securityutils.java

securityutils.java

current inspection = 2010-07-22 15:04:21 (id #4)

base = 2010-07-16 16:14:15 (id #1)

Filter Options

History:

+	added
-	dropped
U	unchanged

Annotation Kind:

pre

presumption

post

unanalyzed

test

PebbleUserDetails getUserDetails()

-/+	Kind	Annotation Text	Date
+	pre	(soft) net.sourceforge.pebble.PebbleContext__ static_init.new PebbleContext(PebbleContext__static _init#1).configuration != null	2010-07-22 12:56:56
+	presumption	net.sourceforge.pebble.Configuration:getSecurityRea lm(...)@80 != null	2010-07-22 12:56:56
+	presumption	org.apache.commons.logging.LogFactory:getLog(... )@62 != null	2010-07-22 12:56:56
+	presumption	realm.configuration@80 != null	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4). detailsUpdateable)	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4). emailAddress)	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4). grantedAuthories)	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4).name)	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4).password)	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4).profile)	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4).username)	2010-07-22 12:56:56
+	post	init'ed(new PebbleUserDetails(getUser#4).website)	2010-07-22 12:56:56
+	post	new HashMap(PebbleUserDetails#1) num objects <= 1	2010-07-22 12:56:56
+	post	new HashMap(getUser#3) num objects <= 1	2010-07-22 12:56:56
+	post	new PebbleUserDetails(getUser#4) num objects <= 1	2010-07-22 12:56:56
+	post	new PebbleUserDetails(getUser#4).preferences == &new HashMap(getUser#3)	2010-07-22 12:56:56
+	post	return_value in Addr_Set{null,&new PebbleUserDetails(getUser#4)}	2010-07-22 12:56:56
+	unanalyzed	call on getFileForUser	2010-07-22 12:56:56
+	unanalyzed	call on java.io.File	2010-07-22 12:56:56
+	unanalyzed	call on java.io.File:exists	2010-07-22 12:56:56
+	unanalyzed	call on java.io.FileInputStream	2010-07-22 12:56:56
+	unanalyzed	call on java.io.FileInputStream:close	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equalsIgnoreCase	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:length	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:split	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:startsWith	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:substring	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:trim	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:valueOf	2010-07-22 12:56:56
+	unanalyzed	call on java.util.HashMap	2010-07-22 12:56:56
+	unanalyzed	call on java.util.HashSet	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Map:put	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Properties	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Properties:getProperty	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Properties:keySet	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Properties:load	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Set:add	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Set:iterator	2010-07-22 12:56:56
+	unanalyzed	call on java.util.Set:toArray	2010-07-22 12:56:56
+	unanalyzed	call on net.sourceforge.pebble.Configuration:getDat aDirectory	2010-07-22 12:56:56
+	unanalyzed	call on net.sourceforge.pebble.PebbleException	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthorityImpl	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56

String getUsername()

-/+	Kind	Annotation Text	Date
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@65 != null	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56

String getUsername(Authentication)

-/+	Kind	Annotation Text	Date
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	test_vector	auth: Addr_Set{null}, Inverse{null}	2010-07-22 12:56:56

bool isBlogAdmin()

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ ADMIN_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56

bool isBlogAdmin(Authentication)

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ ADMIN_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56

bool isBlogContributor()

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ CONTRIBUTOR_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56

bool isBlogContributor(Authentication)

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ CONTRIBUTOR_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56

bool isBlogOwner()

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ OWNER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56

bool isBlogOwner(Authentication)

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ OWNER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56

bool isBlogPublisher()

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ PUBLISHER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56

bool isBlogPublisher(Authentication)

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ PUBLISHER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56

bool isUserAuthenticated()

-/+	Kind	Annotation Text	Date
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@252 != null	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	test_vector	org.acegisecurity.context.SecurityContext:getAuthen tication(...)@253: Addr_Set{null}, Inverse{null}	2010-07-22 12:56:56

bool isUserAuthorisedForBlog(Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on net.sourceforge.pebble.domain. Blog:isUserInRole	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56

bool isUserAuthorisedForBlog(Authentication, Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on net.sourceforge.pebble.domain. Blog:isUserInRole	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56

bool isUserAuthorisedForBlogAsBlogContributor(Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ CONTRIBUTOR_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56
+	test_vector	net.sourceforge.pebble.domain.Blog:isUserInRole(... )@216: {0}, {1}	2010-07-22 12:56:56

bool isUserAuthorisedForBlogAsBlogContributor(Authentication, Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ CONTRIBUTOR_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	test_vector	net.sourceforge.pebble.domain.Blog:isUserInRole(... )@231: {0}, {1}	2010-07-22 12:56:56

bool isUserAuthorisedForBlogAsBlogOwner(Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ OWNER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56
+	test_vector	net.sourceforge.pebble.domain.Blog:isUserInRole(... )@206: {0}, {1}	2010-07-22 12:56:56

bool isUserAuthorisedForBlogAsBlogOwner(Authentication, Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ OWNER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	test_vector	net.sourceforge.pebble.domain.Blog:isUserInRole(... )@221: {0}, {1}	2010-07-22 12:56:56

bool isUserAuthorisedForBlogAsBlogPublisher(Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ PUBLISHER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContext:g etAuthentication	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.context.SecurityContextHo lder:getContext	2010-07-22 12:56:56
+	test_vector	net.sourceforge.pebble.domain.Blog:isUserInRole(... )@211: {0}, {1}	2010-07-22 12:56:56

bool isUserAuthorisedForBlogAsBlogPublisher(Authentication, Blog)

-/+	Kind	Annotation Text	Date
+	pre	(soft) blog != null	2010-07-22 12:56:56
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ PUBLISHER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56
+	test_vector	net.sourceforge.pebble.domain.Blog:isUserInRole(... )@226: {0}, {1}	2010-07-22 12:56:56

bool isUserAuthorisedForBlogAsBlogReader(Authentication, Blog)

-/+	Kind	Annotation Text	Date
+	pre	blog != null	2010-07-22 12:56:56
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ READER_ROLE)	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getName	2010-07-22 12:56:56

bool isUserInRole(String)

-/+	Kind	Annotation Text	Date
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@89 != null	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	unanalyzed	call on java.lang.String:equals	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.Authentication:getAuthori ties	2010-07-22 12:56:56
+	unanalyzed	call on org.acegisecurity.GrantedAuthority:getAutho rity	2010-07-22 12:56:56

bool isUserInRole(Authentication, String)

-/+	Kind	Annotation Text	Date
+	presumption	Local_6[Local_4]@96 != null	2010-07-22 12:56:56
+	presumption	authorities.length@96 <= 2³²-1	2010-07-22 12:56:56
+	presumption	org.acegisecurity.GrantedAuthority:getAuthority(... )@99 != null	2010-07-22 12:56:56
+	post	init'ed(return_value)	2010-07-22 12:56:56
+	test_vector	auth: Addr_Set{null}, Inverse{null}	2010-07-22 12:56:56
+	test_vector	java.lang.String:equals(...)@99: {0}, {1}	2010-07-22 12:56:56
+	test_vector	org.acegisecurity.Authentication:getAuthorities(... )@96: Addr_Set{null}, Inverse{null}	2010-07-22 12:56:56

void main(String[])

-/+	Kind	Annotation Text	Date
+	pre	(soft) args[0] != null	2010-07-22 12:56:56
+	pre	(soft) init'ed(args[1])	2010-07-22 12:56:56
+	pre	(soft) init'ed(args[2])	2010-07-22 12:56:56
+	pre	args != null	2010-07-22 12:56:56
+	presumption	java.lang.System.out != null	2010-07-22 12:56:56
+	test_vector	args.length: {3}, {0..2, 4..+Inf}	2010-07-22 12:56:56
+	test_vector	java.lang.String:equals(...)@259: {0}, {1}	2010-07-22 12:56:56
+	test_vector	java.lang.String:equals(...)@262: {0}, {1}	2010-07-22 12:56:56
+	test_vector	java.lang.String:equals(...)@265: {0}, {1}	2010-07-22 12:56:56

void net.sourceforge.pebble.util.SecurityUtils()

-/+	Kind	Annotation Text	Date

net.sourceforge.pebble.util.SecurityUtils__static_init

-/+	Kind	Annotation Text	Date
+	post	init'ed(log)	2010-07-22 12:56:56

void runAsAnonymous()

-/+	Kind	Annotation Text	Date
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@197 != null	2010-07-22 12:56:56

void runAsBlogContributor()

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ CONTRIBUTOR_ROLE)	2010-07-22 12:56:56
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@192 != null	2010-07-22 12:56:56

void runAsBlogOwner()

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ OWNER_ROLE)	2010-07-22 12:56:56
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@182 != null	2010-07-22 12:56:56

void runAsBlogPublisher()

-/+	Kind	Annotation Text	Date
+	presumption	init'ed(net.sourceforge.pebble.Constants.BLOG_ PUBLISHER_ROLE)	2010-07-22 12:56:56
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@187 != null	2010-07-22 12:56:56

void runAsUnauthenticated()

-/+	Kind	Annotation Text	Date
+	presumption	org.acegisecurity.context.SecurityContextHolder:get Context(...)@201 != null	2010-07-22 12:56:56