public class org.glassfish.security.services.common.SecurityAccessValidator extends java.lang.Object implements org.glassfish.hk.api.Validator { private static final java.util.logging.Logger LOG; private static com.sun.enterprise.util.LocalStringManagerImpl localStrings; public void () { org.glassfish.security.services.common.SecurityAccessValidator v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; specialinvoke v.()>(); return; } public boolean validate(org.glassfish.hk.api.ValidationInformation) { java.util.logging.Logger v, v; org.glassfish.hk.api.Operation v; org.glassfish.hk.api.Injectee v; java.util.logging.Level v; org.glassfish.hk.api.ActiveDescriptor v; int[] v; org.glassfish.hk.api.ValidationInformation v; org.glassfish.security.services.common.SecurityAccessValidator v; int v, v; java.lang.String v; boolean v, v, v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: org.glassfish.hk.api.ValidationInformation; v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v) ("ValidationInformation info= \u0001"); virtualinvoke v.(v); label: v = ; v = interfaceinvoke v.(); v = virtualinvoke v.(); v = v[v]; tableswitch(v) { case 1: goto label; case 2: goto label; case 3: goto label; default: goto label; }; label: v = specialinvoke v.(v); return v; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = specialinvoke v.(v, v); return v; label: return 0; } private boolean isSecureAnnotated(org.glassfish.hk.api.ValidationInformation) { java.util.logging.Level v; org.glassfish.hk.api.ActiveDescriptor v; org.glassfish.hk.api.ValidationInformation v; int v; java.lang.String v, v; boolean v, v, v; java.util.Iterator v; java.util.Set v; java.util.logging.Logger v, v; org.glassfish.security.services.common.SecurityAccessValidator v; java.lang.Class v; java.lang.Object v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: org.glassfish.hk.api.ValidationInformation; v = interfaceinvoke v.(); v = interfaceinvoke v.(); if v == null goto label; v = interfaceinvoke v.(); if v == 0 goto label; v = interfaceinvoke v.(); label: v = interfaceinvoke v.(); if v == 0 goto label; v = interfaceinvoke v.(); v = class "Lorg/glassfish/security/services/common/Secure;"; v = virtualinvoke v.(); v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v) ("The instance is annotated with \'Secure\': \u0001"); virtualinvoke v.(v); label: return 1; label: return 0; } private boolean validateBindAndUnbind(org.glassfish.hk.api.ValidationInformation) { java.util.logging.Logger v, v; org.glassfish.hk.api.Injectee v, v; java.util.logging.Level v; org.glassfish.hk.api.ActiveDescriptor v; org.glassfish.hk.api.ValidationInformation v; org.glassfish.security.services.common.SecurityAccessValidator v; java.lang.String v; boolean v, v, v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: org.glassfish.hk.api.ValidationInformation; v = specialinvoke v.(v); if v != 0 goto label; return 1; label: v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = interfaceinvoke v.(); v = dynamicinvoke "makeConcatWithConstants" (v) ("validateBindAndUnbind, injectee= \u0001"); virtualinvoke v.(v); label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = specialinvoke v.(v, v); return v; } private boolean validateLookup(org.glassfish.hk.api.ActiveDescriptor, org.glassfish.hk.api.Injectee) { org.glassfish.hk.api.ActiveDescriptor v; java.util.Map v; boolean v, v, v, v, v, v, v, v, v, v, v, v, v; java.util.Set v, v; java.util.logging.Logger v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v; java.security.Permission v; org.glassfish.security.services.common.SecurityAccessValidator v; java.util.logging.Level v, v, v, v, v, v, v, v; java.lang.String v, v, v, v, v, v; java.util.Iterator v, v; org.glassfish.hk.api.Injectee v; java.lang.Class v; java.lang.Object v, v, v, v, v, v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: org.glassfish.hk.api.ActiveDescriptor; v := @parameter: org.glassfish.hk.api.Injectee; v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v, v) ("Lookup candiate =\u, injectee= \u0001"); virtualinvoke v.(v); label: v = interfaceinvoke v.(); if v != 0 goto label; v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; virtualinvoke v.("Lookup candiate is not reified yet"); label: return 1; label: v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v) ("Lookup candiate is reified, candidate = \u0001"); virtualinvoke v.(v); label: v = interfaceinvoke v.(); if v != null goto label; return 1; label: v = interfaceinvoke v.(); v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = interfaceinvoke v.(); v = interfaceinvoke v.(); label: v = interfaceinvoke v.(); if v == 0 goto label; v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = interfaceinvoke v.(); label: v = interfaceinvoke v.(); if v == 0 goto label; v = interfaceinvoke v.(); v = ; v = dynamicinvoke "makeConcatWithConstants" (v, v) ("$$ key= \u, value= \u0001"); virtualinvoke v.(v); goto label; label: v = interfaceinvoke v.("accessPermissionName"); if v == null goto label; v = interfaceinvoke v.(); if v == 0 goto label; label: v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; virtualinvoke v.("Perm name is empty, will use default value"); label: v = specialinvoke v.("security/service/default", null); goto label; label: v = interfaceinvoke v.(0); v = specialinvoke v.(v, null); label: v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v) ("The permission to be protected = \u0001"); virtualinvoke v.(v); label: if v != null goto label; v = specialinvoke v.(); v = specialinvoke v.(v, v); v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v, v) ("Lookup, checked perm for = \u, result= \u0001"); virtualinvoke v.(v); goto label; label: v = specialinvoke v.(v, v, v); v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v, v) ("Injection, checked perm for = \u, result= \u0001"); virtualinvoke v.(v); label: return v; } private java.lang.Class getServiceLookupCaller() { org.glassfish.security.services.common.SecurityAccessValidator v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; return null; } private boolean checkPerm(java.security.Permission, java.lang.Class) { java.lang.Object[] v; java.util.logging.Level v, v; com.sun.enterprise.util.LocalStringManagerImpl v; java.lang.SecurityException v; java.lang.String v, v, v, v; boolean v, v; java.util.logging.Logger v, v, v, v, v; java.security.Permission v; org.glassfish.security.services.common.SecurityAccessValidator v; java.security.ProtectionDomain v; java.lang.Class v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: java.security.Permission; v := @parameter: java.lang.Class; v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v) ("Checked perm for = \u0001"); virtualinvoke v.(v); label: if v == null goto label; v = specialinvoke v.(v); virtualinvoke v.(v); goto label; label: staticinvoke (v); label: goto label; label: v := @caughtexception; v = ; v = ; v = newarray (java.lang.Object)[1]; v[0] = v; v = virtualinvoke v.("sec.validate.lookup.deny", "Check Permission failed in lookup for permission = {0}", v); virtualinvoke v.(v); v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = virtualinvoke v.(); v = dynamicinvoke "makeConcatWithConstants" (v, v) ("Check Permission failed, perm= \u, message = \u0001"); virtualinvoke v.(v); label: throw v; label: return 1; catch java.lang.SecurityException from label to label with label; } private boolean validateInjection(org.glassfish.hk.api.ActiveDescriptor, org.glassfish.hk.api.Injectee, java.security.Permission) { org.glassfish.hk.api.ActiveDescriptor v; boolean v, v, v, v, v; java.util.logging.Logger v, v, v, v, v, v, v, v; java.security.Permission v; org.glassfish.security.services.common.SecurityAccessValidator v; java.security.AccessControlException v; java.lang.Object[] v; java.util.logging.Level v, v, v, v; com.sun.enterprise.util.LocalStringManagerImpl v; java.lang.String v, v, v, v, v; org.glassfish.hk.api.Injectee v; java.security.ProtectionDomain v; java.lang.Class v; java.security.CodeSource v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: org.glassfish.hk.api.ActiveDescriptor; v := @parameter: org.glassfish.hk.api.Injectee; v := @parameter: java.security.Permission; v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v, v) ("Injectee =\u, permission= \u0001"); virtualinvoke v.(v); label: v = interfaceinvoke v.(); v = specialinvoke v.(v); v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = virtualinvoke v.(); v = dynamicinvoke "makeConcatWithConstants" (v) ("Protection domain code src= \u0001"); virtualinvoke v.(v); label: v = virtualinvoke v.(v); if v != 0 goto label; v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v, v, v) ("permission check failed for \u, to get perm \u, for candidate \u0001"); virtualinvoke v.(v); label: v = new java.security.AccessControlException; v = ; v = newarray (java.lang.Object)[2]; v[0] = v; v[1] = v; v = virtualinvoke v.("sec.validate.injection.deny", "Access denied for injectee {0} to get permission {1}.", v); specialinvoke v.(java.lang.String)>(v); throw v; label: v = ; v = ; v = virtualinvoke v.(v); if v == 0 goto label; v = ; v = dynamicinvoke "makeConcatWithConstants" (v, v) ("permission check success for \u to get \u0001"); virtualinvoke v.(v); label: return 1; } private java.security.ProtectionDomain getCallerProtDomain(java.lang.Class) { org.glassfish.security.services.common.SecurityAccessValidator$1 v; org.glassfish.security.services.common.SecurityAccessValidator v; java.lang.Class v; java.lang.Object v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: java.lang.Class; v = new org.glassfish.security.services.common.SecurityAccessValidator$1; specialinvoke v.(org.glassfish.security.services.common.SecurityAccessValidator,java.lang.Class)>(v, v); v = staticinvoke (v); return v; } private java.security.Permission getAccessPermision(java.lang.String, java.lang.String) { org.glassfish.security.services.common.SecurityAccessValidator v; org.glassfish.security.services.common.SecureServiceAccessPermission v; java.lang.String v, v; v := @this: org.glassfish.security.services.common.SecurityAccessValidator; v := @parameter: java.lang.String; v := @parameter: java.lang.String; v = new org.glassfish.security.services.common.SecureServiceAccessPermission; specialinvoke v.(java.lang.String,java.lang.String)>(v, v); return v; } static void () { java.util.logging.Logger v; com.sun.enterprise.util.LocalStringManagerImpl v; v = ; = v; v = new com.sun.enterprise.util.LocalStringManagerImpl; specialinvoke v.(java.lang.Class)>(class "Lorg/glassfish/security/services/common/SecurityAccessValidator;"); = v; return; } }