Package org.opencms.xml.xml2json

Class CmsJsonAccessPolicy

java.lang.Object
org.opencms.xml.xml2json.CmsJsonAccessPolicy
public class CmsJsonAccessPolicy extends Object
Contains configuration for access restrictions to JSON handler.

  • Field Details

  • Constructor Details

    • CmsJsonAccessPolicy

      public CmsJsonAccessPolicy(boolean enabled)
      Creates new access policy with a fixed return value for checkAccess.
      Parameters:
      enabled - true if allowed, false if forbidden

    • CmsJsonAccessPolicy

      public CmsJsonAccessPolicy(String accessGroup, List<String> includePatterns, List<String> excludePatterns, String propertyFilterRegex, String corsAllowOrigin, String corsAllowMethods, String corsAllowHeaders)
      Creates a new instance.
      Parameters:
      accessGroup - the access group (may be null)
      includePatterns - the include regexes
      excludePatterns - the exclude regexes
      propertyFilterRegex - the regular expression to filter property names with
      corsAllowOrigin - the HTTP response header Access-Control-Allow-Origin
      corsAllowMethods - the HTTP response header Access-Control-Allow-Methods
      corsAllowHeaders - the HTTP response header Access-Control-Allow-Headers

  • Method Details

    • parse

      public static CmsJsonAccessPolicy parse(byte[] data) throws org.dom4j.DocumentException
      Parses an JSON handler access policy file.
      Parameters:
      data - the data
      Returns:
      the access policy
      Throws:
      org.dom4j.DocumentException - if parsing fails

    • parse

      public static CmsJsonAccessPolicy parse(InputStream stream) throws org.dom4j.DocumentException
      Parses an JSON handler access policy file.
      Parameters:
      stream - the XML data stream
      Returns:
      the access policy
      Throws:
      org.dom4j.DocumentException - if parsing fails

    • checkAccess

      public boolean checkAccess(CmsObject cms, String path)
      Checks if a JSON handler request is allowed for this policy.
      Parameters:
      cms - the CMS context
      path - the path
      Returns:
      true if the request is allowed

    • checkPropertyAccess

      public boolean checkPropertyAccess(String property)
      Checks if the property can be accessed (i.e. is not filtered out by property filter).
      Parameters:
      property - the property name to check
      Returns:
      true if the property can be written to JSON

    • setCorsHeaders

      public void setCorsHeaders(javax.servlet.http.HttpServletResponse response)
      Sets the configured CORS headers for a given HTTP servlet response.

      Parameters:
      response - the given HTTP servlet response