/*
* SSHTools - Java SSH2 API
*
* Copyright (C) 2002-2003 Lee David Painter and Contributors.
*
* Contributions made by:
*
* Brett Smith
* Richard Pernavas
* Erwin Bolwidt
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation; either version 2
* of the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
*/
package com.sshtools.j2ssh.authentication;
import com.sshtools.j2ssh.configuration.ConfigurationException;
import com.sshtools.j2ssh.configuration.ConfigurationLoader;
import com.sshtools.j2ssh.configuration.ExtensionAlgorithm;
import com.sshtools.j2ssh.configuration.SshAPIConfiguration;
import com.sshtools.j2ssh.transport.AlgorithmNotSupportedException;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import java.io.FilePermission;
import java.security.AccessControlException;
import java.security.AccessController;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
/**
*
*
* @author $author$
* @version $Revision: 1.20 $
*/
public class SshAuthenticationClientFactory {
private static Map auths;
private static Log log = LogFactory.getLog(SshAuthenticationClientFactory.class);
/** */
public final static String AUTH_PASSWORD = "password";
/** */
public final static String AUTH_PK = "publickey";
/** */
public final static String AUTH_KBI = "keyboard-interactive";
/** */
public final static String AUTH_HOSTBASED = "hostbased";
static {
auths = new HashMap();
log.info("Loading supported authentication methods");
auths.put(AUTH_PASSWORD, PasswordAuthenticationClient.class);
// Only allow key authentication if we are able to open local files
try {
if (System.getSecurityManager() != null) {
AccessController.checkPermission(new FilePermission(
"<<ALL FILES>>", "read"));
}
auths.put(AUTH_PK, PublicKeyAuthenticationClient.class);
} catch (AccessControlException ace) {
log.info(
"The security manager prevents use of Public Key Authentication on the client");
}
auths.put(AUTH_KBI, KBIAuthenticationClient.class);
//auths.put(AUTH_HOSTBASED, HostbasedAuthenticationClient.class);
try {
// Load external methods from configuration file
if (ConfigurationLoader.isConfigurationAvailable(
SshAPIConfiguration.class)) {
SshAPIConfiguration config = (SshAPIConfiguration) ConfigurationLoader.getConfiguration(SshAPIConfiguration.class);
List addons = config.getAuthenticationExtensions();
Iterator it = addons.iterator();
// Add the methods to our supported list
while (it.hasNext()) {
ExtensionAlgorithm method = (ExtensionAlgorithm) it.next();
String name = method.getAlgorithmName();
if (auths.containsKey(name)) {
log.debug("Standard authentication implementation for " +
name + " is being overidden by " +
method.getImplementationClass());
} else {
log.debug(name + " authentication is implemented by " +
method.getImplementationClass());
}
try {
Class cls = ConfigurationLoader.getExtensionClass(method.getImplementationClass());
Object obj = cls.newInstance();
if (obj instanceof SshAuthenticationClient) {
auths.put(name, cls);
}
} catch (Exception e) {
log.warn(
"Failed to load extension authentication implementation" +
method.getImplementationClass(), e);
}
}
}
} catch (ConfigurationException ex) {
}
}
/**
* Creates a new SshAuthenticationClientFactory object.
*/
protected SshAuthenticationClientFactory() {
}
/**
*
*/
public static void initialize() {
}
/**
*
*
* @return
*/
public static List getSupportedMethods() {
// Get the list of ciphers
ArrayList list = new ArrayList(auths.keySet());
// Return the list
return list;
}
/**
*
*
* @param methodName
*
* @return
*
* @throws AlgorithmNotSupportedException
*/
public static SshAuthenticationClient newInstance(String methodName)
throws AlgorithmNotSupportedException {
try {
return (SshAuthenticationClient) ((Class) auths.get(methodName)).newInstance();
} catch (Exception e) {
throw new AlgorithmNotSupportedException(methodName +
" is not supported!");
}
}
}