Mercurial > hg > release > icedtea-web-1.5
view netx/net/sourceforge/jnlp/security/dialogs/TemporaryPermissionsButton.java @ 1025:ecdb5af1e069
Backported fix for NPE in CertWarningDialog for HTTPS certs
2014-11-05 Andrew Azores <aazores@redhat.com>
* netx/net/sourceforge/jnlp/resources/Messages.properties
(CertWarnHTTPSAcceptTip, CertWarnHTTPSRejectTip): new messages more
applicable for HTTPS cert warning dialogs
* netx/net/sourceforge/jnlp/security/dialogs/CertWarningPane.java:
distinguish between HTTPS cert warnings and signed applet cert warnings.
Display appropriate text labels and buttons corresponding to either case.
* netx/net/sourceforge/jnlp/security/dialogs/TemporaryPermissionsButton.java:
If any of file, securityDelegate, or linkedButton are null, simply
disable this component and do not add component listeners dependent upon
these fields. Also, do not add multiple groups of permissions, and do not
add the permissions to the securityDelegate until the linkedButton is
actually clicked (rather than when the menu item is clicked)
author | Andrew Azores <aazores@redhat.com> |
---|---|
date | Thu, 06 Nov 2014 14:16:48 -0500 |
parents | ede0279b5c53 |
children |
line wrap: on
line source
/* Copyright (C) 2014 Red Hat, Inc. This file is part of IcedTea. IcedTea is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, version 2. IcedTea is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with IcedTea; see the file COPYING. If not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. Linking this library statically or dynamically with other modules is making a combined work based on this library. Thus, the terms and conditions of the GNU General Public License cover the whole combination. As a special exception, the copyright holders of this library give you permission to link this library with independent modules to produce an executable, regardless of the license terms of these independent modules, and to copy and distribute the resulting executable under terms of your choice, provided that you also meet, for each linked independent module, the terms and conditions of the license of that module. An independent module is a module which is not derived from or based on this library. If you modify this library, you may extend this exception to your version of the library, but you are not obligated to do so. If you do not wish to do so, delete this exception statement from your version. */ package net.sourceforge.jnlp.security.dialogs; import static net.sourceforge.jnlp.runtime.Translator.R; import java.awt.Component; import java.awt.Dialog.ModalityType; import java.awt.event.ActionEvent; import java.awt.event.ActionListener; import java.awt.event.MouseAdapter; import java.awt.event.MouseEvent; import java.net.MalformedURLException; import java.net.URL; import java.security.Permission; import java.util.Collection; import java.util.HashSet; import javax.swing.JButton; import javax.swing.JMenuItem; import javax.swing.JPopupMenu; import net.sourceforge.jnlp.JNLPFile; import net.sourceforge.jnlp.config.DeploymentConfiguration; import net.sourceforge.jnlp.runtime.JNLPClassLoader.SecurityDelegate; import net.sourceforge.jnlp.runtime.JNLPRuntime; import net.sourceforge.jnlp.security.policyeditor.PolicyEditor; import net.sourceforge.jnlp.security.policyeditor.PolicyEditor.PolicyEditorWindow; import net.sourceforge.jnlp.util.logging.OutputController; public class TemporaryPermissionsButton extends JButton { private final JPopupMenu menu; private final JButton linkedButton; private PolicyEditorWindow policyEditorWindow = null; private final JNLPFile file; private final SecurityDelegate securityDelegate; private final Collection<Permission> temporaryPermissions = new HashSet<Permission>(); public TemporaryPermissionsButton(final JNLPFile file, final SecurityDelegate securityDelegate, final JButton linkedButton) { /* If any of the above parameters are null, then the button cannot function - in particular, a null SecurityDelegate * would prevent temporary permissions from being able to be added; a null JNLPFile would prevent PolicyEditor from * being launched with a sensible codebase for the current applet; and a null JButton would prevent the Sandbox button * from being automatically invoked when a set of temporary permissions are selected by the user. */ super("\u2630"); this.menu = createPolicyPermissionsMenu(); this.linkedButton = linkedButton; this.file = file; this.securityDelegate = securityDelegate; if (file == null || securityDelegate == null || linkedButton == null) { this.setEnabled(false); OutputController.getLogger().log(OutputController.Level.MESSAGE_DEBUG, "Temporary Permissions Button disabled due to null fields." + " file: " + file + ", securityDelegate: " + securityDelegate + ", linkedButton: " + linkedButton); } else { linkedButton.addActionListener(new ActionListener() { @Override public void actionPerformed(final ActionEvent e) { securityDelegate.addPermissions(temporaryPermissions); } }); addMouseListener(new PolicyEditorPopupListener(this)); } } private JPopupMenu createPolicyPermissionsMenu() { final JPopupMenu policyMenu = new JPopupMenu(); final JMenuItem launchPolicyEditor = new JMenuItem(R("CertWarnPolicyEditorItem")); launchPolicyEditor.addActionListener(new PolicyEditorLaunchListener()); policyMenu.add(launchPolicyEditor); policyMenu.addSeparator(); final JMenuItem noFileAccess = new JMenuItem(R("STempPermNoFile")); noFileAccess.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.noFileAccess())); policyMenu.add(noFileAccess); final JMenuItem noNetworkAccess = new JMenuItem(R("STempPermNoNetwork")); noNetworkAccess.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.noNetworkAccess())); policyMenu.add(noNetworkAccess); final JMenuItem noFileOrNetwork = new JMenuItem(R("STempNoFileOrNetwork")); noFileOrNetwork.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.noFileOrNetworkAccess())); policyMenu.add(noFileOrNetwork); policyMenu.addSeparator(); final JMenuItem allFileAccessOnly = new JMenuItem(R("STempAllFileAndPropertyAccess")); allFileAccessOnly.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.allFileAccessAndProperties())); policyMenu.add(allFileAccessOnly); final JMenuItem readLocalFilesAndProperties = new JMenuItem(R("STempReadLocalFilesAndProperties")); readLocalFilesAndProperties.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.readLocalFilesAndProperties())); policyMenu.add(readLocalFilesAndProperties); final JMenuItem reflectionOnly = new JMenuItem(R("STempReflectionOnly")); reflectionOnly.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.reflectionOnly())); policyMenu.add(reflectionOnly); policyMenu.addSeparator(); final JMenuItem allMedia = new JMenuItem(R("STempAllMedia")); allMedia.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.allMedia())); policyMenu.add(allMedia); final JMenuItem soundOnly = new JMenuItem(R("STempSoundOnly")); soundOnly.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.audioOnly())); policyMenu.add(soundOnly); final JMenuItem clipboardOnly = new JMenuItem(R("STempClipboardOnly")); clipboardOnly.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.clipboardOnly())); policyMenu.add(clipboardOnly); final JMenuItem printOnly = new JMenuItem(R("STempPrintOnly")); printOnly.addActionListener(new TemporaryPermissionsListener(TemporaryPermissions.printOnly())); policyMenu.add(printOnly); return policyMenu; } private class TemporaryPermissionsListener implements ActionListener { private Collection<Permission> permissions; public TemporaryPermissionsListener(final Collection<Permission> permissions) { this.permissions = permissions; } @Override public void actionPerformed(final ActionEvent e) { temporaryPermissions.clear(); temporaryPermissions.addAll(permissions); menu.setVisible(false); if (linkedButton != null) { linkedButton.doClick(); } } } private class PolicyEditorLaunchListener implements ActionListener { @Override public void actionPerformed(final ActionEvent e) { final String rawFilepath = JNLPRuntime.getConfiguration().getProperty(DeploymentConfiguration.KEY_USER_SECURITY_POLICY); String filepath; try { filepath = new URL(rawFilepath).getPath(); } catch (final MalformedURLException mfue) { filepath = null; } if (policyEditorWindow == null || policyEditorWindow.getPolicyEditor().isClosed()) { policyEditorWindow = PolicyEditor.getPolicyEditorDialog(filepath); } else { policyEditorWindow.asWindow().toFront(); policyEditorWindow.asWindow().repaint(); } policyEditorWindow.setModalityType(ModalityType.DOCUMENT_MODAL); policyEditorWindow.getPolicyEditor().addNewCodebase(file.getCodeBase().toString()); policyEditorWindow.asWindow().setVisible(true); menu.setVisible(false); } } private class PolicyEditorPopupListener extends MouseAdapter { private final Component parent; public PolicyEditorPopupListener(final Component parent) { this.parent = parent; } @Override public void mouseClicked(final MouseEvent e) { menu.show(parent, e.getX(), e.getY()); } } }