Segurança

PauloGladson
1 parent dc333641
Showing 21 changed files with 1770 additions and 0 deletions Show diff stats
core/src/main/java/org/demoiselle/jee/core/annotation/literal/NameQualifier.java
core/src/main/java/org/demoiselle/jee/core/annotation/literal/NamedQualifier.java
core/src/main/java/org/demoiselle/jee/core/annotation/literal/StrategyQualifier.java
core/src/main/java/org/demoiselle/jee/core/annotation/literal/TypeQualifier.java
security/src/main/java/org/demoiselle/jee/security/AfterLoginSuccessful.java
security/src/main/java/org/demoiselle/jee/security/AfterLogoutSuccessful.java
security/src/main/java/org/demoiselle/jee/security/Authenticator.java
security/src/main/java/org/demoiselle/jee/security/Authorizer.java
security/src/main/java/org/demoiselle/jee/security/LoggedIn.java
security/src/main/java/org/demoiselle/jee/security/RequiredPermission.java
security/src/main/java/org/demoiselle/jee/security/RequiredRole.java
security/src/main/java/org/demoiselle/jee/security/SecurityContext.java
security/src/main/java/org/demoiselle/jee/security/exception/AuthenticationException.java
security/src/main/java/org/demoiselle/jee/security/exception/AuthorizationException.java
security/src/main/java/org/demoiselle/jee/security/exception/InvalidCredentialsException.java
security/src/main/java/org/demoiselle/jee/security/exception/NotLoggedInException.java
security/src/main/java/org/demoiselle/jee/security/exception/SecurityException.java
security/src/main/java/org/demoiselle/jee/security/impl/SecurityContextImpl.java
security/src/main/java/org/demoiselle/jee/security/interceptor/LoggedInInterceptor.java
security/src/main/java/org/demoiselle/jee/security/interceptor/RequiredPermissionInterceptor.java
@@ -0,0 +1,70 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.core.annotation.literal;
+
+import org.demoiselle.jee.core.annotation.Name;
+
+import javax.enterprise.util.AnnotationLiteral;
+
+/**
+ * Annotation litteral that allows to create instances of the {@link Name} literal. The created instance can then be
+ * used to call {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}
+ *
+ * @author SERPRO
+ * @see javax.enterprise.inject.spi.CDI
+ */
+@SuppressWarnings("all")
+public class NameQualifier extends AnnotationLiteral<Name> implements Name {
+
+	private static final long serialVersionUID = 1L;
+
+	private final String value;
+
+	/**
+	 * Constructor with string value of name literal.
+	 *
+	 * @param value value of name literal.
+	 */
+	public NameQualifier(String value) {
+		this.value = value;
+	}
+
+	@Override
+	public String value() {
+		return this.value;
+	}
+}
@@ -0,0 +1,67 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.core.annotation.literal;
+
+import javax.enterprise.util.AnnotationLiteral;
+import javax.inject.Named;
+import java.lang.annotation.Annotation;
+
+/**
+ * Annotation litteral that allows to create instances of the {@link Named} literal.
+ * Those instances can then be used to call
+ * {@link javax.enterprise.inject.spi.CDI#select(Class subtype, Annotation... qualifiers)}
+ *  
+ * @see javax.enterprise.inject.spi.CDI
+ * @see Named
+ * 
+ * @author SERPRO
+ */
+@SuppressWarnings("all")
+public class NamedQualifier extends AnnotationLiteral<Named> implements Named {
+
+	private static final long serialVersionUID = 6790759427086052113L;
+
+	private String namedValue;
+
+	public NamedQualifier(String value) {
+		namedValue = value;
+	}
+
+	public String value() {
+		return namedValue;
+	}
+}
@@ -0,0 +1,53 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.core.annotation.literal;
+
+import org.demoiselle.jee.core.annotation.Strategy;
+
+import javax.enterprise.util.AnnotationLiteral;
+
+/**
+ * Annotation litteral that allows to create instances of the {@link Strategy} literal. The created instance can then be
+ * used to call {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
+ * 
+ * @see javax.enterprise.inject.spi.CDI
+ * @author SERPRO
+ */
+@SuppressWarnings("all")
+public class StrategyQualifier extends AnnotationLiteral<Strategy> implements Strategy {
+
+}
@@ -0,0 +1,71 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.core.annotation.literal;
+
+import org.demoiselle.jee.core.annotation.Type;
+
+import javax.enterprise.util.AnnotationLiteral;
+
+/**
+ * Annotation litteral that allows to create instances of the {@link Type}
+ * literal. The created instance can then be used to call
+ * {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
+ *
+ * @see javax.enterprise.inject.spi.CDI
+ * @author SERPRO
+ */
+@SuppressWarnings("all")
+public class TypeQualifier extends AnnotationLiteral<Type> implements Type {
+
+    private static final long serialVersionUID = 1L;
+
+    private final Class<?> value;
+
+    /**
+     * Constructor with string value of name literal.
+     *
+     * @param value value of name literal.
+     */
+    public TypeQualifier(Class<?> value) {
+        this.value = value;
+    }
+
+    @Override
+    public Class<?> value() {
+        return this.value;
+    }
+}
@@ -0,0 +1,50 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security;
+
+import java.io.Serializable;
+
+/**
+ * <p>
+ * This interface represents an event that is fired when user successfully logs in.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public interface AfterLoginSuccessful extends Serializable {
+
+}
@@ -0,0 +1,50 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security;
+
+import java.io.Serializable;
+
+/**
+ * <p>
+ * This interface represents an event fired just after the user unauthenticates.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public interface AfterLogoutSuccessful extends Serializable {
+
+}
@@ -0,0 +1,89 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security;
+
+import java.io.Serializable;
+import java.security.Principal;
+
+/**
+ * <p>
+ * Defines the methods that should be implemented by anyone who wants an authentication mechanism.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public interface Authenticator extends Serializable {
+
+	/**
+	 * <p>
+	 * Executes the necessary steps to authenticate an user. After this call, {@link #getUser()} must return
+	 * the currently authenticated user, or <code>null</code> if the authentication process fails.
+	 * </p>
+	 *
+	 * @throws InvalidCredentialsException
+	 * 				You should throw this exception when the informed credentials are invalid.
+	 *
+	 * @throws Exception
+	 * 				If the underlying authentication mechanism throwns any other exception,
+	 *             just throw it and leave the security context implementation to handle it.
+	 */
+	void authenticate() throws Exception;
+
+	/**
+	 * <p>
+	 * Executes the necessary steps to unauthenticate an user. After this call, {@link #getUser()} must return <code>null</code>.
+	 * </p>
+	 *
+	 * @throws Exception
+	 *             If the underlying authentication mechanism throwns any other exception,
+	 *             just throw it and leave the security context implementation to handle it.
+	 */
+	void unauthenticate() throws Exception;
+
+	/**
+	 * <p>
+	 * Returns the currently authenticated user.
+	 * </p>
+	 *
+	 * @return the user currently authenticated, or <code>null</code> if there is no
+	 * authenticated user.
+	 * 
+	 * @see #authenticate()
+	 * @see #unauthenticate()
+	 */
+	Principal getUser();
+}
@@ -0,0 +1,75 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security;
+
+import java.io.Serializable;
+
+/**
+ * <p>
+ * Defines the methods that should be implemented by anyone who wants an authorization mechanism.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public interface Authorizer extends Serializable {
+
+	/**
+	 * <p>
+	 * Checks if the logged user has a specific role.
+	 * </p>
+	 *
+	 * @param role role to be checked.
+	 * @return {@code true} if the user has the role.
+	 * @throws Exception if the underlying permission checking mechanism throwns any other exception,
+	 * 					just throw it and leave the security context implementation to handle it.
+	 */
+	boolean hasRole(String role) throws Exception;
+
+	/**
+	 * <p>
+	 * Checks if the logged user has permission to execute a specific operation on a specific resource.
+	 * </p>
+	 *
+	 * @param resource resource to be checked.
+	 * @param operation operation to be checked.
+	 * @return {@code true} if the user has the permission.
+	 * @throws Exception if the underlying permission checking mechanism throwns any other exception,
+	 * 					just throw it and leave the security context implementation to handle it.
+	 */
+	boolean hasPermission(String resource, String operation) throws Exception;
+
+}
@@ -0,0 +1,62 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ *
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ *
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ *
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ *
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+
+package org.demoiselle.jee.security;
+
+import javax.interceptor.InterceptorBinding;
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+/**
+ * <p>
+ * Indicates that a specific permission is required in order to invocate the annotated method or class.
+ * </p>
+ *
+ * @author SERPRO
+ */
+
+@Inherited
+@InterceptorBinding
+@Target({ METHOD, TYPE })
+@Retention(RUNTIME)
+public @interface LoggedIn {
+}
@@ -0,0 +1,65 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security;
+
+import javax.enterprise.util.Nonbinding;
+import javax.interceptor.InterceptorBinding;
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+/**
+ * Indicates that a specific permission is required in order to invocate the annotated method or class.
+ * 
+ * @author SERPRO
+ */
+@Inherited
+@InterceptorBinding
+@Target({ METHOD, TYPE })
+@Retention(RUNTIME)
+public @interface RequiredPermission {
+
+	@Nonbinding
+	String resource() default "";
+
+	@Nonbinding
+	String operation() default "";
+}
@@ -0,0 +1,65 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security;
+
+import javax.enterprise.util.Nonbinding;
+import javax.interceptor.InterceptorBinding;
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.ElementType.METHOD;
+import static java.lang.annotation.ElementType.TYPE;
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+/**
+ * <p>
+ * Indicates that the annotated method or class requires the user to have one or more roles associated in order to be
+ * invocated.
+ * </p>
+ *
+ * @author SERPRO
+ */
+@Inherited
+@InterceptorBinding
+@Target({ METHOD, TYPE })
+@Retention(RUNTIME)
+public @interface RequiredRole {
+
+	@Nonbinding
+	String[] value();
+}
@@ -0,0 +1,119 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security;
+
+import java.io.Serializable;
+import java.security.Principal;
+
+/**
+ * <p>
+ * Structure used to handle both authentication and authorizations mechanisms.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public interface SecurityContext extends Serializable {
+
+	/**
+	 * Executes the login of a user to the application.
+	 * 
+	 * @throws AuthenticationException
+	 *             When the logon process fails, this exception is thrown.
+	 * @throws InvalidCredentialsException
+	 *             When the user's credentials coudn't be validated. InvalidCredentialsException is a special case of
+	 *             AuthenticationException.
+	 */
+	void login();
+
+	/**
+	 * Executes the logout of a user.
+	 * 
+	 * @throws AuthenticationException
+	 *             When the logout process fails, this exception is thrown.
+	 */
+	void logout();
+
+	/**
+	 * Checks if a specific user is logged in.
+	 * 
+	 * @return {@code true} if the user is logged in
+	 */
+	boolean isLoggedIn();
+
+	/**
+	 * @throws NotLoggedInException
+	 *             if there is no user logged in a specific session
+	 */
+	void checkLoggedIn();
+
+	/**
+	 * Checks if the logged user has permission to execute an specific operation on a specific resource.
+	 * 
+	 * @param resource
+	 *            resource to be checked
+	 * @param operation
+	 *            operation to be checked
+	 * @return {@code true} if the user has the permission
+	 * @throws AuthorizationException
+	 *             When the permission checking fails, this exception is thrown.
+	 * @throws NotLoggedInException
+	 *             if there is no user logged in a specific session.
+	 */
+	boolean hasPermission(String resource, String operation);
+
+	/**
+	 * Checks if the logged user has an specific role
+	 * 
+	 * @param role
+	 *            role to be checked
+	 * @return {@code true} if the user has the role
+	 * @throws AuthorizationException
+	 *             When the permission checking fails, this exception is thrown.
+	 * @throws NotLoggedInException
+	 *             if there is no user logged in a specific session.
+	 */
+	boolean hasRole(String role);
+
+	/**
+	 * Return the user logged in the session.
+	 * 
+	 * @return the user logged in a specific authenticated session. If there is no active session {@code null} is
+	 *         returned.
+	 */
+	Principal getUser();
+
+}
@@ -0,0 +1,83 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security.exception;
+
+/**
+ * <p>
+ * Thrown when the mecanism responsible for the entire authentication lifecycle fails.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public class AuthenticationException extends SecurityException {
+
+	private static final long serialVersionUID = 1L;
+
+	/**
+	 * <p>
+	 * Constructor with message.
+	 * </p>
+	 *
+	 * @param message exception message
+	 */
+	public AuthenticationException(String message) {
+		super(message);
+	}
+
+	/**
+	 * <p>
+	 * Constructor with the cause.
+	 * </p>
+	 *
+	 * @param cause exception cause
+	 */
+	public AuthenticationException(Throwable cause) {
+		super(cause);
+	}
+
+	/**
+	 * <p>
+	 * Constructor with message and cause.
+	 * </p>
+	 *
+	 * @param message exception message
+	 * @param cause exception cause
+	 */
+	public AuthenticationException(String message, Throwable cause) {
+		super(message, cause);
+	}
+}
@@ -0,0 +1,72 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security.exception;
+
+/**
+ * <p>
+ * Thrown when a fail on trying to access some resource and/or execute an
+ * operation without the proper authorization.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public class AuthorizationException extends SecurityException {
+
+    private static final long serialVersionUID = 1L;
+
+    /**
+     * <p>
+     * Constructor with message.
+     * </p>
+     *
+     * @param message exception message
+     */
+    public AuthorizationException(String message) {
+        super(message);
+    }
+
+    /**
+     * <p>
+     * Constructor with the cause.
+     * </p>
+     *
+     * @param cause exception cause
+     */
+    public AuthorizationException(Throwable cause) {
+        super(cause);
+    }
+}
@@ -0,0 +1,80 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ *
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ *
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ *
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ *
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security.exception;
+
+import javax.enterprise.inject.spi.CDI;
+import org.demoiselle.jee.core.annotation.literal.NameQualifier;
+import org.demoiselle.jee.core.util.ResourceBundle;
+
+/**
+ * <p>
+ * Thrown when the user's credentials are invalid.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public class InvalidCredentialsException extends AuthenticationException {
+
+    private static final long serialVersionUID = 1L;
+
+    public InvalidCredentialsException() {
+        super(CDI.current().select(ResourceBundle.class, new NameQualifier("demoiselle-core-bundle")).get().getString("invalid-credentials"));
+    }
+
+    /**
+     * <p>
+     * Constructs an <code>InvalidCredentialsException</code> with a message.
+     * </p>
+     *
+     * @param message exception message.
+     */
+    public InvalidCredentialsException(String message) {
+        super(message);
+    }
+
+    /**
+     * <p>
+     * Constructor with message and cause.
+     * </p>
+     *
+     * @param message exception message.
+     * @param cause exception cause.
+     */
+    public InvalidCredentialsException(String message, Throwable cause) {
+        super(message, cause);
+    }
+}
@@ -0,0 +1,60 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security.exception;
+
+/**
+ * <p>
+ * Thrown when trying to access some resource or execute an operation that requires authentication.
+ * </p>
+ *
+ * @author SERPRO
+ */
+public class NotLoggedInException extends AuthenticationException {
+
+	private static final long serialVersionUID = 1L;
+
+	/**
+	 * <p>
+	 * Constructs an <code>NotLoggedInException</code> with a message.
+	 * </p>
+	 *
+	 * @param message exception message
+	 */
+	public NotLoggedInException(String message) {
+		super(message);
+	}
+}
@@ -0,0 +1,79 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ * 
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ * 
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ * 
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ * 
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ * 
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+package org.demoiselle.jee.security.exception;
+
+import org.demoiselle.jee.core.exception.DemoiselleException;
+
+/**
+ * <code>SecurityException</code> is the superclass of those exceptions that can
+ * be thrown due to any security related issue.
+ *
+ * @author SERPRO
+ */
+public class SecurityException extends DemoiselleException {
+
+    private static final long serialVersionUID = 1L;
+
+    /**
+     * Constructs an <code>SecurityException</code> with the specified detail
+     * message.
+     *
+     * @param message the detail message.
+     */
+    SecurityException(String message) {
+        super(message);
+    }
+
+    /**
+     * Constructor with the cause.
+     *
+     * @param cause exception cause
+     */
+    SecurityException(Throwable cause) {
+        super(cause);
+    }
+
+    /**
+     * Constructor with message and cause.
+     *
+     * @param message exception message
+     * @param cause exception cause
+     */
+    SecurityException(String message, Throwable cause) {
+        super(message, cause);
+    }
+}
@@ -0,0 +1,231 @@
+package org.demoiselle.jee.security.impl;
+
+import javax.enterprise.context.Dependent;
+import javax.enterprise.inject.spi.CDI;
+import javax.inject.Named;
+import java.io.Serializable;
+import java.security.Principal;
+import org.demoiselle.jee.core.annotation.literal.NameQualifier;
+import org.demoiselle.jee.core.annotation.literal.StrategyQualifier;
+import org.demoiselle.jee.core.exception.DemoiselleException;
+import org.demoiselle.jee.core.util.ResourceBundle;
+import org.demoiselle.jee.security.AfterLoginSuccessful;
+import org.demoiselle.jee.security.AfterLogoutSuccessful;
+import org.demoiselle.jee.security.Authenticator;
+import org.demoiselle.jee.security.Authorizer;
+import org.demoiselle.jee.security.SecurityContext;
+import org.demoiselle.jee.security.exception.AuthenticationException;
+import org.demoiselle.jee.security.exception.AuthorizationException;
+import org.demoiselle.jee.security.exception.NotLoggedInException;
+
+/**
+ * <p>
+ * This is the default implementation of {@link SecurityContext} interface.
+ * </p>
+ *
+ * @author SERPRO
+ */
+@Dependent
+@Named("securityContext")
+public class SecurityContextImpl implements SecurityContext {
+
+    private static final long serialVersionUID = 1L;
+
+    private transient ResourceBundle bundle;
+
+    private Authenticator authenticator;
+
+    private Authorizer authorizer;
+
+    private Authenticator getAuthenticator() {
+        if (this.authenticator == null) {
+            Class<? extends Authenticator> type = getConfig().getAuthenticatorClass();
+
+            if (type != null) {
+                this.authenticator = CDI.current().select(type).get(); //Beans.getReference(type);
+            } else {
+                this.authenticator = CDI.current().select(Authenticator.class, new StrategyQualifier()).get(); // Beans.getReference(Authenticator.class, new StrategyQualifier());
+            }
+        }
+
+        return this.authenticator;
+    }
+
+    private Authorizer getAuthorizer() {
+        if (this.authorizer == null) {
+            Class<? extends Authorizer> type = getConfig().getAuthorizerClass();
+
+            if (type != null) {
+                this.authorizer = CDI.current().select(type).get(); //Beans.getReference(type);
+            } else {
+                this.authorizer = CDI.current().select(Authorizer.class, new StrategyQualifier()).get(); //Beans.getReference(Authorizer.class, new StrategyQualifier());
+            }
+        }
+
+        return this.authorizer;
+    }
+
+    /**
+     * @see org.demoiselle.security.SecurityContext#hasPermission(String,
+     * String)
+     */
+    @Override
+    public boolean hasPermission(String resource, String operation) {
+        boolean result = true;
+
+        if (getConfig().isEnabled()) {
+            checkLoggedIn();
+
+            try {
+                result = getAuthorizer().hasPermission(resource, operation);
+
+            } catch (DemoiselleException cause) {
+                throw cause;
+
+            } catch (Exception cause) {
+                throw new AuthorizationException(cause);
+            }
+        }
+
+        return result;
+    }
+
+    /**
+     * @see org.demoiselle.security.SecurityContext#hasRole(String)
+     */
+    @Override
+    public boolean hasRole(String role) {
+        boolean result = true;
+
+        if (getConfig().isEnabled()) {
+            checkLoggedIn();
+
+            try {
+                result = getAuthorizer().hasRole(role);
+
+            } catch (DemoiselleException cause) {
+                throw cause;
+
+            } catch (Exception cause) {
+                throw new AuthorizationException(cause);
+            }
+        }
+
+        return result;
+    }
+
+    /**
+     * @see org.demoiselle.security.SecurityContext#isLoggedIn()
+     */
+    @Override
+    public boolean isLoggedIn() {
+        boolean result = true;
+
+        if (getConfig().isEnabled()) {
+            result = getUser() != null;
+        }
+
+        return result;
+    }
+
+    /**
+     * @see org.demoiselle.security.SecurityContext#login()
+     */
+    @Override
+    public void login() {
+        if (getConfig().isEnabled()) {
+
+            try {
+                getAuthenticator().authenticate();
+
+            } catch (DemoiselleException cause) {
+                throw cause;
+
+            } catch (Exception cause) {
+                throw new AuthenticationException(cause);
+            }
+
+            CDI.current().getBeanManager().fireEvent(new AfterLoginSuccessful() {
+
+                private static final long serialVersionUID = 1L;
+            });
+//			Beans.getBeanManager().fireEvent(new AfterLoginSuccessful() {
+//
+//				private static final long serialVersionUID = 1L;
+//			});
+        }
+    }
+
+    /**
+     * @see org.demoiselle.security.SecurityContext#logout()
+     */
+    @Override
+    public void logout() throws NotLoggedInException {
+        if (getConfig().isEnabled()) {
+            checkLoggedIn();
+
+            try {
+                getAuthenticator().unauthenticate();
+
+            } catch (DemoiselleException cause) {
+                throw cause;
+
+            } catch (Exception cause) {
+                throw new AuthenticationException(cause);
+            }
+
+            CDI.current().getBeanManager().fireEvent(new AfterLogoutSuccessful() {
+
+                private static final long serialVersionUID = 1L;
+            });
+//			Beans.getBeanManager().fireEvent(new AfterLogoutSuccessful() {
+//
+//				private static final long serialVersionUID = 1L;
+//			});
+        }
+    }
+
+    /**
+     * @see org.demoiselle.security.SecurityContext#getUser()
+     */
+    @Override
+    public Principal getUser() {
+        Principal user = getAuthenticator().getUser();
+
+        if (!getConfig().isEnabled() && user == null) {
+            user = new EmptyUser();
+        }
+
+        return user;
+    }
+
+    private SecurityConfig getConfig() {
+        return CDI.current().select(SecurityConfig.class).get();
+//		return Beans.getReference(SecurityConfig.class);
+    }
+
+    public void checkLoggedIn() throws NotLoggedInException {
+        if (!isLoggedIn()) {
+            throw new NotLoggedInException(getBundle().getString("user-not-authenticated"));
+        }
+    }
+
+    private ResourceBundle getBundle() {
+        if (bundle == null) {
+            bundle = CDI.current().select(ResourceBundle.class, new NameQualifier("demoiselle-core-bundle")).get();
+//			bundle = Beans.getReference(ResourceBundle.class, new NameQualifier("demoiselle-core-bundle"));
+        }
+
+        return bundle;
+    }
+
+    private static class EmptyUser implements Principal, Serializable {
+
+        private static final long serialVersionUID = 1L;
+
+        @Override
+        public String getName() {
+            return "demoiselle";
+        }
+    }
+}
@@ -0,0 +1,72 @@
+/*
+ * Demoiselle Framework
+ * Copyright (C) 2010 SERPRO
+ * ----------------------------------------------------------------------------
+ * This file is part of Demoiselle Framework.
+ *
+ * Demoiselle Framework is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public License version 3
+ * as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License version 3
+ * along with this program; if not,  see <http://www.gnu.org/licenses/>
+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
+ * Fifth Floor, Boston, MA  02110-1301, USA.
+ * ----------------------------------------------------------------------------
+ * Este arquivo é parte do Framework Demoiselle.
+ *
+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
+ * do Software Livre (FSF).
+ *
+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
+ * para maiores detalhes.
+ *
+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
+ */
+
+package org.demoiselle.jee.security.interceptor;
+
+import javax.annotation.Priority;
+import javax.inject.Inject;
+import javax.interceptor.AroundInvoke;
+import javax.interceptor.Interceptor;
+import javax.interceptor.InvocationContext;
+import java.io.Serializable;
+import org.demoiselle.jee.security.LoggedIn;
+import org.demoiselle.jee.security.SecurityContext;
+
+/**
+ * <p>
+ *Intercepts calls with {@link LoggedIn} annotations.
+ * </p>
+ *
+ * @author SERPRO
+ */
+
+@LoggedIn
+@Interceptor
+@Priority(Interceptor.Priority.APPLICATION)
+public class LoggedInInterceptor implements Serializable{
+
+    private static final long serialVersionUID = 1L;
+
+    @Inject
+    private SecurityContext securityContext;
+
+    @AroundInvoke
+    public Object manage(final InvocationContext ic) throws Exception {
+        securityContext.checkLoggedIn();
+        return ic.proceed();
+    }
+}
@@ -0,0 +1,145 @@
+package org.demoiselle.jee.security.interceptor;
+
+import org.demoiselle.jee.security.exception.AuthorizationException;
+
+import javax.annotation.Priority;
+import javax.enterprise.inject.spi.CDI;
+import javax.interceptor.AroundInvoke;
+import javax.interceptor.Interceptor;
+import javax.interceptor.InvocationContext;
+import java.io.Serializable;
+import java.util.logging.Logger;
+import javax.inject.Inject;
+import static javax.sql.rowset.spi.SyncFactory.getLogger;
+import org.demoiselle.jee.core.annotation.Name;
+import org.demoiselle.jee.core.util.ResourceBundle;
+import org.demoiselle.jee.core.util.Strings;
+import org.demoiselle.jee.security.RequiredPermission;
+import org.demoiselle.jee.security.SecurityContext;
+
+/**
+ * <p>
+ * Intercepts calls with {@code @RequiredPermission} annotation.
+ * </p>
+ *
+ * @author SERPRO
+ */
+@RequiredPermission
+@Interceptor
+@Priority(Interceptor.Priority.APPLICATION)
+public class RequiredPermissionInterceptor implements Serializable {
+
+    private static final long serialVersionUID = 1L;
+
+    @Inject
+    private ResourceBundle bundle;
+
+    @Inject
+    private Logger logger;
+
+    /**
+     * <p>
+     * Gets the values for both resource and operation properties of
+     * {@code @RequiredPermission}. Delegates to {@code SecurityContext} check
+     * permissions. If the user has the required permission it executes the
+     * mehtod, otherwise throws an exception. Returns what is returned from the
+     * intercepted method. If the method's return type is {@code void} returns
+     * {@code null}.
+     * </p>
+     *
+     * @param ic the {@code InvocationContext} in which the method is being
+     * called.
+     * @return what is returned from the intercepted method. If the method's
+     * return type is {@code void} returns {@code null}.
+     * @throws Exception if there is an error during the permission check or
+     * during the method's processing.
+     */
+    @AroundInvoke
+    public Object manage(final InvocationContext ic) throws Exception {
+        String resource = getResource(ic);
+        String operation = getOperation(ic);
+        String username = null;
+
+        if (getSecurityContext().isLoggedIn()) {
+            username = getSecurityContext().getUser().getName();
+            getLogger().finest(bundle.getString("access-checking", username, operation, resource));
+        }
+
+        if (!getSecurityContext().hasPermission(resource, operation)) {
+            getLogger().severe(bundle.getString("access-denied", username, operation, resource));
+            throw new AuthorizationException(bundle.getString("access-denied-ui", resource, operation));
+        }
+
+        getLogger().fine(bundle.getString("access-allowed", username, operation, resource));
+        return ic.proceed();
+    }
+
+    /**
+     * <p>
+     * Returns the resource defined in {@code @RequiredPermission} annotation,
+     * the name defined in {@code @AmbiguousQualifier} annotation or the class
+     * name itself.
+     * </p>
+     *
+     * @param ic the {@code InvocationContext} in which the method is being
+     * called.
+     * @return the resource defined in {@code @RequiredPermission} annotation,
+     * the name defined in {@code @AmbiguousQualifier} annotation or the class
+     * name itself.
+     */
+    private String getResource(InvocationContext ic) {
+        RequiredPermission requiredPermission;
+        requiredPermission = ic.getMethod().getAnnotation(RequiredPermission.class);
+
+        if (requiredPermission == null) {
+            requiredPermission = ic.getTarget().getClass().getAnnotation(RequiredPermission.class);
+        }
+
+        if (Strings.isEmpty(requiredPermission.resource())) {
+            if (ic.getTarget().getClass().getAnnotation(Name.class) == null) {
+                return ic.getTarget().getClass().getSimpleName();
+            } else {
+                return ic.getTarget().getClass().getAnnotation(Name.class).value();
+            }
+        } else {
+            return requiredPermission.resource();
+        }
+    }
+
+    /**
+     * <p>
+     * Returns the operation defined in {@code @RequiredPermission} annotation,
+     * the name defined in {@code @AmbiguousQualifier} annotation or the
+     * method's name itself.
+     * </p>
+     *
+     * @param ic the {@code InvocationContext} in which the method is being
+     * called.
+     * @return the operation defined in {@code @RequiredPermission} annotation,
+     * the name defined in {@code @AmbiguousQualifier} annotation or the
+     * method's name itself.
+     */
+    private String getOperation(InvocationContext ic) {
+        RequiredPermission requiredPermission;
+        requiredPermission = ic.getMethod().getAnnotation(RequiredPermission.class);
+
+        if (requiredPermission == null) {
+            requiredPermission = ic.getTarget().getClass().getAnnotation(RequiredPermission.class);
+        }
+
+        if (Strings.isEmpty(requiredPermission.operation())) {
+            if (ic.getMethod().getAnnotation(Name.class) == null) {
+                return ic.getMethod().getName();
+            } else {
+                return ic.getMethod().getAnnotation(Name.class).value();
+            }
+        } else {
+            return requiredPermission.operation();
+        }
+    }
+
+    private SecurityContext getSecurityContext() {
+        return CDI.current().select(SecurityContext.class).get();
+//		return Beans.getReference(SecurityContext.class);
+    }
+}
@@ -0,0 +1,112 @@
+package org.demoiselle.jee.security.interceptor;
+
+import org.demoiselle.jee.security.exception.AuthorizationException;
+
+import javax.annotation.Priority;
+import javax.enterprise.inject.spi.CDI;
+import javax.interceptor.AroundInvoke;
+import javax.interceptor.Interceptor;
+import javax.interceptor.InvocationContext;
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.List;
+
+import java.util.logging.Logger;
+import javax.inject.Inject;
+import org.demoiselle.jee.core.util.ResourceBundle;
+import org.demoiselle.jee.security.RequiredRole;
+import org.demoiselle.jee.security.SecurityContext;
+
+/**
+ * <p>
+ * Intercepts calls with {@code @RequiredRole} annotations.
+ * </p>
+ *
+ * @author SERPRO
+ */
+@RequiredRole(value = "")
+@Interceptor
+@Priority(Interceptor.Priority.APPLICATION)
+public class RequiredRoleInterceptor implements Serializable {
+
+    private static final long serialVersionUID = 1L;
+
+    @Inject
+    private ResourceBundle bundle;
+
+    @Inject
+    private Logger logger;
+
+    /**
+     * <p>
+     * Gets the value property of {@code @RequiredRole}. Delegates to
+     * {@code SecurityContext} check role. If the user has the required role it
+     * executes the mehtod, otherwise throws an exception. Returns what is
+     * returned from the intercepted method. If the method's return type is
+     * {@code void} returns {@code null}.
+     * </p>
+     *
+     * @param ic the {@code InvocationContext} in which the method is being
+     * called.
+     * @return what is returned from the intercepted method. If the method's
+     * return type is {@code void} returns {@code null}.
+     * @throws Exception if there is an error during the role check or during
+     * the method's processing.
+     */
+    @AroundInvoke
+    public Object manage(final InvocationContext ic) throws Exception {
+        List<String> roles = getRoles(ic);
+
+        if (getSecurityContext().isLoggedIn()) {
+            logger.info(
+                    bundle.getString("has-role-verification", getSecurityContext().getUser().getName(), roles));
+        }
+
+        List<String> userRoles = new ArrayList<String>();
+
+        for (String role : roles) {
+            if (getSecurityContext().hasRole(role)) {
+                userRoles.add(role);
+            }
+        }
+
+        if (userRoles.isEmpty()) {
+            logger.severe(
+                    bundle.getString("does-not-have-role", getSecurityContext().getUser().getName(), roles));
+
+            throw new AuthorizationException(bundle.getString("does-not-have-role-ui", roles));
+        }
+
+        logger.fine(bundle.getString("user-has-role", getSecurityContext().getUser().getName(), userRoles));
+
+        return ic.proceed();
+    }
+
+    /**
+     * <p>
+     * Returns the value defined in {@code @RequiredRole} annotation.
+     * </p>
+     *
+     * @param ic the {@code InvocationContext} in which the method is being
+     * called.
+     * @return the value defined in {@code @RequiredRole} annotation.
+     */
+    private List<String> getRoles(InvocationContext ic) {
+        String[] roles = {};
+
+        if (ic.getMethod().getAnnotation(RequiredRole.class) == null) {
+            roles = ic.getTarget().getClass().getAnnotation(RequiredRole.class).value();
+        } else {
+            roles = ic.getMethod().getAnnotation(RequiredRole.class).value();
+        }
+
+        return Arrays.asList(roles);
+    }
+
+    private SecurityContext getSecurityContext() {
+        return CDI.current().select(SecurityContext.class).get();
+//		return Beans.getReference(SecurityContext.class);
+    }
+
+}
@@ -0,0 +1,70 @@		@@ -0,0 +1,70 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.core.annotation.literal;
	38	+
	39	+import org.demoiselle.jee.core.annotation.Name;
	40	+
	41	+import javax.enterprise.util.AnnotationLiteral;
	42	+
	43	+/**
	44	+ * Annotation litteral that allows to create instances of the {@link Name} literal. The created instance can then be
	45	+ * used to call {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}
	46	+ *
	47	+ * @author SERPRO
	48	+ * @see javax.enterprise.inject.spi.CDI
	49	+ */
	50	+@SuppressWarnings("all")
	51	+public class NameQualifier extends AnnotationLiteral<Name> implements Name {
	52	+
	53	+ private static final long serialVersionUID = 1L;
	54	+
	55	+ private final String value;
	56	+
	57	+ /**
	58	+ * Constructor with string value of name literal.
	59	+ *
	60	+ * @param value value of name literal.
	61	+ */
	62	+ public NameQualifier(String value) {
	63	+ this.value = value;
	64	+ }
	65	+
	66	+ @Override
	67	+ public String value() {
	68	+ return this.value;
	69	+ }
	70	+}
@@ -0,0 +1,67 @@		@@ -0,0 +1,67 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.core.annotation.literal;
	38	+
	39	+import javax.enterprise.util.AnnotationLiteral;
	40	+import javax.inject.Named;
	41	+import java.lang.annotation.Annotation;
	42	+
	43	+/**
	44	+ * Annotation litteral that allows to create instances of the {@link Named} literal.
	45	+ * Those instances can then be used to call
	46	+ * {@link javax.enterprise.inject.spi.CDI#select(Class subtype, Annotation... qualifiers)}
	47	+ *
	48	+ * @see javax.enterprise.inject.spi.CDI
	49	+ * @see Named
	50	+ *
	51	+ * @author SERPRO
	52	+ */
	53	+@SuppressWarnings("all")
	54	+public class NamedQualifier extends AnnotationLiteral<Named> implements Named {
	55	+
	56	+ private static final long serialVersionUID = 6790759427086052113L;
	57	+
	58	+ private String namedValue;
	59	+
	60	+ public NamedQualifier(String value) {
	61	+ namedValue = value;
	62	+ }
	63	+
	64	+ public String value() {
	65	+ return namedValue;
	66	+ }
	67	+}
@@ -0,0 +1,53 @@		@@ -0,0 +1,53 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.core.annotation.literal;
	38	+
	39	+import org.demoiselle.jee.core.annotation.Strategy;
	40	+
	41	+import javax.enterprise.util.AnnotationLiteral;
	42	+
	43	+/**
	44	+ * Annotation litteral that allows to create instances of the {@link Strategy} literal. The created instance can then be
	45	+ * used to call {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
	46	+ *
	47	+ * @see javax.enterprise.inject.spi.CDI
	48	+ * @author SERPRO
	49	+ */
	50	+@SuppressWarnings("all")
	51	+public class StrategyQualifier extends AnnotationLiteral<Strategy> implements Strategy {
	52	+
	53	+}
@@ -0,0 +1,71 @@		@@ -0,0 +1,71 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.core.annotation.literal;
	38	+
	39	+import org.demoiselle.jee.core.annotation.Type;
	40	+
	41	+import javax.enterprise.util.AnnotationLiteral;
	42	+
	43	+/**
	44	+ * Annotation litteral that allows to create instances of the {@link Type}
	45	+ * literal. The created instance can then be used to call
	46	+ * {@link javax.enterprise.inject.spi.CDI#select(Class subtype, java.lang.annotation.Annotation... qualifiers)}.
	47	+ *
	48	+ * @see javax.enterprise.inject.spi.CDI
	49	+ * @author SERPRO
	50	+ */
	51	+@SuppressWarnings("all")
	52	+public class TypeQualifier extends AnnotationLiteral<Type> implements Type {
	53	+
	54	+ private static final long serialVersionUID = 1L;
	55	+
	56	+ private final Class<?> value;
	57	+
	58	+ /**
	59	+ * Constructor with string value of name literal.
	60	+ *
	61	+ * @param value value of name literal.
	62	+ */
	63	+ public TypeQualifier(Class<?> value) {
	64	+ this.value = value;
	65	+ }
	66	+
	67	+ @Override
	68	+ public Class<?> value() {
	69	+ return this.value;
	70	+ }
	71	+}
@@ -0,0 +1,50 @@		@@ -0,0 +1,50 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.security;
	38	+
	39	+import java.io.Serializable;
	40	+
	41	+/**
	42	+ * <p>
	43	+ * This interface represents an event that is fired when user successfully logs in.
	44	+ * </p>
	45	+ *
	46	+ * @author SERPRO
	47	+ */
	48	+public interface AfterLoginSuccessful extends Serializable {
	49	+
	50	+}
@@ -0,0 +1,89 @@		@@ -0,0 +1,89 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.security;
	38	+
	39	+import java.io.Serializable;
	40	+import java.security.Principal;
	41	+
	42	+/**
	43	+ * <p>
	44	+ * Defines the methods that should be implemented by anyone who wants an authentication mechanism.
	45	+ * </p>
	46	+ *
	47	+ * @author SERPRO
	48	+ */
	49	+public interface Authenticator extends Serializable {
	50	+
	51	+ /**
	52	+ * <p>
	53	+ * Executes the necessary steps to authenticate an user. After this call, {@link #getUser()} must return
	54	+ * the currently authenticated user, or <code>null</code> if the authentication process fails.
	55	+ * </p>
	56	+ *
	57	+ * @throws InvalidCredentialsException
	58	+ * You should throw this exception when the informed credentials are invalid.
	59	+ *
	60	+ * @throws Exception
	61	+ * If the underlying authentication mechanism throwns any other exception,
	62	+ * just throw it and leave the security context implementation to handle it.
	63	+ */
	64	+ void authenticate() throws Exception;
	65	+
	66	+ /**
	67	+ * <p>
	68	+ * Executes the necessary steps to unauthenticate an user. After this call, {@link #getUser()} must return <code>null</code>.
	69	+ * </p>
	70	+ *
	71	+ * @throws Exception
	72	+ * If the underlying authentication mechanism throwns any other exception,
	73	+ * just throw it and leave the security context implementation to handle it.
	74	+ */
	75	+ void unauthenticate() throws Exception;
	76	+
	77	+ /**
	78	+ * <p>
	79	+ * Returns the currently authenticated user.
	80	+ * </p>
	81	+ *
	82	+ * @return the user currently authenticated, or <code>null</code> if there is no
	83	+ * authenticated user.
	84	+ *
	85	+ * @see #authenticate()
	86	+ * @see #unauthenticate()
	87	+ */
	88	+ Principal getUser();
	89	+}
@@ -0,0 +1,75 @@		@@ -0,0 +1,75 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.security;
	38	+
	39	+import java.io.Serializable;
	40	+
	41	+/**
	42	+ * <p>
	43	+ * Defines the methods that should be implemented by anyone who wants an authorization mechanism.
	44	+ * </p>
	45	+ *
	46	+ * @author SERPRO
	47	+ */
	48	+public interface Authorizer extends Serializable {
	49	+
	50	+ /**
	51	+ * <p>
	52	+ * Checks if the logged user has a specific role.
	53	+ * </p>
	54	+ *
	55	+ * @param role role to be checked.
	56	+ * @return {@code true} if the user has the role.
	57	+ * @throws Exception if the underlying permission checking mechanism throwns any other exception,
	58	+ * just throw it and leave the security context implementation to handle it.
	59	+ */
	60	+ boolean hasRole(String role) throws Exception;
	61	+
	62	+ /**
	63	+ * <p>
	64	+ * Checks if the logged user has permission to execute a specific operation on a specific resource.
	65	+ * </p>
	66	+ *
	67	+ * @param resource resource to be checked.
	68	+ * @param operation operation to be checked.
	69	+ * @return {@code true} if the user has the permission.
	70	+ * @throws Exception if the underlying permission checking mechanism throwns any other exception,
	71	+ * just throw it and leave the security context implementation to handle it.
	72	+ */
	73	+ boolean hasPermission(String resource, String operation) throws Exception;
	74	+
	75	+}
@@ -0,0 +1,62 @@		@@ -0,0 +1,62 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+
	38	+package org.demoiselle.jee.security;
	39	+
	40	+import javax.interceptor.InterceptorBinding;
	41	+import java.lang.annotation.Inherited;
	42	+import java.lang.annotation.Retention;
	43	+import java.lang.annotation.Target;
	44	+
	45	+import static java.lang.annotation.ElementType.METHOD;
	46	+import static java.lang.annotation.ElementType.TYPE;
	47	+import static java.lang.annotation.RetentionPolicy.RUNTIME;
	48	+
	49	+/**
	50	+ * <p>
	51	+ * Indicates that a specific permission is required in order to invocate the annotated method or class.
	52	+ * </p>
	53	+ *
	54	+ * @author SERPRO
	55	+ */
	56	+
	57	+@Inherited
	58	+@InterceptorBinding
	59	+@Target({ METHOD, TYPE })
	60	+@Retention(RUNTIME)
	61	+public @interface LoggedIn {
	62	+}
@@ -0,0 +1,65 @@		@@ -0,0 +1,65 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.security;
	38	+
	39	+import javax.enterprise.util.Nonbinding;
	40	+import javax.interceptor.InterceptorBinding;
	41	+import java.lang.annotation.Inherited;
	42	+import java.lang.annotation.Retention;
	43	+import java.lang.annotation.Target;
	44	+
	45	+import static java.lang.annotation.ElementType.METHOD;
	46	+import static java.lang.annotation.ElementType.TYPE;
	47	+import static java.lang.annotation.RetentionPolicy.RUNTIME;
	48	+
	49	+/**
	50	+ * Indicates that a specific permission is required in order to invocate the annotated method or class.
	51	+ *
	52	+ * @author SERPRO
	53	+ */
	54	+@Inherited
	55	+@InterceptorBinding
	56	+@Target({ METHOD, TYPE })
	57	+@Retention(RUNTIME)
	58	+public @interface RequiredPermission {
	59	+
	60	+ @Nonbinding
	61	+ String resource() default "";
	62	+
	63	+ @Nonbinding
	64	+ String operation() default "";
	65	+}
@@ -0,0 +1,119 @@		@@ -0,0 +1,119 @@
	1	+/*
	2	+ * Demoiselle Framework
	3	+ * Copyright (C) 2010 SERPRO
	4	+ * ----------------------------------------------------------------------------
	5	+ * This file is part of Demoiselle Framework.
	6	+ *
	7	+ * Demoiselle Framework is free software; you can redistribute it and/or
	8	+ * modify it under the terms of the GNU Lesser General Public License version 3
	9	+ * as published by the Free Software Foundation.
	10	+ *
	11	+ * This program is distributed in the hope that it will be useful,
	12	+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	+ * GNU General Public License for more details.
	15	+ *
	16	+ * You should have received a copy of the GNU Lesser General Public License version 3
	17	+ * along with this program; if not, see <http://www.gnu.org/licenses/>
	18	+ * or write to the Free Software Foundation, Inc., 51 Franklin Street,
	19	+ * Fifth Floor, Boston, MA 02110-1301, USA.
	20	+ * ----------------------------------------------------------------------------
	21	+ * Este arquivo é parte do Framework Demoiselle.
	22	+ *
	23	+ * O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
	24	+ * modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
	25	+ * do Software Livre (FSF).
	26	+ *
	27	+ * Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
	28	+ * GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
	29	+ * APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
	30	+ * para maiores detalhes.
	31	+ *
	32	+ * Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
	33	+ * "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
	34	+ * ou escreva para a Fundação do Software Livre (FSF) Inc.,
	35	+ * 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
	36	+ */
	37	+package org.demoiselle.jee.security;
	38	+
	39	+import java.io.Serializable;
	40	+import java.security.Principal;
	41	+
	42	+/**
	43	+ * <p>
	44	+ * Structure used to handle both authentication and authorizations mechanisms.
	45	+ * </p>
	46	+ *
	47	+ * @author SERPRO
	48	+ */
	49	+public interface SecurityContext extends Serializable {
	50	+
	51	+ /**
	52	+ * Executes the login of a user to the application.
	53	+ *
	54	+ * @throws AuthenticationException
	55	+ * When the logon process fails, this exception is thrown.
	56	+ * @throws InvalidCredentialsException
	57	+ * When the user's credentials coudn't be validated. InvalidCredentialsException is a special case of
	58	+ * AuthenticationException.
	59	+ */
	60	+ void login();
	61	+
	62	+ /**
	63	+ * Executes the logout of a user.
	64	+ *
	65	+ * @throws AuthenticationException
	66	+ * When the logout process fails, this exception is thrown.
	67	+ */
	68	+ void logout();
	69	+
	70	+ /**
	71	+ * Checks if a specific user is logged in.
	72	+ *
	73	+ * @return {@code true} if the user is logged in
	74	+ */
	75	+ boolean isLoggedIn();
	76	+
	77	+ /**
	78	+ * @throws NotLoggedInException
	79	+ * if there is no user logged in a specific session
	80	+ */
	81	+ void checkLoggedIn();
	82	+
	83	+ /**
	84	+ * Checks if the logged user has permission to execute an specific operation on a specific resource.
	85	+ *
	86	+ * @param resource
	87	+ * resource to be checked
	88	+ * @param operation
	89	+ * operation to be checked
	90	+ * @return {@code true} if the user has the permission
	91	+ * @throws AuthorizationException
	92	+ * When the permission checking fails, this exception is thrown.
	93	+ * @throws NotLoggedInException
	94	+ * if there is no user logged in a specific session.
	95	+ */
	96	+ boolean hasPermission(String resource, String operation);
	97	+
	98	+ /**
	99	+ * Checks if the logged user has an specific role
	100	+ *
	101	+ * @param role
	102	+ * role to be checked
	103	+ * @return {@code true} if the user has the role
	104	+ * @throws AuthorizationException
	105	+ * When the permission checking fails, this exception is thrown.
	106	+ * @throws NotLoggedInException
	107	+ * if there is no user logged in a specific session.
	108	+ */
	109	+ boolean hasRole(String role);
	110	+
	111	+ /**
	112	+ * Return the user logged in the session.
	113	+ *
	114	+ * @return the user logged in a specific authenticated session. If there is no active session {@code null} is
	115	+ * returned.
	116	+ */
	117	+ Principal getUser();
	118	+
	119	+}