/*
* Demoiselle Framework
* Copyright (C) 2010 SERPRO
* ----------------------------------------------------------------------------
* This file is part of Demoiselle Framework.
*
* Demoiselle Framework is free software; you can redistribute it and/or
* modify it under the terms of the GNU Lesser General Public License version 3
* as published by the Free Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU Lesser General Public License version 3
* along with this program; if not, see <http://www.gnu.org/licenses/>
* or write to the Free Software Foundation, Inc., 51 Franklin Street,
* Fifth Floor, Boston, MA 02110-1301, USA.
* ----------------------------------------------------------------------------
* Este arquivo é parte do Framework Demoiselle.
*
* O Framework Demoiselle é um software livre; você pode redistribuí-lo e/ou
* modificá-lo dentro dos termos da GNU LGPL versão 3 como publicada pela Fundação
* do Software Livre (FSF).
*
* Este programa é distribuído na esperança que possa ser útil, mas SEM NENHUMA
* GARANTIA; sem uma garantia implícita de ADEQUAÇÃO a qualquer MERCADO ou
* APLICAÇÃO EM PARTICULAR. Veja a Licença Pública Geral GNU/LGPL em português
* para maiores detalhes.
*
* Você deve ter recebido uma cópia da GNU LGPL versão 3, sob o título
* "LICENCA.txt", junto com esse programa. Se não, acesse <http://www.gnu.org/licenses/>
* ou escreva para a Fundação do Software Livre (FSF) Inc.,
* 51 Franklin St, Fifth Floor, Boston, MA 02111-1301, USA.
*/
package br.gov.frameworkdemoiselle.internal.implementation;
import javax.inject.Named;
import br.gov.frameworkdemoiselle.internal.bootstrap.AuthenticatorBootstrap;
import br.gov.frameworkdemoiselle.internal.bootstrap.AuthorizerBootstrap;
import br.gov.frameworkdemoiselle.internal.configuration.SecurityConfig;
import br.gov.frameworkdemoiselle.internal.configuration.SecurityConfigImpl;
import br.gov.frameworkdemoiselle.internal.producer.ResourceBundleProducer;
import br.gov.frameworkdemoiselle.security.AfterLoginSuccessful;
import br.gov.frameworkdemoiselle.security.AfterLogoutSuccessful;
import br.gov.frameworkdemoiselle.security.Authenticator;
import br.gov.frameworkdemoiselle.security.Authorizer;
import br.gov.frameworkdemoiselle.security.NotLoggedInException;
import br.gov.frameworkdemoiselle.security.SecurityContext;
import br.gov.frameworkdemoiselle.security.User;
import br.gov.frameworkdemoiselle.util.Beans;
import br.gov.frameworkdemoiselle.util.ResourceBundle;
/**
* This is the default implementation of {@link SecurityContext} interface.
*
* @author SERPRO
*/
@Named("securityContext")
public class SecurityContextImpl implements SecurityContext {
private static final long serialVersionUID = 1L;
private Authenticator authenticator;
private Authorizer authorizer;
private Authenticator getAuthenticator() {
if (this.authenticator == null) {
AuthenticatorBootstrap bootstrap = Beans.getReference(AuthenticatorBootstrap.class);
Class<? extends Authenticator> clazz = getConfig().getAuthenticatorClass();
if (clazz == null) {
clazz = StrategySelector.getClass(Authenticator.class, bootstrap.getCache());
}
this.authenticator = Beans.getReference(clazz);
}
return this.authenticator;
}
private Authorizer getAuthorizer() {
if (this.authorizer == null) {
AuthorizerBootstrap bootstrap = Beans.getReference(AuthorizerBootstrap.class);
Class<? extends Authorizer> clazz = getConfig().getAuthorizerClass();
if (clazz == null) {
clazz = StrategySelector.getClass(Authorizer.class, bootstrap.getCache());
}
this.authorizer = Beans.getReference(clazz);
}
return this.authorizer;
}
/**
* @see br.gov.frameworkdemoiselle.security.SecurityContext#hasPermission(java.lang.String, java.lang.String)
*/
@Override
public boolean hasPermission(String resource, String operation) throws NotLoggedInException {
if (getConfig().isEnabled()) {
checkLoggedIn();
return getAuthorizer().hasPermission(resource, operation);
} else {
return true;
}
}
/**
* @see br.gov.frameworkdemoiselle.security.SecurityContext#hasRole(java.lang.String)
*/
@Override
public boolean hasRole(String role) throws NotLoggedInException {
if (getConfig().isEnabled()) {
checkLoggedIn();
return getAuthorizer().hasRole(role);
} else {
return true;
}
}
/**
* @see br.gov.frameworkdemoiselle.security.SecurityContext#isLoggedIn()
*/
@Override
public boolean isLoggedIn() {
if (getConfig().isEnabled()) {
return getUser() != null;
} else {
return true;
}
}
/**
* @see br.gov.frameworkdemoiselle.security.SecurityContext#login()
*/
@Override
public void login() {
if (getConfig().isEnabled() && getAuthenticator().authenticate()) {
Beans.getBeanManager().fireEvent(new AfterLoginSuccessful() {
private static final long serialVersionUID = 1L;
});
}
}
/**
* @see br.gov.frameworkdemoiselle.security.SecurityContext#logout()
*/
@Override
public void logout() throws NotLoggedInException {
if (getConfig().isEnabled()) {
checkLoggedIn();
getAuthenticator().unAuthenticate();
Beans.getBeanManager().fireEvent(new AfterLogoutSuccessful() {
private static final long serialVersionUID = 1L;
});
}
}
/**
* @see br.gov.frameworkdemoiselle.security.SecurityContext#getUser()
*/
@Override
public User getUser() {
User user = getAuthenticator().getUser();
if (!getConfig().isEnabled() && user == null) {
user = new User() {
private static final long serialVersionUID = 1L;
@Override
public void setAttribute(Object key, Object value) {
}
@Override
public String getId() {
return "demoiselle";
}
@Override
public Object getAttribute(Object key) {
return null;
}
};
}
return user;
}
private SecurityConfig getConfig() {
return Beans.getReference(SecurityConfigImpl.class);
}
private void checkLoggedIn() throws NotLoggedInException {
if (!isLoggedIn()) {
ResourceBundle bundle = ResourceBundleProducer.create("demoiselle-core-bundle");
throw new NotLoggedInException(bundle.getString("user-not-authenticated"));
}
}
}