Boolean.valueOf(System.getProperty("org.apache.catalina.STRICT_SERVLET_COMPLIANCE", "false")).booleanValue();
+ /**
+ * Has security been turned on?
+ */
+ public static final boolean IS_SECURITY_ENABLED =
+ (System.getSecurityManager() != null);
+
+
}
public static final int PROCESSOR_IDLE = 0;
public static final int PROCESSOR_ACTIVE = 1;
- /**
- * Security flag.
- */
- public static final boolean SECURITY =
- (System.getSecurityManager() != null);
-
}
import org.apache.coyote.ActionCode;
import org.apache.coyote.Response;
+import org.apache.catalina.Globals;
import org.apache.tomcat.util.buf.ByteChunk;
import org.apache.tomcat.util.buf.C2BConverter;
conv = (C2BConverter) encoders.get(enc);
if (conv == null) {
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
try{
conv = (C2BConverter)AccessController.doPrivileged(
new PrivilegedExceptionAction(){
requestedSessionId = null;
requestedSessionURL = false;
- if (Constants.SECURITY || Connector.RECYCLE_FACADES) {
+ if (Globals.IS_SECURITY_ENABLED || Connector.RECYCLE_FACADES) {
parameterMap = new ParameterMap();
} else {
parameterMap.setLocked(false);
mappingData.recycle();
- if (Constants.SECURITY || Connector.RECYCLE_FACADES) {
+ if (Globals.IS_SECURITY_ENABLED || Connector.RECYCLE_FACADES) {
if (facade != null) {
facade.clear();
facade = null;
*/
public void setUserPrincipal(Principal principal) {
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
HttpSession session = getSession(false);
if ( (subject != null) &&
(!subject.getPrincipals().contains(principal)) ){
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpSession;
+import org.apache.catalina.Globals;
import org.apache.catalina.util.StringManager;
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (Enumeration)AccessController.doPrivileged(
new GetAttributePrivilegedAction());
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (String)AccessController.doPrivileged(
new GetCharacterEncodingPrivilegedAction());
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (String)AccessController.doPrivileged(
new GetParameterPrivilegedAction(name));
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (Enumeration)AccessController.doPrivileged(
new GetParameterNamesPrivilegedAction());
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (Map)AccessController.doPrivileged(
new GetParameterMapPrivilegedAction());
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (Locale)AccessController.doPrivileged(
new GetLocalePrivilegedAction());
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (Enumeration)AccessController.doPrivileged(
new GetLocalesPrivilegedAction());
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (RequestDispatcher)AccessController.doPrivileged(
new GetRequestDispatcherPrivilegedAction(path));
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (Enumeration)AccessController.doPrivileged(
new GetHeadersPrivilegedAction(name));
} else {
sm.getString("requestFacade.nullRequest"));
}
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
return (Enumeration)AccessController.doPrivileged(
new GetHeaderNamesPrivilegedAction());
} else {
import javax.servlet.http.Cookie;
import javax.servlet.http.HttpServletResponse;
+import org.apache.catalina.Globals;
import org.apache.catalina.util.StringManager;
import org.apache.catalina.security.SecurityUtil;
if (isCommitted())
return;
- if(System.getSecurityManager() != null) {
+ if(Globals.IS_SECURITY_ENABLED) {
AccessController.doPrivileged(new DateHeaderPrivilegedAction
(name, date, false));
} else {
if (isCommitted())
return;
- if(System.getSecurityManager() != null) {
+ if(Globals.IS_SECURITY_ENABLED) {
AccessController.doPrivileged(new DateHeaderPrivilegedAction
(name, date, true));
} else {
import javax.servlet.ServletContext;
import javax.servlet.ServletException;
+import org.apache.catalina.Globals;
import org.apache.catalina.security.SecurityUtil;
public URL getResource(String path)
throws MalformedURLException {
- if (System.getSecurityManager() != null) {
+ if (Globals.IS_SECURITY_ENABLED) {
try {
return (URL) invokeMethod(context, "getResource",
new Object[]{path});
public void forward(ServletRequest request, ServletResponse response)
throws ServletException, IOException
{
- if (System.getSecurityManager() != null) {
+ if (Globals.IS_SECURITY_ENABLED) {
try {
PrivilegedForward dp = new PrivilegedForward(request,response);
AccessController.doPrivileged(dp);
public void include(ServletRequest request, ServletResponse response)
throws ServletException, IOException
{
- if (System.getSecurityManager() != null) {
+ if (Globals.IS_SECURITY_ENABLED) {
try {
PrivilegedInclude dp = new PrivilegedInclude(request,response);
AccessController.doPrivileged(dp);
public void doFilter(ServletRequest request, ServletResponse response)
throws IOException, ServletException {
- if( System.getSecurityManager() != null ) {
+ if( Globals.IS_SECURITY_ENABLED ) {
final ServletRequest req = request;
final ServletResponse res = response;
try {
support.fireInstanceEvent(InstanceEvent.BEFORE_FILTER_EVENT,
filter, request, response);
- if( System.getSecurityManager() != null ) {
+ if( Globals.IS_SECURITY_ENABLED ) {
final ServletRequest req = request;
final ServletResponse res = response;
Principal principal =
if ((request instanceof HttpServletRequest) &&
(response instanceof HttpServletResponse)) {
- if( System.getSecurityManager() != null ) {
+ if( Globals.IS_SECURITY_ENABLED ) {
final ServletRequest req = request;
final ServletResponse res = response;
Principal principal =
public void doFilterEvent(CometEvent event)
throws IOException, ServletException {
- if( System.getSecurityManager() != null ) {
+ if( Globals.IS_SECURITY_ENABLED ) {
final CometEvent ev = event;
try {
java.security.AccessController.doPrivileged(
filter, event);
*/
- if( System.getSecurityManager() != null ) {
+ if( Globals.IS_SECURITY_ENABLED ) {
final CometEvent ev = event;
Principal principal =
ev.getHttpServletRequest().getUserPrincipal();
support.fireInstanceEvent(InstanceEvent.BEFORE_SERVICE_EVENT,
servlet, request, response);
*/
- if( System.getSecurityManager() != null ) {
+ if( Globals.IS_SECURITY_ENABLED ) {
final CometEvent ev = event;
Principal principal =
ev.getHttpServletRequest().getUserPrincipal();
import org.apache.AnnotationProcessor;
import org.apache.catalina.Context;
+import org.apache.catalina.Globals;
import org.apache.catalina.deploy.FilterDef;
import org.apache.catalina.security.SecurityUtil;
import org.apache.catalina.util.Enumerator;
if (this.filter != null)
{
- if (System.getSecurityManager() != null) {
+ if (Globals.IS_SECURITY_ENABLED) {
try {
SecurityUtil.doAsPrivilege("destroy", filter);
} catch(java.lang.Exception ex){
// Release any previously allocated filter instance
if (this.filter != null){
- if( System.getSecurityManager() != null) {
+ if( Globals.IS_SECURITY_ENABLED) {
try{
SecurityUtil.doAsPrivilege("destroy", filter);
} catch(java.lang.Exception ex){
public static final String DISPATCHER_REQUEST_PATH_ATTR =
Globals.DISPATCHER_REQUEST_PATH_ATTR;
- private static final SecurityManager securityManager =
- System.getSecurityManager();
-
private static ApplicationFilterFactory factory = null;;
// Create and initialize a filter chain object
ApplicationFilterChain filterChain = null;
- if ((securityManager == null) && (request instanceof Request)) {
+ if (!Globals.IS_SECURITY_ENABLED && (request instanceof Request)) {
Request req = (Request) request;
filterChain = (ApplicationFilterChain) req.getFilterChain();
if (filterChain == null) {
import org.apache.catalina.Container;
import org.apache.catalina.ContainerEvent;
import org.apache.catalina.ContainerListener;
+import org.apache.catalina.Globals;
import org.apache.catalina.Lifecycle;
import org.apache.catalina.LifecycleException;
import org.apache.catalina.LifecycleListener;
* child Containers
*/
public void addChild(Container child) {
- if (System.getSecurityManager() != null) {
+ if (Globals.IS_SECURITY_ENABLED) {
PrivilegedAction dp =
new PrivilegedAddChild(child);
AccessController.doPrivileged(dp);
import org.apache.catalina.Container;
import org.apache.catalina.ContainerServlet;
import org.apache.catalina.Context;
+import org.apache.catalina.Globals;
import org.apache.catalina.InstanceEvent;
import org.apache.catalina.InstanceListener;
import org.apache.catalina.LifecycleException;
instanceSupport.fireInstanceEvent(InstanceEvent.BEFORE_INIT_EVENT,
servlet);
- if( System.getSecurityManager() != null) {
+ if( Globals.IS_SECURITY_ENABLED) {
Object[] args = new Object[]{((ServletConfig)facade)};
SecurityUtil.doAsPrivilege("init",
req.setQueryString("jsp_precompile=true");
DummyResponse res = new DummyResponse();
- if( System.getSecurityManager() != null) {
+ if( Globals.IS_SECURITY_ENABLED) {
Object[] args = new Object[]{req, res};
SecurityUtil.doAsPrivilege("service",
servlet,
instanceSupport.fireInstanceEvent
(InstanceEvent.BEFORE_DESTROY_EVENT, instance);
- if( System.getSecurityManager() != null) {
+ if( Globals.IS_SECURITY_ENABLED) {
SecurityUtil.doAsPrivilege("destroy",
instance);
SecurityUtil.remove(instance);
try {
while (!instancePool.isEmpty()) {
Servlet s = (Servlet) instancePool.pop();
- if (System.getSecurityManager() != null) {
+ if (Globals.IS_SECURITY_ENABLED) {
SecurityUtil.doAsPrivilege("destroy", s);
SecurityUtil.remove(instance);
} else {
*/
private void setPermissions() {
- if (System.getSecurityManager() == null)
+ if (!Globals.IS_SECURITY_ENABLED)
return;
if (!(container instanceof Context))
return;
* package protection mechanism is enabled.
*/
public static boolean isPackageProtectionEnabled(){
- if (packageDefinitionEnabled && System.getSecurityManager() != null){
+ if (packageDefinitionEnabled && Globals.IS_SECURITY_ENABLED){
return true;
}
return false;
import org.apache.catalina.Container;
import org.apache.catalina.Engine;
+import org.apache.catalina.Globals;
import org.apache.catalina.Manager;
import org.apache.catalina.Session;
import org.apache.catalina.core.StandardContext;
public void setRandomFile( String s ) {
// as a hack, you can use a static file - and genarate the same
// session ids ( good for strange debugging )
- if (System.getSecurityManager() != null){
+ if (Globals.IS_SECURITY_ENABLED){
randomIS = (DataInputStream)AccessController.doPrivileged(new PrivilegedSetRandomFile());
} else {
try{
id = null;
lastAccessedTime = 0L;
maxInactiveInterval = -1;
- accessCount = null;
notes.clear();
setPrincipal(null);
isNew = false;
public static final int STAGE_ENDED = 7;
+ /**
+ * Has security been turned on?
+ */
+ public static final boolean IS_SECURITY_ENABLED =
+ (System.getSecurityManager() != null);
+
+
+
}
// Add date header
String date = null;
- if (System.getSecurityManager() != null){
+ if (org.apache.coyote.Constants.IS_SECURITY_ENABLED){
date = (String)AccessController.doPrivileged(
new PrivilegedAction() {
public Object run(){
}
// End the response status line
- if (System.getSecurityManager() != null){
+ if (org.apache.coyote.Constants.IS_SECURITY_ENABLED){
AccessController.doPrivileged(
new PrivilegedAction(){
public Object run(){
}
private String getMessage(final int message){
- if (System.getSecurityManager() != null){
+ if (org.apache.coyote.Constants.IS_SECURITY_ENABLED){
return (String)AccessController.doPrivileged(
new PrivilegedAction(){
public Object run(){
public static final char ESC = '\u001b';
public static final String ESCStr = "'\\u001b'";
+ /**
+ * Has security been turned on?
+ */
+ public static final boolean IS_SECURITY_ENABLED =
+ (System.getSecurityManager() != null);
+
}
return;
}
- if (System.getSecurityManager() != null) {
+ if (Constants.IS_SECURITY_ENABLED) {
initSecurity();
}
import javax.servlet.jsp.JspEngineInfo;
import javax.servlet.jsp.PageContext;
+import org.apache.jasper.Constants;
import org.apache.jasper.util.SimplePool;
import org.apache.juli.logging.Log;
import org.apache.juli.logging.LogFactory;
int bufferSize,
boolean autoflush) {
- if( System.getSecurityManager() != null ) {
+ if( Constants.IS_SECURITY_ENABLED ) {
PrivilegedGetPageContext dp = new PrivilegedGetPageContext(
(JspFactoryImpl)this, servlet, request, response, errorPageURL,
needsSession, bufferSize, autoflush);
public void releasePageContext(PageContext pc) {
if( pc == null )
return;
- if( System.getSecurityManager() != null ) {
+ if( Constants.IS_SECURITY_ENABLED ) {
PrivilegedReleasePageContext dp = new PrivilegedReleasePageContext(
(JspFactoryImpl)this,pc);
AccessController.doPrivileged(dp);
import javax.servlet.jsp.PageContext;
import javax.servlet.jsp.tagext.BodyContent;
+import org.apache.jasper.Constants;
import org.apache.jasper.JasperException;
import org.apache.jasper.compiler.Localizer;
String param, boolean ignoreMethodNF)
throws JasperException
{
- if( System.getSecurityManager() != null ) {
+ if( Constants.IS_SECURITY_ENABLED ) {
try {
PrivilegedIntrospectHelper dp =
new PrivilegedIntrospectHelper(
*/
package org.apache.jasper.security;
+import org.apache.jasper.Constants;
+
/**
* Util class for Security related operations.
*
* package protection mechanism is enabled.
*/
public static boolean isPackageProtectionEnabled(){
- if (packageDefinitionEnabled && System.getSecurityManager() != null){
+ if (packageDefinitionEnabled && Constants.IS_SECURITY_ENABLED){
return true;
}
return false;
public static final String Package = "org.apache.naming";
+ /**
+ * Has security been turned on?
+ */
+ public static final boolean IS_SECURITY_ENABLED =
+ (System.getSecurityManager() != null);
}
if (context == null)
throw new IllegalArgumentException
("Directory context can't be null");
- if (System.getSecurityManager() != null) {
+ if (org.apache.naming.Constants.IS_SECURITY_ENABLED) {
this.permission = new JndiPermission(url.toString());
}
this.context = context;
projects / tomcat7.0 / commitdiff