/*
 * Copyright 2005 the original author or authors.
 * 
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * 
 *      http://www.apache.org/licenses/LICENSE-2.0
 * 
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */ 

package org.wamblee.security.servlet;

import java.security.AccessController;

import javax.naming.InitialContext;
import javax.naming.NamingException;
import javax.security.auth.Subject;

import org.apache.log4j.Logger;

import ognl.Ognl;
import ognl.OgnlException;

/**
 * Locating the authenticated subject in a JBoss application server.  
 */
public class JaasSubjectLocator implements SubjectLocator {
    
    private static final Logger LOGGER = Logger.getLogger(JaasSubjectLocator.class);
    
    public JaasSubjectLocator() {
        // Empty
    }
    
    /* (non-Javadoc)
     * @see org.wamblee.security.servlet.SubjectLocator#getSubject()
     */
    public Subject getSubject() {
        Subject subject = Subject.getSubject(AccessController.getContext());
        LOGGER.info("Got subject '" + subject + "'");
        return subject;
    }
}