Coverage Report

Coverage Report - nu.localhost.tapestry.acegi.services.internal.AcegiExceptionTranslationFilter

Classes in this File

Line Coverage

Branch Coverage

Complexity

AcegiExceptionTranslationFilter

0/77

0/28

6.75

 /*
  * Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
  * Copyright 2007, 2008 Robin Helgelin
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 
 package nu.localhost.tapestry.acegi.services.internal;
 
 import java.io.IOException;
 
 import javax.servlet.FilterChain;
 import javax.servlet.ServletException;
 import javax.servlet.ServletRequest;
 import javax.servlet.ServletResponse;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
 import org.acegisecurity.AccessDeniedException;
 import org.acegisecurity.AcegiSecurityException;
 import org.acegisecurity.AuthenticationException;
 import org.acegisecurity.InsufficientAuthenticationException;
 import org.acegisecurity.context.SecurityContextHolder;
 import org.acegisecurity.ui.AccessDeniedHandler;
 import org.acegisecurity.ui.AccessDeniedHandlerImpl;
 import org.acegisecurity.ui.ExceptionTranslationFilter;
 import org.apache.commons.logging.Log;
 import org.apache.commons.logging.LogFactory;
 import org.apache.tapestry.ioc.internal.util.TapestryException;
 import org.springframework.util.Assert;
 
 /**
  * @author Ben Alex
  * @author Colin Sampaleanu
  * @author Robin Helgelin
  */
 public class AcegiExceptionTranslationFilter
 extends ExceptionTranslationFilter {
     private static final Log logger = 
         LogFactory.getLog(ExceptionTranslationFilter.class);
     
     private AccessDeniedHandler accessDeniedHandler =
         new AccessDeniedHandlerImpl();
     
     public void doFilter(final ServletRequest request,
             final ServletResponse response,
             final FilterChain chain) throws IOException, ServletException {
         if (!(request instanceof HttpServletRequest)) {
             throw new ServletException("HttpServletRequest required");
         }
         
         if (!(response instanceof HttpServletResponse)) {
             throw new ServletException("HttpServletResponse required");
         }
         
         try {
             chain.doFilter(request, response);
             
             if (logger.isDebugEnabled()) {
                 logger.debug("Chain processed normally");
             }
         } catch (AuthenticationException ex) {
             handleException(request, response, chain, ex);
         } catch (AccessDeniedException ex) {
             handleException(request, response, chain, ex);
         } catch (TapestryException ex) {
             Throwable cause = getRootCause(ex);
             if (cause instanceof AuthenticationException || cause instanceof AccessDeniedException) {
                 handleException(request, response, chain, (AcegiSecurityException) cause);
             } else {
                 throw ex;
             }
         } catch (ServletException ex) {
             Throwable cause = ex.getRootCause();
             if (cause instanceof AuthenticationException || cause instanceof AccessDeniedException) {
                 handleException(request, response, chain, (AcegiSecurityException) cause);
             } else {
                 throw ex;
             }
         } catch (IOException ex) {
             throw ex;
         }
     }
     
     private Throwable getRootCause(Throwable t) {
         if (t.getCause() == null) {
             return t;
         }
         return getRootCause(t.getCause());
     }
     
     private void handleException(final ServletRequest request,
             final ServletResponse response,
             final FilterChain chain, final AcegiSecurityException exception)
     throws IOException, ServletException {
         if (exception instanceof AuthenticationException) {
             if (logger.isDebugEnabled()) {
                 logger.debug("Authentication exception occurred; redirecting to authentication entry point", exception);
             }
             
             sendStartAuthentication(request, response, chain, 
                     (AuthenticationException) exception);
         } else if (exception instanceof AccessDeniedException) {
             if (getAuthenticationTrustResolver().isAnonymous(
                     SecurityContextHolder.getContext().getAuthentication())) {
                 if (logger.isDebugEnabled()) {
                     logger.debug("Access is denied (user is anonymous); redirecting to authentication entry point",
                             exception);
                 }
                 
                 sendStartAuthentication(request, response, chain,
                         new InsufficientAuthenticationException("Full authentication is required to access this resource"));
             } else {
                 if (logger.isDebugEnabled()) {
                     logger.debug("Access is denied (user is not anonymous); delegating to AccessDeniedHandler",
                             exception);
                 }
                 
                 this.accessDeniedHandler.handle(request, response,
                         (AccessDeniedException) exception);
             }
         }
     }
     
     public void setAccessDeniedHandler(
             final AccessDeniedHandler accessDeniedHandler) {
         Assert.notNull(accessDeniedHandler, "AccessDeniedHandler required");
         this.accessDeniedHandler = accessDeniedHandler;
     }
 }

1		/*
2		* Copyright 2004, 2005, 2006 Acegi Technology Pty Limited
3		* Copyright 2007, 2008 Robin Helgelin
4		*
5		* Licensed under the Apache License, Version 2.0 (the "License");
6		* you may not use this file except in compliance with the License.
7		* You may obtain a copy of the License at
8		*
9		* http://www.apache.org/licenses/LICENSE-2.0
10		*
11		* Unless required by applicable law or agreed to in writing, software
12		* distributed under the License is distributed on an "AS IS" BASIS,
13		* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14		* See the License for the specific language governing permissions and
15		* limitations under the License.
16		*/
17
18		package nu.localhost.tapestry.acegi.services.internal;
19
20		import java.io.IOException;
21
22		import javax.servlet.FilterChain;
23		import javax.servlet.ServletException;
24		import javax.servlet.ServletRequest;
25		import javax.servlet.ServletResponse;
26		import javax.servlet.http.HttpServletRequest;
27		import javax.servlet.http.HttpServletResponse;
28
29		import org.acegisecurity.AccessDeniedException;
30		import org.acegisecurity.AcegiSecurityException;
31		import org.acegisecurity.AuthenticationException;
32		import org.acegisecurity.InsufficientAuthenticationException;
33		import org.acegisecurity.context.SecurityContextHolder;
34		import org.acegisecurity.ui.AccessDeniedHandler;
35		import org.acegisecurity.ui.AccessDeniedHandlerImpl;
36		import org.acegisecurity.ui.ExceptionTranslationFilter;
37		import org.apache.commons.logging.Log;
38		import org.apache.commons.logging.LogFactory;
39		import org.apache.tapestry.ioc.internal.util.TapestryException;
40		import org.springframework.util.Assert;
41
42		/**
43		* @author Ben Alex
44		* @author Colin Sampaleanu
45		* @author Robin Helgelin
46		*/
47	0	public class AcegiExceptionTranslationFilter
48		extends ExceptionTranslationFilter {
49	0	private static final Log logger =
50	0	LogFactory.getLog(ExceptionTranslationFilter.class);
51
52	0	private AccessDeniedHandler accessDeniedHandler =
53	0	new AccessDeniedHandlerImpl();
54
55		public void doFilter(final ServletRequest request,
56		final ServletResponse response,
57		final FilterChain chain) throws IOException, ServletException {
58	0	if (!(request instanceof HttpServletRequest)) {
59	0	throw new ServletException("HttpServletRequest required");
60		}
61
62	0	if (!(response instanceof HttpServletResponse)) {
63	0	throw new ServletException("HttpServletResponse required");
64		}
65
66		try {
67	0	chain.doFilter(request, response);
68
69	0	if (logger.isDebugEnabled()) {
70	0	logger.debug("Chain processed normally");
71		}
72	0	} catch (AuthenticationException ex) {
73	0	handleException(request, response, chain, ex);
74	0	} catch (AccessDeniedException ex) {
75	0	handleException(request, response, chain, ex);
76	0	} catch (TapestryException ex) {
77	0	Throwable cause = getRootCause(ex);
78	0	if (cause instanceof AuthenticationException \|\| cause instanceof AccessDeniedException) {
79	0	handleException(request, response, chain, (AcegiSecurityException) cause);
80	0	} else {
81	0	throw ex;
82	0	}
83	0	} catch (ServletException ex) {
84	0	Throwable cause = ex.getRootCause();
85	0	if (cause instanceof AuthenticationException \|\| cause instanceof AccessDeniedException) {
86	0	handleException(request, response, chain, (AcegiSecurityException) cause);
87	0	} else {
88	0	throw ex;
89	0	}
90	0	} catch (IOException ex) {
91	0	throw ex;
92	0	}
93	0	}
94	0
95	0	private Throwable getRootCause(Throwable t) {
96	0	if (t.getCause() == null) {
97	0	return t;
98		}
99	0	return getRootCause(t.getCause());
100		}
101	0
102	0	private void handleException(final ServletRequest request,
103	0	final ServletResponse response,
104	0	final FilterChain chain, final AcegiSecurityException exception)
105	0	throws IOException, ServletException {
106	0	if (exception instanceof AuthenticationException) {
107	0	if (logger.isDebugEnabled()) {
108	0	logger.debug("Authentication exception occurred; redirecting to authentication entry point", exception);
109	0	}
110	0
111	0	sendStartAuthentication(request, response, chain,
112	0	(AuthenticationException) exception);
113	0	} else if (exception instanceof AccessDeniedException) {
114	0	if (getAuthenticationTrustResolver().isAnonymous(
115	0	SecurityContextHolder.getContext().getAuthentication())) {
116	0	if (logger.isDebugEnabled()) {
117	0	logger.debug("Access is denied (user is anonymous); redirecting to authentication entry point",
118	0	exception);
119	0	}
120	0
121	0	sendStartAuthentication(request, response, chain,
122	0	new InsufficientAuthenticationException("Full authentication is required to access this resource"));
123	0	} else {
124	0	if (logger.isDebugEnabled()) {
125	0	logger.debug("Access is denied (user is not anonymous); delegating to AccessDeniedHandler",
126	0	exception);
127	0	}
128	0
129	0	this.accessDeniedHandler.handle(request, response,
130	0	(AccessDeniedException) exception);
131		}
132	0	}
133	0	}
134	0
135	0	public void setAccessDeniedHandler(
136	0	final AccessDeniedHandler accessDeniedHandler) {
137	0	Assert.notNull(accessDeniedHandler, "AccessDeniedHandler required");
138	0	this.accessDeniedHandler = accessDeniedHandler;
139	0	}
140		}