com.liferay.portal.security.pacl.checker

Class SQLChecker

java.lang.Object

com.liferay.portal.security.pacl.checker.BaseChecker

com.liferay.portal.security.pacl.checker.SQLChecker

All Implemented Interfaces:

com.liferay.portal.kernel.security.pacl.PACLConstants, Checker

public class SQLChecker
extends BaseChecker

Author:

Brian Wing Shun Chan, Raymond Augé

Field Summary

Fields inherited from interface com.liferay.portal.kernel.security.pacl.PACLConstants

FILE_PERMISSION_ACTION_DELETE, FILE_PERMISSION_ACTION_EXECUTE, FILE_PERMISSION_ACTION_READ, FILE_PERMISSION_ACTION_WRITE, MBEAN_PERMISSION_IS_INSTANCE_OF, MBEAN_PERMISSION_REGISTER_MBEAN, MBEAN_PERMISSION_UNREGISTER_MBEAN, MBEAN_TRUST_PERMISSION_REGISTER, NET_PERMISSION_GET_PROXY_SELECTOR, NET_PERMISSION_SPECIFY_STREAM_HANDLER, PORTAL_HOOK_PERMISSION_CUSTOM_JSP_DIR, PORTAL_HOOK_PERMISSION_INDEXER, PORTAL_HOOK_PERMISSION_LANGUAGE_PROPERTIES_LOCALE, PORTAL_HOOK_PERMISSION_PORTAL_PROPERTIES_KEY, PORTAL_HOOK_PERMISSION_SERVICE, PORTAL_HOOK_PERMISSION_SERVLET_FILTERS, PORTAL_HOOK_PERMISSION_STRUTS_ACTION_PATH, PORTAL_MESSAGE_BUS_PERMISSION_LISTEN, PORTAL_MESSAGE_BUS_PERMISSION_SEND, PORTAL_RUNTIME_PERMISSION_EXPANDO_BRIDGE, PORTAL_RUNTIME_PERMISSION_GET_BEAN_PROPERTY, PORTAL_RUNTIME_PERMISSION_GET_CLASSLOADER, PORTAL_RUNTIME_PERMISSION_PORTLET_BAG_POOL, PORTAL_RUNTIME_PERMISSION_PORTLET_BAG_POOL_ALL_PORTLETS, PORTAL_RUNTIME_PERMISSION_SEARCH_ENGINE, PORTAL_RUNTIME_PERMISSION_SET_BEAN_PROPERTY, PORTAL_RUNTIME_PERMISSION_THREAD_POOL_ALL_EXECUTORS, PORTAL_RUNTIME_PERMISSION_THREAD_POOL_EXECUTOR, PORTAL_SERVICE_PERMISSION_SERVICE, PROPERTY_PERMISSION_READ, PROPERTY_PERMISSION_WRITE, RUNTIME_PERMISSION_ACCESS_CLASS_IN_PACKAGE, RUNTIME_PERMISSION_ACCESS_DECLARED_MEMBERS, RUNTIME_PERMISSION_CREATE_CLASS_LOADER, RUNTIME_PERMISSION_CREATE_SECURITY_MANAGER, RUNTIME_PERMISSION_GET_CLASSLOADER, RUNTIME_PERMISSION_GET_ENV, RUNTIME_PERMISSION_GET_PROTECTION_DOMAIN, RUNTIME_PERMISSION_LOAD_LIBRARY, RUNTIME_PERMISSION_MODIFY_THREAD, RUNTIME_PERMISSION_READ_FILE_DESCRIPTOR, RUNTIME_PERMISSION_SET_CONTEXT_CLASS_LOADER, RUNTIME_PERMISSION_SET_SECURITY_MANAGER, RUNTIME_PERMISSION_SUPPRESS_ACCESS_CHECKS, RUNTIME_PERMISSION_WRITE_FILE_DESCRIPTOR, SECURITY_PERMISSION_GET_POLICY, SECURITY_PERMISSION_SET_POLICY, SOCKET_PERMISSION_ACCEPT, SOCKET_PERMISSION_CONNECT, SOCKET_PERMISSION_LISTEN, SOCKET_PERMISSION_RESOLVE

Constructor Summary

Constructors

Constructor and Description
SQLChecker()

Method Summary

Methods

Modifier and Type	Method and Description
void	afterPropertiesSet()
AuthorizationProperty	generateAuthorizationProperty(java.lang.Object... arguments)
protected boolean	hasSQL(net.sf.jsqlparser.statement.create.index.CreateIndex createIndex)
protected boolean	hasSQL(net.sf.jsqlparser.statement.create.table.CreateTable createTable)
protected boolean	hasSQL(net.sf.jsqlparser.statement.delete.Delete delete)
protected boolean	hasSQL(net.sf.jsqlparser.statement.drop.Drop drop)
protected boolean	hasSQL(net.sf.jsqlparser.statement.insert.Insert insert)
protected boolean	hasSQL(net.sf.jsqlparser.statement.replace.Replace replace)
protected boolean	hasSQL(net.sf.jsqlparser.statement.select.Select select)
boolean	hasSQL(java.lang.String sql)
protected boolean	hasSQL(net.sf.jsqlparser.statement.truncate.Truncate truncate)
protected boolean	hasSQL(net.sf.jsqlparser.statement.update.Update update)
boolean	implies(java.security.Permission permission)
protected void	initSQLs()
protected void	initTableNames()
protected boolean	isAllowedTable(java.lang.String tableName, java.util.Set<java.lang.String> allowedTableNames)
protected boolean	isAllowedTable(net.sf.jsqlparser.schema.Table table, java.util.Set<java.lang.String> allowedTableNames)
protected boolean	isAllowedTables(java.util.List<java.lang.String> tableNames, java.util.Set<java.lang.String> allowedTableNames)

Methods inherited from class com.liferay.portal.security.pacl.checker.BaseChecker

getClassLoader, getPACLPolicy, getProperties, getProperty, getPropertyArray, getPropertyBoolean, getPropertySet, getServletContextName, isTrustedCaller, logSecurityException, setPACLPolicy

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SQLChecker

public SQLChecker()

Method Detail

afterPropertiesSet

public void afterPropertiesSet()

generateAuthorizationProperty

public AuthorizationProperty generateAuthorizationProperty(java.lang.Object... arguments)

Specified by:

generateAuthorizationProperty in interface Checker

Overrides:

generateAuthorizationProperty in class BaseChecker

hasSQL

public boolean hasSQL(java.lang.String sql)

implies

public boolean implies(java.security.Permission permission)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.create.index.CreateIndex createIndex)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.create.table.CreateTable createTable)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.delete.Delete delete)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.drop.Drop drop)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.insert.Insert insert)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.replace.Replace replace)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.select.Select select)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.truncate.Truncate truncate)

hasSQL

protected boolean hasSQL(net.sf.jsqlparser.statement.update.Update update)

initSQLs

protected void initSQLs()

initTableNames

protected void initTableNames()

isAllowedTable

protected boolean isAllowedTable(java.lang.String tableName,
                     java.util.Set<java.lang.String> allowedTableNames)

isAllowedTable

protected boolean isAllowedTable(net.sf.jsqlparser.schema.Table table,
                     java.util.Set<java.lang.String> allowedTableNames)

isAllowedTables

protected boolean isAllowedTables(java.util.List<java.lang.String> tableNames,
                      java.util.Set<java.lang.String> allowedTableNames)