View Javadoc

1   /*
2    * $Id: NotPermittedException.java 22439 2011-07-18 19:06:39Z dfeist $
3    * --------------------------------------------------------------------------------------
4    * Copyright (c) MuleSoft, Inc.  All rights reserved.  http://www.mulesoft.com
5    *
6    * The software in this package is published under the terms of the CPAL v1.0
7    * license, a copy of which has been included with this distribution in the
8    * LICENSE.txt file.
9    */
10  
11  package org.mule.api.security;
12  
13  import org.mule.RequestContext;
14  import org.mule.api.MuleEvent;
15  import org.mule.config.i18n.CoreMessages;
16  import org.mule.config.i18n.Message;
17  
18  import java.net.URI;
19  
20  /**
21   * <code>NotPermittedException</code> is thrown if the user isn't authorized
22   * to perform an action.
23   */
24  public class NotPermittedException extends SecurityException
25  {
26      /**
27       * Serial version
28       */
29      private static final long serialVersionUID = -6664384216189042673L;
30  
31      public NotPermittedException(Message message)
32      {
33          super(message, RequestContext.getEvent());
34      }
35  
36      public NotPermittedException(Message message, Throwable cause)
37      {
38          super(message, RequestContext.getEvent(), cause);
39      }
40  
41      public NotPermittedException(Message message, MuleEvent event)
42      {
43          super(message, event);
44      }
45  
46      public NotPermittedException(Message message, MuleEvent event, Throwable cause)
47      {
48          super(message, event, cause);
49      }
50  
51      public NotPermittedException(MuleEvent event, SecurityContext context,SecurityFilter filter)
52      {
53          super(constructMessage(context, event.getMessageSourceURI(), filter), event);
54      }
55  
56      private static Message constructMessage(SecurityContext context, 
57                                              URI endpointURI,
58                                              SecurityFilter filter)
59      {
60  
61          Message m;
62          if (context == null)
63          {
64              m = CoreMessages.authSetButNoContext(filter.getClass().getName());
65          }
66          else
67          {
68              m = CoreMessages.authFailedForUser(context.getAuthentication().getPrincipal());
69          }
70          m.setNextMessage(CoreMessages.authorizationDeniedOnEndpoint(endpointURI));
71          return m;
72      }
73  }