1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16 package org.argeo.slc.spring;
17
18 import java.security.AccessController;
19 import java.security.PrivilegedAction;
20 import java.util.ArrayList;
21 import java.util.List;
22
23 import javax.security.auth.Subject;
24
25 import org.eclipse.gemini.blueprint.context.DependencyInitializationAwareBeanPostProcessor;
26 import org.springframework.beans.BeansException;
27 import org.springframework.beans.factory.support.AbstractBeanFactory;
28 import org.springframework.beans.factory.support.SecurityContextProvider;
29 import org.springframework.beans.factory.support.SimpleSecurityContextProvider;
30 import org.springframework.context.ApplicationContext;
31 import org.springframework.context.ApplicationContextAware;
32
33
34
35
36
37 public class AuthenticatedApplicationContextInitialization extends
38 AbstractSystemExecution implements
39 DependencyInitializationAwareBeanPostProcessor, ApplicationContextAware {
40
41 private List<String> beanNames = new ArrayList<String>();
42
43 public Object postProcessBeforeInitialization(Object bean, String beanName)
44 throws BeansException {
45 if (beanNames.size() == 0 || beanNames.contains(beanName))
46 authenticateAsSystem();
47 return bean;
48 }
49
50 public Object postProcessAfterInitialization(Object bean, String beanName)
51 throws BeansException {
52 if (beanNames.size() == 0 || beanNames.contains(beanName))
53 deauthenticateAsSystem();
54 return bean;
55 }
56
57 public void setBeanNames(List<String> beanNames) {
58 this.beanNames = beanNames;
59 }
60
61 @Override
62 public void setApplicationContext(ApplicationContext applicationContext)
63 throws BeansException {
64 if (applicationContext.getAutowireCapableBeanFactory() instanceof AbstractBeanFactory) {
65 final AbstractBeanFactory beanFactory = ((AbstractBeanFactory) applicationContext
66 .getAutowireCapableBeanFactory());
67
68
69 Subject.doAs(getSubject(), new PrivilegedAction<Void>() {
70 @Override
71 public Void run() {
72 SecurityContextProvider scp = new SimpleSecurityContextProvider(
73 AccessController.getContext());
74 beanFactory.setSecurityContextProvider(scp);
75 return null;
76 }
77 });
78 }
79 }
80 }