Java tutorial
/* * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER. * * Copyright 2007-2008 Sun Microsystems, Inc. All rights reserved. * * The contents of this file are subject to the terms of either the GNU * General Public License Version 2 only ("GPL") or the Common Development * and Distribution License("CDDL") (collectively, the "License"). You * may not use this file except in compliance with the License. You can obtain * a copy of the License at https://socialsite.dev.java.net/legal/CDDL+GPL.html * or legal/LICENSE.txt. See the License for the specific language governing * permissions and limitations under the License. * * When distributing the software, include this License Header Notice in each * file and include the License file at legal/LICENSE.txt. Sun designates this * particular file as subject to the "Classpath" exception as provided by Sun * in the GPL Version 2 section of the License file that accompanied this code. * If applicable, add the following below the License Header, with the fields * enclosed by brackets [] replaced by your own identifying information: * "Portions Copyrighted [year] [name of copyright owner]" * * Contributor(s): * * If you wish your version of this file to be governed by only the CDDL or * only the GPL Version 2, indicate your decision by adding "[Contributor] * elects to include this software in this distribution under the [CDDL or GPL * Version 2] license." If you don't indicate a single choice of license, a * recipient has the option to distribute your version of this file under * either the CDDL, the GPL Version 2 or to extend the choice of license to * its licensees as provided above. However, if you add GPL Version 2 code * and therefore, elected the GPL Version 2 license, then the option applies * only if the new code is made subject to such option by the copyright * holder. */ package com.sun.socialsite.web.rest.core; import com.sun.socialsite.business.Factory; import com.sun.socialsite.security.FeaturePermission; import java.security.Permission; import java.util.concurrent.Future; import org.apache.commons.logging.Log; import org.apache.commons.logging.LogFactory; import org.apache.shindig.protocol.ResponseError; import org.apache.shindig.social.opensocial.service.SocialRequestItem; import org.apache.shindig.social.opensocial.spi.SocialSpiException; /** * A DataRequestHandler devoted to dealing with data which is considered restricted * (and thus should be available only to privileged gadgets). */ public abstract class RestrictedDataRequestHandler { private static Log log = LogFactory.getLog(RestrictedDataRequestHandler.class); private static Permission requiredPermission = new FeaturePermission("socialsite-0.1"); public static void authorizeRequest(SocialRequestItem request) throws SocialSpiException { log.trace("BEGIN"); Future<?> result = null; try { Factory.getSocialSite().getPermissionManager().checkPermission(requiredPermission, request.getToken()); } catch (SecurityException e) { if (log.isDebugEnabled()) { log.debug("Permission Denied", e); } throw new SocialSpiException(ResponseError.UNAUTHORIZED, e.getMessage()); } catch (Exception e) { if (log.isErrorEnabled()) { log.error("Unexpected Failure", e); } throw new SocialSpiException(ResponseError.BAD_REQUEST, e.getMessage()); } log.trace("END"); } }