Classes in this File | Line Coverage | Branch Coverage | Complexity | ||||
RolesAuthorizationFilter |
|
| 4.0;4 |
1 | /* | |
2 | * Licensed to the Apache Software Foundation (ASF) under one | |
3 | * or more contributor license agreements. See the NOTICE file | |
4 | * distributed with this work for additional information | |
5 | * regarding copyright ownership. The ASF licenses this file | |
6 | * to you under the Apache License, Version 2.0 (the | |
7 | * "License"); you may not use this file except in compliance | |
8 | * with the License. You may obtain a copy of the License at | |
9 | * | |
10 | * http://www.apache.org/licenses/LICENSE-2.0 | |
11 | * | |
12 | * Unless required by applicable law or agreed to in writing, | |
13 | * software distributed under the License is distributed on an | |
14 | * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY | |
15 | * KIND, either express or implied. See the License for the | |
16 | * specific language governing permissions and limitations | |
17 | * under the License. | |
18 | */ | |
19 | package org.apache.shiro.web.filter.authz; | |
20 | ||
21 | import java.io.IOException; | |
22 | import java.util.Set; | |
23 | import javax.servlet.ServletRequest; | |
24 | import javax.servlet.ServletResponse; | |
25 | ||
26 | import org.apache.shiro.subject.Subject; | |
27 | import org.apache.shiro.util.CollectionUtils; | |
28 | ||
29 | ||
30 | /** | |
31 | * Filter that allows access if the current user has the roles specified by the mapped value, or denies access | |
32 | * if the user does not have all of the roles specified. | |
33 | * | |
34 | * @since 0.9 | |
35 | */ | |
36 | 48 | public class RolesAuthorizationFilter extends AuthorizationFilter { |
37 | ||
38 | //TODO - complete JavaDoc | |
39 | ||
40 | @SuppressWarnings({"unchecked"}) | |
41 | public boolean isAccessAllowed(ServletRequest request, ServletResponse response, Object mappedValue) throws IOException { | |
42 | ||
43 | 0 | Subject subject = getSubject(request, response); |
44 | 0 | String[] rolesArray = (String[]) mappedValue; |
45 | ||
46 | 0 | if (rolesArray == null || rolesArray.length == 0) { |
47 | //no roles specified, so nothing to check - allow access. | |
48 | 0 | return true; |
49 | } | |
50 | ||
51 | 0 | Set<String> roles = CollectionUtils.asSet(rolesArray); |
52 | 0 | return subject.hasAllRoles(roles); |
53 | } | |
54 | ||
55 | } |