hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
remove-javascript
codeql/java/ql/test/query-tests/security/CWE-807/semmle/tests/TaintedPermissionsCheckTest.java
Tony Torralba f8d1e2ac11 Refactor tests to use InlineExpectationsTest
2021-09-14 13:16:45 +02:00

26 lines
797 B
Java
Raw Permalink Blame History

// Test case for CWE-807 (Reliance on Untrusted Inputs in a Security Decision)
// http://cwe.mitre.org/data/definitions/807.html
package test.cwe807.semmle.tests;
import javax.servlet.http.HttpServletRequest;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.subject.Subject;
class TaintedPermissionsCheckTest {
public static void main(HttpServletRequest request) throws Exception {
// Apache Shiro permissions system
String action = request.getParameter("action");
Subject subject = SecurityUtils.getSubject();
// BAD: permissions decision made using tainted data
if (subject.isPermitted("domain:sublevel:" + action))
doIt();
// GOOD: use fixed checks
if (subject.isPermitted("domain:sublevel:whatTheMethodDoes"))
doIt();
}
public static void doIt() {}
}
Reference in New Issue View Git Blame Copy Permalink