File	Doc	Category	Size	Date	Package
WebResourcePermission.java	API Doc	Glassfish v2 API	17534	Fri May 04 22:36:00 BST 2007	javax.security.jacc

WebResourcePermission

• java.lang.Object
  • java.security.Permission

Fields Summary
private transient javax.security.jacc.HttpMethodSpec	methodSpec
private transient javax.security.jacc.URLPatternSpec	urlPatternSpec
private transient int	hashCodeValue
private static final transient String	EMPTY_STRING
private static final long	serialVersionUID
private static final ObjectStreamField[]	serialPersistentFields The serialized fields of this permission are defined below. Whether or not the serialized fields correspond to actual (private) fields is an implementation decision.

Constructors Summary
public WebResourcePermission(String name, String actions) Creates a new WebResourcePermission with the specified name and actions. The name contains a URLPatternSpec that identifies the web resources to which the permissions applies. The syntax of a URLPatternSpec is as follows: URLPatternList ::= URLPattern | URLPatternList colon URLPattern URLPatternSpec ::= null | URLPattern | URLPattern colon URLPatternList A null URLPatternSpec is translated to the default URLPattern, "/", by the permission constructor. The empty string is an exact URLPattern, and may occur anywhere in a URLPatternSpec that an exact URLPattern may occur. The first URLPattern in a URLPatternSpec may be any of the pattern types, exact, path-prefix, extension, or default as defined in the Java Servlet Specification). When a URLPatternSpec includes a URLPatternList, the patterns of the URLPatternList identify the resources to which the permission does NOT apply and depend on the pattern type and value of the first pattern as follows: No pattern may exist in the URLPatternList that matches the first pattern. If the first pattern is a path-prefix pattern, only exact patterns matched by the first pattern and path-prefix patterns matched by, but different from, the first pattern may occur in the URLPatternList. If the first pattern is an extension pattern, only exact patterns that are matched by the first pattern and path-prefix patterns may occur in the URLPatternList. If the first pattern is the default pattern, "/", any pattern except the default pattern may occur in the URLPatternList. If the first pattern is an exact pattern a URLPatternList must not be present in the URLPatternSpec. The actions parameter contains a comma seperated list of HTTP methods. The syntax of the actions parameter is defined as follows: ExtensionMethod ::= any token as defined by RFC 2616 (that is, 1*[any CHAR except CTLs or separators]) HTTPMethod ::= "GET" | "POST" | "PUT" | "DELETE" | "HEAD" | "OPTIONS" | "TRACE" | ExtensionMethod HTTPMethodList ::= HTTPMethod | HTTPMethodList comma HTTPMethod HTTPMethodExceptionList ::= exclaimationPoint HTTPMethodList HTTPMethodSpec ::= null | HTTPMethodExceptionList | HTTPMethodList If duplicates occur in the HTTPMethodSpec they must be eliminated by the permission constructor. A null or empty string HTTPMethodSpec indicates that the permission applies to all HTTP methods at the resources identified by the URL pattern. If the HTTPMethodSpec contains an HTTPMethodExceptionList (i.e., it begins with an exclaimationPoint), the permission pertains to all methods except those occuring in the exception list. param name the URLPatternSpec that identifies the application specific web resources to which the permission pertains. All URLPatterns in the URLPatternSpec are relative to the context path of the deployed web application module, and the same URLPattern must not occur more than once in a URLPatternSpec. A null URLPatternSpec is translated to the default URLPattern, "/", by the permission constructor. param actions identifies the HTTP methods to which the permission pertains. If the value passed through this parameter is null or the empty string, then the permission pertains to all the possible HTTP methods. super(name); this.urlPatternSpec = new URLPatternSpec(name); this.methodSpec = HttpMethodSpec.getSpec(actions);
public WebResourcePermission(String urlPatternSpec, String[] HTTPMethods) Creates a new WebResourcePermission with name corresponding to the URLPatternSpec, and actions composed from the array of HTTP methods. param urlPatternSpec the URLPatternSpec that identifies the application specific web resources to which the permission pertains. All URLPatterns in the URLPatternSpec are relative to the context path of the deployed web application module, and the same URLPattern must not occur more than once in a URLPatternSpec. A null URLPatternSpec is translated to the default URLPattern, "/", by the permission constructor. param HTTPMethods an array of strings each element of which contains the value of an HTTP method. If the value passed through this parameter is null or is an array with no elements, then the permission pertains to all the possible HTTP methods. super(urlPatternSpec); this.urlPatternSpec = new URLPatternSpec(urlPatternSpec); this.methodSpec = HttpMethodSpec.getSpec(HTTPMethods);
public WebResourcePermission(HttpServletRequest request) Creates a new WebResourcePermission from the HttpServletRequest object. param request the HttpServletRequest object corresponding to the Servlet operation to which the permission pertains. The permission name is the substring of the requestURI (HttpServletRequest.getRequestURI()) that begins after the contextPath (HttpServletRequest.getContextPath()). When the substring operation yields the string "/", the permission is constructed with the empty string as its name. The permission's actions field is obtained from HttpServletRequest.getMethod(). super(getUriMinusContextPath(request)); this.urlPatternSpec = new URLPatternSpec(super.getName()); this.methodSpec= HttpMethodSpec.getSpec(request.getMethod());

Methods Summary
public boolean	equals(java.lang.Object o) Checks two WebResourcePermission objects for equality. WebResourcePermission objects are equivalent if their URLPatternSpec and (canonicalized) actions values are equivalent. The URLPatternSpec of a reference permission is equivalent to that of an argument permission if their first patterns are equivalent, and the patterns of the URLPatternList of the reference permission collectively match exactly the same set of patterns as are matched by the patterns of the URLPatternList of the argument permission. Two Permission objects, P1 and P2, are equivalent if and only if P1.implies(P2) && P2.implies(P1). param o the WebResourcePermission object being tested for equality with this WebResourcePermission. return true if the argument WebResourcePermission object is equivalent to this WebResourcePermission. if (o == null || ! (o instanceof WebResourcePermission)) return false; WebResourcePermission that = (WebResourcePermission) o; if (!this.methodSpec.equals(that.methodSpec)) return false; return this.urlPatternSpec.equals(that.urlPatternSpec);
public java.lang.String	getActions() Returns a canonical String representation of the actions of this WebResourcePermission. In the canonical form, predefined methods preceed extension methods, and within each method classification the corresponding methods occur in ascending lexical order. There may be no duplicate HTTP methods in the canonical form, and the canonical form of the set of all HTTP methods is the value null. return a String containing the canonicalized actions of this WebResourcePermission (or the null value). return this.methodSpec.getActions();
private static java.lang.String	getUriMinusContextPath(javax.servlet.http.HttpServletRequest request) Chops the ContextPath off the front of the requestURI to yield the servletPath + PathInfo. For the special case where the servletPath + PathInfo is the pattern, "/", this routine returns the empty string. String uri = request.getRequestURI(); if (uri != null) { String contextPath = request.getContextPath(); int contextLength = contextPath == null ? 0 : contextPath.length(); if (contextLength > 0) { uri = uri.substring(contextLength); } if (uri.equals("/")) { uri = EMPTY_STRING; } } else { uri = EMPTY_STRING; } return uri;
public int	hashCode() Returns the hash code value for this WebResourcePermission. The properties of the returned hash code must be as follows: During the lifetime of a Java application, the hashCode method must return the same integer value, every time it is called on a WebResourcePermission object. The value returned by hashCode for a particular WebResourcePermission need not remain consistent from one execution of an application to another. If two WebResourcePermission objects are equal according to the equals method, then calling the hashCode method on each of the two Permission objects must produce the same integer result (within an application). return the integer hash code value for this object. if (this.hashCodeValue == 0) { String hashInput = new String(this.urlPatternSpec.toString()+ " " + this.methodSpec.hashCode()); this.hashCodeValue = hashInput.hashCode(); } return this.hashCodeValue;
public boolean	implies(java.security.Permission permission) Determines if the argument Permission is "implied by" this WebResourcePermission. For this to be the case, all of the following must be true: The argument is an instanceof WebResourcePermission The first URLPattern in the name of the argument permission is matched by the first URLPattern in the name of this permission. The first URLPattern in the name of the argument permission is NOT matched by any URLPattern in the URLPatternList of the URLPatternSpec of this permission. If the first URLPattern in the name of the argument permission matches the first URLPattern in the URLPatternSpec of this permission, then every URLPattern in the URLPatternList of the URLPatternSpec of this permission is matched by a URLPattern in the URLPatternList of the argument permission. The HTTP methods represented by the actions of the argument permission are a subset of the HTTP methods represented by the actions of this permission. URLPattern matching is performed using the Servlet matching rules where two URL patterns match if they are related as follows: their pattern values are String equivalent, or this pattern is the path-prefix pattern "/*", or this pattern is a path-prefix pattern (that is, it starts with "/" and ends with "/*") and the argument pattern starts with the substring of this pattern, minus its last 2 characters, and the next character of the argument pattern, if there is one, is "/", or this pattern is an extension pattern (that is, it starts with "*.") and the argument pattern ends with this pattern, or the reference pattern is the special default pattern, "/", which matches all argument patterns. All of the comparisons described above are case sensitive. param permission "this" WebResourcePermission is checked to see if it implies the argument permission. return true if the specified permission is implied by this object, false if not. if (permission == null || ! (permission instanceof WebResourcePermission)) return false; WebResourcePermission that = (WebResourcePermission) permission; if (!this.methodSpec.implies(that.methodSpec)) return false; return this.urlPatternSpec.implies(that.urlPatternSpec);
private synchronized void	readObject(java.io.ObjectInputStream s) readObject reads the serialized fields from the input stream and uses them to restore the permission. This method need not be implemented if establishing the values of the serialized fields (as is done by defaultReadObject) is sufficient to initialize the permission. this.methodSpec = HttpMethodSpec.getSpec ((String) s.readFields().get("actions",null)); this.urlPatternSpec = new URLPatternSpec(super.getName());
private synchronized void	writeObject(java.io.ObjectOutputStream s) writeObject is used to establish the values of the serialized fields before they are written to the output stream and need not be implemented if the values of the serialized fields are always available and up to date. The serialized fields are written to the output stream in the same form as they would be written by defaultWriteObject. s.putFields().put("actions",this.getActions()); s.writeFields();