From scm-return-6279-apmail-geronimo-scm-archive=geronimo.apache.org@geronimo.apache.org Fri Mar 04 17:00:25 2005 Return-Path: Delivered-To: apmail-geronimo-scm-archive@www.apache.org Received: (qmail 60637 invoked from network); 4 Mar 2005 17:00:22 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 4 Mar 2005 17:00:22 -0000 Received: (qmail 63697 invoked by uid 500); 4 Mar 2005 17:00:19 -0000 Delivered-To: apmail-geronimo-scm-archive@geronimo.apache.org Received: (qmail 63672 invoked by uid 500); 4 Mar 2005 17:00:18 -0000 Mailing-List: contact scm-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org Delivered-To: mailing list scm@geronimo.apache.org Received: (qmail 63642 invoked by uid 99); 4 Mar 2005 17:00:18 -0000 X-ASF-Spam-Status: No, hits=-9.8 required=10.0 tests=ALL_TRUSTED,NO_REAL_NAME X-Spam-Check-By: apache.org Received: from minotaur.apache.org (HELO minotaur.apache.org) (209.237.227.194) by apache.org (qpsmtpd/0.28) with SMTP; Fri, 04 Mar 2005 09:00:18 -0800 Received: (qmail 60528 invoked by uid 65534); 4 Mar 2005 17:00:16 -0000 Message-ID: <20050304170016.60452.qmail@minotaur.apache.org> Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable X-Mailer: svnmailer-1.0.0-dev Date: Fri, 04 Mar 2005 17:00:12 -0000 Subject: svn commit: r156184 - geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java To: scm@geronimo.apache.org From: djencks@apache.org X-Virus-Checked: Checked X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N Author: djencks Date: Fri Mar 4 09:00:07 2005 New Revision: 156184 URL: http://svn.apache.org/viewcvs?view=3Drev&rev=3D156184 Log: Construct correct WebUserDataPermission depending on transport guarantee Modified: geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interce= ptor/SecurityContextBeforeAfter.java Modified: geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/i= nterceptor/SecurityContextBeforeAfter.java URL: http://svn.apache.org/viewcvs/geronimo/trunk/modules/jetty/src/java/or= g/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java?view=3D= diff&r1=3D156183&r2=3D156184 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D --- geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interce= ptor/SecurityContextBeforeAfter.java (original) +++ geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interce= ptor/SecurityContextBeforeAfter.java Fri Mar 4 09:00:07 2005 @@ -247,7 +247,17 @@ /** * JACC v1.0 secion 4.1.1 */ - acc.checkPermission(new WebUserDataPermission(servletHttpReques= t)); + + String transportType; + if (request.isConfidential()) { + transportType =3D "CONFIDENTIAL"; + } else if (request.isIntegral()) { + transportType =3D "INTEGRAL"; + } else { + transportType =3D null; + } + WebUserDataPermission wudp =3D new WebUserDataPermission(servle= tHttpRequest.getServletPath(), new String[] {servletHttpRequest.getMethod()= }, transportType); + acc.checkPermission(wudp); =20 /** * JACC v1.0 secion 4.1.2