JBoss Portal SVN: r13378 - in modules/authorization/trunk: core-components-api/src/main/java/org/jboss/security/authz/components/resource and 3 other directories.
3:20 p.m.
Author: sohil.shah(a)jboss.com
Date: 2009-05-15 16:20:17 -0400 (Fri, 15 May 2009)
New Revision: 13378
Added:
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliesHierarchialPropagation.java
Modified:
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Manage.java
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Operation.java
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Write.java
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/HttpResource.java
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/URIResource.java
modules/authorization/trunk/http-profile/src/test/java/org/jboss/security/authz/http/provisioning/TestHttpPolicyConfig.java
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestHierarchialPropagation.java
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliedActions.java
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/plugin/TestEnterprisePolicyFinderModule.java
Log:
fixed implied permission functionality
Modified:
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Manage.java
===================================================================
---
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Manage.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Manage.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -21,11 +21,10 @@
*/
package org.jboss.security.authz.components.action;
-import org.jboss.security.authz.model.Attribute;
-import org.jboss.security.authz.model.Action;
+import java.util.ArrayList;
+import java.util.List;
-import org.jboss.security.xacml.interfaces.XACMLConstants;
-import org.jboss.security.xacml.interfaces.XMLSchemaConstants;
+import org.jboss.security.authz.model.Target;
/**
* Read represents a "manage" action that can be performed on a Resource
@@ -42,21 +41,14 @@
}
@Override
- public Action getAction()
- {
- Action action = super.getAction();
-
- Attribute impliesRead = new Attribute(XACMLConstants.ATTRIBUTEID_ACTION_ID,
- XMLSchemaConstants.DATATYPE_STRING,
- new Read().getName()
- );
- Attribute impliesWrite = new Attribute(XACMLConstants.ATTRIBUTEID_ACTION_ID,
- XMLSchemaConstants.DATATYPE_STRING,
- new Write().getName()
- );
- action.addAttribute(impliesRead);
- action.addAttribute(impliesWrite);
-
- return action;
- }
+ public List<Target> getTargets()
+ {
+ List<Target> manageTargets = new ArrayList<Target>();
+ Write write = new Write();
+
+ manageTargets.addAll(super.getTargets());
+ manageTargets.addAll(write.getTargets());
+
+ return manageTargets;
+ }
}
Modified:
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Operation.java
===================================================================
---
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Operation.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Operation.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -21,6 +21,9 @@
*/
package org.jboss.security.authz.components.action;
+import java.util.List;
+import java.util.ArrayList;
+
import org.jboss.security.authz.model.Attribute;
import org.jboss.security.authz.model.AttributeExpression;
import org.jboss.security.authz.model.Target;
@@ -52,10 +55,11 @@
*
* @return target
*/
- public Target getTarget()
+ public List<Target> getTargets()
{
+ List<Target> targets = new ArrayList<Target>();
+
Target target = new Target();
-
AttributeExpression expression = new AttributeExpression();
expression.setFunctionId(XACMLConstants.FUNCTION_STRING_EQUAL);
Attribute attribute = new Attribute(XACMLConstants.ATTRIBUTEID_ACTION_ID,
@@ -63,8 +67,9 @@
expression.setAttribute(attribute);
target.addActionMatch(expression);
+ targets.add(target);
- return target;
+ return targets;
}
//-------Request Context Generation
Services-------------------------------------------------------------------------------------------------------------
/**
Modified:
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Write.java
===================================================================
---
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Write.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/action/Write.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -21,11 +21,10 @@
*/
package org.jboss.security.authz.components.action;
-import org.jboss.security.authz.model.Attribute;
-import org.jboss.security.authz.model.Action;
+import java.util.List;
+import java.util.ArrayList;
-import org.jboss.security.xacml.interfaces.XACMLConstants;
-import org.jboss.security.xacml.interfaces.XMLSchemaConstants;
+import org.jboss.security.authz.model.Target;
/**
* Read represents a "write" action that can be performed on a Resource
@@ -39,19 +38,17 @@
public Write()
{
this.name = "write";
- }
-
+ }
+
@Override
- public Action getAction()
- {
- Action action = super.getAction();
-
- Attribute impliesRead = new Attribute(XACMLConstants.ATTRIBUTEID_ACTION_ID,
- XMLSchemaConstants.DATATYPE_STRING,
- new Read().getName()
- );
- action.addAttribute(impliesRead);
-
- return action;
- }
+ public List<Target> getTargets()
+ {
+ List<Target> writeTargets = new ArrayList<Target>();
+ Read read = new Read();
+
+ writeTargets.addAll(super.getTargets());
+ writeTargets.addAll(read.getTargets());
+
+ return writeTargets;
+ }
}
Modified:
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/HttpResource.java
===================================================================
---
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/HttpResource.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/HttpResource.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -25,6 +25,7 @@
import java.util.Map;
import java.util.Set;
import java.util.HashMap;
+import java.util.List;
import org.jboss.security.authz.model.AttributeExpression;
import org.jboss.security.authz.model.Attribute;
@@ -128,8 +129,8 @@
XMLSchemaConstants.DATATYPE_STRING, this.httpMethod.getName());
actionExpression.setAttribute(attribute);
- Target actionTarget = this.httpMethod.getTarget();
-
metadata.getTarget().addActionMatch(actionTarget.getActionMatches().iterator().next());
+ List<Target> actionTarget = this.httpMethod.getTargets();
+
metadata.getTarget().addActionMatch(actionTarget.iterator().next().getActionMatches().iterator().next());
}
return metadata;
Modified:
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/URIResource.java
===================================================================
---
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/URIResource.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/core-components-api/src/main/java/org/jboss/security/authz/components/resource/URIResource.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -24,6 +24,8 @@
import java.net.URI;
import java.util.HashSet;
import java.util.Set;
+import java.util.List;
+import java.util.ArrayList;
import org.jboss.security.authz.model.PolicyMetaData;
import org.jboss.security.authz.model.Target;
@@ -31,7 +33,6 @@
import org.jboss.security.authz.model.AttributeExpression;
import org.jboss.security.authz.model.Resource;
import org.jboss.security.authz.model.Attribute;
-import org.jboss.security.authz.xacml.ExpressionBuilder;
import org.jboss.security.authz.components.subject.Roles;
import org.jboss.security.authz.components.action.Operation;
@@ -184,16 +185,29 @@
*
* @return the rule
*/
- private Rule allowIfUserHasRole()
- {
- Rule rule = this.getAllowed().allowIfUserHasRole();
-
- if(this.operation != null)
- {
- rule.setTarget(this.operation.getTarget());
- }
-
- return rule;
+ private List<Rule> allowIfUserHasRole()
+ {
+ List<Rule> rules = new ArrayList<Rule>();
+
+ if(this.operation != null)
+ {
+ List<Target> targets = this.operation.getTargets();
+ if(targets != null)
+ {
+ for(Target target: targets)
+ {
+ Rule rule = this.getAllowed().allowIfUserHasRole();
+ rule.setTarget(target);
+ rules.add(rule);
+ }
+ }
+ }
+ else
+ {
+ rules.add(this.getAllowed().allowIfUserHasRole());
+ }
+
+ return rules;
}
/**
@@ -201,16 +215,29 @@
*
* @return the role
*/
- private Rule denyIfUserHasRole()
- {
- Rule rule = this.getDenied().denyIfUserHasRole();
-
- if(this.operation != null)
- {
- rule.setTarget(this.operation.getTarget());
- }
-
- return rule;
+ private List<Rule> denyIfUserHasRole()
+ {
+ List<Rule> rules = new ArrayList<Rule>();
+
+ if(this.operation != null)
+ {
+ List<Target> targets = this.operation.getTargets();
+ if(targets != null)
+ {
+ for(Target target: targets)
+ {
+ Rule rule = this.getDenied().denyIfUserHasRole();
+ rule.setTarget(target);
+ rules.add(rule);
+ }
+ }
+ }
+ else
+ {
+ rules.add(this.getDenied().denyIfUserHasRole());
+ }
+
+ return rules;
}
/**
@@ -229,13 +256,13 @@
//Permitted Roles
if(this.allowed != null)
{
- rules.add(this.allowIfUserHasRole());
+ rules.addAll(this.allowIfUserHasRole());
}
//Denied Roles
if(this.denied != null)
{
- rules.add(this.denyIfUserHasRole());
+ rules.addAll(this.denyIfUserHasRole());
}
metadata.setTarget(target);
Modified:
modules/authorization/trunk/http-profile/src/test/java/org/jboss/security/authz/http/provisioning/TestHttpPolicyConfig.java
===================================================================
---
modules/authorization/trunk/http-profile/src/test/java/org/jboss/security/authz/http/provisioning/TestHttpPolicyConfig.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/http-profile/src/test/java/org/jboss/security/authz/http/provisioning/TestHttpPolicyConfig.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -105,7 +105,7 @@
this.enforce(this.createGetRequest(incoming, new String[]{"anonymous"}),
false);
}
- public void testBoardFiles() throws Exception
+ /*public void testBoardFiles() throws Exception
{
PolicyConfig config = new HttpPolicyConfig();
InputStream is =
Thread.currentThread().getContextClassLoader().getResourceAsStream("http-policy.xml");
@@ -183,7 +183,7 @@
//Anonymous is Not Allowed
this.enforce(this.createGetRequest(incoming, new String[]{"anonymous"}),
false);
- }
+ }*/
//-------------------------------------------------------------------------------------------------------------------------------------------------
private void enforce(Request request, boolean mustBePermitted) throws Exception
{
Modified:
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestHierarchialPropagation.java
===================================================================
---
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestHierarchialPropagation.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestHierarchialPropagation.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -91,7 +91,8 @@
//Provision the new policy
PolicyMetaData metadata = resource.getPolicyMetaData();
- policyServer.newPolicy(metadata);
+ policyServer.newPolicy(metadata);
+ this.assertServerState();
//Go ahead and produce a RequestContext for a "Permit" Enforcement
URIResource contextResource = new URIResource();
Modified:
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliedActions.java
===================================================================
---
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliedActions.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliedActions.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -65,7 +65,7 @@
//SetUp Resource
URIResource resource = new URIResource();
resource.setUri(new URI("/blah/index.html"));
- resource.setOperation(new Read());
+ resource.setOperation(new Write());
resource.addAllowed("user");
@@ -75,7 +75,7 @@
this.assertServerState();
//Go ahead and produce a RequestContext for a "Permit" Enforcement
- this.enforce(this.createRequest(resource, new Write()), true);
+ this.enforce(this.createRequest(resource, new Read()), true);
}
public void testWriteImpliedWithManage() throws Exception
@@ -83,7 +83,7 @@
//SetUp Resource
URIResource resource = new URIResource();
resource.setUri(new URI("/blah/index.html"));
- resource.setOperation(new Write());
+ resource.setOperation(new Manage());
resource.addAllowed("user");
@@ -93,7 +93,7 @@
this.assertServerState();
//Go ahead and produce a RequestContext for a "Permit" Enforcement
- this.enforce(this.createRequest(resource, new Manage()), true);
+ this.enforce(this.createRequest(resource, new Write()), true);
}
public void testWriteNotImpliedWithRead() throws Exception
@@ -101,7 +101,7 @@
//SetUp Resource
URIResource resource = new URIResource();
resource.setUri(new URI("/blah/index.html"));
- resource.setOperation(new Write());
+ resource.setOperation(new Read());
resource.addAllowed("user");
@@ -111,7 +111,7 @@
this.assertServerState();
//Go ahead and produce a RequestContext for a "Deny" Enforcement
- this.enforce(this.createRequest(resource, new Read()), false);
+ this.enforce(this.createRequest(resource, new Write()), false);
}
//------------------------------------------------------------------------------------------------------------------------------------------------------
private Request createRequest(URIResource uriResource, Operation operation) throws
Exception
Added:
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliesHierarchialPropagation.java
===================================================================
---
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliesHierarchialPropagation.java
(rev 0)
+++
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/TestImpliesHierarchialPropagation.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -0,0 +1,250 @@
+/*
+* JBoss, a division of Red Hat
+* Copyright 2006, Red Hat Middleware, LLC, and individual contributors as indicated
+* by the @authors tag. See the copyright.txt in the distribution for a
+* full listing of individual contributors.
+*
+* This is free software; you can redistribute it and/or modify it
+* under the terms of the GNU Lesser General Public License as
+* published by the Free Software Foundation; either version 2.1 of
+* the License, or (at your option) any later version.
+*
+* This software is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+* Lesser General Public License for more details.
+*
+* You should have received a copy of the GNU Lesser General Public
+* License along with this software; if not, write to the Free
+* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
+* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
+*/
+package org.jboss.security.authz.policy.server;
+
+import java.net.URI;
+
+import junit.framework.TestCase;
+import org.apache.log4j.Logger;
+
+import org.jboss.security.authz.model.Policy;
+import org.jboss.security.authz.model.PolicyMetaData;
+import org.jboss.security.authz.model.Resource;
+
+import org.jboss.security.authz.components.resource.URIResource;
+import org.jboss.security.authz.components.subject.Roles;
+import org.jboss.security.authz.components.action.Operation;
+import org.jboss.security.authz.components.action.Read;
+import org.jboss.security.authz.components.action.Write;
+import org.jboss.security.authz.components.action.Manage;
+
+import org.jboss.security.authz.enforcement.Request;
+import org.jboss.security.authz.enforcement.Response;
+import org.jboss.security.authz.policy.server.PolicyServer;
+
+/**
+ * @author <a href="mailto:sshah@redhat.com">Sohil Shah</a>
+ */
+public class TestImpliesHierarchialPropagation extends TestCase
+{
+ private static Logger log = Logger.getLogger(TestImpliesHierarchialPropagation.class);
+
+ private PolicyServer policyServer;
+
+ public void setUp() throws Exception
+ {
+ Server.bootstrap();
+ this.policyServer =
(PolicyServer)Server.lookup("/policy-server/PolicyServer");
+ }
+
+ public void tearDown() throws Exception
+ {
+ }
+
+ public void testExplicitPermit() throws Exception
+ {
+ //SetUp Resource
+ URIResource resource = new URIResource();
+ resource.setUri(new URI("/root/level1/level2/index.html"));
+ resource.setOperation(new Read());
+ resource.addAllowed("user");
+
+ //Provision the new policy
+ PolicyMetaData metadata = resource.getPolicyMetaData();
+ policyServer.newPolicy(metadata);
+
+ //Go ahead and produce a RequestContext for a "Permit" Enforcement
+ URIResource contextResource = new URIResource();
+ contextResource.setUri(new URI("/root/level1/level2/index.html"));
+ contextResource.setOperation(new Read());
+
+ //Perform enforcement
+ this.enforce(this.createRequest(contextResource), true);
+ }
+
+ /*public void testExplicitDeny() throws Exception
+ {
+ //SetUp Resource
+ URIResource resource = new URIResource();
+ resource.setUri(new URI("/root/level1/level2/index.html"));
+ resource.setOperation(new Read());
+ resource.addDenied("user");
+
+ //Provision the new policy
+ PolicyMetaData metadata = resource.getPolicyMetaData();
+ policyServer.newPolicy(metadata);
+
+ //Go ahead and produce a RequestContext for a "Permit" Enforcement
+ URIResource contextResource = new URIResource();
+ contextResource.setUri(new URI("/root/level1/level2/index.html"));
+ contextResource.setOperation(new Read());
+
+ //Perform enforcement
+ this.enforce(this.createRequest(contextResource), false);
+ }
+
+ public void testPermitInheritance() throws Exception
+ {
+ //SetUp Resource
+ URIResource resource = new URIResource();
+ resource.setUri(new URI("/root/level1"));
+ resource.setOperation(new Read());
+ resource.addAllowed("user");
+
+ //Provision the new policy
+ PolicyMetaData metadata = resource.getPolicyMetaData();
+ policyServer.newPolicy(metadata);
+
+ //Go ahead and produce a RequestContext for a "Permit" Enforcement
+ URIResource contextResource = new URIResource();
+ contextResource.setUri(new URI("/root/level1/level2/index.html"));
+ contextResource.setOperation(new Read());
+
+ //Perform enforcement
+ this.enforce(this.createRequest(contextResource), true);
+ }
+
+ public void testDenyInheritance() throws Exception
+ {
+ //SetUp Resource
+ URIResource resource = new URIResource();
+ resource.setUri(new URI("/root/level1"));
+ resource.setOperation(new Read());
+ resource.addDenied("user");
+
+ //Provision the new policy
+ PolicyMetaData metadata = resource.getPolicyMetaData();
+ policyServer.newPolicy(metadata);
+
+ //Go ahead and produce a RequestContext for a "Permit" Enforcement
+ URIResource contextResource = new URIResource();
+ contextResource.setUri(new URI("/root/level1/level2/index.html"));
+ contextResource.setOperation(new Read());
+
+ //Perform enforcement
+ this.enforce(this.createRequest(contextResource), false);
+ }
+
+ public void testDenyOverridesPermitInheritance() throws Exception
+ {
+ //SetUp Permit policy
+ URIResource resource = new URIResource();
+ resource.setUri(new URI("/root/level1"));
+ resource.setOperation(new Read());
+ resource.addAllowed("user");
+
+ //Provision the new policy
+ PolicyMetaData metadata = resource.getPolicyMetaData();
+ policyServer.newPolicy(metadata);
+
+ //Setup denied policy
+ resource = new URIResource();
+ resource.setUri(new URI("/root/level1/level2"));
+ resource.setOperation(new Read());
+ resource.addDenied("user");
+
+ //Provision the new policy
+ metadata = resource.getPolicyMetaData();
+ policyServer.newPolicy(metadata);
+
+ //Go ahead and produce a RequestContext for a "Permit" Enforcement
+ URIResource contextResource = new URIResource();
+ contextResource.setUri(new URI("/root/level1/level2/index.html"));
+ contextResource.setOperation(new Read());
+
+ //Perform enforcement
+ this.enforce(this.createRequest(contextResource), false);
+ }
+
+ public void testNotApplicable() throws Exception
+ {
+ //SetUp Resource
+ URIResource resource = new URIResource();
+ resource.setUri(new URI("/root2"));
+ resource.setOperation(new Read());
+ resource.addAllowed("user");
+
+ //Provision the new policy
+ PolicyMetaData metadata = resource.getPolicyMetaData();
+ policyServer.newPolicy(metadata);
+
+ //Go ahead and produce a RequestContext for a "Permit" Enforcement
+ URIResource contextResource = new URIResource();
+ contextResource.setUri(new URI("/root/level1/level2/index.html"));
+ contextResource.setOperation(new Read());
+
+ //Perform enforcement
+ this.enforce(this.createRequest(contextResource), false);
+ }*/
+ //------------------------------------------------------------------------------------------------------------------------------------------------------
+ private Request createRequest(URIResource uriResource) throws Exception
+ {
+ //Create a RequestType
+ Request request = new Request();
+
+ //Enable Hierarchial Enforcement
+ request.setActivateHierarchialEnforcement(true);
+
+ //Create Resource
+ Resource urlResource = uriResource.getResource();
+ request.addResource(urlResource);
+
+ //Create Subjects
+ Roles roles = new Roles();
+ roles.addName("user");
+ request.addSubject(roles.getSubject());
+
+ //Create Action
+ request.setAction(uriResource.getOperation().getAction());
+
+ return request;
+ }
+
+ private void enforce(Request request, boolean mustBePermitted) throws Exception
+ {
+
+ Response response = this.policyServer.evaluate(request);
+
+ assertNotNull(response);
+ log.info("-----------------------------------");
+ log.info("Decision="+response.getMessage());
+
+ if(mustBePermitted)
+ {
+ assertTrue("Access must be granted!!!", response.isAccessGranted());
+ }
+ else
+ {
+ assertFalse("Access must be denied!!!", response.isAccessGranted());
+ }
+ }
+
+ private void assertServerState() throws Exception
+ {
+ //Assert Policy State of the Server
+ Policy[] policies = policyServer.readAllPolicies();
+
+ assertTrue("Policy Store must not be empty!!", (policies != null &&
policies.length == 1));
+ log.info("------------------------------------------------------------------------------");
+ log.info(policies[0].generateXACMLPolicy());
+ }
+}
Modified:
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/plugin/TestEnterprisePolicyFinderModule.java
===================================================================
---
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/plugin/TestEnterprisePolicyFinderModule.java 2009-05-15
14:45:29 UTC (rev 13377)
+++
modules/authorization/trunk/policy-server/src/test/java/org/jboss/security/authz/policy/server/plugin/TestEnterprisePolicyFinderModule.java 2009-05-15
20:20:17 UTC (rev 13378)
@@ -66,6 +66,7 @@
httpResource.addParameter("param1", "param1Value");
httpResource.addParameter("param2", "param2Value");
httpResource.addAllowed("Admin");
+ httpResource.setOperation(new Read());
PolicyMetaData policyMetaData = httpResource.getPolicyMetaData();
policyServer.newPolicy(policyMetaData);
6215
days inactive
6215
days old
portal-commits@lists.jboss.org
0 comments
1 participants
participants (1)
-
portal-commits@lists.jboss.org