/*
* JBoss, Home of Professional Open Source.
* Copyright 2010, Red Hat, Inc., and individual contributors
* as indicated by the @author tags. See the copyright.txt file in the
* distribution for a full listing of individual contributors.
*
* This is free software; you can redistribute it and/or modify it
* under the terms of the GNU Lesser General Public License as
* published by the Free Software Foundation; either version 2.1 of
* the License, or (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* Lesser General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public
* License along with this software; if not, write to the Free
* Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA
* 02110-1301 USA, or see the FSF site: http://www.fsf.org.
*/
package org.jboss.as.security.plugins;
import javax.naming.InvalidNameException;
import javax.naming.NamingException;
import javax.security.auth.Subject;
import javax.security.jacc.PolicyContext;
import javax.security.jacc.PolicyContextException;
import org.jboss.security.AuthenticationManager;
import org.jboss.security.AuthorizationManager;
import org.jboss.security.RealmMapping;
import org.jboss.security.audit.AuditManager;
import org.jboss.security.identitytrust.IdentityTrustManager;
import org.jboss.security.mapping.MappingManager;
/**
* An encapsulation of the JNDI security context information
*
* @author Scott.Stark@jboss.org
* @author Anil.Saldhana@jboss.org
* @author <a href="mailto:mmoyses@redhat.com">Marcus Moyses</a>
*/
public class SecurityDomainContext {
static final String ACTIVE_SUBJECT = "subject";
static final String AUTHENTICATION_MGR = "authenticationMgr";
static final String REALM_MAPPING = "realmMapping";
static final String AUTHORIZATION_MGR = "authorizationMgr";
static final String AUDIT_MGR = "auditMgr";
static final String MAPPING_MGR = "mappingMgr";
static final String IDENTITY_TRUST_MGR = "identityTrustMgr";
static final String AUTH_CACHE = "authenticationCache";
static final String DOMAIN_CONTEXT = "domainContext";
AuthenticationManager authenticationMgr;
AuthorizationManager authorizationMgr;
AuditManager auditMgr;
MappingManager mappingMgr;
IdentityTrustManager identityTrustMgr;
// FIXME
Object authenticationCache;
private static final String SUBJECT_CONTEXT_KEY = "javax.security.auth.Subject.container";
// FIXME
public SecurityDomainContext(AuthenticationManager authenticationMgr, Object authenticationCache) {
this.authenticationMgr = authenticationMgr;
this.authenticationCache = authenticationCache;
}
public Object lookup(String name) throws NamingException {
Object binding = null;
if (name == null || name.length() == 0)
throw new InvalidNameException("name cannot be null or empty");
if (name.equals(ACTIVE_SUBJECT))
binding = getSubject();
else if (name.equals(AUTHENTICATION_MGR))
binding = getAuthenticationManager();
else if (name.equals(REALM_MAPPING))
binding = getRealmMapping();
else if (name.equals(AUTHORIZATION_MGR))
binding = getAuthorizationManager();
else if (name.equals(AUDIT_MGR))
binding = getAuditMgr();
else if (name.equals(MAPPING_MGR))
binding = getMappingMgr();
else if (name.equals(IDENTITY_TRUST_MGR))
binding = getIdentityTrustMgr();
else if (name.equals(AUTH_CACHE))
binding = authenticationCache;
else if (name.equals(DOMAIN_CONTEXT))
binding = this;
return binding;
}
public Subject getSubject() {
Subject subject = null;
try {
subject = (Subject) PolicyContext.getContext(SUBJECT_CONTEXT_KEY);
} catch (PolicyContextException pce) {
}
return subject;
}
public AuthenticationManager getAuthenticationManager() {
return authenticationMgr;
}
public RealmMapping getRealmMapping() {
RealmMapping realmMapping = null;
if (authorizationMgr != null && authorizationMgr instanceof RealmMapping) {
realmMapping = (RealmMapping) authorizationMgr;
} else if (authenticationMgr instanceof RealmMapping) {
realmMapping = (RealmMapping) authenticationMgr;
}
return realmMapping;
}
public void setAuthenticationManager(AuthenticationManager am) {
this.authenticationMgr = am;
}
public void setAuthorizationManager(AuthorizationManager am) {
this.authorizationMgr = am;
}
public AuthorizationManager getAuthorizationManager() {
return authorizationMgr;
}
// FIXME
public void setAuthenticationCache(Object cp) {
this.authenticationCache = cp;
}
// FIXME
public Object getAuthenticationCache() {
return authenticationCache;
}
public AuditManager getAuditMgr() {
return auditMgr;
}
public void setAuditMgr(AuditManager auditMgr) {
this.auditMgr = auditMgr;
}
public MappingManager getMappingMgr() {
return mappingMgr;
}
public void setMappingMgr(MappingManager mappingMgr) {
this.mappingMgr = mappingMgr;
}
public IdentityTrustManager getIdentityTrustMgr() {
return identityTrustMgr;
}
public void setIdentityTrustMgr(IdentityTrustManager identityTrustMgr) {
this.identityTrustMgr = identityTrustMgr;
}
}