Author: buildbot
Date: Fri Mar 7 11:19:41 2014
New Revision: 900433
Log:
Production update by buildbot for camel
Modified:
websites/production/camel/content/cache/main.pageCache
websites/production/camel/content/shiro-security.html
Modified: websites/production/camel/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/camel/content/shiro-security.html
==============================================================================
--- websites/production/camel/content/shiro-security.html (original)
+++ websites/production/camel/content/shiro-security.html Fri Mar 7 11:19:41
2014
@@ -130,7 +130,7 @@ sec-level1 = zone1:readonly:*
new ShiroSecurityPolicy(iniResourcePath, passPhrase, true,
permissionsList);
]]></script>
</div></div><h3
id="ShiroSecurity-ShiroSecurityPolicyOptions">ShiroSecurityPolicy
Options</h3><div class="confluenceTableSmall">
-<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1"
class="confluenceTh"><p> Name </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Default Value </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Type </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Description </p></th></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>iniResourcePath or ini</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>none</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Resource String
or Ini Object </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> A
mandatory Resource String for the iniResourcePath or an instance of an Ini
object must be passed to the security policy. Resources can be acquired from
the file system, classpath, or URLs when prefixed with "file:, classpath:, or
url:" respectively. For e.g "classpath:shiro.ini" </p></td></tr><tr><td
colspan="1" rowspan="1" class="conf
luenceTd"><p> <code>passPhrase</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>An AES 128 based key</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> byte[] </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> A passPhrase to decrypt
ShiroSecurityToken(s) sent along with Message Exchanges </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p>
<code>alwaysReauthenticate</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>true</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> boolean </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> Setting to ensure re-authentication on every
individual request. If set to false, the user is authenticated and locked such
than only requests from the same user going forward are authenticated.
</p></td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"><p>
<code>permissionsList</code> </p></td><td colspan="1" rowspan="1" cla
ss="confluenceTd"><p> <code>none</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> List<Permission> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> A List of permissions required in order
for an authenticated user to be authorized to perform further action i.e
continue further on the route. If no Permissions list is provided to the
ShiroSecurityPolicy object, then authorization is deemed as not required. Note
that the default is that authorization is granted if any of the Permission
Objects in the list are applicable. </p></td></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>cipherService</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>AES</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p>
org.apache.shiro.crypto.CipherService </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> Shiro ships with AES & Blowfish based
CipherServices. You may use one these or pass in your
own Cipher implementation </p></td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>base64</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>false</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>boolean</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel
2.12:</strong> To use base64 encoding for the security token header, which
allows transferring the header over <a shape="rect" href="jms.html"
title="JMS">JMS</a> etc. This option must also be set on
<code>ShiroSecurityTokenInjector</code> as well. </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p>
<code>allPermissionsRequired</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>false</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>boolean</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel 2.13:</strong>
The default is that authoriz
ation is granted if any of the Permission Objects in the permissionsList
parameter are applicable. Set this to true to require all of the Permissions to
be met. </p></td></tr></tbody></table>
+<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1"
class="confluenceTh"><p> Name </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Default Value </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Type </p></th><th colspan="1" rowspan="1"
class="confluenceTh"><p> Description </p></th></tr><tr><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>iniResourcePath or ini</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>none</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Resource String
or Ini Object </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> A
mandatory Resource String for the iniResourcePath or an instance of an Ini
object must be passed to the security policy. Resources can be acquired from
the file system, classpath, or URLs when prefixed with "file:, classpath:, or
url:" respectively. For e.g "classpath:shiro.ini" </p></td></tr><tr><td
colspan="1" rowspan="1" class="conf
luenceTd"><p> <code>passPhrase</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>An AES 128 based key</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> byte[] </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> A passPhrase to decrypt
ShiroSecurityToken(s) sent along with Message Exchanges </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p>
<code>alwaysReauthenticate</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>true</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> boolean </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> Setting to ensure re-authentication on every
individual request. If set to false, the user is authenticated and locked such
than only requests from the same user going forward are authenticated.
</p></td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"><p>
<code>permissionsList</code> </p></td><td colspan="1" rowspan="1" cla
ss="confluenceTd"><p> <code>none</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> List<Permission> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> A List of permissions required in order
for an authenticated user to be authorized to perform further action i.e
continue further on the route. If no Permissions list or Roles List (see below)
is provided to the ShiroSecurityPolicy object, then authorization is deemed as
not required. Note that the default is that authorization is granted if any of
the Permission Objects in the list are applicable. </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p> <code>rolesList</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>none</code>
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p>
List<String> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <strong>Camel 2.13:</strong> A List of roles required
in order for an authenticated user to
be authorized to perform further action i.e continue further on the route. If
no roles list or permissions list (see above) is provided to the
ShiroSecurityPolicy object, then authorization is deemed as not required. Note
that the default is that authorization is granted if any of the roles in the
list are applicable. </p></td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>cipherService</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>AES</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> org.apache.shiro.crypto.CipherService
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Shiro ships with
AES & Blowfish based CipherServices. You may use one these or pass in your
own Cipher implementation </p></td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>base64</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>false</code> </p></td><td
colspan="1" rowspan="1" class=
"confluenceTd"><p> <code>boolean</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <strong>Camel 2.12:</strong> To use base64 encoding
for the security token header, which allows transferring the header over <a
shape="rect" href="jms.html" title="JMS">JMS</a> etc. This option must also be
set on <code>ShiroSecurityTokenInjector</code> as well. </p></td></tr><tr><td
colspan="1" rowspan="1" class="confluenceTd"><p>
<code>allPermissionsRequired</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>false</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>boolean</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel 2.13:</strong>
The default is that authorization is granted if any of the Permission Objects
in the permissionsList parameter are applicable. Set this to true to require
all of the Permissions to be met. </p></td></tr><tr><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>allR
olesRequired</code> </p></td><td colspan="1" rowspan="1"
class="confluenceTd"><p> <code>false</code> </p></td><td colspan="1"
rowspan="1" class="confluenceTd"><p> <code>boolean</code> </p></td><td
colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel 2.13:</strong>
The default is that authorization is granted if any of the roles in the
rolesList parameter are applicable. Set this to true to require all of the
roles to be met. </p></td></tr></tbody></table>
</div><h3 id="ShiroSecurity-ApplyingShiroAuthenticationonaCamelRoute">Applying
Shiro Authentication on a Camel Route</h3><p>The ShiroSecurityPolicy, tests and
permits incoming message exchanges containing a encrypted SecurityToken in the
Message Header to proceed further following proper authentication. The
SecurityToken object contains a Username/Password details that are used to
determine where the user is a valid user.</p><div class="code panel pdl"
style="border-width: 1px;"><div class="codeContent panelContent pdl">
<script class="theme: Default; brush: java; gutter: false"
type="syntaxhighlighter"><