svn commit: r156184 - geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java

[djencks]

Author: djencks
Date: Fri Mar  4 09:00:07 2005
New Revision: 156184

URL: http://svn.apache.org/viewcvs?view=rev&rev=156184
Log:
Construct correct WebUserDataPermission depending on transport guarantee

Modified:
    
geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java

Modified: 
geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java
URL: 
http://svn.apache.org/viewcvs/geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java?view=diff&r1=156183&r2=156184
==============================================================================
--- 
geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java
 (original)
+++ 
geronimo/trunk/modules/jetty/src/java/org/apache/geronimo/jetty/interceptor/SecurityContextBeforeAfter.java
 Fri Mar  4 09:00:07 2005
@@ -247,7 +247,17 @@
            /**
             * JACC v1.0 secion 4.1.1
             */
-           acc.checkPermission(new WebUserDataPermission(servletHttpRequest));
+
+           String transportType;
+           if (request.isConfidential()) {
+               transportType = "CONFIDENTIAL";
+           } else if (request.isIntegral()) {
+               transportType = "INTEGRAL";
+           } else {
+               transportType = null;
+           }
+           WebUserDataPermission wudp = new 
WebUserDataPermission(servletHttpRequest.getServletPath(), new String[] 
{servletHttpRequest.getMethod()}, transportType);
+           acc.checkPermission(wudp);
 
            /**
             * JACC v1.0 secion 4.1.2