public class

InternalWebSudoManagerImpl

extends Object
implements InternalWebSudoManager
java.lang.Object
   ↳ com.atlassian.jira.security.websudo.InternalWebSudoManagerImpl

Summary

Constants
String WEBSUDO
Public Constructors
InternalWebSudoManagerImpl(ApplicationProperties applicationProperties)
Public Methods
boolean hasValidSession(HttpSession session)
Check if this is a valid WebSudo session.
void invalidateSession(HttpServletRequest request, HttpServletResponse response)
Invalidate the current WebSudo session.
boolean isEnabled()
boolean isWebSudoRequest(HttpServletRequest request)
Checks if the request is a WebSudo request.
void markWebSudoRequest(HttpServletRequest request)
Marks the request as a request for a WebSudo resource.
boolean matches(Class<? extends Action> actionClass)
Check if the action method should be WebSudo protected for the given requestURI.
void startSession(HttpServletRequest request, HttpServletResponse response)
Start a new WebSudo session.
[Expand]
Inherited Methods
From class java.lang.Object
From interface com.atlassian.jira.security.websudo.InternalWebSudoManager

Constants

public static final String WEBSUDO

Constant Value: "X-Atlassian-WebSudo"

Public Constructors

public InternalWebSudoManagerImpl (ApplicationProperties applicationProperties)

Public Methods

public boolean hasValidSession (HttpSession session)

Check if this is a valid WebSudo session.

Parameters
session the current javax.servlet.http.HttpSession. Can be null
Returns
  • true if the javax.servlet.http.HttpSession is a WebSudo session.

public void invalidateSession (HttpServletRequest request, HttpServletResponse response)

Invalidate the current WebSudo session. This does NOT invalidate the javax.servlet.http.HttpSession.

Parameters
request the current javax.servlet.http.HttpServletRequest
response the current javax.servlet.http.HttpServletResponse

public boolean isEnabled ()

public boolean isWebSudoRequest (HttpServletRequest request)

Checks if the request is a WebSudo request.

Parameters
request the current javax.servlet.http.HttpServletRequest
Returns
  • true if the current request is requesting a WebSudo protected web resource, false otherwise.

public void markWebSudoRequest (HttpServletRequest request)

Marks the request as a request for a WebSudo resource.

Parameters
request the current javax.servlet.http.HttpServletRequest

public boolean matches (Class<? extends Action> actionClass)

Check if the action method should be WebSudo protected for the given requestURI.

Parameters
actionClass - the current action class
Returns
  • true if the action method should be WebSudo protected, false otherwise.

public void startSession (HttpServletRequest request, HttpServletResponse response)

Start a new WebSudo session. Creates a new javax.servlet.http.HttpSession if necessary.

Parameters
request the current javax.servlet.http.HttpServletRequest
response the current javax.servlet.http.HttpServletResponse