THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
- Implement policy interceptor provider class extending AbstractPolicyInterceptorProvider class. The main task of policy interceptor provider is to say which interceptors must be activated for specified policy assertion. Policy interceptor provider constructor gives assertions QNames as argument of super constructor and adds corresponded interceptors using getters:
| Code Block |
|---|
public class AuthorizationInterceptorProvider extends AbstractPolicyInterceptorProvider {
private static final long serialVersionUID = -5248428637449096540L;
private static final AuthorizationInInterceptor IN_AUTHZ_INTERCEPTOR = new AuthorizationInInterceptor();
private static final AuthorizationInInterceptor OUT_AUTHZ_INTERCEPTOR = new AuthorizationOutInterceptor();
private static final Collection<QName> ASSERTION_TYPES;
static {
ASSERTION_TYPES = new ArrayList<QName>();
ASSERTION_TYPES.add(AuthorizationConstants.AUTHORIZATION_ASSERTION);
}
public AuthorizationInterceptorProvider() {
super(ASSERTION_TYPES);
getInInterceptors().add(IN_AUTHZ_INTERCEPTOR);
getOutInterceptors().add(OUT_AUTHZ_INTERCEPTOR);
}
}
|
Assertion builder and policy interceptor provider can be registered using CXF bus extension mechanism: just create a file META-INF/cxf/bus-extensions.txt containing the following:
| Code Block |
|---|
org.company.AuthorizationInterceptorProvider::true
org.company.AuthorizationAssertionBuilder::true
|
Boolean value at the end specifies lazy loading strategy.
CXF automatically recognizes the assertion builder and policy interceptor provider and store them into registries: AssertionBuilderRegistry and PolicyInterceptorProviderRegistry. Since CXF 2.6.0 it is possible to register multiple interceptor providers for single assertion.
How and where CXF processes policies
...