Package com.foundationdb.http

Source Code of com.foundationdb.http.SecurityServiceLoginService

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
/**
* Copyright (C) 2009-2013 FoundationDB, LLC
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

package com.foundationdb.http;

import java.util.List;

import com.foundationdb.server.service.security.SecurityService;
import com.foundationdb.server.service.security.User;
import com.foundationdb.util.ArgumentValidation;
import org.eclipse.jetty.security.MappedLoginService;
import org.eclipse.jetty.server.UserIdentity;
import org.eclipse.jetty.util.security.Credential;

public class SecurityServiceLoginService extends MappedLoginService
{
    public enum CredentialType { BASIC, DIGEST }

    private final SecurityService securityService;
    private final CredentialType credentialType;
    private final long cacheMillis;
    private volatile long lastCachePurge;

    public SecurityServiceLoginService(SecurityService securityService, CredentialType credentialType, int cacheSeconds) {
        ArgumentValidation.isGTE("cacheSeconds", cacheSeconds, 0);
        if(credentialType != CredentialType.BASIC && credentialType != CredentialType.DIGEST) {
            throw new IllegalArgumentException("Unknown credential: " + credentialType);
        }
        this.securityService = securityService;
        this.credentialType = credentialType;
        this.cacheMillis = cacheSeconds * 1000;
    }

    @Override
    public UserIdentity login(String username, Object credentials) {
        long now = System.currentTimeMillis();
        if((now - lastCachePurge) > cacheMillis) {
            super._users.clear();
            lastCachePurge = now;
        }
        return super.login(username, credentials);
    }

    @Override
    protected void loadUsers() {
    }

    @Override
    protected UserIdentity loadUser(String username) {
        User user = securityService.getUser(username);
        if(user != null) {
            String password = (credentialType == CredentialType.BASIC) ? user.getBasicPassword() : user.getDigestPassword();
            List<String> roles = user.getRoles();
            return putUser(username, Credential.getCredential(password), roles.toArray(new String[roles.size()]));
        }
        return null;
    }
}
TOP

Related Classes of com.foundationdb.http.SecurityServiceLoginService

  • com.foundationdb.server.service.security.User
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.