Coverage Report

Coverage Report - org.apache.shiro.authz.aop.AuthenticatedAnnotationHandler

Classes in this File

Line Coverage

Branch Coverage

Complexity

AuthenticatedAnnotationHandler

0/5

0/4

2.5

 /*
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied.  See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package org.apache.shiro.authz.aop;
 
 import java.lang.annotation.Annotation;
 
 import org.apache.shiro.authz.UnauthenticatedException;
 import org.apache.shiro.authz.annotation.RequiresAuthentication;
 
 
 /**
  * Handles {@link RequiresAuthentication RequiresAuthentication} annotations and ensures the calling subject is
  * authenticated before allowing access.
  *
  * @since 0.9.0
  */
 public class AuthenticatedAnnotationHandler extends AuthorizingAnnotationHandler {
 
     /**
      * Default no-argument constructor that ensures this handler to process
      * {@link org.apache.shiro.authz.annotation.RequiresAuthentication RequiresAuthentication} annotations.
      */
     public AuthenticatedAnnotationHandler() {
         super(RequiresAuthentication.class);
     }
 
     /**
      * Ensures that the calling <code>Subject</code> is authenticated, and if not, throws an
      * {@link org.apache.shiro.authz.UnauthenticatedException UnauthenticatedException} indicating the method is not allowed to be executed.
      *
      * @param a the annotation to inspect
      * @throws org.apache.shiro.authz.UnauthenticatedException if the calling <code>Subject</code> has not yet
      * authenticated.
      */
     public void assertAuthorized(Annotation a) throws UnauthenticatedException {
         if (a instanceof RequiresAuthentication && !getSubject().isAuthenticated() ) {
             throw new UnauthenticatedException( "The current Subject is not authenticated.  Access denied." );
         }
     }
 }

1		/*
2		* Licensed to the Apache Software Foundation (ASF) under one
3		* or more contributor license agreements. See the NOTICE file
4		* distributed with this work for additional information
5		* regarding copyright ownership. The ASF licenses this file
6		* to you under the Apache License, Version 2.0 (the
7		* "License"); you may not use this file except in compliance
8		* with the License. You may obtain a copy of the License at
9		*
10		* http://www.apache.org/licenses/LICENSE-2.0
11		*
12		* Unless required by applicable law or agreed to in writing,
13		* software distributed under the License is distributed on an
14		* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
15		* KIND, either express or implied. See the License for the
16		* specific language governing permissions and limitations
17		* under the License.
18		*/
19		package org.apache.shiro.authz.aop;
20
21		import java.lang.annotation.Annotation;
22
23		import org.apache.shiro.authz.UnauthenticatedException;
24		import org.apache.shiro.authz.annotation.RequiresAuthentication;
25
26
27		/**
28		* Handles {@link RequiresAuthentication RequiresAuthentication} annotations and ensures the calling subject is
29		* authenticated before allowing access.
30		*
31		* @since 0.9.0
32		*/
33		public class AuthenticatedAnnotationHandler extends AuthorizingAnnotationHandler {
34
35		/**
36		* Default no-argument constructor that ensures this handler to process
37		* {@link org.apache.shiro.authz.annotation.RequiresAuthentication RequiresAuthentication} annotations.
38		*/
39		public AuthenticatedAnnotationHandler() {
40	0	super(RequiresAuthentication.class);
41	0	}
42
43		/**
44		* Ensures that the calling <code>Subject</code> is authenticated, and if not, throws an
45		* {@link org.apache.shiro.authz.UnauthenticatedException UnauthenticatedException} indicating the method is not allowed to be executed.
46		*
47		* @param a the annotation to inspect
48		* @throws org.apache.shiro.authz.UnauthenticatedException if the calling <code>Subject</code> has not yet
49		* authenticated.
50		*/
51		public void assertAuthorized(Annotation a) throws UnauthenticatedException {
52	0	if (a instanceof RequiresAuthentication && !getSubject().isAuthenticated() ) {
53	0	throw new UnauthenticatedException( "The current Subject is not authenticated. Access denied." );
54		}
55	0	}
56		}