org.apache.cxf.interceptor.security
Class DefaultSecurityContext

java.lang.Object
  org.apache.cxf.interceptor.security.DefaultSecurityContext

All Implemented Interfaces:

org.apache.cxf.security.LoginSecurityContext, org.apache.cxf.security.SecurityContext

public class DefaultSecurityContext
extends Object
implements org.apache.cxf.security.LoginSecurityContext

SecurityContext which implements isUserInRole using the following approach : skip the first Subject principal, and then checks Groups the principal is a member of TODO : consider moving this class into a rt-core-security module

DefaultSecurityContext

public DefaultSecurityContext(Subject subject)

DefaultSecurityContext

public DefaultSecurityContext(Principal p,
                              Subject subject)

getUserPrincipal

public Principal getUserPrincipal()

Specified by:

getUserPrincipal in interface org.apache.cxf.security.SecurityContext

isUserInRole

public boolean isUserInRole(String role)

Specified by:

isUserInRole in interface org.apache.cxf.security.SecurityContext

checkGroup

protected boolean checkGroup(Group group,
                             String role)

getSubject

public Subject getSubject()

Specified by:

getSubject in interface org.apache.cxf.security.LoginSecurityContext

getUserRoles

public Set<Principal> getUserRoles()

Specified by:

getUserRoles in interface org.apache.cxf.security.LoginSecurityContext