Package org.glassfish.security.services.common

Annotation Interface Secure

@Retention(RUNTIME)
@Qualifier
@Inherited
@Target(TYPE)
public @interface Secure

Qualifier used to enable a security check at the point of service injection or lookup. Security Services, which are to protected against unqualified injection/look-up, should be annotated as something below e.g., @Secure(accessPermissionName = "security/service/invalid input: '<'service-type>/invalid input: '<'some-specific-name>") Any caller which injects or looks up the protected security service, the caller's jar/class should be granted the following policy e.g., grant codeBase "file://invalid input: '<'caller-jar>" { permission org.glassfish.security.services.common.SecureServiceAccessPermission "security/service/invalid input: '<'service-type>/invalid input: '<'some-specific-name>"; };

Required Element Summary

Required Elements

Modifier and Type	Required Element	Description
String	accessPermissionName	the permission name to be protected if the accessPermissionName is not specified, a default value of "security/service/default" is used.

Field Summary

Fields

Modifier and Type	Field	Description
static final String	DEFAULT_PERM_NAME
static final String	NAME
static final String	PERMISSION_NAME_PREFIX

Field Details

NAME

static final String NAME

See Also:

• Constant Field Values

PERMISSION_NAME_PREFIX

static final String PERMISSION_NAME_PREFIX

See Also:

• Constant Field Values

DEFAULT_PERM_NAME

static final String DEFAULT_PERM_NAME

See Also:

• Constant Field Values

Element Details

accessPermissionName

@Metadata("accessPermissionName")
String accessPermissionName

the permission name to be protected if the accessPermissionName is not specified, a default value of "security/service/default" is used.

Returns:

name of the protected HK2 service