fish.payara.appserver.cdi.auth.roles

Class RolesCDIInterceptor

java.lang.Object

fish.payara.appserver.cdi.auth.roles.RolesCDIInterceptor

@Interceptor
 @Priority(value=4000)
public class RolesCDIInterceptor
extends Object

The Roles CDI Interceptor authenticates requests to methods and classes annotated with the @Roles annotation. If the security context cannot find a role within the requestor which matches either all (if using the AND semantic within the Roles annotation) or one of (if using the OR semantic within the Roles annotation), then a NotAuthorizedException is thrown.

Author:

Michael Ranaldo , Arjan Tijms

Constructor Summary

Constructors

Constructor and Description
RolesCDIInterceptor(javax.enterprise.inject.spi.Bean<?> interceptedBean, javax.enterprise.inject.spi.BeanManager beanManager)

Method Summary

Modifier and Type	Method and Description
boolean	checkAccessPermitted(RolesPermitted roles) Check that the roles allowed by the class or method match the roles currently granted to the caller.
static <A extends Annotation> Optional<A>	getAnnotationFromMethod(javax.enterprise.inject.spi.BeanManager beanManager, Method annotatedMethod, Class<A> annotationType)
Object	method(javax.interceptor.InvocationContext invocationContext) Method invoked whenever a method annotated with @Roles, or a method within a class annotated with @Roles is called.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

RolesCDIInterceptor

@Inject
public RolesCDIInterceptor(@Intercepted
                                   javax.enterprise.inject.spi.Bean<?> interceptedBean,
                                   javax.enterprise.inject.spi.BeanManager beanManager)

Method Detail

method

public Object method(javax.interceptor.InvocationContext invocationContext)
              throws Exception

Method invoked whenever a method annotated with @Roles, or a method within a class annotated with @Roles is called.

Parameters:

invocationContext - Context provided by Weld.

Returns:

Proceed to next interceptor in chain.

Throws:

Exception

checkAccessPermitted

public boolean checkAccessPermitted(RolesPermitted roles)

Check that the roles allowed by the class or method match the roles currently granted to the caller.

Parameters:

roles - The roles declared within the @Roles annotation.

Returns:

True if access is allowed, false otherwise

getAnnotationFromMethod

public static <A extends Annotation> Optional<A> getAnnotationFromMethod(javax.enterprise.inject.spi.BeanManager beanManager,
                                                                         Method annotatedMethod,
                                                                         Class<A> annotationType)