEvaluator org.gluu.oxtrust.service.uma.annotations.UmaSecureInterceptor.expressionEvaluator

private

log

Logger org.gluu.oxtrust.service.uma.annotations.UmaSecureInterceptor.log

private

securityExtension

SecurityExtension org.gluu.oxtrust.service.uma.annotations.UmaSecureInterceptor.securityExtension

private

---

このクラス詳解は次のファイルから抽出されました:

• D:/AppData/OpenId/gluu/src/oxTrust/server/src/main/java/org/gluu/oxtrust/service/uma/annotations/UmaSecureInterceptor.java