svn commit: r893020 - in /websites/production/camel/content: cache/main.pageCache shiro-security.html

Mon, 06 Jan 2014 09:20:13 -0800 

Author: buildbot
Date: Mon Jan  6 17:18:56 2014
New Revision: 893020

Log:
Production update by buildbot for camel

Modified:
    websites/production/camel/content/cache/main.pageCache
    websites/production/camel/content/shiro-security.html

Modified: websites/production/camel/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.

Modified: websites/production/camel/content/shiro-security.html
==============================================================================
--- websites/production/camel/content/shiro-security.html (original)
+++ websites/production/camel/content/shiro-security.html Mon Jan  6 17:18:56 
2014
@@ -130,7 +130,7 @@ sec-level1 = zone1:readonly:*
             new ShiroSecurityPolicy(iniResourcePath, passPhrase, true, 
permissionsList);
 ]]></script>
 </div></div><h3 
id="ShiroSecurity-ShiroSecurityPolicyOptions">ShiroSecurityPolicy 
Options</h3><div class="confluenceTableSmall">
-<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Name </p></th><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Default Value </p></th><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Type </p></th><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Description </p></th></tr><tr><td colspan="1" 
rowspan="1" class="confluenceTd"><p> <code>iniResourcePath or ini</code> 
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>none</code> 
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Resource String 
or Ini Object </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> A 
mandatory Resource String for the iniResourcePath or an instance of an Ini 
object must be passed to the security policy. Resources can be acquired from 
the file system, classpath, or URLs when prefixed with "file:, classpath:, or 
url:" respectively. For e.g "classpath:shiro.ini" </p></td></tr><tr><td 
colspan="1" rowspan="1" class="conf
 luenceTd"><p> <code>passPhrase</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>An AES 128 based key</code> </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> byte[] </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> A passPhrase to decrypt 
ShiroSecurityToken(s) sent along with Message Exchanges </p></td></tr><tr><td 
colspan="1" rowspan="1" class="confluenceTd"><p> 
<code>alwaysReauthenticate</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>true</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> boolean </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> Setting to ensure re-authentication on every 
individual request. If set to false, the user is authenticated and locked such 
than only requests from the same user going forward are authenticated. 
</p></td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"><p> 
<code>permissionsList</code> </p></td><td colspan="1" rowspan="1" cla
 ss="confluenceTd"><p> <code>none</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> List&lt;Permission&gt; </p></td><td colspan="1" 
rowspan="1" class="confluenceTd"><p> A List of permissions required in order 
for an authenticated user to be authorized to perform further action i.e 
continue further on the route. If no Permissions list is provided to the 
ShiroSecurityPolicy object, then authorization is deemed as not required 
</p></td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"><p> 
<code>cipherService</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>AES</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> org.apache.shiro.crypto.CipherService </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> Shiro ships with AES &amp; 
Blowfish based CipherServices. You may use one these or pass in your own Cipher 
implementation </p></td></tr><tr><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>base64</code>
  </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> 
<code>false</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>boolean</code> </p></td><td colspan="1" 
rowspan="1" class="confluenceTd"><p> <strong>Camel 2.12:</strong> To use base64 
encoding for the security token header, which allows transferring the header 
over <a shape="rect" href="jms.html" title="JMS">JMS</a> etc. This option must 
also be set on <code>ShiroSecurityTokenInjector</code> as well. 
</p></td></tr></tbody></table>
+<table class="confluenceTable"><tbody><tr><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Name </p></th><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Default Value </p></th><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Type </p></th><th colspan="1" rowspan="1" 
class="confluenceTh"><p> Description </p></th></tr><tr><td colspan="1" 
rowspan="1" class="confluenceTd"><p> <code>iniResourcePath or ini</code> 
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <code>none</code> 
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> Resource String 
or Ini Object </p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> A 
mandatory Resource String for the iniResourcePath or an instance of an Ini 
object must be passed to the security policy. Resources can be acquired from 
the file system, classpath, or URLs when prefixed with "file:, classpath:, or 
url:" respectively. For e.g "classpath:shiro.ini" </p></td></tr><tr><td 
colspan="1" rowspan="1" class="conf
 luenceTd"><p> <code>passPhrase</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>An AES 128 based key</code> </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> byte[] </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> A passPhrase to decrypt 
ShiroSecurityToken(s) sent along with Message Exchanges </p></td></tr><tr><td 
colspan="1" rowspan="1" class="confluenceTd"><p> 
<code>alwaysReauthenticate</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>true</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> boolean </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> Setting to ensure re-authentication on every 
individual request. If set to false, the user is authenticated and locked such 
than only requests from the same user going forward are authenticated. 
</p></td></tr><tr><td colspan="1" rowspan="1" class="confluenceTd"><p> 
<code>permissionsList</code> </p></td><td colspan="1" rowspan="1" cla
 ss="confluenceTd"><p> <code>none</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> List&lt;Permission&gt; </p></td><td colspan="1" 
rowspan="1" class="confluenceTd"><p> A List of permissions required in order 
for an authenticated user to be authorized to perform further action i.e 
continue further on the route. If no Permissions list is provided to the 
ShiroSecurityPolicy object, then authorization is deemed as not required. Note 
that the default is that authorization is granted if any of the Permission 
Objects in the list are applicable. </p></td></tr><tr><td colspan="1" 
rowspan="1" class="confluenceTd"><p> <code>cipherService</code> </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> <code>AES</code> </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> 
org.apache.shiro.crypto.CipherService </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> Shiro ships with AES &amp; Blowfish based 
CipherServices. You may use one these or pass in your
  own Cipher implementation </p></td></tr><tr><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>base64</code> </p></td><td colspan="1" 
rowspan="1" class="confluenceTd"><p> <code>false</code> </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> <code>boolean</code> 
</p></td><td colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel 
2.12:</strong> To use base64 encoding for the security token header, which 
allows transferring the header over <a shape="rect" href="jms.html" 
title="JMS">JMS</a> etc. This option must also be set on 
<code>ShiroSecurityTokenInjector</code> as well. </p></td></tr><tr><td 
colspan="1" rowspan="1" class="confluenceTd"><p> 
<code>allPermissionsRequired</code> </p></td><td colspan="1" rowspan="1" 
class="confluenceTd"><p> <code>false</code> </p></td><td colspan="1" 
rowspan="1" class="confluenceTd"><p> <code>boolean</code> </p></td><td 
colspan="1" rowspan="1" class="confluenceTd"><p> <strong>Camel 2.13:</strong> 
The default is that authoriz
 ation is granted if any of the Permission Objects in the permissionsList 
parameter are applicable. Set this to true to require all of the Permissions to 
be met. </p></td></tr></tbody></table>
 </div><h3 id="ShiroSecurity-ApplyingShiroAuthenticationonaCamelRoute">Applying 
Shiro Authentication on a Camel Route</h3><p>The ShiroSecurityPolicy, tests and 
permits incoming message exchanges containing a encrypted SecurityToken in the 
Message Header to proceed further following proper authentication. The 
SecurityToken object contains a Username/Password details that are used to 
determine where the user is a valid user.</p><div class="code panel pdl" 
style="border-width: 1px;"><div class="codeContent panelContent pdl">
 <script class="theme: Default; brush: java; gutter: false" 
type="syntaxhighlighter"><![CDATA[    protected RouteBuilder 
createRouteBuilder() throws Exception {
         final ShiroSecurityPolicy securityPolicy =

Reply via email to