maguro 2004/09/12 13:11:56 Added: modules/itests/src/scenarios/002 ejb-jar.xml openejb-jar.xml Log:
Some security tests. Revision Changes Path 1.1 openejb/modules/itests/src/scenarios/002/ejb-jar.xml Index: ejb-jar.xml =================================================================== <?xml version="1.0" encoding="US-ASCII"?> <ejb-jar xmlns="http://java.sun.com/xml/ns/j2ee"; xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/ejb-jar_2_1.xsd"; version="2.1"> <enterprise-beans> <session> <description> A basic stateless session bean with contianer-managed transaction demarcation. </description> <ejb-name>BasicStatelessBean</ejb-name> <home>org.openejb.test.security.slsb.BasicStatelessHome</home> <remote>org.openejb.test.security.slsb.BasicStateless</remote> <local-home>org.openejb.test.security.slsb.LocalBasicStatelessHome</local-home> <local>org.openejb.test.security.slsb.LocalBasicStateless</local> <ejb-class>org.openejb.test.security.slsb.BasicStatelessBean</ejb-class> <session-type>Stateless</session-type> <transaction-type>Container</transaction-type> <security-role-ref> <role-name>LOW_ROLE_REF</role-name> <role-link>LOW</role-link> </security-role-ref> </session> </enterprise-beans> <assembly-descriptor> <security-role> <description>Low security role</description> <role-name>LOW</role-name> </security-role> <security-role> <description>Medium security role</description> <role-name>MEDIUM</role-name> </security-role> <security-role> <description>High security role</description> <role-name>HIGH</role-name> </security-role> <security-role> <description>Role for methods that are not assigned</description> <role-name>UNASSIGNED</role-name> </security-role> <method-permission> <description>The description</description> <role-name>LOW</role-name> <role-name>MEDIUM</role-name> <role-name>HIGH</role-name> <method> <description>The description</description> <ejb-name>BasicStatelessBean</ejb-name> <method-name>lowSecurityMethod</method-name> </method> </method-permission> <method-permission> <description>The description</description> <role-name>MEDIUM</role-name> <role-name>HIGH</role-name> <method> <description>The description</description> <ejb-name>BasicStatelessBean</ejb-name> <method-name>mediumSecurityMethod</method-name> </method> </method-permission> <method-permission> <description>The description</description> <role-name>HIGH</role-name> <method> <description>The description</description> <ejb-name>BasicStatelessBean</ejb-name> <method-name>highSecurityMethod</method-name> </method> </method-permission> <method-permission> <description>The description</description> <unchecked/> <method> <description>The description</description> <ejb-name>BasicStatelessBean</ejb-name> <method-name>allAccessMethod</method-name> </method> <method> <description>The description</description> <ejb-name>BasicStatelessBean</ejb-name> <method-name>isInRole</method-name> </method> <method> <description>The description</description> <ejb-name>BasicStatelessBean</ejb-name> <method-name>create</method-name> </method> <method> <description>The description</description> <ejb-name>BasicStatelessBean</ejb-name> <method-name>remove</method-name> </method> </method-permission> <container-transaction> <method> <ejb-name>BasicStatelessBean</ejb-name> <method-name>*</method-name> </method> <trans-attribute>Supports</trans-attribute> </container-transaction> <exclude-list> <method> <ejb-name>BasicStatelessBean</ejb-name> <method-name>noAccessMethod</method-name> </method> <method> <ejb-name>BasicStatelessBean</ejb-name> <method-name>lowSecurityMethod</method-name> <method-params> <method-param>java.lang.String</method-param> <method-param>java.lang.String</method-param> </method-params> </method> <method> <ejb-name>BasicStatelessBean</ejb-name> <method-name>mediumSecurityMethod</method-name> <method-params> <method-param>java.lang.String</method-param> <method-param>java.lang.String</method-param> </method-params> </method> <method> <ejb-name>BasicStatelessBean</ejb-name> <method-name>highSecurityMethod</method-name> <method-params> <method-param>java.lang.String</method-param> <method-param>java.lang.String</method-param> </method-params> </method> </exclude-list> </assembly-descriptor> </ejb-jar> 1.1 openejb/modules/itests/src/scenarios/002/openejb-jar.xml Index: openejb-jar.xml =================================================================== <?xml version="1.0"?> <openejb-jar xmlns="http://www.openejb.org/xml/ns/openejb-jar"; configId="org/openejb/scenario002" parentId="org/openejb/Security"> <dependency> <uri>junit/jars/junit-3.8.jar</uri> </dependency> <enterprise-beans> <!-- ######################################################## Stateless ######################################################## --> <session> <ejb-name>BasicStatelessBean</ejb-name> <jndi-name>security/002/BasicStatelessHome</jndi-name> </session> </enterprise-beans> <security doas-current-caller="true"> <description> This deployment descriptor has no default role. This means that all methods are not assigned to any security roles nor contained in the <exclude-list/> element will be un-checked. </description> <default-principal realm-name="public-properties-realm"> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileUserPrincipal" name="guest"/> </default-principal> <role-mappings> <role role-name="UNASSIGNED"> <realm realm-name="public-properties-realm"> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileUserPrincipal" name="guest" designated-run-as="true"/> </realm> </role> <role role-name="LOW"> <realm realm-name="public-properties-realm"> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileGroupPrincipal" name="acct" designated-run-as="true"/> </realm> </role> <role role-name="MEDIUM"> <realm realm-name="public-properties-realm"> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileGroupPrincipal" name="it"/> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileUserPrincipal" name="george" designated-run-as="true"/> </realm> </role> <role role-name="HIGH"> <realm realm-name="public-properties-realm"> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileGroupPrincipal" name="mgmt" designated-run-as="true"/> </realm> <realm realm-name="black-properties-realm"> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileUserPrincipal" name="dain"/> <principal class="org.apache.geronimo.security.realm.providers.PropertiesFileUserPrincipal" name="david"/> </realm> </role> </role-mappings> </security> </openejb-jar>
