1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17 package org.jboss.as.quickstarts.ejb_security;
18
19 import java.io.IOException;
20 import java.io.PrintWriter;
21 import javax.ejb.EJB;
22 import javax.servlet.ServletException;
23 import javax.servlet.annotation.HttpConstraint;
24 import javax.servlet.annotation.ServletSecurity;
25 import javax.servlet.annotation.WebServlet;
26 import javax.servlet.http.HttpServlet;
27 import javax.servlet.http.HttpServletRequest;
28 import javax.servlet.http.HttpServletResponse;
29
30 import org.jboss.as.quickstarts.ejb_security.SecuredEJB;
31
32
33
34
35
36
37
38
39 @SuppressWarnings("serial")
40 @WebServlet("/SecuredEJBServlet")
41 @ServletSecurity(@HttpConstraint(rolesAllowed = "guest"))
42 public class SecuredEJBServlet extends HttpServlet {
43
44 private static String PAGE_HEADER = "<html><head><title>ejb-security</title></head><body>";
45
46 private static String PAGE_FOOTER = "</body></html>";
47
48
49 @EJB
50 private SecuredEJB securedEJB;
51
52
53
54
55 @Override
56 protected void doGet(HttpServletRequest req, HttpServletResponse resp) throws ServletException, IOException {
57 PrintWriter writer = resp.getWriter();
58 String principal = null;
59 String authType = null;
60 String remoteUser = null;
61
62
63 principal = securedEJB.getSecurityInfo();
64
65 remoteUser = req.getRemoteUser();
66
67 authType = req.getAuthType();
68
69 writer.println(PAGE_HEADER);
70 writer.println("<h1>" + "Successfully called Secured EJB " + "</h1>");
71 writer.println("<p>" + "Principal : " + principal + "</p>");
72 writer.println("<p>" + "Remote User : " + remoteUser + "</p>");
73 writer.println("<p>" + "Authentication Type : " + authType + "</p>");
74 writer.println(PAGE_FOOTER);
75 writer.close();
76 }
77
78 }