java_security
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
java_security [2007/02/09 11:50] – slonopotamus | java_security [2019/06/12 16:08] (current) – external edit 127.0.0.1 | ||
---|---|---|---|
Line 12: | Line 12: | ||
==== Зачем защищать ==== | ==== Зачем защищать ==== | ||
Чтобы разделять, | Чтобы разделять, | ||
+ | |||
===== Аутентификация ===== | ===== Аутентификация ===== | ||
- | FIXME | + | ==== Несортированный трэш ==== |
+ | <code java> | ||
+ | // | ||
+ | Policy.setPolicy(new Policy() | ||
+ | { | ||
+ | public boolean implies(final ProtectionDomain domain, final Permission permission) | ||
+ | { | ||
+ | for (final Principal principal : domain.getPrincipals()) { | ||
+ | if (principal instanceof MyPrincipal) { | ||
+ | // | ||
+ | } | ||
+ | } | ||
+ | return false; | ||
+ | } | ||
+ | }); | ||
+ | // | ||
+ | final Configuration orig = Configuration.getConfiguration(); | ||
+ | Configuration.setConfiguration(new Configuration() | ||
+ | { | ||
+ | public AppConfigurationEntry[] getAppConfigurationEntry(final String name) | ||
+ | { | ||
+ | return (name.equals(" | ||
+ | new AppConfigurationEntry[]{ | ||
+ | new AppConfigurationEntry( | ||
+ | " | ||
+ | AppConfigurationEntry.LoginModuleControlFlag.REQUISITE, | ||
+ | Collections.< | ||
+ | ) | ||
+ | } : orig.getAppConfigurationEntry(name); | ||
+ | } | ||
+ | |||
+ | public void refresh() | ||
+ | { | ||
+ | orig.refresh(); | ||
+ | } | ||
+ | }); | ||
+ | System.setSecurityManager(new SecurityManager()); | ||
+ | // | ||
+ | final String name = " | ||
+ | final String password = " | ||
+ | final LoginContext ctx = new LoginContext(" | ||
+ | { | ||
+ | public void handle(final Callback[] callbacks) throws IOException, | ||
+ | { | ||
+ | for (final Callback cb : callbacks) | ||
+ | { | ||
+ | if (cb instanceof NameCallback) | ||
+ | { | ||
+ | ((NameCallback) cb).setName(name); | ||
+ | } | ||
+ | else if (cb instanceof PasswordCallback) | ||
+ | { | ||
+ | ((PasswordCallback) cb).setPassword(password.toCharArray()); | ||
+ | } | ||
+ | else | ||
+ | { | ||
+ | throw new UnsupportedCallbackException(cb); | ||
+ | } | ||
+ | } | ||
+ | } | ||
+ | }); | ||
+ | ctx.login(); | ||
+ | // | ||
+ | Subject.doAs(ctx.getSubject(), | ||
+ | { | ||
+ | public Object run() | ||
+ | { | ||
+ | //Do something | ||
+ | return null; | ||
+ | } | ||
+ | }); | ||
+ | ctx.logout(); | ||
+ | </ | ||
===== Авторизация ===== | ===== Авторизация ===== | ||
Line 175: | Line 248: | ||
===== Permissions Evangelizm ===== | ===== Permissions Evangelizm ===== | ||
FIXME | FIXME | ||
+ | |||
+ | ====== JAAS vs Acegi Security ====== | ||
+ | |||
+ | ===== Java Security (JAAS) ===== | ||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | |||
+ | |||
+ | ===== Acegi Security ===== | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | {{jsf-ru: | ||
+ | |||
+ | При этом следует учитывать, |
java_security.1171021822.txt.gz · Last modified: 2019/06/12 16:12 (external edit)