camel-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r893020 - in /websites/production/camel/content: cache/main.pageCache shiro-security.html
Date Mon, 06 Jan 2014 17:18:56 GMT
Author: buildbot
Date: Mon Jan  6 17:18:56 2014
New Revision: 893020

Log:
Production update by buildbot for camel

Modified:
    websites/production/camel/content/cache/main.pageCache
    websites/production/camel/content/shiro-security.html

Modified: websites/production/camel/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.

Modified: websites/production/camel/content/shiro-security.html
==============================================================================
--- websites/production/camel/content/shiro-security.html (original)
+++ websites/production/camel/content/shiro-security.html Mon Jan  6 17:18:56 2014
@@ -130,7 +130,7 @@ sec-level1 = zone1:readonly:*
             new ShiroSecurityPolicy(iniResourcePath, passPhrase, true, permissionsList);
 ]]></script>
 </div></div><h3 id="ShiroSecurity-ShiroSecurityPolicyOptions">ShiroSecurityPolicy
Options</h3><div class="confluenceTableSmall">
-<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1"
class="confluenceTh"><p> Name </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Default Value </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Type </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Description </p></th></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>iniResourcePath or ini</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>none</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Resource
String or Ini Object </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p>
A mandatory Resource String for the iniResourcePath or an instance of an Ini object must be
passed to the security policy. Resources can be acquired from the file system, classpath,
or URLs when prefixed with "file:, classpath:, or url:" respectively. For e.g "classpath:shiro.ini"
</p></td></tr><tr><td colspan="1" rowspan="1" class="conf
 luenceTd"><p> <code>passPhrase</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>An AES 128 based key</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> byte[]
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> A passPhrase
to decrypt ShiroSecurityToken(s) sent along with Message Exchanges </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>alwaysReauthenticate</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>true</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> boolean
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Setting
to ensure re-authentication on every individual request. If set to false, the user is authenticated
and locked such than only requests from the same user going forward are authenticated. </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>permissionsList</code>
</p></td><td colspan="1" rowspan="1" cla
 ss="confluenceTd"><p> <code>none</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> List&lt;Permission&gt; </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> A List of permissions required in
order for an authenticated user to be authorized to perform further action i.e continue further
on the route. If no Permissions list is provided to the ShiroSecurityPolicy object, then authorization
is deemed as not required </p></td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>cipherService</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>AES</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> org.apache.shiro.crypto.CipherService
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Shiro
ships with AES &amp; Blowfish based CipherServices. You may use one these or pass in your
own Cipher implementation </p></td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>base64</code>
  </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>false</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>boolean</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel
2.12:</strong> To use base64 encoding for the security token header, which allows transferring
the header over <a shape="rect" href="jms.html" title="JMS">JMS</a> etc. This
option must also be set on <code>ShiroSecurityTokenInjector</code> as well. </p></td></tr></tbody></table>
+<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1"
class="confluenceTh"><p> Name </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Default Value </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Type </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Description </p></th></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>iniResourcePath or ini</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>none</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Resource
String or Ini Object </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p>
A mandatory Resource String for the iniResourcePath or an instance of an Ini object must be
passed to the security policy. Resources can be acquired from the file system, classpath,
or URLs when prefixed with "file:, classpath:, or url:" respectively. For e.g "classpath:shiro.ini"
</p></td></tr><tr><td colspan="1" rowspan="1" class="conf
 luenceTd"><p> <code>passPhrase</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>An AES 128 based key</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> byte[]
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> A passPhrase
to decrypt ShiroSecurityToken(s) sent along with Message Exchanges </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>alwaysReauthenticate</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>true</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> boolean
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Setting
to ensure re-authentication on every individual request. If set to false, the user is authenticated
and locked such than only requests from the same user going forward are authenticated. </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>permissionsList</code>
</p></td><td colspan="1" rowspan="1" cla
 ss="confluenceTd"><p> <code>none</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> List&lt;Permission&gt; </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> A List of permissions required in
order for an authenticated user to be authorized to perform further action i.e continue further
on the route. If no Permissions list is provided to the ShiroSecurityPolicy object, then authorization
is deemed as not required. Note that the default is that authorization is granted if any of
the Permission Objects in the list are applicable. </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>cipherService</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>AES</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> org.apache.shiro.crypto.CipherService
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Shiro
ships with AES &amp; Blowfish based CipherServices. You may use one these or pass in your
  own Cipher implementation </p></td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>base64</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>false</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>boolean</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel
2.12:</strong> To use base64 encoding for the security token header, which allows transferring
the header over <a shape="rect" href="jms.html" title="JMS">JMS</a> etc. This
option must also be set on <code>ShiroSecurityTokenInjector</code> as well. </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>allPermissionsRequired</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>false</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>boolean</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel
2.13:</strong> The default is that authoriz
 ation is granted if any of the Permission Objects in the permissionsList parameter are applicable.
Set this to true to require all of the Permissions to be met. </p></td></tr></tbody></table>
 </div><h3 id="ShiroSecurity-ApplyingShiroAuthenticationonaCamelRoute">Applying
Shiro Authentication on a Camel Route</h3><p>The ShiroSecurityPolicy, tests and
permits incoming message exchanges containing a encrypted SecurityToken in the Message Header
to proceed further following proper authentication. The SecurityToken object contains a Username/Password
details that are used to determine where the user is a valid user.</p><div class="code
panel pdl" style="border-width: 1px;"><div class="codeContent panelContent pdl">
 <script class="theme: Default; brush: java; gutter: false" type="syntaxhighlighter"><![CDATA[
   protected RouteBuilder createRouteBuilder() throws Exception {
         final ShiroSecurityPolicy securityPolicy = 



Mime
View raw message